$ rpki-client -vvf rpki.apnic.net/member_repository/A919AFBE/BA018DB4BA1E11F0B987393BC4F9AE02/4F172076BA1F11F08DD0CE3CC4F9AE02.roa File: 4F172076BA1F11F08DD0CE3CC4F9AE02.roa (raw, json) Hash identifier: otJtZV8aWxED8Ots8vZzliR1uFIMPOI3+2ENrD6egEA= Subject key identifier: 29:2E:DB:53:CC:37:89:32:79:5D:AF:AD:67:74:1D:71:B7:E0:46:47 Certificate issuer: /CN=A919AFBE/serialNumber=062D313B099AE86B3F4FE2E20BB45F8E86536273 Certificate serial: 3E Authority key identifier: 06:2D:31:3B:09:9A:E8:6B:3F:4F:E2:E2:0B:B4:5F:8E:86:53:62:73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bi0xOwma6Gs_T-LiC7RfjoZTYnM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AFBE/BA018DB4BA1E11F0B987393BC4F9AE02/4F172076BA1F11F08DD0CE3CC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:06:19 +0000 ROA not before: Wed 05 Nov 2025 08:13:28 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 140849 IP address blocks: 138.252.144.0/24 maxlen: 24 138.252.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AFBE/BA018DB4BA1E11F0B987393BC4F9AE02/Bi0xOwma6Gs_T-LiC7RfjoZTYnM.crl rsync://rpki.apnic.net/member_repository/A919AFBE/BA018DB4BA1E11F0B987393BC4F9AE02/Bi0xOwma6Gs_T-LiC7RfjoZTYnM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bi0xOwma6Gs_T-LiC7RfjoZTYnM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AFBE, serialNumber=062D313B099AE86B3F4FE2E20BB45F8E86536273 Validity Not Before: Nov 5 08:13:28 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a3d75a-b1b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:2d:1c:6f:4a:62:65:21:9b:5a:f6:51:2a:f5: 5c:2b:1c:bd:a5:e5:43:59:93:7c:f9:7e:60:6b:bc: 72:9c:3a:24:ce:00:a8:f5:9a:fc:f3:c4:b5:7c:49: e8:f2:64:9e:91:86:77:4d:0b:81:c7:12:bd:3a:5d: 50:e1:5d:3a:d6:64:f1:65:0a:2f:89:68:fb:24:97: 5a:cc:29:ce:78:7c:7e:c2:ad:0d:13:7e:89:46:31: 32:ae:1f:df:3e:34:3f:e6:f8:c5:55:51:99:cc:ae: ab:a1:5a:11:3a:13:fd:92:25:7e:31:d8:65:9d:6b: ee:8e:e4:5c:02:40:a2:30:11:98:91:ba:5c:44:22: 6a:c9:af:9a:e1:48:9c:a3:6a:1d:04:ab:3a:7f:1b: 04:a3:4e:5a:57:e3:0c:30:5a:c3:65:c6:0e:b8:9e: 1d:25:67:50:89:c7:38:61:bf:32:af:19:ef:9a:d4: 49:8d:1c:93:29:e7:cc:10:d5:a5:a7:68:e6:cb:cf: 6a:26:55:3d:0e:42:3a:a2:5e:82:9a:a9:a1:c2:63: b0:a4:1f:85:dd:6b:33:98:6e:a0:e7:5b:4c:53:47: 06:ed:60:e1:27:98:92:4f:d3:a2:ae:40:e5:5a:08: 79:ea:65:00:eb:08:ee:6a:2a:dc:1d:47:fe:14:3e: e5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:2E:DB:53:CC:37:89:32:79:5D:AF:AD:67:74:1D:71:B7:E0:46:47 X509v3 Authority Key Identifier: