$ rpki-client -vvf rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/B95187FC2FB811EBBF9A864BC4F9AE02.roa File: B95187FC2FB811EBBF9A864BC4F9AE02.roa (raw, json) Hash identifier: dNqNutT/nTGY7soYWesTr9kDIRasDZG/jPBBAFjkNwM= Subject key identifier: 24:C2:85:BD:B2:7E:F4:CB:8F:66:8A:C8:17:3A:92:B8:CC:5E:38:C0 Certificate issuer: /CN=A9186E8A/serialNumber=BDD5E9A76F1AC4C8E51797ECE99E3DCEECEE7493 Certificate serial: 087A Authority key identifier: BD:D5:E9:A7:6F:1A:C4:C8:E5:17:97:EC:E9:9E:3D:CE:EC:EE:74:93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vdXpp28axMjlF5fs6Z49zuzudJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/B95187FC2FB811EBBF9A864BC4F9AE02.roa Signing time: Fri 06 Mar 2026 21:28:29 +0000 ROA not before: Fri 06 Mar 2026 21:28:29 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 21859 IP address blocks: 152.32.230.0/24 maxlen: 24 152.32.232.0/24 maxlen: 24 165.154.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/vdXpp28axMjlF5fs6Z49zuzudJM.crl rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/vdXpp28axMjlF5fs6Z49zuzudJM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vdXpp28axMjlF5fs6Z49zuzudJM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:03:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2170 (0x87a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186E8A, serialNumber=BDD5E9A76F1AC4C8E51797ECE99E3DCEECEE7493 Validity Not Before: Mar 6 21:28:29 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69ab46fc-fc84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9f:26:42:c0:2e:31:d8:27:08:66:81:14:07: 4c:63:c0:bb:fa:8a:9f:6e:a7:1e:b8:b2:88:0c:67: 75:c7:84:4d:db:34:73:05:5c:81:c7:47:50:fb:ee: d0:24:d3:5e:52:a5:a9:e6:18:9f:31:d8:a2:85:ee: 7f:c6:83:28:76:bf:13:66:bc:50:3f:af:7b:19:90: 94:25:63:ea:df:6e:26:0d:77:e7:55:f0:00:65:5b: 72:58:c1:4e:7d:02:32:9d:a6:88:c8:ad:d0:80:57: 9e:76:38:f9:29:c1:e6:7c:1d:48:5d:d6:5e:95:71: ca:c2:6c:43:84:8d:80:8b:ae:46:4a:a2:5f:99:aa: 46:0f:f5:97:15:30:64:ec:86:31:3f:09:6b:f5:ac: 85:18:3e:5b:85:a8:d8:19:55:8b:e6:c6:35:93:9e: 62:59:3b:ec:c0:9f:52:b4:70:09:a0:77:98:60:0f: 7d:5e:06:07:39:9b:92:11:a1:77:2c:14:5c:f6:b3: 68:24:b6:5d:88:56:a8:a0:f3:dc:08:f2:2f:79:da: f7:5e:bf:78:2b:6b:d5:a8:79:18:15:ae:a0:77:2a: 1e:95:cc:f4:4b:b1:bf:e3:3a:96:2c:d8:2d:0c:31: 77:ab:b2:47:75:d3:5c:48:94:eb:c4:46:39:37:2e: 2f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:C2:85:BD:B2:7E:F4:CB:8F:66:8A:C8:17:3A:92:B8:CC:5E:38:C0 X509v3 Authority Key Identifier: keyid:BD:D5:E9:A7:6F:1A:C4:C8:E5:17:97:EC:E9:9E:3D:CE:EC:EE:74:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/vdXpp28axMjlF5fs6Z49zuzudJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vdXpp28axMjlF5fs6Z49zuzudJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/B95187FC2FB811EBBF9A864BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 