$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa File: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (raw, json) Hash identifier: Dc/AP1q1880Z3HHIDD3oFPRelHNNWO5cCeIAhTTwAeE= Subject key identifier: 05:DF:D3:DA:C5:C7:7B:BE:DB:F3:4A:72:8E:91:A1:E2:48:DA:1C:99 Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 0701 Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa Signing time: Thu 30 Apr 2026 19:24:16 +0000 ROA not before: Thu 30 Apr 2026 19:24:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 133752 IP address blocks: 192.131.142.0/24 maxlen: 24 205.189.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1793 (0x701) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Apr 30 19:24:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f3ac60-b88b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3f:7a:bd:5f:57:2c:6f:9c:6e:84:fd:36:4c: 10:fb:ee:d9:e4:6a:65:d5:ba:83:7d:9b:ac:5a:d8: 2a:81:84:4c:cb:9c:ee:7c:1e:e1:1e:49:20:87:dc: d1:a6:39:a2:6c:64:d3:6f:a0:c5:0c:75:fd:57:89: 24:b3:2e:01:32:09:00:2c:f1:3d:23:08:6c:5a:cc: 5d:11:50:c1:15:94:d2:c5:b3:ea:16:0f:05:f8:f9: 07:60:ce:a8:13:71:a3:16:99:cf:82:15:90:5c:f6: 4a:73:d8:10:5b:96:e8:5d:7f:ab:33:1a:a8:9b:c1: 43:c0:02:f2:1c:3c:d5:bc:63:8f:ad:d7:22:4d:86: 4a:23:bc:33:af:23:df:3d:31:8f:65:3e:59:02:c0: a8:f4:0c:10:03:7d:c9:28:8a:bd:74:9d:93:ec:76: bb:fa:4c:21:1c:93:4e:5c:11:97:1f:e8:f1:42:44: 92:b0:46:d1:02:00:e6:2b:b2:56:56:4a:46:54:e6: c9:70:d6:b0:5c:23:af:36:5f:dc:81:a0:19:70:20: 02:f3:03:f4:77:b9:c0:5f:82:25:d4:a3:25:43:e2: 10:82:9a:d3:1d:2c:63:c7:38:e1:0e:5f:bc:e2:51: 56:4e:b0:ae:b7:84:24:93:10:2a:a0:89:d6:ea:55: 09:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:DF:D3:DA:C5:C7:7B:BE:DB:F3:4A:72:8E:91:A1:E2:48:DA:1C:99 X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 192.131.142.0/24 205.189.160.0/24 Signature Algorithm: sha256WithRSAEncryption 32:1e:fb:ed:d4:ae:a8:fd:d0:78:cc:91:b2:dc:9a:f7:4e:3d: 9a:06:9f:3f:13:f8:27:e3:d3:7e:fe:39:50:80:b5:12:d4:97: 7f:44:55:d7:cf:e4:ef:43:9d:1c:56:30:36:6d:1f:f6:3f:30: d4:0d:66:22:ad:22:2a:c1:fa:73:08:0e:2b:e7:d6:f2:ca:df: 95:cc:cf:c4:df:d4:e4:f5:92:0b:38:ed:6d:9e:6c:1f:75:d9: 3a:03:05:36:19:e8:16:c8:d3:72:f8:1c:96:54:09:54:3f:42: 94:de:b0:22:84:02:0a:5f:69:fe:18:01:db:57:95:e5:7d:a1: 33:36:e7:ea:08:14:ba:2a:fc:00:79:ef:14:0a:da:da:d1:d0: 00:14:5e:84:5b:29:40:3d:84:cc:3b:47:2c:ed:5c:8a:c6:f3: de:00:40:93:a7:bb:11:9b:95:78:00:ae:d3:1d:39:d3:64:40: d7:b5:52:65:32:b0:1a:4c:d8:ee:2f:18:20:57:b3:ce:31:b5: 18:91:9b:65:a8:b2:80:4c:80:9c:8e:68:67:51:1c:8e:5e:1a: a7:ec:37:df:3c:bb:70:12:85:3d:12:3b:3c:cf:87:6e:16:27: 13:89:a7:e2:6d:be:2b:c2:b0:d5:be:41:b7:65:09:00:84:9d: 4e:a5:82:e4 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjYwNDMwMTkyNDE2WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYzYWM2MC1iODhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuj96vV9XLG+cboT9NkwQ++7Z5Gpl1bqDfZusWtgqgYRMy5zufB7hHkkgh9zR pjmibGTTb6DFDHX9V4kksy4BMgkALPE9IwhsWsxdEVDBFZTSxbPqFg8F+PkHYM6o E3GjFpnPghWQXPZKc9gQW5boXX+rMxqom8FDwALyHDzVvGOPrdciTYZKI7wzryPf PTGPZT5ZAsCo9AwQA33JKIq9dJ2T7Ha7+kwhHJNOXBGXH+jxQkSSsEbRAgDmK7JW VkpGVObJcNawXCOvNl/cgaAZcCAC8wP0d7nAX4Il1KMlQ+IQgprTHSxjxzjhDl+8 4lFWTrCut4QkkxAqoInW6lUJnwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFAXf09rF x3u+2/NKco6RoeJI2hyZMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvNkVGQzBCRUU5ODRDMTFFQjhBNDFGQTIwQzRGOUFFMDIvRjlDMjNFMkEz QUNCMTFFQzlGRUJCMzY3QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAwIOOAwQAzb2gMA0GCSqGSIb3DQEBCwUAA4IBAQAyHvvt1K6o/dB4 zJGy3Jr3Tj2aBp8/E/gn49N+/jlQgLUS1Jd/RFXXz+TvQ50cVjA2bR/2PzDUDWYi rSIqwfpzCA4r59byyt+VzM/E39Tk9ZILOO1tnmwfddk6AwU2GegWyNNy+ByWVAlU P0KU3rAihAIKX2n+GAHbV5XlfaEzNufqCBS6KvwAee8UCtra0dAAFF6EWylAPYTM O0cs7VyKxvPeAECTp7sRm5V4AK7THTnTZEDXtVJlMrAaTNjuLxggV7POMbUYkZtl qLKATICcjmhnURyOXhqn7DffPLtwEoU9Ejs8z4duFicTiafibb4rwrDVvkG3ZQkA hJ1OpYLk -----END CERTIFICATE-----Generated at Wed May 13 05:00:50 2026 by rpki-client