$ rpki-client -vvf rpki.apnic.net/member_repository/A919DC74/DA2240E6462911EDAE78B235C4F9AE02/99E52804462E11ED90035452C4F9AE02.roa File: 99E52804462E11ED90035452C4F9AE02.roa (raw, json) Hash identifier: qcEi6yFXe14vxwDIXMsWeAcEI41V5KEYbNBlQcRMfIk= Subject key identifier: 84:84:E0:BB:2B:9F:93:59:D5:89:6A:D8:16:CA:6D:0D:40:EB:E5:48 Certificate issuer: /CN=A919DC74/serialNumber=8F0BEA3D96FC8E2ED1E8C6837047694569EEE3CE Certificate serial: 02A0 Authority key identifier: 8F:0B:EA:3D:96:FC:8E:2E:D1:E8:C6:83:70:47:69:45:69:EE:E3:CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jwvqPZb8ji7R6MaDcEdpRWnu484.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DC74/DA2240E6462911EDAE78B235C4F9AE02/99E52804462E11ED90035452C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:29:27 +0000 ROA not before: Thu 27 Nov 2025 00:17:49 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133748 IP address blocks: 206.131.192.0/24 maxlen: 24 206.131.193.0/24 maxlen: 24 206.131.194.0/24 maxlen: 24 206.131.195.0/24 maxlen: 24 206.131.196.0/24 maxlen: 24 206.131.197.0/24 maxlen: 24 206.131.198.0/24 maxlen: 24 206.131.199.0/24 maxlen: 24 206.131.200.0/24 maxlen: 24 206.131.201.0/24 maxlen: 24 206.131.202.0/24 maxlen: 24 206.131.203.0/24 maxlen: 24 206.131.204.0/24 maxlen: 24 206.131.205.0/24 maxlen: 24 206.131.206.0/24 maxlen: 24 206.131.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DC74/DA2240E6462911EDAE78B235C4F9AE02/jwvqPZb8ji7R6MaDcEdpRWnu484.crl rsync://rpki.apnic.net/member_repository/A919DC74/DA2240E6462911EDAE78B235C4F9AE02/jwvqPZb8ji7R6MaDcEdpRWnu484.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jwvqPZb8ji7R6MaDcEdpRWnu484.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 672 (0x2a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DC74, serialNumber=8F0BEA3D96FC8E2ED1E8C6837047694569EEE3CE Validity Not Before: Nov 27 00:17:49 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a44d47-5a39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:df:fa:57:1c:2d:17:84:71:c5:c1:03:9c:4b: ee:27:72:98:f7:1a:a8:e5:9c:cd:97:aa:7d:e8:03: 42:64:3c:0c:89:c6:8b:68:a8:2a:5f:3e:19:51:2b: 4a:ed:64:4a:15:5a:27:4b:2b:74:d4:81:96:d2:b9: ec:7a:57:1c:00:c3:77:ae:fe:db:5b:f3:ac:cc:63: 41:1c:df:ff:f7:65:ac:bb:9f:3e:27:f9:0e:ca:fe: c6:f9:6b:d8:6d:97:c8:ad:69:b8:0c:99:63:0e:7d: b4:cd:a5:3e:84:37:ab:7c:29:e5:fe:9d:08:24:4b: 60:80:b0:c2:0d:df:4a:c4:54:e8:77:06:d3:ab:63: e4:12:fd:4d:76:58:81:8c:28:c2:ca:f6:1c:21:85: b5:1e:c7:0d:25:7d:a4:a5:5e:c9:b3:db:c3:99:ff: a2:e5:5f:66:5e:e5:f5:44:ac:95:e2:1d:a8:c2:db: 58:a6:c9:6b:87:93:bc:51:6c:89:1f:ba:81:a4:b5: 19:cc:2c:27:3e:fa:1c:91:d9:50:3e:c8:ae:3e:46: 21:83:8e:fc:a9:f0:e2:f4:64:02:ea:5f:fd:0d:77: 10:b5:94:9f:9e:76:bc:6a:b9:2f:27:33:01:a1:8d: 75:a6:74:9b:bd:07:ac:ac:39:6f:da:ec:cc:5e:13: 37:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:84:E0:BB:2B:9F:93:59:D5:89:6A:D8:16:CA:6D:0D:40:EB:E5:48 X509v3 Authority Key Identifier: keyid:8F:0B:EA:3D:96:FC:8E:2E:D1:E8:C6:83:70:47:69:45:69:EE:E3:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DC74/DA2240E6462911EDAE78B235C4F9AE02/jwvqPZb8ji7R6MaDcEdpRWnu484.