$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/9D563A7A366311EEB376DC3AC4F9AE02.roa File: 9D563A7A366311EEB376DC3AC4F9AE02.roa (raw, json) Hash identifier: +F6+Kdo4UMUeEVd3rJTRenZVLka+775uqmL3KcaRYis= Subject key identifier: B8:D5:75:32:14:51:2F:67:A0:69:98:C5:78:BF:59:3D:F5:00:15:50 Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: 0292 Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/9D563A7A366311EEB376DC3AC4F9AE02.roa Signing time: Mon 02 Mar 2026 11:24:31 +0000 ROA not before: Mon 02 Mar 2026 11:24:31 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132876 IP address blocks: 96.30.112.0/24 maxlen: 24 96.30.122.0/24 maxlen: 24 146.88.59.0/24 maxlen: 24 146.88.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:38:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C, serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Validity Not Before: Mar 2 11:24:31 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a5736f-7d32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ca:df:ef:c4:5f:e1:c8:71:ad:69:b9:a8:82: ae:13:a4:00:d8:56:d7:7f:3e:4c:4b:1f:ce:af:65: 0b:ce:7f:31:1d:e2:1f:29:2e:f2:c0:8d:68:b8:40: a5:fa:ed:b4:2a:45:ad:f2:f9:58:58:51:b2:cf:f3: 3b:9c:69:6b:27:af:5f:10:0f:43:6e:5e:6a:22:03: 85:15:c2:9e:07:4d:bf:98:cd:de:fa:48:ac:4f:38: 7b:2d:f3:df:8a:ca:5f:db:ca:84:1e:46:92:12:2a: 42:fe:2b:6e:fa:ab:fb:8c:1f:65:9f:36:fa:91:fe: f6:84:15:a3:ca:a7:79:bf:d4:ae:4d:81:67:9b:3d: 28:7d:b1:39:c6:31:89:2a:a2:5a:a8:70:7a:b4:50: 09:26:dd:f0:c4:7d:aa:50:12:9f:7e:74:b7:ab:89: ba:9e:6d:0b:56:33:20:d9:cf:ab:42:eb:60:96:47: 11:c4:c0:13:e7:0c:58:3a:e8:e9:37:16:4f:7e:22: c6:2d:ce:9f:25:bd:ed:4d:d7:20:d5:de:3e:2d:d6: 5e:03:52:63:7d:96:2a:f0:61:22:f0:b4:6e:a8:e5: 8e:c3:3b:e4:c3:f0:c9:ed:43:02:2d:69:47:98:f0: 1d:f0:aa:7a:fd:f1:f4:dc:77:b9:9c:78:ad:4c:e6: bd:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:D5:75:32:14:51:2F:67:A0:69:98:C5:78:BF:59:3D:F5:00:15:50 X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/9D563A7A366311EEB376DC3AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 96.30.112.0/24 96.30.122.0/24 146.88.59.0/24 146.88.61.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:f7:9e:e5:1f:d6:3c:17:a0:dd:9a:cf:36:a1:2f:82:63:41: e3:a1:b1:fd:81:d9:29:0a:1a:ef:20:b6:9a:e9:db:bb:f6:e4: 74:ca:10:fb:ae:4c:29:ce:7c:78:e1:c5:4a:1a:36:6d:50:8f: 84:dc:b9:35:97:9c:41:4d:5a:c0:4a:a3:df:93:b2:24:a1:c1: 0b:88:4a:fe:7d:6b:1d:a7:f5:59:29:3e:49:ba:0f:d1:09:64: 5b:5e:ca:1f:6e:a1:7a:f4:8c:ad:e5:30:1b:4b:39:d8:68:f6: 37:c0:d0:e6:42:90:f4:2d:18:54:51:eb:13:7c:5d:5b:49:28: 4a:a7:6b:a0:e4:ff:75:f7:35:b9:37:fe:1b:90:ff:19:75:89: 22:0e:c0:9e:47:99:67:77:94:fd:3e:c5:7b:97:17:b6:88:81: 77:53:ed:8f:6c:c9:20:f1:fe:32:dd:73:24:59:4c:ab:81:15: 25:68:59:90:71:86:46:2d:96:29:55:02:e5:e6:0e:d8:8d:d2: 1b:c5:b1:ea:b6:da:bf:f4:17:97:7b:e4:29:0a:39:c2:fb:03: 8f:4b:e2:58:6b:11:a8:e2:83:15:d9:5b:65:6e:04:6f:59:e7: 8a:25:4a:d6:32:e7:c3:43:82:18:57:4f:c6:c0:a4:02:39:e1: cb:fa:09:3f -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3 NThGNkFFMUQwHhcNMjYwMzAyMTEyNDMxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1NzM2Zi03ZDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Mrf78Rf4chxrWm5qIKuE6QA2FbXfz5MSx/Or2ULzn8xHeIfKS7ywI1ouECl +u20KkWt8vlYWFGyz/M7nGlrJ69fEA9Dbl5qIgOFFcKeB02/mM3e+kisTzh7LfPf ispf28qEHkaSEipC/itu+qv7jB9lnzb6kf72hBWjyqd5v9SuTYFnmz0ofbE5xjGJ KqJaqHB6tFAJJt3wxH2qUBKffnS3q4m6nm0LVjMg2c+rQutglkcRxMAT5wxYOujp NxZPfiLGLc6fJb3tTdcg1d4+LdZeA1JjfZYq8GEi8LRuqOWOwzvkw/DJ7UMCLWlH mPAd8Kp6/fH03He5nHitTOa9ZwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFLjVdTIU US9noGmYxXi/WT31ABVQMB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNzVCOThCRjAzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvOUQ1NjNBN0Ez NjYzMTFFRUIzNzZEQzNBQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAYB5wAwQAYB56AwQAklg7AwQAklg9MA0GCSqGSIb3DQEBCwUAA4IB AQAe957lH9Y8F6Ddms82oS+CY0HjobH9gdkpChrvILaa6du79uR0yhD7rkwpznx4 4cVKGjZtUI+E3Lk1l5xBTVrASqPfk7IkocELiEr+fWsdp/VZKT5Jug/RCWRbXsof bqF69Iyt5TAbSznYaPY3wNDmQpD0LRhUUesTfF1bSShKp2ug5P919zW5N/4bkP8Z dYkiDsCeR5lnd5T9PsV7lxe2iIF3U+2PbMkg8f4y3XMkWUyrgRUlaFmQcYZGLZYp VQLl5g7YjdIbxbHqttq/9BeXe+QpCjnC+wOPS+JYaxGo4oMV2VtlbgRvWeeKJUrW MufDQ4IYV0/GwKQCOeHL+gk/ -----END CERTIFICATE-----Generated at Thu Mar 26 21:48:51 2026 by rpki-client