$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa File: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (raw, json) Hash identifier: UxgWHSWCQslOtEVN8vxHfkeQxG5zKwXTOsnpS8saGYs= Subject key identifier: 2B:47:4A:45:54:1C:CB:9E:0B:71:5F:FB:3B:96:75:BA:E9:4D:F0:EB Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 0210 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:44:09 +0000 ROA not before: Sun 02 Nov 2025 19:08:23 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4788 IP address blocks: 147.158.0.0/16 maxlen: 16 147.158.0.0/17 maxlen: 17 147.158.0.0/18 maxlen: 18 147.158.128.0/19 maxlen: 19 147.158.160.0/19 maxlen: 19 147.158.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Nov 2 19:08:23 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a450b9-2141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:95:a3:ab:8b:92:e7:c8:58:15:e6:f3:44:7e: 71:5c:be:15:47:3a:8f:00:23:74:9f:e4:41:0c:b7: 33:ae:b9:a1:72:b9:1d:9c:c8:84:d1:21:ab:5b:7f: f3:e3:2e:9d:05:5e:fa:65:ee:86:55:a8:8e:c0:43: e1:fd:2a:d9:af:12:ba:39:79:fe:a7:23:3e:3e:cf: 33:72:17:c4:64:e4:1b:93:fc:f2:f6:7b:29:dc:dd: 4a:7f:9f:cb:05:b0:c1:19:f3:84:24:a0:2b:ba:2e: 75:0c:ed:07:26:24:09:73:7f:73:75:d3:02:45:91: d4:e8:50:9e:8a:e2:6c:88:4c:dc:7b:73:45:73:84: 2a:57:d3:3e:b9:d0:c7:de:37:9e:e2:f5:05:9f:07: f8:47:c2:68:4b:a0:53:6c:2a:66:bf:a4:4b:0c:7b: 20:3f:78:f4:ca:48:71:1c:17:ea:f8:01:d1:97:94: f3:70:f2:53:1e:bc:09:1b:8d:60:d0:b5:01:4e:2e: 81:4d:61:8d:f3:7e:2a:92:c0:ee:4e:4b:d9:d5:13: cb:cd:83:fe:9b:5d:da:32:0c:55:ca:0d:f2:d2:24: 97:8f:61:46:48:d5:d7:91:52:83:5e:be:65:ad:f4: 4d:d0:5f:b9:84:22:16:71:17:06:37:50:1c:45:d8: 77:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:47:4A:45:54:1C:CB:9E:0B:71:5F:FB:3B:96:75:BA:E9:4D:F0:EB X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 147.158.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:ed:ba:c5:16:e2:b0:e8:56:90:8b:2a:05:3a:aa:61:be:04: 5a:89:bf:07:32:89:52:bd:53:7b:d5:aa:45:de:bb:e1:46:a0: 27:3c:2b:70:2f:bb:c6:4a:38:39:fd:f1:41:52:63:10:32:d8: f6:a5:c3:6f:db:56:b1:1f:82:ee:be:12:79:31:f9:7d:4c:14: 88:e7:22:ef:68:cf:b5:6e:47:d8:c7:69:d3:5a:c4:f4:41:f7: a1:e1:9a:07:b3:99:c6:b0:d5:0a:17:d9:db:d2:f3:f5:bb:e1: 73:9e:4a:09:92:cd:86:e7:98:14:c8:95:2c:06:43:02:d3:87: 5f:89:96:f1:eb:4b:39:52:ed:3d:bd:2f:13:60:55:04:91:50: 8f:aa:0d:cb:b9:77:bb:ac:d1:d8:4b:16:25:c7:c8:89:84:66: ae:13:b5:49:dd:78:fc:f8:0b:94:82:16:89:a0:b2:0d:a0:5c: b4:ed:b4:2f:d4:8f:e7:4b:5e:92:13:7b:12:7b:f5:3d:93:c9: 42:d3:49:5f:c2:f1:f7:a6:e2:1e:5c:af:7e:11:17:89:07:1b: ee:7b:a3:c4:a6:fb:61:1e:52:42:fa:65:fc:d5:45:64:e0:73: d0:45:36:70:50:ea:34:0f:03:c6:18:7b:9d:fd:72:b7:8b:24: 78:c2:a7:92 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjUxMTAyMTkwODIzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTBiOS0yMTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZWjq4uS58hYFebzRH5xXL4VRzqPACN0n+RBDLczrrmhcrkdnMiE0SGrW3/z 4y6dBV76Ze6GVaiOwEPh/SrZrxK6OXn+pyM+Ps8zchfEZOQbk/zy9nsp3N1Kf5/L BbDBGfOEJKArui51DO0HJiQJc39zddMCRZHU6FCeiuJsiEzce3NFc4QqV9M+udDH 3jee4vUFnwf4R8JoS6BTbCpmv6RLDHsgP3j0ykhxHBfq+AHRl5TzcPJTHrwJG41g 0LUBTi6BTWGN834qksDuTkvZ1RPLzYP+m13aMgxVyg3y0iSXj2FGSNXXkVKDXr5l rfRN0F+5hCIWcRcGN1AcRdh3UQIDAQABo4ICXzCCAlswHQYDVR0OBBYEFCtHSkVU HMueC3Ff+zuWdbrpTfDrMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvMDI4RjU4RkUxNkQ5MTFFRTlGMTc1MzE1QzRGOUFFMDIvMUFCQjZDNEUx N0RCMTFFRTkyQjFDMjZGQzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAk54wDQYJKoZIhvcNAQELBQADggEBABztusUW4rDoVpCLKgU6qmG+ BFqJvwcyiVK9U3vVqkXeu+FGoCc8K3Avu8ZKODn98UFSYxAy2Palw2/bVrEfgu6+ Enkx+X1MFIjnIu9oz7VuR9jHadNaxPRB96Hhmgezmcaw1QoX2dvS8/W74XOeSgmS zYbnmBTIlSwGQwLTh1+JlvHrSzlS7T29LxNgVQSRUI+qDcu5d7us0dhLFiXHyImE Zq4TtUndePz4C5SCFomgsg2gXLTttC/Uj+dLXpITexJ79T2TyULTSV/C8fem4h5c r34RF4kHG+57o8Sm+2EeUkL6ZfzVRWTgc9BFNnBQ6jQPA8YYe539creLJHjCp5I= -----END CERTIFICATE-----Generated at Mon Mar 2 09:15:39 2026 by rpki-client