$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D9C5B55A498E11EF908FD222C4F9AE02.roa File: D9C5B55A498E11EF908FD222C4F9AE02.roa (raw, json) Hash identifier: ohWNBeobdCPyY/6CPWfy1mGiydZdoWmdPKZh8LFovXk= Subject key identifier: 55:34:32:D6:6D:BD:C6:4D:35:8B:BB:9F:81:63:44:DB:3D:E2:2B:2E Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 0148 Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D9C5B55A498E11EF908FD222C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:41:08 +0000 ROA not before: Fri 07 Nov 2025 01:10:33 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 7575 IP address blocks: 130.220.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Nov 7 01:10:33 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a59374-31af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e1:96:14:1f:bb:c1:e7:cc:61:2d:25:ac:54: 03:37:aa:5e:e0:19:48:2a:69:1c:da:73:02:4f:7e: 38:53:e7:f2:fc:87:1d:44:e0:72:57:06:65:9f:d3: 25:b0:92:d5:b7:be:fc:10:81:b1:14:e2:84:06:e5: f9:28:68:67:d7:79:07:db:2b:2a:5b:41:b4:72:d3: c0:9f:d9:d7:77:cf:84:2c:07:27:a6:1d:84:12:7e: 8a:ae:e7:a7:2d:21:8e:b9:b5:e5:da:a9:8f:82:74: 42:ed:09:8c:c2:3c:c8:f7:e0:d2:d8:49:00:d0:9a: be:f5:f8:8a:19:e3:e4:b2:12:f6:cc:88:ef:28:a6: 2a:95:16:02:0a:ae:c6:a7:9b:de:bd:a4:62:9d:a8: 37:fc:d3:29:d0:dd:71:64:c8:09:e4:30:ed:d2:f6: 9e:e0:61:82:a6:06:76:b3:13:be:3f:ee:f3:10:81: 4d:d7:fb:00:fa:d3:32:46:a0:e8:e2:5b:6b:f4:c5: 6b:cd:d9:1b:4f:ed:ae:0f:b5:a4:3f:a3:0c:e6:c1: ce:cb:b6:7a:ee:65:24:6b:d5:df:65:6d:03:c2:7c: 73:42:43:1c:cb:63:f5:0e:61:62:44:61:9d:35:b6: ee:84:a3:45:19:d8:36:60:ca:16:5d:12:8a:95:47: 90:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:34:32:D6:6D:BD:C6:4D:35:8B:BB:9F:81:63:44:DB:3D:E2:2B:2E X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D9C5B55A498E11EF908FD222C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 130.220.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1b:79:b7:2a:4a:bb:65:ab:bf:33:f1:45:76:19:27:87:ef:a8: 8c:73:a3:7e:3d:91:76:b8:44:89:82:c4:8e:e6:9d:89:b1:7a: 3d:35:0f:c4:8c:a6:a6:a2:87:a6:9f:6f:1b:29:06:01:ba:e7: 38:9f:24:da:0a:cc:a0:cb:9c:18:9a:53:01:8c:52:01:ed:4c: 7a:ec:3d:0b:10:bb:3f:64:3b:15:2a:0f:8f:eb:ed:c8:14:c1: 7a:f2:56:c6:fa:08:19:1a:1d:24:f5:6c:62:a7:3a:8e:4d:0b: 73:81:74:94:e0:78:dd:54:48:7d:97:b4:ad:94:be:0c:79:fd: 35:13:f8:1c:fd:ba:da:e7:31:d7:2c:ac:df:69:10:29:6c:69: ab:41:39:58:eb:04:5c:da:b4:26:bb:ba:ed:d6:46:68:cc:19: 72:94:4c:e2:db:91:48:7b:e6:ba:94:3d:6d:e3:70:15:e3:17: a6:1a:a4:85:12:7e:5f:71:f6:fe:17:c8:ed:e9:10:0d:4c:b4: 41:67:41:8e:79:51:d3:cc:1a:f1:b6:25:44:0b:a2:c1:34:43: 4a:70:09:c8:6e:cc:cf:50:81:ef:50:20:4b:25:a3:4a:8b:82: cb:5d:32:a0:3a:38:da:f6:7d:9b:b6:ae:77:36:ca:d2:6c:30: 1f:56:22:8f -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjUxMTA3MDExMDMzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTM3NC0zMWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveGWFB+7wefMYS0lrFQDN6pe4BlIKmkc2nMCT344U+fy/IcdROByVwZln9Ml sJLVt778EIGxFOKEBuX5KGhn13kH2ysqW0G0ctPAn9nXd8+ELAcnph2EEn6Kruen LSGOubXl2qmPgnRC7QmMwjzI9+DS2EkA0Jq+9fiKGePkshL2zIjvKKYqlRYCCq7G p5vevaRinag3/NMp0N1xZMgJ5DDt0vae4GGCpgZ2sxO+P+7zEIFN1/sA+tMyRqDo 4ltr9MVrzdkbT+2uD7WkP6MM5sHOy7Z67mUka9XfZW0DwnxzQkMcy2P1DmFiRGGd NbbuhKNFGdg2YMoWXRKKlUeQbQIDAQABo4ICXzCCAlswHQYDVR0OBBYEFFU0MtZt vcZNNYu7n4FjRNs94isuMB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkYzQjYvNTBGMDExQzg0OEJBMTFFRkJENDUxNjNEQzRGOUFFMDIvRDlDNUI1NUE0 OThFMTFFRjkwOEZEMjIyQzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAgtwwDQYJKoZIhvcNAQELBQADggEBABt5typKu2WrvzPxRXYZJ4fv qIxzo349kXa4RImCxI7mnYmxej01D8SMpqaih6afbxspBgG65zifJNoKzKDLnBia UwGMUgHtTHrsPQsQuz9kOxUqD4/r7cgUwXryVsb6CBkaHST1bGKnOo5NC3OBdJTg eN1USH2XtK2Uvgx5/TUT+Bz9utrnMdcsrN9pEClsaatBOVjrBFzatCa7uu3WRmjM GXKUTOLbkUh75rqUPW3jcBXjF6YapIUSfl9x9v4XyO3pEA1MtEFnQY55UdPMGvG2 JUQLosE0Q0pwCchuzM9Qge9QIEslo0qLgstdMqA6ONr2fZu2rnc2ytJsMB9WIo8= -----END CERTIFICATE-----Generated at Thu Mar 26 17:49:11 2026 by rpki-client