$ rpki-client -vvf rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/6D5A36FCB2FB11F0861C2754C4F9AE02.roa File: 6D5A36FCB2FB11F0861C2754C4F9AE02.roa (raw, json) Hash identifier: HwzcTj+6E2of2zeq8O1Ng/ngV7Rw888FF8/vBEBckro= Subject key identifier: FC:CD:A0:28:BE:06:1E:73:31:B4:83:A6:96:47:57:88:45:26:09:7E Certificate issuer: /CN=A9120656/serialNumber=19E05AFD1E6B36254A5CB1503639384B6A22A826 Certificate serial: 52 Authority key identifier: 19:E0:5A:FD:1E:6B:36:25:4A:5C:B1:50:36:39:38:4B:6A:22:A8:26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/6D5A36FCB2FB11F0861C2754C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:46:55 +0000 ROA not before: Mon 27 Oct 2025 06:08:59 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 140849 IP address blocks: 138.252.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:23:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120656, serialNumber=19E05AFD1E6B36254A5CB1503639384B6A22A826 Validity Not Before: Oct 27 06:08:59 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5a2df-d460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:48:51:47:a9:6f:ae:86:dd:fd:d3:76:d1:0a: 98:a8:c6:5d:2a:73:3b:d6:ae:5b:b9:0b:71:15:04: 33:11:cb:9e:50:22:4e:08:95:69:41:c6:df:7d:cf: 0f:05:f7:8c:30:5e:6b:5e:ab:7e:75:4d:ed:82:66: 2c:5c:d6:0c:8c:78:62:c2:7e:13:47:87:7b:2e:78: 7a:8f:53:1e:63:af:08:2e:5f:4c:b4:a9:fa:ae:e6: 4f:25:9b:b3:e2:06:98:35:0c:99:35:44:39:1b:bf: 49:e7:8a:fb:c1:9a:c6:89:d2:9a:f1:11:67:12:04: bf:1f:b5:10:f6:02:dc:a0:39:ec:a2:d8:b4:2b:64: 68:57:08:28:7d:57:0c:13:75:d7:a6:1e:95:fd:e8: 53:2d:ae:7e:dd:b8:4a:a7:8d:ae:b4:a9:0a:82:4b: c0:44:6d:95:9a:c7:c7:9a:bf:90:77:59:06:3d:2a: ff:42:c1:67:2e:a4:01:b4:60:08:91:2b:23:e2:d7: 6e:a9:f1:47:89:b8:91:fc:d9:06:0a:64:58:a9:53: bd:cc:93:b7:cb:69:f0:2b:a2:59:3b:be:5e:ce:01: e9:23:b5:6e:bb:f0:cb:27:13:90:1c:f0:6b:30:89: f3:d6:f8:4b:f0:3f:70:22:a9:0b:1f:74:21:1a:4d: 93:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:CD:A0:28:BE:06:1E:73:31:B4:83:A6:96:47:57:88:45:26:09:7E X509v3 Authority Key Identifier: keyid:19:E0:5A:FD:1E:6B:36:25:4A:5C:B1:50:36:39:38:4B:6A:22:A8:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/6D5A36FCB2FB11F0861C2754C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.88.0/24 Signature Algorithm: sha256WithRSAEncryption e3:3c:c5:6a:b6:29:90:4a:0a:b0:2f:12:fe:a4:a9:e4:3d:78: 86:1e:6d:73:f8:3e:10:e2:4a:1f:78:0a:0a:0c:8f:a4:67:29: 2d:10:d9:c0:4f:66:4f:ad:79:ef:7b:9c:cd:ff:7f:2a:b4:5b: d8:5e:04:19:c9:b1:fa:fe:43:b9:c3:71:27:aa:d6:93:91:d0: 1d:d6:b6:98:df:75:8a:c4:fb:70:5a:9c:6c:62:0a:b1:ba:bf: c0:d8:69:7a:78:5c:cb:63:2d:a7:ac:29:13:a4:17:04:34:86: 7d:2a:94:a2:61:68:fd:37:29:2d:7c:1e:7b:55:ba:da:4a:f7: 61:ca:bb:5e:74:c1:22:0a:73:85:fc:bd:7f:88:a9:71:f6:21: 78:16:9c:b9:02:9c:1f:e5:5d:55:ce:70:bb:e5:44:1d:7d:8b: e1:a1:5f:02:9f:20:c4:92:95:da:5c:11:ca:0b:f4:f2:2d:f3: f3:3f:5a:f0:0a:f3:b8:e8:25:e2:48:d5:47:1e:ab:4a:b4:7a: 2a:9e:a1:81:49:10:3b:ed:ee:29:f7:47:f5:42:ea:e9:3e:d7: a2:67:ba:3c:ab:ab:4b:32:90:31:66:06:c4:80:22:cd:85:46: b1:82:25:02:79:89:78:47:27:49:9f:2e:1d:75:11:60:d4:57: c7:b4:8c:b5 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MDY1NjExMC8GA1UEBRMoMTlFMDVBRkQxRTZCMzYyNTRBNUNCMTUwMzYzOTM4NEI2 QTIyQTgyNjAeFw0yNTEwMjcwNjA4NTlaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTVhMmRmLWQ0NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3SFFHqW+uht3903bRCpioxl0qczvWrlu5C3EVBDMRy55QIk4IlWlBxt99zw8F 94wwXmteq351Te2CZixc1gyMeGLCfhNHh3sueHqPUx5jrwguX0y0qfqu5k8lm7Pi Bpg1DJk1RDkbv0nnivvBmsaJ0prxEWcSBL8ftRD2AtygOeyi2LQrZGhXCCh9VwwT ddemHpX96FMtrn7duEqnja60qQqCS8BEbZWax8eav5B3WQY9Kv9CwWcupAG0YAiR KyPi126p8UeJuJH82QYKZFipU73Mk7fLafArolk7vl7OAekjtW678MsnE5Ac8Gsw ifPW+EvwP3AiqQsfdCEaTZNhAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU/M2gKL4G HnMxtIOmlkdXiEUmCX4wHwYDVR0jBBgwFoAUGeBa/R5rNiVKXLFQNjk4S2oiqCYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwNjU2LzRBNzA5NTY0QjAw RDExRjA4REU0RUQ3QkM0RjlBRTAyL0dlQmFfUjVyTmlWS1hMRlFOams0UzJvaXFD WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2VCYV9SNXJOaVZLWExGUU5qazRTMm9pcUNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDY1Ni80QTcwOTU2NEIwMEQxMUYwOERFNEVEN0JDNEY5QUUwMi82RDVBMzZGQ0Iy RkIxMUYwODYxQzI3NTRDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACK/FgwDQYJKoZIhvcNAQELBQADggEBAOM8xWq2KZBKCrAvEv6kqeQ9 eIYebXP4PhDiSh94CgoMj6RnKS0Q2cBPZk+tee97nM3/fyq0W9heBBnJsfr+Q7nD cSeq1pOR0B3WtpjfdYrE+3BanGxiCrG6v8DYaXp4XMtjLaesKROkFwQ0hn0qlKJh aP03KS18HntVutpK92HKu150wSIKc4X8vX+IqXH2IXgWnLkCnB/lXVXOcLvlRB19 i+GhXwKfIMSSldpcEcoL9PIt8/M/WvAK87joJeJI1Uceq0q0eiqeoYFJEDvt7in3 R/VC6uk+16Jnujyrq0sykDFmBsSAIs2FRrGCJQJ5iXhHJ0mfLh11EWDUV8e0jLU= -----END CERTIFICATE-----Generated at Fri Mar 27 01:02:07 2026 by rpki-client