152.32.230.0/24 152.32.232.0/24 165.154.125.0/24 Signature Algorithm: sha256WithRSAEncryption cd:34:0b:79:29:97:3d:c1:fa:c9:6f:88:63:9a:63:7a:b2:fc: 02:bb:35:34:fa:72:22:9c:db:dc:56:bb:82:0b:69:da:9b:dc: be:3c:3f:e2:c3:b9:7a:2f:c7:73:29:bb:80:83:f4:48:72:52: 3b:c8:5c:d4:05:69:f3:09:89:72:27:ef:5c:d3:0e:d2:e7:65: 98:14:00:c9:97:e5:2a:07:ae:75:12:6c:c4:4f:79:45:7a:c3: 1c:14:12:22:69:cf:15:3a:af:4b:1c:e7:6e:9a:b4:85:cb:14: 4c:a8:55:06:21:0a:b5:3e:a1:fa:8f:03:2f:74:72:76:75:9e: ef:3b:5c:8e:d0:ee:6d:e8:bd:b6:e2:00:e3:58:7f:b0:3d:07: bd:15:86:03:10:90:31:af:d3:9b:ef:79:98:51:dc:56:df:15: b8:1b:74:4a:18:a9:d9:03:04:03:ec:07:6b:87:f9:d6:84:6b: 54:65:ed:e0:09:bc:da:cb:63:10:96:0c:2b:d3:d3:49:0a:b8: 16:09:15:65:1d:ba:c9:35:2a:bd:9a:cd:ff:b8:de:e1:11:63: d9:a0:c3:5c:01:e7:24:f5:7a:db:ae:59:fb:a0:cb:6f:16:9b: 08:8b:dc:ac:49:b2:cc:77:31:17:f2:29:b7:aa:2f:07:1e:85: 36:b1:39:55 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZFOEExMTAvBgNVBAUTKEJERDVFOUE3NkYxQUM0QzhFNTE3OTdFQ0U5OUUzRENF RUNFRTc0OTMwHhcNMjYwMzA2MjEyODI5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiNDZmYy1mYzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZ8mQsAuMdgnCGaBFAdMY8C7+oqfbqceuLKIDGd1x4RN2zRzBVyBx0dQ++7Q JNNeUqWp5hifMdiihe5/xoModr8TZrxQP697GZCUJWPq324mDXfnVfAAZVtyWMFO fQIynaaIyK3QgFeedjj5KcHmfB1IXdZelXHKwmxDhI2Ai65GSqJfmapGD/WXFTBk 7IYxPwlr9ayFGD5bhajYGVWL5sY1k55iWTvswJ9StHAJoHeYYA99XgYHOZuSEaF3 LBRc9rNoJLZdiFaooPPcCPIvedr3Xr94K2vVqHkYFa6gdyoelcz0S7G/4zqWLNgt DDF3q7JHddNcSJTrxEY5Ny4vNwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFCTChb2y fvTLj2aKyBc6krjMXjjAMB8GA1UdIwQYMBaAFL3V6advGsTI5ReX7OmePc7s7nST MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkU4QS8zMTQ4REM5RTJE RkYxMUVCODY4QTkxMzVDNEY5QUUwMi92ZFhwcDI4YXhNamxGNWZzNlo0OXp1enVk Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZkWHBwMjhheE1qbEY1ZnM2WjQ5enV6dWRKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZFOEEvMzE0OERDOUUyREZGMTFFQjg2OEE5MTM1QzRGOUFFMDIvQjk1MTg3RkMy RkI4MTFFQkJGOUE4NjRCQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAmCDmAwQAmCDoAwQApZp9MA0GCSqGSIb3DQEBCwUAA4IBAQDNNAt5 KZc9wfrJb4hjmmN6svwCuzU0+nIinNvcVruCC2nam9y+PD/iw7l6L8dzKbuAg/RI clI7yFzUBWnzCYlyJ+9c0w7S52WYFADJl+UqB651EmzET3lFesMcFBIiac8VOq9L HOdumrSFyxRMqFUGIQq1PqH6jwMvdHJ2dZ7vO1yO0O5t6L224gDjWH+wPQe9FYYD EJAxr9Ob73mYUdxW3xW4G3RKGKnZAwQD7Adrh/nWhGtUZe3gCbzay2MQlgwr09NJ CrgWCRVlHbrJNSq9ms3/uN7hEWPZoMNcAeck9Xrbrln7oMtvFpsIi9ysSbLMdzEX 8im3qi8HHoU2sTlV -----END CERTIFICATE-----Generated at Thu Mar 26 09:20:38 2026 by rpki-client