$ rpki-client -vvf rpki.apnic.net/member_repository/A913344F/000375A4290B11E999C5EB14C4F9AE02/10CDE53E2C4111E98AA5057DC4F9AE02.roa File: 10CDE53E2C4111E98AA5057DC4F9AE02.roa (raw, json) Hash identifier: KdSjFuzj1XpOQlC5IFtwlWLkoVkKcSlpd4GWCdoF7oU= Subject key identifier: CF:93:D9:3B:B1:33:D8:57:9F:C1:B1:FB:A5:1E:1F:20:9E:A9:2D:29 Certificate issuer: /CN=A913344F/serialNumber=4CB4C30B24AF8138895FA4E5D187297379060603 Certificate serial: 113D Authority key identifier: 4C:B4:C3:0B:24:AF:81:38:89:5F:A4:E5:D1:87:29:73:79:06:06:03 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TLTDCySvgTiJX6Tl0Ycpc3kGBgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913344F/000375A4290B11E999C5EB14C4F9AE02/10CDE53E2C4111E98AA5057DC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:47:31 +0000 ROA not before: Mon 18 Aug 2025 17:56:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137989 IP address blocks: 87.247.160.0/21 maxlen: 22 87.247.160.0/24 maxlen: 24 87.247.161.0/24 maxlen: 24 87.247.162.0/24 maxlen: 24 87.247.163.0/24 maxlen: 24 87.247.164.0/24 maxlen: 24 87.247.165.0/24 maxlen: 24 87.247.166.0/24 maxlen: 24 87.247.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913344F/000375A4290B11E999C5EB14C4F9AE02/TLTDCySvgTiJX6Tl0Ycpc3kGBgM.crl rsync://rpki.apnic.net/member_repository/A913344F/000375A4290B11E999C5EB14C4F9AE02/TLTDCySvgTiJX6Tl0Ycpc3kGBgM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TLTDCySvgTiJX6Tl0Ycpc3kGBgM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:07:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4413 (0x113d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913344F, serialNumber=4CB4C30B24AF8138895FA4E5D187297379060603 Validity Not Before: Aug 18 17:56:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a44373-e8a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c1:61:b6:74:1b:70:58:5f:88:07:ce:24:7b: c9:7f:3c:f3:0f:81:34:a3:c0:a7:1c:af:de:10:1f: 0d:b0:47:84:3d:64:92:15:a7:e3:8e:52:33:b6:98: 81:6e:37:d1:62:bc:67:63:34:a5:f9:03:6a:65:d7: d0:a4:ce:37:81:47:70:91:10:e6:43:51:50:ff:a3: 60:86:6e:74:aa:7a:6a:31:0e:a1:16:ac:da:f7:10: 73:0d:cb:13:e5:dd:89:f2:a6:4d:26:3a:e8:b5:43: 06:e8:c5:d3:ff:2f:2d:95:0f:3f:7d:8f:83:50:74: 03:6c:0f:5b:7f:41:95:56:36:96:db:7a:95:8e:fa: df:47:79:5d:58:7e:8d:1c:e5:08:f1:79:54:86:80: 9f:14:ef:16:36:5a:23:b4:ac:bc:36:df:46:47:11: 82:6c:aa:32:70:15:6f:e2:f9:fa:0c:9c:76:56:e5: 0c:bb:11:4d:5f:3c:64:54:a8:a2:82:9b:f6:38:7e: 71:c6:8b:9d:d4:0a:45:e9:24:78:59:3f:a1:e1:67: 98:e1:db:7b:65:05:14:a9:ff:82:4e:ab:65:ca:7c: 82:6c:91:a3:f7:48:a3:ee:39:45:cb:a7:43:33:fa: 91:30:c1:ef:33:d0:ce:e2:cd:9f:50:ec:30:2d:cd: 14:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:93:D9:3B:B1:33:D8:57:9F:C1:B1:FB:A5:1E:1F:20:9E:A9:2D:29 X509v3 Authority Key Identifier: keyid:4C:B4:C3:0B:24:AF:81:38:89:5F:A4:E5:D1:87:29:73:79:06:06:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913344F/000375A4290B11E999C5EB14C4F9AE02/TLTDCySvgTiJX6Tl0Ycpc3kGBgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TLTDCySvgTiJX6Tl0Ycpc3kGBgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913344F/000375A4290B11E999C5EB14C4F9AE02/10CDE53E2C4111E98AA5057DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 87.247.160.0/21 Signature Algorithm: sha256WithRSAEncryption ad:ce:2a:51:22:30:03:37:f8:88:01:cf:f0:0a:2b:c1:2d:36: 76:8d:5b:42:0e:04:3e:c0:0e:ab:bc:90:e2:11:22:3d:9d:c1: e6:7c:67:e2:a3:fe:8c:49:79:c3:1d:93:e7:95:0e:4c:ab:f7: 5c:97:c7:3b:9d:62:f7:87:ad:2e:83:20:f9:94:01:14:36:fa: 22:1e:00:3d:23:af:2d:23:b9:e6:0c:3a:48:5a:1e:b9:8b:29: 93:57:7d:5d:e8:c3:8d:88:2f:e8:cb:8d:45:b7:b8:50:bc:93: 05:e9:4f:a9:79:46:ce:34:29:65:76:c0:ca:5b:5e:16:e7:78: 03:6e:af:0d:27:91:19:a8:86:86:33:f7:2e:1f:db:48:35:0c: fc:d3:68:54:0f:93:91:81:98:3c:3f:b0:e6:e7:51:96:a6:f1: e7:16:5d:2f:95:2e:ff:af:43:45:c3:1b:cb:f4:3c:88:54:96: cb:5c:06:d9:f5:df:06:8b:cd:b7:91:90:e5:80:82:be:54:13: 24:29:5a:72:e9:b0:13:3d:1e:24:f9:07:3a:d1:0e:99:a1:12: ec:60:4e:ee:5f:70:88:69:24:c1:98:0d:70:c1:fb:b9:9c:7d: 48:68:8f:64:09:ce:33:a4:df:70:8a:77:40:9e:51:d1:d1:60: 64:8e:ee:d9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICET0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM0NEYxMTAvBgNVBAUTKDRDQjRDMzBCMjRBRjgxMzg4OTVGQTRFNUQxODcyOTcz NzkwNjA2MDMwHhcNMjUwODE4MTc1NjUyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDM3My1lOGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcFhtnQbcFhfiAfOJHvJfzzzD4E0o8CnHK/eEB8NsEeEPWSSFafjjlIztpiB bjfRYrxnYzSl+QNqZdfQpM43gUdwkRDmQ1FQ/6Nghm50qnpqMQ6hFqza9xBzDcsT 5d2J8qZNJjrotUMG6MXT/y8tlQ8/fY+DUHQDbA9bf0GVVjaW23qVjvrfR3ldWH6N HOUI8XlUhoCfFO8WNlojtKy8Nt9GRxGCbKoycBVv4vn6DJx2VuUMuxFNXzxkVKii gpv2OH5xxoud1ApF6SR4WT+h4WeY4dt7ZQUUqf+CTqtlynyCbJGj90ij7jlFy6dD M/qRMMHvM9DO4s2fUOwwLc0UnQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFM+T2Tux M9hXn8Gx+6UeHyCeqS0pMB8GA1UdIwQYMBaAFEy0wwskr4E4iV+k5dGHKXN5BgYD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzQ0Ri8wMDAzNzVBNDI5 MEIxMUU5OTlDNUVCMTRDNEY5QUUwMi9UTFREQ3lTdmdUaUpYNlRsMFljcGMza0dC Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1RMVERDeVN2Z1RpSlg2VGwwWWNwYzNrR0JnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM0NEYvMDAwMzc1QTQyOTBCMTFFOTk5QzVFQjE0QzRGOUFFMDIvMTBDREU1M0Uy QzQxMTFFOThBQTUwNTdEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDV/egMA0GCSqGSIb3DQEBCwUAA4IBAQCtzipRIjADN/iIAc/wCivB LTZ2jVtCDgQ+wA6rvJDiESI9ncHmfGfio/6MSXnDHZPnlQ5Mq/dcl8c7nWL3h60u gyD5lAEUNvoiHgA9I68tI7nmDDpIWh65iymTV31d6MONiC/oy41Ft7hQvJMF6U+p eUbONClldsDKW14W53gDbq8NJ5EZqIaGM/cuH9tINQz802hUD5ORgZg8P7Dm51GW pvHnFl0vlS7/r0NFwxvL9DyIVJbLXAbZ9d8Gi823kZDlgIK+VBMkKVpy6bATPR4k +Qc60Q6ZoRLsYE7uX3CIaSTBmA1wwfu5nH1IaI9kCc4zpN9windAnlHR0WBkju7Z -----END CERTIFICATE-----Generated at Mon Mar 2 16:45:09 2026 by rpki-client