$ rpki-client -vvf rpki.apnic.net/member_repository/A9139661/0F43EC3C58E411F08726A57AC4F9AE02/C4C4028A5B4C11F0807A3A60C4F9AE02.roa File: C4C4028A5B4C11F0807A3A60C4F9AE02.roa (raw, json) Hash identifier: ki7xh64GIKfwbhwFIwfLQ7ubTp/Y8e6eL9BMSGhKC7E= Subject key identifier: 92:95:76:01:48:49:91:5E:FE:E3:16:6E:7F:69:B2:74:42:9C:6F:41 Certificate issuer: /CN=A9139661/serialNumber=0F914A1DC94F5BE42E883C2ADD5430BCDF6DF334 Certificate serial: 8E Authority key identifier: 0F:91:4A:1D:C9:4F:5B:E4:2E:88:3C:2A:DD:54:30:BC:DF:6D:F3:34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5FKHclPW-QuiDwq3VQwvN9t8zQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139661/0F43EC3C58E411F08726A57AC4F9AE02/C4C4028A5B4C11F0807A3A60C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:11:29 +0000 ROA not before: Mon 07 Jul 2025 16:09:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154020 IP address blocks: 165.101.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139661/0F43EC3C58E411F08726A57AC4F9AE02/D5FKHclPW-QuiDwq3VQwvN9t8zQ.crl rsync://rpki.apnic.net/member_repository/A9139661/0F43EC3C58E411F08726A57AC4F9AE02/D5FKHclPW-QuiDwq3VQwvN9t8zQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5FKHclPW-QuiDwq3VQwvN9t8zQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139661, serialNumber=0F914A1DC94F5BE42E883C2ADD5430BCDF6DF334 Validity Not Before: Jul 7 16:09:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a3f4b1-0578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a1:27:fb:b3:d9:47:01:9f:48:b3:ae:6c:02: 74:b4:0e:b4:40:a0:01:fd:05:79:b8:56:da:cf:fb: 40:f9:80:ce:e7:dc:f5:80:f5:3a:54:d6:0d:f1:c3: 72:e0:30:16:d2:e2:d1:aa:e4:b2:5b:d1:4d:1b:a9: 8f:7d:e3:78:65:8d:2b:1b:55:cf:38:7f:b9:85:f0: 0b:62:0a:73:e1:70:97:0f:09:26:3f:2b:10:6b:1d: e9:92:17:35:d7:22:2a:14:b3:dd:2f:b2:b0:81:a2: f5:ce:a1:f7:bb:6f:eb:c6:96:64:c6:5d:62:54:95: aa:d3:f9:92:a7:34:69:34:5a:5c:a6:07:17:9c:f0: 8d:8e:4a:da:40:f8:8f:26:00:3a:1e:2d:df:4e:dc: 2e:1e:a3:0b:85:f1:8f:bf:4b:ef:58:42:54:f4:7b: ab:b8:da:0d:96:1c:da:7c:07:2c:28:29:52:3a:55: 93:ac:36:a5:4c:00:b4:20:af:cc:b4:b0:6c:32:bd: 00:c6:08:1e:f4:d7:4f:c5:89:f0:5b:df:4a:59:bc: c0:55:83:f0:bb:40:97:c3:24:83:02:1d:ce:b9:d0: 60:17:87:fc:f5:35:da:61:aa:7f:dd:6d:b2:06:0d: f4:21:c0:92:fc:54:98:a1:c4:2e:88:be:c4:19:3e: d0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:95:76:01:48:49:91:5E:FE:E3:16:6E:7F:69:B2:74:42:9C:6F:41 X509v3 Authority Key Identifier: keyid:0F:91:4A:1D:C9:4F:5B:E4:2E:88:3C:2A:DD:54:30:BC:DF:6D:F3:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139661/0F43EC3C58E411F08726A57AC4F9AE02/D5FKHclPW-QuiDwq3VQwvN9t8zQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5FKHclPW-QuiDwq3VQwvN9t8zQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139661/0F43EC3C58E411F08726A57AC4F9AE02/C4C4028A5B4C11F0807A3A60C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.101.128.0/23 