$ rpki-client -vvf rpki.apnic.net/member_repository/A915CB36/C6D4D0BC733511F09CC59451C4F9AE02/A34995A0733611F08B36357EC4F9AE02.roa File: A34995A0733611F08B36357EC4F9AE02.roa (raw, json) Hash identifier: 4f/YzChkQMi5LOBDvZ77VJhunqBB4DlvAmKD4W0rlyY= Subject key identifier: 17:24:C4:14:08:39:EA:DF:60:5D:8E:EC:4F:A3:B5:8D:EC:85:07:10 Certificate issuer: /CN=A915CB36/serialNumber=34354CFCDA22985161B5EB628B5493FDD2E96C3B Certificate serial: 72 Authority key identifier: 34:35:4C:FC:DA:22:98:51:61:B5:EB:62:8B:54:93:FD:D2:E9:6C:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDVM_NoimFFhtetii1ST_dLpbDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CB36/C6D4D0BC733511F09CC59451C4F9AE02/A34995A0733611F08B36357EC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:07:48 +0000 ROA not before: Tue 02 Sep 2025 05:03:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 23693 IP address blocks: 39.192.0.0/10 maxlen: 10 39.194.1.0/24 maxlen: 24 39.194.2.0/24 maxlen: 24 39.194.3.0/24 maxlen: 24 39.194.4.0/24 maxlen: 24 39.194.5.0/24 maxlen: 24 39.194.6.0/24 maxlen: 24 39.194.7.0/24 maxlen: 24 39.194.8.0/24 maxlen: 24 39.194.9.0/24 maxlen: 24 39.194.10.0/24 maxlen: 24 39.194.11.0/24 maxlen: 24 39.194.12.0/24 maxlen: 24 39.194.13.0/24 maxlen: 24 39.194.14.0/24 maxlen: 24 39.194.15.0/24 maxlen: 24 39.194.16.0/24 maxlen: 24 43.255.196.0/22 maxlen: 22 103.239.188.0/22 maxlen: 22 2400:82e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CB36/C6D4D0BC733511F09CC59451C4F9AE02/NDVM_NoimFFhtetii1ST_dLpbDs.crl rsync://rpki.apnic.net/member_repository/A915CB36/C6D4D0BC733511F09CC59451C4F9AE02/NDVM_NoimFFhtetii1ST_dLpbDs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDVM_NoimFFhtetii1ST_dLpbDs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CB36, serialNumber=34354CFCDA22985161B5EB628B5493FDD2E96C3B Validity Not Before: Sep 2 05:03:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a58ba4-6ef0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:23:21:68:6a:5a:70:41:52:33:d2:93:2b:6e: 50:00:f5:b3:2f:4b:d5:89:9b:67:f5:33:2b:c4:32: 65:27:88:16:e7:6a:04:71:02:bd:2c:04:ba:86:6f: 0f:e9:93:2f:e2:f6:b7:5b:a5:ae:4f:b0:d4:c6:19: 9c:07:28:63:13:35:0b:a1:66:e2:85:14:52:c8:0d: 0f:10:9a:80:a3:cc:fc:33:46:01:a0:6f:c9:98:be: 19:c7:b2:c1:a8:0b:82:9b:d9:53:e4:75:bb:03:af: 0c:ad:34:86:26:90:4d:73:22:0c:03:83:7d:1f:ef: 16:78:32:94:7f:73:b7:84:49:4b:ed:cb:aa:c4:f4: 41:e8:8d:3a:3b:74:ca:e9:8f:a7:f9:ca:b5:9b:04: 5d:2b:99:39:94:3f:53:9e:c3:cc:37:7a:a7:69:0e: 6d:e3:28:42:2c:2f:8d:cb:50:0b:c1:33:65:59:07: ab:ab:6a:84:5c:84:a0:d6:7a:7e:41:44:49:3e:30: 82:91:6e:d5:76:14:e6:9f:8a:f7:06:d6:74:11:eb: f5:2e:ae:80:75:7d:2b:2a:d7:da:5a:1a:2d:89:45: 71:67:92:c9:94:77:f0:1a:5f:bf:c5:eb:9a:8f:8a: 0a:8e:fd:71:ff:0d:ba:6d:be:d5:fd:eb:bf:a7:87: 7e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:24:C4:14:08:39:EA:DF:60:5D:8E:EC:4F:A3:B5:8D:EC:85:07:10 X509v3 Authority Key Identifier: