$ rpki-client -vvf rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/AE2B714A72E911EEA3EFD34AC4F9AE02.roa File: AE2B714A72E911EEA3EFD34AC4F9AE02.roa (raw, json) Hash identifier: q8cbKWLvvyLvTMbK4mDN66pYpaxsNmBZr6NUnR98D1c= Subject key identifier: 5E:BE:AC:F3:9A:0F:96:39:3E:3B:24:A9:4D:94:41:81:26:BA:B2:B6 Certificate issuer: /CN=A9197227/serialNumber=2659CED1527D2CABD8B2C53075ECCD94ED71FE98 Certificate serial: 076C Authority key identifier: 26:59:CE:D1:52:7D:2C:AB:D8:B2:C5:30:75:EC:CD:94:ED:71:FE:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlnO0VJ9LKvYssUwdezNlO1x_pg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/AE2B714A72E911EEA3EFD34AC4F9AE02.roa Signing time: Fri 12 Jun 2026 22:25:36 +0000 ROA not before: Fri 12 Jun 2026 22:25:36 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 17635 IP address blocks: 203.14.105.0/24 maxlen: 24 203.57.128.0/20 maxlen: 24 2406:9680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/JlnO0VJ9LKvYssUwdezNlO1x_pg.crl rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/JlnO0VJ9LKvYssUwdezNlO1x_pg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlnO0VJ9LKvYssUwdezNlO1x_pg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 22:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1900 (0x76c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197227, serialNumber=2659CED1527D2CABD8B2C53075ECCD94ED71FE98 Validity Not Before: Jun 12 22:25:36 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a2c8760-120d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bd:2a:f2:63:40:71:4b:94:bf:4d:60:d1:de: bd:2f:ac:4c:3d:13:45:b5:78:7f:7e:fc:d5:30:f2: d2:2f:9c:c7:11:1a:bf:08:50:fe:e3:af:a6:19:02: 7e:b0:27:69:82:bc:e9:fc:8b:20:f0:9f:2c:a0:e1: 14:59:13:9e:81:53:81:71:a3:c1:7f:d2:af:79:1a: c9:06:14:73:6b:02:12:06:37:54:97:58:88:15:a1: 89:c4:09:63:81:55:0d:3a:0c:6a:57:de:89:27:75: 80:be:37:a8:47:bf:61:dc:b0:a2:8e:dc:3a:cd:84: 91:d7:58:5a:e3:54:56:64:c2:ec:5a:1e:08:a0:d2: a7:24:e1:f6:de:9e:42:56:9f:17:1b:26:84:6f:37: 44:59:41:73:e4:4c:c6:f0:db:85:98:18:44:10:22: 5e:1d:fa:53:cb:30:80:16:9f:15:d2:8e:ce:3d:92: fe:3f:2c:bb:0d:8a:cd:18:49:f0:f4:39:69:d4:a2: 52:61:57:26:9d:da:91:56:d9:47:f6:e6:d3:01:02: bb:3b:5f:2b:4b:6f:44:64:cf:a0:a8:a1:d3:75:b5: 44:59:66:ae:b8:42:2c:8c:c5:9c:5d:a9:40:a5:cf: ee:ab:e4:ef:0b:11:58:3b:a9:1c:69:98:54:e7:b2: 24:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:BE:AC:F3:9A:0F:96:39:3E:3B:24:A9:4D:94:41:81:26:BA:B2:B6 X509v3 Authority Key Identifier: keyid:26:59:CE:D1:52:7D:2C:AB:D8:B2:C5:30:75:EC:CD:94:ED:71:FE:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/JlnO0VJ9LKvYssUwdezNlO1x_pg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlnO0VJ9LKvYssUwdezNlO1x_pg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/AE2B714A72E911EEA3EFD34AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.14.105.0/24 