$ rpki-client -vvf rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/CA9B891ACF1C11EF981F2F86C4F9AE02.roa File: CA9B891ACF1C11EF981F2F86C4F9AE02.roa (raw, json) Hash identifier: tykKMCNyhL8YIODSIbVTOG4k2NzgIkvRLrrP9k8uYXw= Subject key identifier: F7:73:26:CA:06:7D:97:6E:B2:29:8F:90:DA:FE:C4:66:0C:58:49:03 Certificate issuer: /CN=A913631F/serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Certificate serial: DA Authority key identifier: 40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/CA9B891ACF1C11EF981F2F86C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:50:44 +0000 ROA not before: Fri 27 Feb 2026 06:24:50 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 45650 IP address blocks: 161.248.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:43:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913631F, serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Validity Not Before: Feb 27 06:24:50 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a41a04-f1e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:82:25:79:bb:74:6b:ff:32:2a:de:7c:b4:3e: f1:8c:a2:0c:a7:2a:0d:36:1a:cb:8b:5c:b3:58:f6: 54:ac:19:eb:6d:c1:d7:f2:6f:9f:eb:c7:51:35:c9: 6c:10:8f:4f:3b:93:b5:24:17:d3:b8:86:4d:24:be: 21:6c:88:21:01:20:f9:bc:9b:c7:7d:eb:d5:29:2f: 12:d9:64:dd:04:41:93:df:21:98:73:dd:1f:0d:b5: 08:0d:41:f4:00:32:ad:6c:34:b5:14:fe:cb:d1:fc: 66:23:90:8b:21:55:6a:d6:49:5d:8f:09:b3:29:62: 66:28:ac:06:10:08:8c:ce:07:1b:66:38:00:4b:a2: ea:ab:03:6c:ff:97:31:9d:a8:af:81:c2:1e:9a:67: f5:7b:60:9f:85:f9:b6:ee:eb:8d:53:15:12:5e:2c: c8:80:d8:64:f6:f3:bd:2a:50:e0:fb:22:2d:db:cf: 85:1b:70:39:f8:5b:9c:bc:1d:65:c4:5e:b8:b2:19: 9b:d3:41:1f:c0:0e:03:45:7d:e9:2a:03:22:9f:1c: 62:1e:42:84:9e:43:1f:a2:07:2f:cf:53:b0:c0:68: ae:9f:ed:12:e1:ec:b3:48:0c:04:44:de:5f:80:ce: f9:e9:5c:6c:54:6d:94:ff:57:98:df:76:48:a8:72: b8:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:73:26:CA:06:7D:97:6E:B2:29:8F:90:DA:FE:C4:66:0C:58:49:03 X509v3 Authority Key Identifier: keyid:40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/CA9B891ACF1C11EF981F2F86C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.156.0/23 Signature Algorithm: sha256WithRSAEncryption a0:b3:bf:4c:50:da:b3:34:cc:b1:d5:c9:1d:eb:2b:69:cf:fe: b7:ff:f5:50:23:cd:6e:18:14:56:e5:44:80:40:4e:81:7a:2e: 4d:09:0b:f5:a2:fe:79:42:23:38:70:9d:17:0c:94:7e:74:c5: b9:75:b8:36:6d:e9:c8:b9:c7:a9:96:a7:b7:01:54:ad:08:30: b1:03:b7:d5:09:42:d0:63:6e:c1:16:03:1b:46:ed:f1:b2:43: a0:38:86:f3:b6:ad:22:5b:a9:09:3e:6e:f6:b3:b0:b1:f9:9a: b5:57:a6:1e:2c:4d:21:3e:94:c8:ae:04:23:84:8e:f0:96:96: 85:d8:74:e2:82:bb:33:d9:ea:07:73:6c:dc:53:20:9e:14:af: 99:7e:10:13:19:9b:9c:7b:b9:28:c8:3c:ac:27:27:4c:6c:6f: 4c:20:f5:a3:26:4e:26:49:4a:e6:01:9c:9a:43:8c:be:38:56: 19:66:d8:9d:ee:17:73:29:d7:ee:45:af:be:d7:31:99:60:4a: 10:f8:73:00:fb:c3:2f:41:e9:ca:59:f5:20:de:7a:b6:3c:a3: 77:aa:65:ae:3e:75:bc:4c:9f:52:ca:d6:36:03:0a:7a:e2:a2: 25:1f:a0:bd:27:f2:ae:c9:ba:05:e4:f2:82:c3:c6:de:35:b8: 5e:52:f2:a0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYzMUYxMTAvBgNVBAUTKDQwM0JCN0I5MThGOTE1NEFEODJDMkFEMzVBRUZDMEFC RThEMDZBREUwHhcNMjYwMjI3MDYyNDUwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWEwNC1mMWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYIlebt0a/8yKt58tD7xjKIMpyoNNhrLi1yzWPZUrBnrbcHX8m+f68dRNcls EI9PO5O1JBfTuIZNJL4hbIghASD5vJvHfevVKS8S2WTdBEGT3yGYc90fDbUIDUH0 ADKtbDS1FP7L0fxmI5CLIVVq1kldjwmzKWJmKKwGEAiMzgcbZjgAS6LqqwNs/5cx naivgcIemmf1e2Cfhfm27uuNUxUSXizIgNhk9vO9KlDg+yIt28+FG3A5+FucvB1l xF64shmb00EfwA4DRX3pKgMinxxiHkKEnkMfogcvz1OwwGiun+0S4eyzSAwERN5f gM756VxsVG2U/1eY33ZIqHK45QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPdzJsoG fZdusimPkNr+xGYMWEkDMB8GA1UdIwQYMBaAFEA7t7kY+RVK2Cwq01rvwKvo0Gre MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjMxRi83QjNGMEIxQ0NG MUMxMUVGODE5NDdGODVDNEY5QUUwMi9RRHUzdVJqNUZVcllMQ3JUV3VfQXEtalFh dDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FEdTN1Umo1RlVyWUxDclRXdV9BcS1qUWF0NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzYzMUYvN0IzRjBCMUNDRjFDMTFFRjgxOTQ3Rjg1QzRGOUFFMDIvQ0E5Qjg5MUFD RjFDMTFFRjk4MUYyRjg2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoficMA0GCSqGSIb3DQEBCwUAA4IBAQCgs79MUNqzNMyx1ckd6ytp z/63//VQI81uGBRW5USAQE6Bei5NCQv1ov55QiM4cJ0XDJR+dMW5dbg2benIucep lqe3AVStCDCxA7fVCULQY27BFgMbRu3xskOgOIbztq0iW6kJPm72s7Cx+Zq1V6Ye LE0hPpTIrgQjhI7wlpaF2HTigrsz2eoHc2zcUyCeFK+ZfhATGZuce7koyDysJydM bG9MIPWjJk4mSUrmAZyaQ4y+OFYZZtid7hdzKdfuRa++1zGZYEoQ+HMA+8MvQenK WfUg3nq2PKN3qmWuPnW8TJ9SytY2Awp64qIlH6C9J/KuyboF5PKCw8beNbheUvKg -----END CERTIFICATE-----Generated at Mon Mar 2 07:29:05 2026 by rpki-client