keyid:34:35:4C:FC:DA:22:98:51:61:B5:EB:62:8B:54:93:FD:D2:E9:6C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CB36/C6D4D0BC733511F09CC59451C4F9AE02/NDVM_NoimFFhtetii1ST_dLpbDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDVM_NoimFFhtetii1ST_dLpbDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CB36/C6D4D0BC733511F09CC59451C4F9AE02/A34995A0733611F08B36357EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 39.192.0.0/10 43.255.196.0/22 103.239.188.0/22 IPv6: 2400:82e0::/32 Signature Algorithm: sha256WithRSAEncryption 3b:09:fd:32:43:48:0f:63:20:00:d9:d2:a6:55:17:50:96:5b: 48:e1:28:81:75:47:66:6a:b7:a7:f7:66:22:d7:ac:1e:c7:de: 3e:22:ab:48:43:51:1b:a6:30:a0:01:86:31:29:e8:19:af:97: 3c:30:ec:03:1d:ca:8f:7a:53:8c:74:26:43:61:7d:09:11:2a: 76:7e:ad:0d:83:6d:b2:99:4e:73:94:78:f6:c0:82:f4:e9:52: 36:c0:4f:ac:bc:ef:52:87:43:97:a1:0d:03:b0:e1:26:19:0a: 5f:46:da:c9:41:12:a0:51:51:32:a9:05:7e:c0:be:f2:28:50: 03:12:50:c2:fc:40:6e:97:94:06:ed:a0:29:c4:36:97:5c:61: f0:bc:93:c5:55:05:90:6f:6e:21:5e:94:49:27:6a:57:f0:d9: 5a:c5:8b:a8:b4:7a:de:7f:f3:2d:12:3c:7f:de:8b:04:70:a3: 36:d6:59:cc:c9:b3:73:49:c7:35:29:77:b0:9a:4b:06:f0:32: 18:87:c9:2c:ba:1a:4b:3a:63:59:b8:45:b4:13:9d:f8:c2:ae: 85:03:ed:14:3f:10:51:8b:dc:a6:5f:e8:05:1e:be:d4:3b:8f: 94:1b:3e:e9:47:cb:3c:6e:1d:ae:74:9f:9a:5d:cb:a8:ae:10: 23:36:dc:ff -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Q0IzNjExMC8GA1UEBRMoMzQzNTRDRkNEQTIyOTg1MTYxQjVFQjYyOEI1NDkzRkRE MkU5NkMzQjAeFw0yNTA5MDIwNTAzMjJaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4YmE0LTZlZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiIyFoalpwQVIz0pMrblAA9bMvS9WJm2f1MyvEMmUniBbnagRxAr0sBLqGbw/p ky/i9rdbpa5PsNTGGZwHKGMTNQuhZuKFFFLIDQ8QmoCjzPwzRgGgb8mYvhnHssGo C4Kb2VPkdbsDrwytNIYmkE1zIgwDg30f7xZ4MpR/c7eESUvty6rE9EHojTo7dMrp j6f5yrWbBF0rmTmUP1Oew8w3eqdpDm3jKEIsL43LUAvBM2VZB6uraoRchKDWen5B REk+MIKRbtV2FOafivcG1nQR6/UuroB1fSsq19paGi2JRXFnksmUd/AaX7/F65qP igqO/XH/DbptvtX967+nh34JAgMBAAGjggJ6MIICdjAdBgNVHQ4EFgQUFyTEFAg5 6t9gXY7sT6O1jeyFBxAwHwYDVR0jBBgwFoAUNDVM/NoimFFhtetii1ST/dLpbDsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVDQjM2L0M2RDREMEJDNzMz NTExRjA5Q0M1OTQ1MUM0RjlBRTAyL05EVk1fTm9pbUZGaHRldGlpMVNUX2RMcGJE cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTkRWTV9Ob2ltRkZodGV0aWkxU1RfZExwYkRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0IzNi9DNkQ0RDBCQzczMzUxMUYwOUNDNTk0NTFDNEY5QUUwMi9BMzQ5OTVBMDcz MzYxMUYwOEIzNjM1N0VDNEY5QUUwMi5yb2EwOQYIKwYBBQUHAQcBAf8EKjAoMBcE AgABMBEDAwYnwAMEAiv/xAMEAmfvvDANBAIAAjAHAwUAJACC4DANBgkqhkiG9w0B AQsFAAOCAQEAOwn9MkNID2MgANnSplUXUJZbSOEogXVHZmq3p/dmItesHsfePiKr SENRG6YwoAGGMSnoGa+XPDDsAx3Kj3pTjHQmQ2F9CREqdn6tDYNtsplOc5R49sCC 9OlSNsBPrLzvUodDl6ENA7DhJhkKX0bayUESoFFRMqkFfsC+8ihQAxJQwvxAbpeU Bu2gKcQ2l1xh8LyTxVUFkG9uIV6USSdqV/DZWsWLqLR63n/zLRI8f96LBHCjNtZZ zMmzc0nHNSl3sJpLBvAyGIfJLLoaSzpjWbhFtBOd+MKuhQPtFD8QUYvcpl/oBR6+ 1DuPlBs+6UfLPG4drnSfml3LqK4QIzbc/w== -----END CERTIFICATE-----Generated at Thu Mar 26 10:16:33 2026 by rpki-client