Signature Algorithm: sha256WithRSAEncryption 37:37:19:4c:13:d4:aa:b4:0a:57:f8:e3:62:36:1b:97:0b:90: 0f:c4:ee:11:2c:53:63:b4:2f:35:61:8a:ab:9f:4c:2f:f7:2a: 59:81:28:0b:0a:ab:43:35:ec:f4:46:ba:37:d0:3e:cd:c6:0e: 48:9f:1d:9d:a1:f9:ba:cb:a8:6a:f6:cf:f9:d4:bb:03:8a:64: 9e:cc:26:a1:d4:e2:9e:e5:1e:43:94:34:b9:ef:8f:39:87:70: af:be:ed:31:60:fb:6f:d6:9f:1c:41:e0:d5:42:6d:11:c6:14: 4c:0a:3c:2a:14:de:88:35:5f:09:d2:51:9f:31:df:2d:79:2a: 03:0d:d9:3f:06:75:55:da:41:0a:0d:ef:8a:26:5f:31:44:f2: ff:4e:c2:9b:13:5a:3c:7c:04:db:b5:f4:7b:5c:5c:a3:14:20: 63:0e:c3:e6:8e:12:a5:7f:94:d4:51:2b:fb:2f:0e:49:57:eb: db:12:ae:fa:9c:99:7d:6b:90:2f:1d:d7:2c:fd:87:0e:18:c3: 8d:09:90:c1:d9:b5:02:4d:59:35:cc:46:76:aa:44:09:46:c5: d4:06:c8:67:42:32:c0:73:b4:0d:51:e4:ff:a0:27:8e:86:f3: 86:ff:15:01:df:08:1e:7c:3b:70:2f:1e:2b:9e:0e:45:93:f2: 74:cc:5c:52 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk2NjExMTAvBgNVBAUTKDBGOTE0QTFEQzk0RjVCRTQyRTg4M0MyQURENTQzMEJD REY2REYzMzQwHhcNMjUwNzA3MTYwOTMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjRiMS0wNTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA66En+7PZRwGfSLOubAJ0tA60QKAB/QV5uFbaz/tA+YDO59z1gPU6VNYN8cNy 4DAW0uLRquSyW9FNG6mPfeN4ZY0rG1XPOH+5hfALYgpz4XCXDwkmPysQax3pkhc1 1yIqFLPdL7KwgaL1zqH3u2/rxpZkxl1iVJWq0/mSpzRpNFpcpgcXnPCNjkraQPiP JgA6Hi3fTtwuHqMLhfGPv0vvWEJU9HuruNoNlhzafAcsKClSOlWTrDalTAC0IK/M tLBsMr0Axgge9NdPxYnwW99KWbzAVYPwu0CXwySDAh3OudBgF4f89TXaYap/3W2y Bg30IcCS/FSYocQuiL7EGT7Q2QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJKVdgFI SZFe/uMWbn9psnRCnG9BMB8GA1UdIwQYMBaAFA+RSh3JT1vkLog8Kt1UMLzfbfM0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTY2MS8wRjQzRUMzQzU4 RTQxMUYwODcyNkE1N0FDNEY5QUUwMi9ENUZLSGNsUFctUXVpRHdxM1ZRd3ZOOXQ4 elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1RktIY2xQVy1RdWlEd3EzVlF3dk45dDh6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk2NjEvMEY0M0VDM0M1OEU0MTFGMDg3MjZBNTdBQzRGOUFFMDIvQzRDNDAyOEE1 QjRDMTFGMDgwN0EzQTYwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWWAMA0GCSqGSIb3DQEBCwUAA4IBAQA3NxlME9SqtApX+ONiNhuX C5APxO4RLFNjtC81YYqrn0wv9ypZgSgLCqtDNez0Rro30D7Nxg5Inx2dofm6y6hq 9s/51LsDimSezCah1OKe5R5DlDS57485h3Cvvu0xYPtv1p8cQeDVQm0RxhRMCjwq FN6INV8J0lGfMd8teSoDDdk/BnVV2kEKDe+KJl8xRPL/TsKbE1o8fATbtfR7XFyj FCBjDsPmjhKlf5TUUSv7Lw5JV+vbEq76nJl9a5AvHdcs/YcOGMONCZDB2bUCTVk1 zEZ2qkQJRsXUBshnQjLAc7QNUeT/oCeOhvOG/xUB3wgefDtwLx4rng5Fk/J0zFxS -----END CERTIFICATE-----Generated at Mon Mar 2 18:26:12 2026 by rpki-client