$ rpki-client -vvf rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/0A0B8CF8308911F0A95E944AC4F9AE02.roa File: 0A0B8CF8308911F0A95E944AC4F9AE02.roa (raw, json) Hash identifier: ndkjJdIlIn3uUdqq8eIO0dPyqCOyoeNAkaE6SO8K2EM= Subject key identifier: 7B:4B:C8:AE:AD:17:7B:FA:15:3C:D1:E8:7F:3B:77:E8:06:11:E6:36 Certificate issuer: /CN=A9148C7B/serialNumber=7F79665E63BF3CD56DC24A0A70D57F9A942DD1B8 Certificate serial: 091A Authority key identifier: 7F:79:66:5E:63:BF:3C:D5:6D:C2:4A:0A:70:D5:7F:9A:94:2D:D1:B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/0A0B8CF8308911F0A95E944AC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:26:25 +0000 ROA not before: Thu 16 Oct 2025 15:20:54 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138322 IP address blocks: 23.88.192.0/19 maxlen: 19 23.88.192.0/20 maxlen: 20 23.88.192.0/21 maxlen: 21 23.88.192.0/23 maxlen: 23 23.88.192.0/24 maxlen: 24 23.88.193.0/24 maxlen: 24 23.88.198.0/23 maxlen: 23 23.88.200.0/22 maxlen: 22 23.88.200.0/24 maxlen: 24 23.88.201.0/24 maxlen: 24 23.88.202.0/24 maxlen: 24 23.88.203.0/24 maxlen: 24 23.88.204.0/22 maxlen: 22 23.88.204.0/24 maxlen: 24 23.88.205.0/24 maxlen: 24 23.88.206.0/24 maxlen: 24 23.88.207.0/24 maxlen: 24 152.36.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.crl rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:45:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2330 (0x91a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148C7B, serialNumber=7F79665E63BF3CD56DC24A0A70D57F9A942DD1B8 Validity Not Before: Oct 16 15:20:54 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a45aa1-fbdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e0:8c:19:5e:7e:1f:6c:ae:1d:da:1c:3c:70: ba:cd:3f:ea:52:ec:b5:ec:94:b0:b1:cf:5c:2e:ad: fd:89:94:5a:a2:1e:5d:bd:0c:20:2d:8e:7f:7c:b0: 28:b8:ec:cb:0a:7e:d9:92:81:b5:f3:6f:62:a7:19: b9:1e:98:7d:e1:08:38:50:8f:db:61:a2:a9:44:8c: 95:56:3e:09:26:8b:a9:ef:93:d6:47:0b:e8:88:fd: 68:21:0d:e2:e4:ba:71:17:a4:8f:ad:f4:b5:8d:41: 02:fb:dc:80:18:7c:7c:74:66:8d:17:f3:be:29:13: 39:a6:43:f4:81:1d:f2:3f:b4:12:78:50:81:a6:d8: 2d:df:96:77:5f:85:e6:ac:ea:17:0e:a3:8a:3a:51: a7:07:cb:61:95:23:bf:37:3b:1d:34:9a:d3:84:4e: e9:4e:69:54:3d:27:87:a5:c6:e1:3a:07:bc:0e:a5: 91:68:3f:ac:de:eb:c1:8e:8e:3b:ec:4d:81:59:07: 5f:c5:ce:fc:45:f3:c3:be:58:86:8f:13:62:f7:52: 69:32:c8:4c:42:80:8f:43:da:9e:80:c9:67:32:44: 04:06:04:0a:e8:09:b1:3f:f2:b2:0d:1c:96:7e:38: ae:c3:da:b8:f9:99:6a:c0:3f:80:f2:30:d0:c7:ab: f9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:4B:C8:AE:AD:17:7B:FA:15:3C:D1:E8:7F:3B:77:E8:06:11:E6:36 X509v3 Authority Key Identifier: keyid:7F:79:66:5E:63:BF:3C:D5:6D:C2:4A:0A:70:D5:7F:9A:94:2D:D1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/0A0B8CF8308911F0A95E944AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 23.88.192.0/19 152.36.192.0/19 Signature Algorithm: sha256WithRSAEncryption 72:74:be:c6:94:32:8c:f1:f5:23:80:07:75:51:b5:b0:e4:9f: 9b:9f:cf:2e:a2:7d:05:11:da:29:1a:a4:d5:3c:75:cd:41:57: 66:47:ba:eb:82:ce:05:9c:d3:eb:89:50:a5:74:e5:53:4c:79: 39:5a:f4:8a:9f:ee:3a:29:5c:af:de:f6:c4:02:12:e8:64:e4: b0:5a:39:8c:d6:8a:0e:f2:45:0a:db:63:35:8b:52:36:d4:b2: 77:c3:77:26:79:9f:84:17:70:c9:7b:f6:50:a4:ed:62:02:f1: 9b:cc:b2:52:d2:57:53:be:35:f1:31:24:9e:7e:01:d3:27:cb: 26:20:23:0e:28:f9:50:4c:68:0c:c6:78:56:91:36:ba:80:4c: 21:15:1b:9b:5d:08:ac:08:a8:86:2b:3d:33:bc:87:ea:33:53: 19:81:e9:7c:5b:ac:21:d3:27:86:c7:56:59:c0:b4:2c:b7:f7: 35:a1:41:1b:80:14:0d:f8:f3:0f:7f:38:96:0d:26:1f:a7:29: eb:c8:5e:d2:ab:4f:6f:43:b5:87:05:34:3d:46:aa:cd:7b:7f: 92:c0:6d:69:02:e2:77:e3:b0:2e:4b:96:0c:56:9f:10:2c:ab: 94:ff:f9:f9:e1:17:f5:72:e4:54:31:de:19:84:56:c8:d8:8f: f3:3e:1f:71 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhDN0IxMTAvBgNVBAUTKDdGNzk2NjVFNjNCRjNDRDU2REMyNEEwQTcwRDU3RjlB OTQyREQxQjgwHhcNMjUxMDE2MTUyMDU0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWFhMS1mYmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uCMGV5+H2yuHdocPHC6zT/qUuy17JSwsc9cLq39iZRaoh5dvQwgLY5/fLAo uOzLCn7ZkoG1829ipxm5Hph94Qg4UI/bYaKpRIyVVj4JJoup75PWRwvoiP1oIQ3i 5LpxF6SPrfS1jUEC+9yAGHx8dGaNF/O+KRM5pkP0gR3yP7QSeFCBptgt35Z3X4Xm rOoXDqOKOlGnB8thlSO/NzsdNJrThE7pTmlUPSeHpcbhOge8DqWRaD+s3uvBjo47 7E2BWQdfxc78RfPDvliGjxNi91JpMshMQoCPQ9qegMlnMkQEBgQK6AmxP/KyDRyW fjiuw9q4+ZlqwD+A8jDQx6v5ywIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFHtLyK6t F3v6FTzR6H87d+gGEeY2MB8GA1UdIwQYMBaAFH95Zl5jvzzVbcJKCnDVf5qULdG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEM3Qi81QkZDRkY4Q0Q2 MzAxMUVBOTQwREEwMzlDNEY5QUUwMi9mM2xtWG1PX1BOVnR3a29LY05WX21wUXQw YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2YzbG1YbU9fUE5WdHdrb0tjTlZfbXBRdDBiZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhDN0IvNUJGQ0ZGOENENjMwMTFFQTk0MERBMDM5QzRGOUFFMDIvMEEwQjhDRjgz MDg5MTFGMEE5NUU5NDRBQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQFF1jAAwQFmCTAMA0GCSqGSIb3DQEBCwUAA4IBAQBydL7GlDKM8fUj gAd1UbWw5J+bn88uon0FEdopGqTVPHXNQVdmR7rrgs4FnNPriVCldOVTTHk5WvSK n+46KVyv3vbEAhLoZOSwWjmM1ooO8kUK22M1i1I21LJ3w3cmeZ+EF3DJe/ZQpO1i AvGbzLJS0ldTvjXxMSSefgHTJ8smICMOKPlQTGgMxnhWkTa6gEwhFRubXQisCKiG Kz0zvIfqM1MZgel8W6wh0yeGx1ZZwLQst/c1oUEbgBQN+PMPfziWDSYfpynryF7S q09vQ7WHBTQ9RqrNe3+SwG1pAuJ347AuS5YMVp8QLKuU//n54Rf1cuRUMd4ZhFbI 2I/zPh9x -----END CERTIFICATE-----Generated at Thu Mar 26 16:39:35 2026 by rpki-client