$ rpki-client -vvf rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/504CB1588D3911F093856C71C4F9AE02.roa File: 504CB1588D3911F093856C71C4F9AE02.roa (raw, json) Hash identifier: XbsPrmHsv3A3kJ0QH0nWqPm+aVwo38LG2afXIGK/eHk= Subject key identifier: 53:22:72:D2:3B:6D:D1:44:58:1A:95:7C:A5:63:D7:18:C6:59:D0:DF Certificate issuer: /CN=A9151258/serialNumber=C6C3DEE8F627D7D968BEDF22FC61094625301783 Certificate serial: 3544 Authority key identifier: C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/504CB1588D3911F093856C71C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:22:33 +0000 ROA not before: Thu 04 Dec 2025 15:11:34 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133873 IP address blocks: 216.99.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13636 (0x3544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151258, serialNumber=C6C3DEE8F627D7D968BEDF22FC61094625301783 Validity Not Before: Dec 4 15:11:34 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a467c9-4fde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1e:88:3f:86:5c:34:aa:c0:c3:01:7a:54:21: 3f:5d:56:3b:86:0b:4f:28:d6:31:74:dd:54:8d:65: 13:3e:1d:ed:0c:1a:07:7b:74:6a:20:1a:94:f2:0e: 76:56:32:21:9d:1d:aa:20:ae:e1:e1:b4:2d:52:21: 08:f4:ff:43:0b:47:3f:c2:e0:d7:4e:83:a1:94:5d: d4:13:b6:bb:58:5c:1d:1a:27:94:47:c3:78:7d:d1: ff:78:71:a1:7b:dc:40:01:97:c1:97:24:b6:f1:5e: 11:43:3a:cd:76:1a:9f:ae:80:76:0d:ae:26:e1:ce: 38:48:5d:c2:69:df:c5:63:90:ec:92:c4:f1:bb:28: 0a:d5:8c:88:bd:32:ca:8c:66:f0:c4:d0:30:ee:80: a7:54:01:a8:5c:75:dd:d7:7b:d0:6f:24:26:33:de: 07:99:93:72:70:63:51:9d:67:f5:9b:90:ba:2c:12: a6:ee:44:57:f2:39:99:97:f9:32:81:d5:f8:f6:83: 3d:0d:83:7a:d3:22:b1:2c:4b:48:83:25:3e:f7:51: 77:50:3c:5c:9b:67:b1:5e:37:9c:57:1f:b7:86:9b: 78:97:fa:84:cf:b5:68:93:5c:8e:0f:d1:aa:d6:e1: 0c:42:65:9b:cd:38:8f:7b:f3:cc:f9:da:ed:e7:31: a5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:22:72:D2:3B:6D:D1:44:58:1A:95:7C:A5:63:D7:18:C6:59:D0:DF X509v3 Authority Key Identifier: keyid:C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/504CB1588D3911F093856C71C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 216.99.198.0/24 Signature Algorithm: sha256WithRSAEncryption 64:ec:d6:cf:28:78:1c:75:76:e3:f9:a4:bb:e5:f3:a3:b9:25: 5e:bd:80:f5:16:9e:c6:62:92:b6:fc:04:fc:01:98:19:44:f9: 09:4d:e5:30:5a:58:5c:c3:4e:3a:ac:26:83:e1:11:3e:8f:c0: 87:d0:b0:4c:ad:ea:85:1a:67:c0:5b:f2:5c:a6:76:be:71:eb: 51:f1:6b:51:10:7a:bc:a2:10:7a:14:b8:bc:cd:01:6f:70:1b: 4a:b1:e8:97:59:cb:fe:d1:ec:be:66:3a:4d:1b:6f:6e:bf:11: 38:5c:dd:29:98:09:f9:a2:8a:d9:8a:52:71:45:18:19:92:f4: f6:3e:95:f9:e8:25:fe:be:e8:c0:22:6d:06:ed:78:c9:a8:fb: 24:2f:f5:60:ce:e9:56:51:85:92:d4:04:74:9d:e0:7c:4a:8a: 05:57:bc:6d:d0:a4:da:4e:bb:87:0e:8b:74:0b:92:b0:44:2d: fa:d5:73:ec:04:c7:2b:2a:c6:3a:c8:1e:22:2d:19:78:06:62: e0:f9:5b:f8:9c:7a:38:4c:6c:93:ac:fb:bf:ed:b3:82:be:58: 42:4b:bd:fc:03:8d:d0:86:38:e8:97:6a:8c:ca:d4:00:4b:54: 26:f5:da:ff:4c:33:cc:50:fe:53:d2:0e:b4:b6:af:9f:27:cd: 83:fe:6f:fb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyNTgxMTAvBgNVBAUTKEM2QzNERUU4RjYyN0Q3RDk2OEJFREYyMkZDNjEwOTQ2 MjUzMDE3ODMwHhcNMjUxMjA0MTUxMTM0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjdjOS00ZmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuh6IP4ZcNKrAwwF6VCE/XVY7hgtPKNYxdN1UjWUTPh3tDBoHe3RqIBqU8g52 VjIhnR2qIK7h4bQtUiEI9P9DC0c/wuDXToOhlF3UE7a7WFwdGieUR8N4fdH/eHGh e9xAAZfBlyS28V4RQzrNdhqfroB2Da4m4c44SF3Cad/FY5DsksTxuygK1YyIvTLK jGbwxNAw7oCnVAGoXHXd13vQbyQmM94HmZNycGNRnWf1m5C6LBKm7kRX8jmZl/ky gdX49oM9DYN60yKxLEtIgyU+91F3UDxcm2exXjecVx+3hpt4l/qEz7Vok1yOD9Gq 1uEMQmWbzTiPe/PM+drt5zGl8QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFMictI7 bdFEWBqVfKVj1xjGWdDfMB8GA1UdIwQYMBaAFMbD3uj2J9fZaL7fIvxhCUYlMBeD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTI1OC9CQjJERENFMjFE QTYxMUUyODZEOTFEOUUwOEIwMkNEMi94c1BlNlBZbjE5bG92dDhpX0dFSlJpVXdG NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hzUGU2UFluMTlsb3Z0OGlfR0VKUmlVd0Y0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEyNTgvQkIyRERDRTIxREE2MTFFMjg2RDkxRDlFMDhCMDJDRDIvNTA0Q0IxNTg4 RDM5MTFGMDkzODU2QzcxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA2GPGMA0GCSqGSIb3DQEBCwUAA4IBAQBk7NbPKHgcdXbj+aS75fOj uSVevYD1Fp7GYpK2/AT8AZgZRPkJTeUwWlhcw046rCaD4RE+j8CH0LBMreqFGmfA W/Jcpna+cetR8WtREHq8ohB6FLi8zQFvcBtKseiXWcv+0ey+ZjpNG29uvxE4XN0p mAn5oorZilJxRRgZkvT2PpX56CX+vujAIm0G7XjJqPskL/VgzulWUYWS1AR0neB8 SooFV7xt0KTaTruHDot0C5KwRC361XPsBMcrKsY6yB4iLRl4BmLg+Vv4nHo4TGyT rPu/7bOCvlhCS738A43Qhjjol2qMytQAS1Qm9dr/TDPMUP5T0g60tq+fJ82D/m/7 -----END CERTIFICATE-----Generated at Mon Mar 2 23:10:18 2026 by rpki-client