$ rpki-client -vvf rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/8CF6EB2A8D3C11F0A8123F21C4F9AE02.roa File: 8CF6EB2A8D3C11F0A8123F21C4F9AE02.roa (raw, json) Hash identifier: IHiT2JkC8madnsWfQDkJBYO++lG67IBJ1W4/S66TXLY= Subject key identifier: 49:0E:B4:98:40:8E:6D:75:D4:44:9A:0E:85:A6:7B:BF:53:8E:64:45 Certificate issuer: /CN=A9151258/serialNumber=C6C3DEE8F627D7D968BEDF22FC61094625301783 Certificate serial: 355D Authority key identifier: C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/8CF6EB2A8D3C11F0A8123F21C4F9AE02.roa Signing time: Wed 08 Apr 2026 06:17:57 +0000 ROA not before: Wed 08 Apr 2026 06:17:57 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 14618 IP address blocks: 216.99.198.0/24 maxlen: 24 216.99.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:10:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13661 (0x355d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151258, serialNumber=C6C3DEE8F627D7D968BEDF22FC61094625301783 Validity Not Before: Apr 8 06:17:57 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69d5f315-10b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:53:8e:26:04:aa:04:c8:ed:0e:4a:1e:bb:41: 79:f2:a2:79:27:a8:f2:a5:68:e5:b6:77:6b:a4:91: 19:5f:53:6a:9d:7f:8d:71:59:70:57:c7:8b:52:ae: 65:a4:3f:7f:67:de:40:22:42:a3:46:c6:0e:b1:8c: 7d:95:82:9d:5f:79:36:5f:97:08:32:21:8b:86:f3: 44:0c:44:29:00:c5:d7:a7:5b:58:e0:9f:7a:36:2c: 09:75:ac:44:88:8b:9a:9c:37:30:b7:3b:4d:91:9e: 27:e3:de:58:0b:88:c0:dc:fb:c9:7e:c3:2b:f7:77: a8:8f:d0:73:23:50:e2:b9:22:98:88:c6:bb:91:b8: 06:b0:9d:09:37:c9:5c:59:ca:86:dc:d2:c6:ce:12: 3e:37:03:ef:98:16:34:ad:43:2c:87:0a:e8:dc:11: 89:aa:d5:f2:00:e0:eb:f3:cc:8d:59:af:d8:54:5d: 31:f7:f2:1b:8a:3f:74:d5:b3:25:3b:ff:e0:4e:37: d3:48:09:1e:51:6d:ca:2e:30:a0:fa:5c:91:eb:13: 23:67:72:96:37:ee:80:76:e7:21:1a:24:64:5e:1e: 9e:a3:9c:08:7e:36:44:5a:db:63:81:cf:fb:a5:c4: cf:47:55:5c:f8:af:78:20:eb:bd:70:95:a7:36:a5: 81:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:0E:B4:98:40:8E:6D:75:D4:44:9A:0E:85:A6:7B:BF:53:8E:64:45 X509v3 Authority Key Identifier: keyid:C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/8CF6EB2A8D3C11F0A8123F21C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 216.99.198.0/24 216.99.204.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:af:10:d7:5b:e2:b4:2b:b6:46:53:11:1c:82:04:33:b8:a3: b5:3f:d2:a3:73:dd:54:2d:ca:f4:e4:f7:23:0c:41:e4:f1:b8: e3:8c:b4:02:12:d3:58:b0:f9:84:03:0b:af:4a:46:ef:28:3d: d0:f7:ed:83:74:8c:13:11:95:f4:6a:2d:8f:73:16:94:76:55: 5c:1b:4d:f7:f7:ca:aa:cf:8d:3b:c7:82:e4:c9:3b:93:fd:43: 19:5a:5b:d7:9e:28:ca:38:e9:e1:97:4f:d7:ce:85:04:dc:e9: 09:70:31:f6:d6:1a:0b:01:f1:62:0a:d9:b9:73:f2:66:53:2d: 08:81:93:1f:9f:1c:db:69:3e:10:8d:e8:5e:d6:b1:8a:98:7f: 40:c9:16:04:cc:64:99:7c:f6:51:a0:c9:7a:02:97:c6:15:c2: 37:89:b2:d8:97:62:d5:9f:a2:8c:ee:da:61:58:6e:de:f4:76: 79:b4:68:8f:23:bc:59:69:3d:62:b7:b8:4d:c4:2f:fd:20:c1: 54:d9:ad:a6:8b:d8:7b:92:74:d7:df:0b:e6:9a:b8:30:9c:f5: b8:83:16:54:a9:9b:eb:ca:ca:73:98:b1:25:db:b6:b6:4d:ac: 36:9a:e0:82:be:c4:6b:d6:e0:6a:21:d5:86:f3:68:51:ba:c8: 6d:68:67:95 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICNV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyNTgxMTAvBgNVBAUTKEM2QzNERUU4RjYyN0Q3RDk2OEJFREYyMkZDNjEwOTQ2 MjUzMDE3ODMwHhcNMjYwNDA4MDYxNzU3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ1ZjMxNS0xMGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylOOJgSqBMjtDkoeu0F58qJ5J6jypWjltndrpJEZX1NqnX+NcVlwV8eLUq5l pD9/Z95AIkKjRsYOsYx9lYKdX3k2X5cIMiGLhvNEDEQpAMXXp1tY4J96NiwJdaxE iIuanDcwtztNkZ4n495YC4jA3PvJfsMr93eoj9BzI1DiuSKYiMa7kbgGsJ0JN8lc WcqG3NLGzhI+NwPvmBY0rUMshwro3BGJqtXyAODr88yNWa/YVF0x9/Ibij901bMl O//gTjfTSAkeUW3KLjCg+lyR6xMjZ3KWN+6AduchGiRkXh6eo5wIfjZEWttjgc/7 pcTPR1Vc+K94IOu9cJWnNqWB3wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFEkOtJhA jm111ESaDoWme79TjmRFMB8GA1UdIwQYMBaAFMbD3uj2J9fZaL7fIvxhCUYlMBeD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTI1OC9CQjJERENFMjFE QTYxMUUyODZEOTFEOUUwOEIwMkNEMi94c1BlNlBZbjE5bG92dDhpX0dFSlJpVXdG NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hzUGU2UFluMTlsb3Z0OGlfR0VKUmlVd0Y0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEyNTgvQkIyRERDRTIxREE2MTFFMjg2RDkxRDlFMDhCMDJDRDIvOENGNkVCMkE4 RDNDMTFGMEE4MTIzRjIxQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQA2GPGAwQA2GPMMA0GCSqGSIb3DQEBCwUAA4IBAQAfrxDXW+K0K7ZG UxEcggQzuKO1P9Kjc91ULcr05PcjDEHk8bjjjLQCEtNYsPmEAwuvSkbvKD3Q9+2D dIwTEZX0ai2PcxaUdlVcG03398qqz407x4LkyTuT/UMZWlvXnijKOOnhl0/XzoUE 3OkJcDH21hoLAfFiCtm5c/JmUy0IgZMfnxzbaT4Qjehe1rGKmH9AyRYEzGSZfPZR oMl6ApfGFcI3ibLYl2LVn6KM7tphWG7e9HZ5tGiPI7xZaT1it7hNxC/9IMFU2a2m i9h7knTX3wvmmrgwnPW4gxZUqZvryspzmLEl27a2Taw2muCCvsRr1uBqIdWG82hR ushtaGeV -----END CERTIFICATE-----Generated at Fri Apr 17 13:23:58 2026 by rpki-client