$ rpki-client -vvf rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/029E3ED44ADF11EEB17F2D4CC4F9AE02.roa File: 029E3ED44ADF11EEB17F2D4CC4F9AE02.roa (raw, json) Hash identifier: 0aav2SojadrORDyi36eFDPixyT4HpgYJRilnRTO8Vew= Subject key identifier: C9:7B:7D:8F:0C:66:53:88:71:A0:12:3D:1A:3B:B1:74:00:17:57:1E Certificate issuer: /CN=A9150CF2/serialNumber=B03E7BFB2B4BDAFA2EAA50AB7990F74FFCBCADD7 Certificate serial: 0D56 Authority key identifier: B0:3E:7B:FB:2B:4B:DA:FA:2E:AA:50:AB:79:90:F7:4F:FC:BC:AD:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sD57-ytL2vouqlCreZD3T_y8rdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/029E3ED44ADF11EEB17F2D4CC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:38:56 +0000 ROA not before: Tue 20 May 2025 18:22:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133547 IP address blocks: 49.128.1.0/24 maxlen: 24 160.238.0.0/24 maxlen: 24 182.161.67.0/24 maxlen: 24 192.26.110.0/24 maxlen: 24 2400:e8c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/sD57-ytL2vouqlCreZD3T_y8rdc.crl rsync://rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/sD57-ytL2vouqlCreZD3T_y8rdc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sD57-ytL2vouqlCreZD3T_y8rdc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:20:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3414 (0xd56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150CF2, serialNumber=B03E7BFB2B4BDAFA2EAA50AB7990F74FFCBCADD7 Validity Not Before: May 20 18:22:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4254f-e0d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:08:53:c8:ed:ac:44:b8:c2:59:7b:97:79:c8: bf:31:99:86:b2:73:56:92:4f:6a:3d:ae:37:c5:23: 3c:fd:92:8b:a0:5d:d5:b8:e0:d1:bc:4b:49:7b:ae: b9:61:67:46:e2:e5:8c:46:83:68:4f:f4:d4:aa:c8: 15:ca:ce:bc:84:20:70:8b:33:df:16:9b:1a:9f:c6: 56:78:dd:81:fa:df:e6:ab:3e:1b:00:c7:5e:15:c2: fa:95:a8:43:70:43:34:e7:a1:d8:4d:38:eb:fc:e3: ff:88:8f:c3:85:fc:98:2f:f4:41:ae:fe:b2:cb:a7: b1:5d:c4:99:c6:f9:40:2b:c7:16:bb:64:28:a1:e8: 19:74:11:13:ef:4c:13:77:fc:91:38:8e:5e:4e:6a: 10:c6:de:5b:1a:3f:89:9a:82:6f:2c:61:47:68:f2: 0d:ec:79:a3:82:83:d2:ff:f5:e1:cb:5a:e3:ff:6d: e5:c0:c7:b7:7b:3b:4f:89:19:e2:ec:44:a1:4c:04: f1:78:9f:c2:a5:49:47:fd:b8:9c:7a:e2:06:b2:13: 0c:85:3f:12:3f:76:7a:b9:f0:be:c9:91:f6:7d:d0: 4d:05:e6:38:b0:0a:6c:79:ce:31:cb:fa:05:70:a0: eb:88:7d:c1:ec:58:61:de:fc:3b:3d:16:d4:ec:dd: 76:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:7B:7D:8F:0C:66:53:88:71:A0:12:3D:1A:3B:B1:74:00:17:57:1E X509v3 Authority Key Identifier: keyid:B0:3E:7B:FB:2B:4B:DA:FA:2E:AA:50:AB:79:90:F7:4F:FC:BC:AD:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/sD57-ytL2vouqlCreZD3T_y8rdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sD57-ytL2vouqlCreZD3T_y8rdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/029E3ED44ADF11EEB17F2D4CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.128.1.0/24 