$ rpki-client -vvf rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/AE5D0E84EEBD11EFBA2D7586C4F9AE02.roa File: AE5D0E84EEBD11EFBA2D7586C4F9AE02.roa (raw, json) Hash identifier: aWovwb/XvB9GCwrFHdnkc0vXtORNJSBEV1rN72Z1NuM= Subject key identifier: 85:B9:2B:14:F1:07:CA:41:F6:32:02:CF:98:E7:0C:33:1F:EB:21:4A Certificate issuer: /CN=A912142C/serialNumber=EC02CD06B747378B2C1CC5A221E6E08661DA8225 Certificate serial: EC Authority key identifier: EC:02:CD:06:B7:47:37:8B:2C:1C:C5:A2:21:E6:E0:86:61:DA:82:25 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ALNBrdHN4ssHMWiIebghmHagiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/AE5D0E84EEBD11EFBA2D7586C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:34:11 +0000 ROA not before: Fri 04 Jul 2025 14:51:16 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 10076 IP address blocks: 161.248.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/7ALNBrdHN4ssHMWiIebghmHagiU.crl rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/7ALNBrdHN4ssHMWiIebghmHagiU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ALNBrdHN4ssHMWiIebghmHagiU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912142C, serialNumber=EC02CD06B747378B2C1CC5A221E6E08661DA8225 Validity Not Before: Jul 4 14:51:16 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a44053-bf08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b2:34:76:26:b2:9e:32:d5:73:7a:c1:79:ee: 40:6a:64:1a:c7:12:66:f3:4e:b7:39:91:3c:4b:6c: 92:d3:fc:7a:5d:05:a4:2b:1d:69:23:4f:84:6f:8a: 61:c4:b4:80:a1:f6:03:34:e3:e0:6a:16:17:14:e6: 53:64:69:7f:0c:66:7d:28:79:ca:d9:b2:ea:8a:78: d2:df:fe:98:4a:cf:d6:dd:13:4d:97:3c:44:ea:9b: 92:d1:18:a1:7f:1e:29:62:a0:08:a1:70:de:32:e4: 8d:b2:3f:ce:9b:9f:39:05:b3:a4:55:27:97:42:d4: 0b:62:f4:b9:98:e1:bd:af:0f:a1:35:41:17:3c:73: fd:7b:0f:3b:34:ed:7e:8e:56:17:da:94:16:dd:b9: 87:80:51:d1:ab:cf:5f:75:17:37:7b:d7:0d:17:cb: 29:06:d7:a2:53:3d:8f:8b:a7:bf:ec:7b:01:09:10: 07:65:a3:89:f8:93:09:4e:fa:bd:ad:fd:5c:5b:b7: 80:00:af:26:11:2b:9f:60:56:4e:97:4b:ea:a6:d3: 7b:7a:87:bb:28:de:0f:12:7f:68:5a:30:22:40:a0: 10:95:d1:47:a2:b5:1c:b0:4c:06:34:ad:7e:a2:e8: c7:5a:f7:dd:c8:bc:ca:47:0d:ac:6f:1b:cc:8e:44: 54:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:B9:2B:14:F1:07:CA:41:F6:32:02:CF:98:E7:0C:33:1F:EB:21:4A X509v3 Authority Key Identifier: keyid:EC:02:CD:06:B7:47:37:8B:2C:1C:C5:A2:21:E6:E0:86:61:DA:82:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/7ALNBrdHN4ssHMWiIebghmHagiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ALNBrdHN4ssHMWiIebghmHagiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/AE5D0E84EEBD11EFBA2D7586C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.142.0/23 