$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/0C21BBAC373711F08FA9BD3DC4F9AE02.roa File: 0C21BBAC373711F08FA9BD3DC4F9AE02.roa (raw, json) Hash identifier: WbC9Zi3FkuUimM2LDo18sEOCgwjkb/IqEbL/LDR9mkg= Subject key identifier: 77:D7:A8:7A:3D:B3:30:A3:8A:F2:47:F6:91:E5:D8:24:2D:68:28:35 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 02A3 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/0C21BBAC373711F08FA9BD3DC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:21:48 +0000 ROA not before: Wed 03 Dec 2025 01:59:37 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 31898 IP address blocks: 65.254.64.0/19 maxlen: 24 66.116.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:14:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 675 (0x2a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Dec 3 01:59:37 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a483bc-2906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9d:58:c0:9c:09:55:88:06:21:b3:de:22:25: 89:ba:7e:85:cc:f9:a5:10:c2:cd:8a:d0:f3:4f:f5: ce:1d:6f:f6:af:96:87:47:e6:90:35:7d:2c:bb:35: 52:cc:15:87:80:85:0a:fa:e9:6b:d0:d3:cf:bf:f9: a7:cf:01:15:13:13:d5:7f:f5:8e:a5:33:fb:d7:84: d3:8c:23:aa:e4:d4:76:68:fb:6f:e7:66:df:96:2b: 04:7a:07:a3:e3:62:f1:70:0f:c6:72:e0:41:08:00: 0f:0c:93:6f:bf:75:72:5d:b9:8d:45:89:eb:14:b8: f0:69:b6:9f:5b:dc:ea:c2:b4:22:1e:99:20:e2:1d: 29:2a:08:e7:c5:75:18:93:83:4b:88:7d:d2:ba:47: 74:00:7c:d8:49:d2:e6:aa:0c:42:9d:1d:07:87:42: fc:40:bd:fd:7f:83:a4:dc:70:2a:34:77:1c:68:f0: 5d:c8:ba:9b:f7:06:c8:89:75:fb:d8:3d:c7:3b:fb: 8d:a6:fd:2c:78:0c:a5:dd:f2:91:e5:f2:8a:3f:64: d2:30:e8:a5:da:ff:fa:f4:98:ac:fd:9c:36:fc:ab: 5e:f4:2b:08:2c:05:2d:2c:22:0f:91:6f:19:29:67: 0c:f8:88:1c:af:ab:33:14:5e:d9:fd:b9:ea:9a:34: b3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D7:A8:7A:3D:B3:30:A3:8A:F2:47:F6:91:E5:D8:24:2D:68:28:35 X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/0C21BBAC373711F08FA9BD3DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 65.254.64.0/19 66.116.192.0/18 Signature Algorithm: sha256WithRSAEncryption 0d:aa:ab:6a:cb:70:b7:e5:56:89:20:e9:c8:de:f7:17:30:33: 5e:f2:33:69:98:fa:e6:bc:52:a5:eb:bf:d7:63:4f:87:23:ee: 4b:cd:8a:c4:ae:e0:18:83:66:d0:8f:01:65:f0:22:d6:af:77: 33:9e:b0:a8:fb:44:48:b2:83:f9:3b:23:99:ae:a0:f1:b9:de: ad:bd:fd:bc:15:85:31:a0:75:03:f0:90:da:45:ed:a1:be:a7: 6a:7a:35:18:08:98:34:ca:13:9e:a9:40:a8:a2:29:68:eb:98: 8d:fb:79:bd:46:2b:70:54:36:42:70:cd:76:55:ea:46:21:49: ef:ff:f9:d0:ee:64:c3:71:16:33:1c:66:a2:6c:41:05:c1:f9: b3:6d:6a:78:2a:59:fc:0c:2c:67:56:0c:e9:2d:0a:31:c3:27: 9d:78:10:6f:85:3a:6c:3e:15:7e:50:7d:95:e1:65:47:91:1a: c8:60:95:c5:68:86:b7:e7:d6:d8:d0:83:27:cd:a3:0d:50:ff: 1f:1b:bb:d7:67:8f:d4:7b:8c:20:85:e2:8a:42:8a:18:29:7c: e6:92:8c:33:df:83:13:bb:cd:23:db:8b:d5:a8:98:01:6e:a3: 9b:eb:34:de:47:29:de:f5:96:be:7c:4e:a8:52:b0:f7:1d:5f: 8a:64:01:d0 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjUxMjAzMDE1OTM3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODNiYy0yOTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt51YwJwJVYgGIbPeIiWJun6FzPmlEMLNitDzT/XOHW/2r5aHR+aQNX0suzVS zBWHgIUK+ulr0NPPv/mnzwEVExPVf/WOpTP714TTjCOq5NR2aPtv52bflisEegej 42LxcA/GcuBBCAAPDJNvv3VyXbmNRYnrFLjwabafW9zqwrQiHpkg4h0pKgjnxXUY k4NLiH3Sukd0AHzYSdLmqgxCnR0Hh0L8QL39f4Ok3HAqNHccaPBdyLqb9wbIiXX7 2D3HO/uNpv0seAyl3fKR5fKKP2TSMOil2v/69Jis/Zw2/Kte9CsILAUtLCIPkW8Z KWcM+Igcr6szFF7Z/bnqmjSz5QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFHfXqHo9 szCjivJH9pHl2CQtaCg1MB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzc0OEUvNEQ3ODkyNkE0RkE5MTFFREFERTUxNTdDQzRGOUFFMDIvMEMyMUJCQUMz NzM3MTFGMDhGQTlCRDNEQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQFQf5AAwQGQnTAMA0GCSqGSIb3DQEBCwUAA4IBAQANqqtqy3C35VaJ IOnI3vcXMDNe8jNpmPrmvFKl67/XY0+HI+5LzYrEruAYg2bQjwFl8CLWr3cznrCo +0RIsoP5OyOZrqDxud6tvf28FYUxoHUD8JDaRe2hvqdqejUYCJg0yhOeqUCooilo 65iN+3m9RitwVDZCcM12VepGIUnv//nQ7mTDcRYzHGaibEEFwfmzbWp4Kln8DCxn VgzpLQoxwyedeBBvhTpsPhV+UH2V4WVHkRrIYJXFaIa359bY0IMnzaMNUP8fG7vX Z4/Ue4wgheKKQooYKXzmkowz34MTu80j24vVqJgBbqOb6zTeRyne9Za+fE6oUrD3 HV+KZAHQ -----END CERTIFICATE-----Generated at Thu Mar 26 08:35:08 2026 by rpki-client