$ rpki-client -vvf rpki.apnic.net/member_repository/A9136DD6/D362A1CA3B3711E9A038AB2AC4F9AE02/658A332E5C0311E999AF9478C4F9AE02.roa File: 658A332E5C0311E999AF9478C4F9AE02.roa (raw, json) Hash identifier: BZB39lC5xOkcP/b7gbdWDXa93HHDVKpHwXaLJhvFunQ= Subject key identifier: ED:DC:80:30:6B:B2:8D:02:00:09:8E:8D:38:F3:35:45:6D:92:7C:B8 Certificate issuer: /CN=A9136DD6/serialNumber=7C7CA081950DAEFC7C54B8C44698B48E8D7C69B8 Certificate serial: 112D Authority key identifier: 7C:7C:A0:81:95:0D:AE:FC:7C:54:B8:C4:46:98:B4:8E:8D:7C:69:B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fHyggZUNrvx8VLjERpi0jo18abg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136DD6/D362A1CA3B3711E9A038AB2AC4F9AE02/658A332E5C0311E999AF9478C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:57:12 +0000 ROA not before: Wed 26 Nov 2025 17:06:30 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 4773 IP address blocks: 129.126.208.0/24 maxlen: 24 129.126.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136DD6/D362A1CA3B3711E9A038AB2AC4F9AE02/fHyggZUNrvx8VLjERpi0jo18abg.crl rsync://rpki.apnic.net/member_repository/A9136DD6/D362A1CA3B3711E9A038AB2AC4F9AE02/fHyggZUNrvx8VLjERpi0jo18abg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fHyggZUNrvx8VLjERpi0jo18abg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4397 (0x112d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136DD6, serialNumber=7C7CA081950DAEFC7C54B8C44698B48E8D7C69B8 Validity Not Before: Nov 26 17:06:30 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a461d8-aa84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ed:da:4b:2a:d8:dd:5a:c5:bc:1b:1a:fd:30: 95:e7:2e:b4:df:d4:0a:cc:a6:60:74:85:87:9c:85: c4:01:54:93:f4:5f:d7:9e:52:8c:ff:33:35:fc:36: 96:30:4f:51:2d:cb:08:c9:78:c0:55:57:c5:3a:76: eb:7a:16:42:1c:90:18:07:e5:aa:1b:dd:82:fe:a4: 63:bc:e8:8a:4c:ef:0b:7e:63:f9:2d:6d:c9:6f:97: 7a:85:7f:1b:d5:59:3c:73:1f:59:9d:2d:e1:74:8e: c8:0b:f1:fb:e5:c7:91:b0:dd:ae:25:28:2a:8d:2f: 2e:f5:93:b6:16:34:9b:72:c9:bc:33:96:6b:c0:00: 8e:61:57:5f:d7:ab:f3:a2:6f:ad:0b:96:41:b7:1e: 31:62:1d:c9:9b:1b:03:72:44:21:09:5a:bb:76:20: e7:fb:c2:27:9c:81:81:c3:94:7c:b7:0a:a2:0e:4c: 44:64:1c:c0:93:58:d7:64:8f:91:49:11:43:a1:8e: 4e:be:33:f6:ab:0a:e9:7b:9f:97:7c:a9:53:dd:d6: 35:b5:ff:5c:e2:10:3f:c5:e2:b0:51:a4:77:a3:c7: 62:65:1b:4c:c3:f3:08:90:b3:da:56:7f:ad:7c:d1: 3a:39:05:10:28:38:3a:ef:be:1d:33:f0:1a:1d:b8: 85:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:DC:80:30:6B:B2:8D:02:00:09:8E:8D:38:F3:35:45:6D:92:7C:B8 X509v3 Authority Key Identifier: keyid:7C:7C:A0:81:95:0D:AE:FC:7C:54:B8:C4:46:98:B4:8E:8D:7C:69:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136DD6/D362A1CA3B3711E9A038AB2AC4F9AE02/fHyggZUNrvx8VLjERpi0jo18abg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fHyggZUNrvx8VLjERpi0jo18abg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136DD6/D362A1CA3B3711E9A038AB2AC4F9AE02/658A332E5C0311E999AF9478C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 129.126.208.0/23 Signature Algorithm: sha256WithRSAEncryption 14:5d:70:83:24:46:dc:1c:a4:d4:b5:58:b7:11:8b:92:01:70: 7b:0c:2d:e1:b9:ca:6e:02:8d:34:ac:59:b9:47:be:07:ed:0a: 2a:2d:d8:ea:8c:5d:76:4a:fd:ab:87:3b:84:72:0a:20:84:72: bb:e9:58:e7:c9:ab:d2:24:f7:ee:f4:45:5f:7c:86:f1:46:2e: 1b:d1:9a:58:cc:cc:ba:b7:b0:b9:cf:e4:05:18:b4:63:0d:78: fb:6e:93:a1:98:db:94:3c:68:02:ca:61:7a:0d:c4:a3:bd:4a: 77:7d:42:62:f1:09:32:a6:e3:45:06:be:da:c7:39:de:1f:50: 38:39:7b:19:b3:15:c6:31:b1:47:2a:7f:8d:5c:a2:04:93:37: 3d:6a:5b:a4:6b:7a:c7:44:1d:03:cb:32:e0:a0:af:c3:54:7a: b0:77:65:af:bf:53:b2:4d:02:2f:f1:05:75:87:eb:6d:47:84: ee:1c:12:aa:87:e0:33:98:4c:b3:53:d0:1c:8d:7e:d2:8a:e7: b9:5e:e0:48:eb:97:1b:69:5e:35:0c:9d:0b:be:97:00:ec:e2: 3e:8d:0a:b3:c0:bf:05:50:06:b3:87:23:a0:3d:67:32:52:42: 84:a6:d2:fa:05:9b:85:55:18:fa:66:d2:38:f9:06:22:b9:4d: 82:92:1f:1a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICES0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZERDYxMTAvBgNVBAUTKDdDN0NBMDgxOTUwREFFRkM3QzU0QjhDNDQ2OThCNDhF OEQ3QzY5QjgwHhcNMjUxMTI2MTcwNjMwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjFkOC1hYTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1O3aSyrY3VrFvBsa/TCV5y6039QKzKZgdIWHnIXEAVST9F/XnlKM/zM1/DaW ME9RLcsIyXjAVVfFOnbrehZCHJAYB+WqG92C/qRjvOiKTO8LfmP5LW3Jb5d6hX8b 1Vk8cx9ZnS3hdI7IC/H75ceRsN2uJSgqjS8u9ZO2FjSbcsm8M5ZrwACOYVdf16vz om+tC5ZBtx4xYh3JmxsDckQhCVq7diDn+8InnIGBw5R8twqiDkxEZBzAk1jXZI+R SRFDoY5OvjP2qwrpe5+XfKlT3dY1tf9c4hA/xeKwUaR3o8diZRtMw/MIkLPaVn+t fNE6OQUQKDg6774dM/AaHbiFzwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFO3cgDBr so0CAAmOjTjzNUVtkny4MB8GA1UdIwQYMBaAFHx8oIGVDa78fFS4xEaYtI6NfGm4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkRENi9EMzYyQTFDQTNC MzcxMUU5QTAzOEFCMkFDNEY5QUUwMi9mSHlnZ1pVTnJ2eDhWTGpFUnBpMGpvMThh YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZIeWdnWlVOcnZ4OFZMakVScGkwam8xOGFiZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZERDYvRDM2MkExQ0EzQjM3MTFFOUEwMzhBQjJBQzRGOUFFMDIvNjU4QTMzMkU1 QzAzMTFFOTk5QUY5NDc4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBgX7QMA0GCSqGSIb3DQEBCwUAA4IBAQAUXXCDJEbcHKTUtVi3EYuS AXB7DC3hucpuAo00rFm5R74H7QoqLdjqjF12Sv2rhzuEcgoghHK76VjnyavSJPfu 9EVffIbxRi4b0ZpYzMy6t7C5z+QFGLRjDXj7bpOhmNuUPGgCymF6DcSjvUp3fUJi 8QkypuNFBr7axzneH1A4OXsZsxXGMbFHKn+NXKIEkzc9aluka3rHRB0DyzLgoK/D VHqwd2Wvv1OyTQIv8QV1h+ttR4TuHBKqh+AzmEyzU9AcjX7Siue5XuBI65cbaV41 DJ0LvpcA7OI+jQqzwL8FUAazhyOgPWcyUkKEptL6BZuFVRj6ZtI4+QYiuU2Ckh8a -----END CERTIFICATE-----Generated at Thu Mar 26 18:55:24 2026 by rpki-client