Signature Algorithm: sha256WithRSAEncryption 50:53:c8:28:e9:0c:2f:8c:77:0c:3e:77:34:67:6f:56:2b:aa: 5f:76:55:b7:53:9e:03:89:fa:7f:93:8b:84:67:e4:f1:65:77: 44:72:8b:96:20:a1:9a:5d:23:84:09:23:c4:1e:5f:6d:eb:db: ca:0d:36:55:b9:b7:00:e3:a7:fb:d0:a0:ce:08:54:5f:4c:f8: 45:72:e7:23:f4:76:15:a7:2a:6d:f1:65:71:f6:38:ae:61:23: 03:e2:e8:ce:02:c4:fc:2c:4e:84:90:2c:aa:b7:10:4e:7a:a5: 70:74:99:ef:43:4b:da:bc:e6:69:59:d6:31:6a:6f:05:82:91: 20:03:71:bd:c6:b9:00:9c:39:07:b4:ae:88:d5:7f:41:63:43: ce:1a:22:ae:64:0d:af:50:4b:c9:2d:35:41:82:58:37:cb:c8: ae:2b:72:c0:b1:96:36:59:1c:a3:d3:f5:ca:9c:eb:ba:ce:d9: 9c:78:b8:e3:20:04:fb:a6:cf:9c:aa:1f:ee:fa:8f:e1:df:84: 8e:6f:80:13:25:54:a8:2d:8d:a4:83:fc:3e:2d:2b:d4:d7:04: 6f:78:63:41:0b:dd:41:37:77:9c:38:5a:09:03:38:b3:e2:41: 00:f2:0f:d6:5d:24:56:8e:2c:4b:f7:d2:2a:49:fc:81:f0:21: d7:99:3e:fa -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE0MkMxMTAvBgNVBAUTKEVDMDJDRDA2Qjc0NzM3OEIyQzFDQzVBMjIxRTZFMDg2 NjFEQTgyMjUwHhcNMjUwNzA0MTQ1MTE2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDA1My1iZjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7I0diaynjLVc3rBee5AamQaxxJm8063OZE8S2yS0/x6XQWkKx1pI0+Eb4ph xLSAofYDNOPgahYXFOZTZGl/DGZ9KHnK2bLqinjS3/6YSs/W3RNNlzxE6puS0Rih fx4pYqAIoXDeMuSNsj/Om585BbOkVSeXQtQLYvS5mOG9rw+hNUEXPHP9ew87NO1+ jlYX2pQW3bmHgFHRq89fdRc3e9cNF8spBteiUz2Pi6e/7HsBCRAHZaOJ+JMJTvq9 rf1cW7eAAK8mESufYFZOl0vqptN7eoe7KN4PEn9oWjAiQKAQldFHorUcsEwGNK1+ oujHWvfdyLzKRw2sbxvMjkRUzwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIW5KxTx B8pB9jICz5jnDDMf6yFKMB8GA1UdIwQYMBaAFOwCzQa3RzeLLBzFoiHm4IZh2oIl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTQyQy8yQzJGNkU1MENF RTkxMUVGQkRGRDNBNjdDNEY5QUUwMi83QUxOQnJkSE40c3NITVdpSWViZ2htSGFn aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdBTE5CcmRITjRzc0hNV2lJZWJnaG1IYWdpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE0MkMvMkMyRjZFNTBDRUU5MTFFRkJERkQzQTY3QzRGOUFFMDIvQUU1RDBFODRF RUJEMTFFRkJBMkQ3NTg2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofiOMA0GCSqGSIb3DQEBCwUAA4IBAQBQU8go6QwvjHcMPnc0Z29W K6pfdlW3U54Difp/k4uEZ+TxZXdEcouWIKGaXSOECSPEHl9t69vKDTZVubcA46f7 0KDOCFRfTPhFcucj9HYVpypt8WVx9jiuYSMD4ujOAsT8LE6EkCyqtxBOeqVwdJnv Q0vavOZpWdYxam8FgpEgA3G9xrkAnDkHtK6I1X9BY0POGiKuZA2vUEvJLTVBglg3 y8iuK3LAsZY2WRyj0/XKnOu6ztmceLjjIAT7ps+cqh/u+o/h34SOb4ATJVSoLY2k g/w+LSvU1wRveGNBC91BN3ecOFoJAziz4kEA8g/WXSRWjixL99IqSfyB8CHXmT76 -----END CERTIFICATE-----Generated at Mon Mar 2 16:47:09 2026 by rpki-client