keyid:06:2D:31:3B:09:9A:E8:6B:3F:4F:E2:E2:0B:B4:5F:8E:86:53:62:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AFBE/BA018DB4BA1E11F0B987393BC4F9AE02/Bi0xOwma6Gs_T-LiC7RfjoZTYnM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bi0xOwma6Gs_T-LiC7RfjoZTYnM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AFBE/BA018DB4BA1E11F0B987393BC4F9AE02/4F172076BA1F11F08DD0CE3CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.144.0/23 Signature Algorithm: sha256WithRSAEncryption 09:bf:ab:02:c3:45:30:01:ba:cb:76:a8:16:94:47:88:05:d0: f2:21:78:bb:8b:fd:34:7a:67:25:d4:bd:dd:ad:75:f0:fc:c5: 22:41:ce:e2:07:a4:06:74:eb:c3:56:6b:e0:50:7c:b4:4d:9f: 4a:f5:28:64:8e:dc:92:3a:ee:14:fb:bd:fc:37:65:70:9c:e8: 7b:68:ea:8c:a0:96:7d:a4:30:ab:66:fa:04:76:a3:7d:80:63: 85:bb:12:ca:0a:9c:53:6e:c9:90:ae:e0:ae:eb:29:54:c0:9a: 85:78:b6:79:cd:c2:46:ef:58:85:10:46:8a:4e:ca:5b:73:24: a6:27:d6:cf:b6:ef:20:df:ab:14:79:db:d7:74:9e:0f:74:2a: 5f:1f:ee:5e:1d:cd:b6:b1:7c:4c:81:fe:c5:21:3a:c4:4a:21: b9:58:8b:59:36:2d:d6:0c:bd:94:09:8a:7a:e8:23:94:db:ab: 8e:56:03:42:43:2e:2b:bc:12:1d:dc:62:f2:10:2d:7b:13:e1: 6f:d0:b1:95:a2:67:c5:60:f6:3c:0b:ea:f6:dd:04:43:d8:27: 52:ca:75:b2:e3:47:b8:51:de:5f:37:d8:cf:b9:6c:08:95:0a: 6c:1f:77:c1:91:58:bd:ec:56:a8:ae:da:81:3e:e7:8a:1b:16: 36:0c:ab:4d -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QUZCRTExMC8GA1UEBRMoMDYyRDMxM0IwOTlBRTg2QjNGNEZFMkUyMEJCNDVGOEU4 NjUzNjI3MzAeFw0yNTExMDUwODEzMjhaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNzVhLWIxYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiLRxvSmJlIZta9lEq9VwrHL2l5UNZk3z5fmBrvHKcOiTOAKj1mvzzxLV8Sejy ZJ6RhndNC4HHEr06XVDhXTrWZPFlCi+JaPskl1rMKc54fH7CrQ0TfolGMTKuH98+ ND/m+MVVUZnMrquhWhE6E/2SJX4x2GWda+6O5FwCQKIwEZiRulxEImrJr5rhSJyj ah0Eqzp/GwSjTlpX4wwwWsNlxg64nh0lZ1CJxzhhvzKvGe+a1EmNHJMp58wQ1aWn aObLz2omVT0OQjqiXoKaqaHCY7CkH4XdazOYbqDnW0xTRwbtYOEnmJJP06KuQOVa CHnqZQDrCO5qKtwdR/4UPuWRAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUKS7bU8w3 iTJ5Xa+tZ3QdcbfgRkcwHwYDVR0jBBgwFoAUBi0xOwma6Gs/T+LiC7RfjoZTYnMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBRkJFL0JBMDE4REI0QkEx RTExRjBCOTg3MzkzQkM0RjlBRTAyL0JpMHhPd21hNkdzX1QtTGlDN1Jmam9aVFlu TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQmkweE93bWE2R3NfVC1MaUM3UmZqb1pUWW5NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUZCRS9CQTAxOERCNEJBMUUxMUYwQjk4NzM5M0JDNEY5QUUwMi80RjE3MjA3NkJB MUYxMUYwOEREMENFM0NDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/JAwDQYJKoZIhvcNAQELBQADggEBAAm/qwLDRTABust2qBaUR4gF 0PIheLuL/TR6ZyXUvd2tdfD8xSJBzuIHpAZ068NWa+BQfLRNn0r1KGSO3JI67hT7 vfw3ZXCc6Hto6oygln2kMKtm+gR2o32AY4W7EsoKnFNuyZCu4K7rKVTAmoV4tnnN wkbvWIUQRopOyltzJKYn1s+27yDfqxR529d0ng90Kl8f7l4dzbaxfEyB/sUhOsRK IblYi1k2LdYMvZQJinroI5Tbq45WA0JDLiu8Eh3cYvIQLXsT4W/QsZWiZ8Vg9jwL 6vbdBEPYJ1LKdbLjR7hR3l832M+5bAiVCmwfd8GRWL3sVqiu2oE+54obFjYMq00= -----END CERTIFICATE-----Generated at Mon Mar 2 01:55:07 2026 by rpki-client