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jwvqPZb8ji7R6MaDcEdpRWnu484.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DC74/DA2240E6462911EDAE78B235C4F9AE02/99E52804462E11ED90035452C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 206.131.192.0/20 Signature Algorithm: sha256WithRSAEncryption be:91:3b:03:6f:4d:f8:9b:0c:a4:51:cd:4b:3e:f5:21:d0:e2: fe:c2:07:f3:01:8d:96:24:20:1b:ff:0f:66:a7:e8:08:18:43: c1:dc:c1:d4:04:fb:bb:ff:e0:1f:7b:2a:31:d6:dd:65:08:d8: 5c:56:90:20:ad:ba:1f:bc:d1:44:1a:61:09:bf:6b:12:ed:44: 00:1f:65:fe:d6:0c:42:0b:00:eb:9a:ca:3f:d5:24:f8:10:3f: 1d:11:a9:f0:8d:d7:7b:0b:ad:57:04:1b:db:73:2f:b9:73:1c: bb:4c:12:76:a3:79:6e:07:24:2b:95:98:78:8b:02:64:a2:06: 7b:63:1b:32:f7:05:8d:5b:3c:76:02:72:97:d3:61:88:04:40: 1a:2e:b1:88:77:8a:5d:05:fb:b3:2c:7f:17:aa:cf:93:30:54: 03:a2:c2:1d:b3:92:48:71:ab:4b:6d:85:4d:85:dc:39:21:92: 6d:44:52:7d:4b:6a:6f:34:d5:e2:44:02:9b:f7:37:d3:3d:58: 25:5e:72:5b:8b:55:4c:a8:e9:0f:2a:29:62:02:a9:c5:9b:28: bb:df:ec:6b:4c:c0:ae:aa:db:44:6f:75:5a:1c:d7:5f:ea:f9: 31:eb:cf:14:66:e7:37:e8:8b:4f:59:96:0e:59:b0:34:e2:24: f8:0a:f1:61 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURDNzQxMTAvBgNVBAUTKDhGMEJFQTNEOTZGQzhFMkVEMUU4QzY4MzcwNDc2OTQ1 NjlFRUUzQ0UwHhcNMjUxMTI3MDAxNzQ5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGQ0Ny01YTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9/6VxwtF4RxxcEDnEvuJ3KY9xqo5ZzNl6p96ANCZDwMicaLaKgqXz4ZUStK 7WRKFVonSyt01IGW0rnselccAMN3rv7bW/OszGNBHN//92Wsu58+J/kOyv7G+WvY bZfIrWm4DJljDn20zaU+hDerfCnl/p0IJEtggLDCDd9KxFTodwbTq2PkEv1NdliB jCjCyvYcIYW1HscNJX2kpV7Js9vDmf+i5V9mXuX1RKyV4h2owttYpslrh5O8UWyJ H7qBpLUZzCwnPvockdlQPsiuPkYhg478qfDi9GQC6l/9DXcQtZSfnna8arkvJzMB oY11pnSbvQesrDlv2uzMXhM34wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFISE4Lsr n5NZ1Ylq2BbKbQ1A6+VIMB8GA1UdIwQYMBaAFI8L6j2W/I4u0ejGg3BHaUVp7uPO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REM3NC9EQTIyNDBFNjQ2 MjkxMUVEQUU3OEIyMzVDNEY5QUUwMi9qd3ZxUFpiOGppN1I2TWFEY0VkcFJXbnU0 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2p3dnFQWmI4amk3UjZNYURjRWRwUldudTQ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OURDNzQvREEyMjQwRTY0NjI5MTFFREFFNzhCMjM1QzRGOUFFMDIvOTlFNTI4MDQ0 NjJFMTFFRDkwMDM1NDUyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEzoPAMA0GCSqGSIb3DQEBCwUAA4IBAQC+kTsDb034mwykUc1LPvUh 0OL+wgfzAY2WJCAb/w9mp+gIGEPB3MHUBPu7/+Afeyox1t1lCNhcVpAgrbofvNFE GmEJv2sS7UQAH2X+1gxCCwDrmso/1ST4ED8dEanwjdd7C61XBBvbcy+5cxy7TBJ2 o3luByQrlZh4iwJkogZ7Yxsy9wWNWzx2AnKX02GIBEAaLrGId4pdBfuzLH8Xqs+T MFQDosIds5JIcatLbYVNhdw5IZJtRFJ9S2pvNNXiRAKb9zfTPVglXnJbi1VMqOkP KiliAqnFmyi73+xrTMCuqttEb3VaHNdf6vkx688UZuc36ItPWZYOWbA04iT4CvFh -----END CERTIFICATE-----Generated at Thu Mar 26 11:57:58 2026 by rpki-client