203.57.128.0/20 IPv6: 2406:9680::/32 Signature Algorithm: sha256WithRSAEncryption d1:70:2f:a8:9b:fa:1e:c1:b8:5c:10:03:b1:40:36:05:ad:23: 6d:63:fb:59:d4:ec:fd:6a:67:20:f1:76:91:02:d2:83:d2:42: 9f:c5:fa:2d:a6:7c:a0:94:fa:dc:41:c9:ab:25:30:03:1f:86: b6:aa:07:9e:c5:a8:2c:2d:d6:88:78:83:73:c2:ef:cf:a1:38: 59:4e:c9:21:78:d2:96:27:14:4c:f7:25:7c:64:8e:66:e6:92: 24:f0:43:be:a8:a7:86:03:ad:b3:e3:a2:bb:82:5d:74:cf:2d: dc:32:57:8c:8c:dd:c7:47:e6:7b:ec:1c:68:51:0f:e4:9c:b2: 51:6d:d5:51:d3:8b:2a:19:cc:7e:18:81:90:1c:a8:4a:36:46: 52:8d:5a:6d:9d:e2:cd:46:7b:77:7b:6c:74:70:32:ad:11:56: 48:d7:fe:88:df:dd:87:b9:5f:ce:45:99:3f:30:b2:33:00:90: 0c:cb:52:6b:d8:fd:ad:20:37:ac:33:16:f2:52:7e:83:3d:b7: 4a:e9:f9:92:81:b4:f1:94:58:f6:c6:7c:2f:b3:1b:36:e2:7c: b0:78:1e:2b:44:e2:1f:08:00:c0:bd:7d:69:39:99:76:ec:95: 70:39:49:1c:b8:38:62:a4:80:f9:bd:8b:d6:da:ba:3e:90:f5: 96:26:a7:1c -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICB2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMjcxMTAvBgNVBAUTKDI2NTlDRUQxNTI3RDJDQUJEOEIyQzUzMDc1RUNDRDk0 RUQ3MUZFOTgwHhcNMjYwNjEyMjIyNTM2WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTJjODc2MC0xMjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArr0q8mNAcUuUv01g0d69L6xMPRNFtXh/fvzVMPLSL5zHERq/CFD+46+mGQJ+ sCdpgrzp/Isg8J8soOEUWROegVOBcaPBf9KveRrJBhRzawISBjdUl1iIFaGJxAlj gVUNOgxqV96JJ3WAvjeoR79h3LCijtw6zYSR11ha41RWZMLsWh4IoNKnJOH23p5C Vp8XGyaEbzdEWUFz5EzG8NuFmBhEECJeHfpTyzCAFp8V0o7OPZL+Pyy7DYrNGEnw 9Dlp1KJSYVcmndqRVtlH9ubTAQK7O18rS29EZM+gqKHTdbVEWWauuEIsjMWcXalA pc/uq+TvCxFYO6kcaZhU57IkPwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFF6+rPOa D5Y5PjskqU2UQYEmurK2MB8GA1UdIwQYMBaAFCZZztFSfSyr2LLFMHXszZTtcf6Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIyNy80RkNGNTY4RTdC MDcxMUVCOUFGODQzODRDNEY5QUUwMi9KbG5PMFZKOUxLdllzc1V3ZGV6TmxPMXhf cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0psbk8wVko5TEt2WXNzVXdkZXpObE8xeF9wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcyMjcvNEZDRjU2OEU3QjA3MTFFQjlBRjg0Mzg0QzRGOUFFMDIvQUUyQjcxNEE3 MkU5MTFFRUEzRUZEMzRBQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAyw5pAwQEyzmAMA0EAgACMAcDBQAkBpaAMA0GCSqGSIb3DQEBCwUA A4IBAQDRcC+om/oewbhcEAOxQDYFrSNtY/tZ1Oz9amcg8XaRAtKD0kKfxfotpnyg lPrcQcmrJTADH4a2qgeexagsLdaIeINzwu/PoThZTskheNKWJxRM9yV8ZI5m5pIk 8EO+qKeGA62z46K7gl10zy3cMleMjN3HR+Z77BxoUQ/knLJRbdVR04sqGcx+GIGQ HKhKNkZSjVptneLNRnt3e2x0cDKtEVZI1/6I392HuV/ORZk/MLIzAJAMy1Jr2P2t IDesMxbyUn6DPbdK6fmSgbTxlFj2xnwvsxs24nyweB4rROIfCADAvX1pOZl27JVw OUkcuDhipID5vYvW2ro+kPWWJqcc -----END CERTIFICATE-----Generated at Sat Jun 13 17:56:48 2026 by rpki-client