160.238.0.0/24 182.161.67.0/24 192.26.110.0/24 IPv6: 2400:e8c0::/32 Signature Algorithm: sha256WithRSAEncryption c3:0b:e3:01:e2:47:14:68:d8:38:60:bf:41:bb:df:dd:cc:ea: 1d:cf:18:57:de:aa:c6:d8:87:80:3c:da:ee:31:07:f1:93:1d: 1b:93:9e:1b:6a:c6:9f:bc:b3:5c:0b:51:81:b8:a7:07:37:a5: ad:5b:2a:92:1d:d9:e7:1a:09:3d:fb:3e:fa:b4:e6:26:c3:f9: ab:26:a5:22:30:ab:39:94:f8:7e:33:7a:29:cf:e2:42:b6:bd: 02:97:35:8c:6c:76:8f:1c:30:7a:9b:8a:3f:a7:3f:90:52:a0: 27:8b:fc:de:e5:53:e9:ec:f8:33:99:17:f8:bf:a4:01:db:fc: 27:66:5c:88:ad:12:50:04:02:f0:6f:f1:18:0c:65:e0:b2:2a: 81:f4:30:fa:d8:c3:d7:85:d4:25:06:7a:42:e2:04:15:a5:93: 0e:bb:14:4d:0e:5c:30:72:a9:7f:21:b7:29:91:b5:9a:6f:e8: ca:aa:6a:87:1a:38:b1:d7:47:3f:e2:05:32:c1:57:87:d2:7e: ea:e8:e3:3e:db:15:6c:2e:18:e3:33:8a:a6:76:89:82:64:20: 8a:88:77:e3:ff:c6:6c:52:2f:be:ff:24:66:35:85:99:c9:b9: 20:8f:93:1a:61:f5:da:36:17:b1:2f:d8:19:1f:b4:0a:d7:65: 05:4c:9e:ff -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICDVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBDRjIxMTAvBgNVBAUTKEIwM0U3QkZCMkI0QkRBRkEyRUFBNTBBQjc5OTBGNzRG RkNCQ0FERDcwHhcNMjUwNTIwMTgyMjQxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjU0Zi1lMGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQhTyO2sRLjCWXuXeci/MZmGsnNWkk9qPa43xSM8/ZKLoF3VuODRvEtJe665 YWdG4uWMRoNoT/TUqsgVys68hCBwizPfFpsan8ZWeN2B+t/mqz4bAMdeFcL6lahD cEM056HYTTjr/OP/iI/DhfyYL/RBrv6yy6exXcSZxvlAK8cWu2QooegZdBET70wT d/yROI5eTmoQxt5bGj+JmoJvLGFHaPIN7HmjgoPS//Xhy1rj/23lwMe3eztPiRni 7EShTATxeJ/CpUlH/biceuIGshMMhT8SP3Z6ufC+yZH2fdBNBeY4sApsec4xy/oF cKDriH3B7Fhh3vw7PRbU7N129QIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFMl7fY8M ZlOIcaASPRo7sXQAF1ceMB8GA1UdIwQYMBaAFLA+e/srS9r6LqpQq3mQ90/8vK3X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MENGMi9EMDBEQjc2RUY0 RUUxMUU5QUVGRUE4MTlDNEY5QUUwMi9zRDU3LXl0TDJ2b3VxbENyZVpEM1RfeThy ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NENTcteXRMMnZvdXFsQ3JlWkQzVF95OHJkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBDRjIvRDAwREI3NkVGNEVFMTFFOUFFRkVBODE5QzRGOUFFMDIvMDI5RTNFRDQ0 QURGMTFFRUIxN0YyRDRDQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQAMYABAwQAoO4AAwQAtqFDAwQAwBpuMA0EAgACMAcDBQAkAOjAMA0G CSqGSIb3DQEBCwUAA4IBAQDDC+MB4kcUaNg4YL9Bu9/dzOodzxhX3qrG2IeAPNru MQfxkx0bk54basafvLNcC1GBuKcHN6WtWyqSHdnnGgk9+z76tOYmw/mrJqUiMKs5 lPh+M3opz+JCtr0ClzWMbHaPHDB6m4o/pz+QUqAni/ze5VPp7PgzmRf4v6QB2/wn ZlyIrRJQBALwb/EYDGXgsiqB9DD62MPXhdQlBnpC4gQVpZMOuxRNDlwwcql/Ibcp kbWab+jKqmqHGjix10c/4gUywVeH0n7q6OM+2xVsLhjjM4qmdomCZCCKiHfj/8Zs Ui++/yRmNYWZybkgj5MaYfXaNhexL9gZH7QK12UFTJ7/ -----END CERTIFICATE-----Generated at Mon Mar 2 03:50:35 2026 by rpki-client