$ rpki-client -vvf rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/160F265C827311EDA56A8F30C4F9AE02.roa File: 160F265C827311EDA56A8F30C4F9AE02.roa (raw, json) Hash identifier: R/8NXAZr4r75djE8TFOk6LbaW8qbFanhxJorh/ZmyOA= Subject key identifier: 3F:94:A8:63:EC:6B:01:73:D6:C0:A3:CE:36:0E:04:79:BE:5A:AC:E4 Certificate issuer: /CN=A9148EFA/serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Certificate serial: 0BFF Authority key identifier: 94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/160F265C827311EDA56A8F30C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:25:34 +0000 ROA not before: Fri 28 Mar 2025 19:30:29 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 17995 IP address blocks: 119.42.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:12:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3071 (0xbff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148EFA, serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Validity Not Before: Mar 28 19:30:29 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a4060d-fdf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:23:19:71:37:bc:cb:a1:8f:cc:d4:e2:35:29: b1:f9:d5:4f:0c:51:59:59:70:f1:09:0b:2a:c3:4a: 82:3e:8b:17:3f:d0:56:25:8a:0f:16:6a:86:8d:54: 05:bf:df:f7:c5:d2:96:c4:5c:09:95:c4:a9:e3:14: bf:51:fc:58:4d:2e:0b:b0:59:1c:94:3f:e3:f9:7a: dc:cb:48:f6:0c:de:59:36:73:a0:57:aa:d7:0c:5c: 3a:c8:cc:2c:03:69:6e:a2:45:d0:ce:47:e6:80:09: 54:42:63:ab:8b:fd:bf:9c:34:f5:af:96:c5:79:ba: 39:a6:6e:f9:53:73:95:81:89:e2:92:03:54:17:29: a9:62:fb:6a:03:7b:8f:10:83:fe:2d:07:bb:9a:3e: 4f:da:3c:54:2c:6d:9a:b9:0c:bd:3e:e7:0d:39:7c: 15:35:38:6b:af:9a:11:97:26:7d:eb:38:6d:f2:e0: 07:d9:33:55:e0:6d:38:24:f5:0a:4e:62:5b:ec:d3: 46:72:29:ca:71:0f:fc:f5:8d:90:2a:77:f8:46:0b: f5:db:1e:5f:32:e7:67:09:4b:6b:ed:2e:2c:83:ed: 3e:83:07:cf:1b:23:cd:d8:d6:df:dd:f4:57:e2:a9: d9:af:4d:7b:3f:dc:7f:9c:09:7e:5f:c7:a6:64:37: 74:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:94:A8:63:EC:6B:01:73:D6:C0:A3:CE:36:0E:04:79:BE:5A:AC:E4 X509v3 Authority Key Identifier: keyid:94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/160F265C827311EDA56A8F30C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 119.42.40.0/22 Signature Algorithm: sha256WithRSAEncryption 85:e5:1a:f4:57:d1:f4:93:f9:d4:74:3a:09:78:ad:1a:5a:a6: b6:a3:19:38:cf:39:e5:3c:9f:a7:c0:e8:80:67:15:2c:89:b8: da:04:5e:60:48:bc:58:a4:c6:3e:bd:6a:8a:17:32:86:99:ca: 74:96:29:f9:99:e7:0b:46:8e:55:33:3a:58:84:64:f6:fb:67: c9:f3:7b:53:b1:ae:c3:d9:3e:ae:c1:43:a1:ca:63:44:75:33: 05:72:89:be:52:5b:1c:0c:e2:3d:12:1b:94:91:3f:df:5f:f2: cf:70:dc:c5:e5:6f:99:25:a7:2a:63:45:5f:14:93:86:df:cb: 27:dc:73:d3:cc:fb:68:95:49:78:19:44:95:c0:da:ed:9d:72: b4:06:ae:74:ad:9a:71:0d:30:a5:8f:69:8c:37:c8:7e:02:02: b1:8f:0d:ad:0b:9a:d7:30:e3:a9:99:70:e4:6f:30:c4:96:92: d2:5b:a7:5c:26:cc:67:3c:65:a8:9c:b7:86:12:73:73:e1:7f: d5:78:3d:9c:0d:4d:3f:36:1b:91:84:99:44:23:e5:c5:a9:09: c5:49:c9:e4:91:09:fa:c1:7e:6e:29:7d:2d:67:ce:c1:57:db: 2f:4f:22:51:d0:93:47:2f:3c:02:5a:19:84:9a:39:88:c6:b2: 34:55:64:fd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhFRkExMTAvBgNVBAUTKDk0OEZGODc2ODlGQTk0OTExNkY1RjdDODAwRUIxRDcw MUU2NUUzN0IwHhcNMjUwMzI4MTkzMDI5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDYwZC1mZGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSMZcTe8y6GPzNTiNSmx+dVPDFFZWXDxCQsqw0qCPosXP9BWJYoPFmqGjVQF v9/3xdKWxFwJlcSp4xS/UfxYTS4LsFkclD/j+Xrcy0j2DN5ZNnOgV6rXDFw6yMws A2luokXQzkfmgAlUQmOri/2/nDT1r5bFebo5pm75U3OVgYnikgNUFympYvtqA3uP EIP+LQe7mj5P2jxULG2auQy9PucNOXwVNThrr5oRlyZ96zht8uAH2TNV4G04JPUK TmJb7NNGcinKcQ/89Y2QKnf4Rgv12x5fMudnCUtr7S4sg+0+gwfPGyPN2Nbf3fRX 4qnZr017P9x/nAl+X8emZDd0uQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFD+UqGPs awFz1sCjzjYOBHm+WqzkMB8GA1UdIwQYMBaAFJSP+HaJ+pSRFvX3yADrHXAeZeN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEVGQS9FMEM5NTFDRTMw NjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxKRVc5ZmZJQU9zZGNCNWw0 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xJXzRkb242bEpFVzlmZklBT3NkY0I1bDQzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhFRkEvRTBDOTUxQ0UzMDY5MTFFQUJGMEQ5NDJFQzRGOUFFMDIvMTYwRjI2NUM4 MjczMTFFREE1NkE4RjMwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCdyooMA0GCSqGSIb3DQEBCwUAA4IBAQCF5Rr0V9H0k/nUdDoJeK0a Wqa2oxk4zznlPJ+nwOiAZxUsibjaBF5gSLxYpMY+vWqKFzKGmcp0lin5mecLRo5V MzpYhGT2+2fJ83tTsa7D2T6uwUOhymNEdTMFcom+UlscDOI9EhuUkT/fX/LPcNzF 5W+ZJacqY0VfFJOG38sn3HPTzPtolUl4GUSVwNrtnXK0Bq50rZpxDTClj2mMN8h+ AgKxjw2tC5rXMOOpmXDkbzDElpLSW6dcJsxnPGWonLeGEnNz4X/VeD2cDU0/NhuR hJlEI+XFqQnFScnkkQn6wX5uKX0tZ87BV9svTyJR0JNHLzwCWhmEmjmIxrI0VWT9 -----END CERTIFICATE-----Generated at Mon Mar 2 09:44:56 2026 by rpki-client