$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/AF0A3F14178911EC876F5F50C4F9AE02.roa File: AF0A3F14178911EC876F5F50C4F9AE02.roa (raw, json) Hash identifier: Ae3vnYMRPKUdXa+CO5NCrtQU86FdJMZKr59EI0hk4E8= Subject key identifier: 3E:63:22:87:6B:54:73:DA:1C:82:2D:71:DB:36:5C:66:8C:A9:1B:FE Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 05F2 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/AF0A3F14178911EC876F5F50C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:36:34 +0000 ROA not before: Fri 01 Aug 2025 00:36:02 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 7474 IP address blocks: 161.43.64.0/18 maxlen: 18 161.43.96.0/24 maxlen: 24 161.43.97.0/24 maxlen: 24 161.43.192.0/18 maxlen: 18 161.43.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:04:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Aug 1 00:36:02 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46b12-9f28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2b:69:00:d4:eb:c1:54:14:26:35:93:d8:4e: 90:5e:9c:59:5b:f0:10:b8:77:a0:9a:28:50:07:04: 1d:1a:0b:70:fd:c0:7d:a2:6d:ad:25:c1:2f:65:16: 9b:5c:c2:af:ff:62:c2:c3:15:fe:78:43:81:db:8a: 66:c1:4f:e1:e7:51:00:b7:7b:d2:3f:83:b5:b6:f4: 14:23:3d:a7:02:5e:11:75:f2:0c:0f:49:36:95:43: ce:96:e6:29:12:d9:3e:ec:71:9f:4e:63:ed:67:bf: 2b:ee:6c:e6:25:5f:8a:8e:95:2f:a4:68:4d:f6:ec: a9:62:4d:35:e4:26:33:97:2c:1a:8d:06:6b:1b:96: e4:c7:8a:be:d3:00:1a:f4:c8:2b:49:04:b6:aa:fc: 0a:0e:89:4f:e0:f8:db:ec:4e:aa:ce:89:83:83:10: 6c:6e:af:bc:52:8a:e6:28:71:9e:58:3f:b8:d5:ec: 7f:55:08:17:a0:59:f4:27:60:76:92:d5:66:ee:da: 3b:e1:22:36:10:59:73:1d:bb:3a:25:fb:96:7a:e5: 53:a5:ac:b2:a5:4e:6a:76:eb:8d:6f:50:0a:51:92: 45:ed:20:e9:ab:82:a8:85:0e:9b:2d:48:90:ec:72: 4d:96:32:29:4e:69:6f:c7:cc:1d:b6:30:64:1c:81: b4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:63:22:87:6B:54:73:DA:1C:82:2D:71:DB:36:5C:66:8C:A9:1B:FE X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/AF0A3F14178911EC876F5F50C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.43.64.0/18 161.43.192.0/18 Signature Algorithm: sha256WithRSAEncryption c6:73:6c:ac:95:fa:31:a3:ad:bb:94:47:25:30:47:ab:4e:ef: 32:cf:a3:1a:c7:dd:62:23:ff:aa:91:0f:73:ef:09:91:d2:0a: 65:2d:ce:2d:3a:9d:2e:c7:0c:9a:c6:fb:fe:b7:bd:e2:e3:03: b3:2a:3b:c7:91:a1:54:53:57:b9:1e:71:1d:b8:1a:8e:9a:0e: de:d4:bf:5d:8e:e9:d0:15:d4:46:7a:f1:a3:f2:37:16:9d:5d: 89:61:c3:f3:80:16:a5:7d:6d:1e:28:f1:35:57:0d:a6:cb:ce: 5b:89:53:b6:ee:b4:de:fa:24:be:73:ae:90:43:ac:80:ad:6b: b0:45:c4:66:c0:2e:f7:c7:8d:49:3a:d0:d5:a7:9f:05:84:f8: d8:04:74:8e:46:01:20:52:98:fe:fc:c2:11:c5:dd:c2:ef:f8: fb:89:7d:01:fb:00:d1:ba:25:a0:62:88:82:d2:45:0f:23:26: f7:bf:b4:fe:85:ed:d3:87:18:ac:a4:4f:9b:93:89:90:69:c7: 01:01:d7:09:0e:80:0d:10:58:cf:6e:fd:a8:ea:b1:e3:79:ce: b3:fb:d8:c1:68:64:2d:61:3d:73:43:3f:77:c0:fd:27:dc:52: 0b:6e:e0:a0:23:b1:f5:c8:6d:51:47:7d:ea:5d:a3:d5:63:3a: 20:42:b0:9f -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjUwODAxMDAzNjAyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmIxMi05ZjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsitpANTrwVQUJjWT2E6QXpxZW/AQuHegmihQBwQdGgtw/cB9om2tJcEvZRab XMKv/2LCwxX+eEOB24pmwU/h51EAt3vSP4O1tvQUIz2nAl4RdfIMD0k2lUPOluYp Etk+7HGfTmPtZ78r7mzmJV+KjpUvpGhN9uypYk015CYzlywajQZrG5bkx4q+0wAa 9MgrSQS2qvwKDolP4Pjb7E6qzomDgxBsbq+8UormKHGeWD+41ex/VQgXoFn0J2B2 ktVm7to74SI2EFlzHbs6JfuWeuVTpayypU5qduuNb1AKUZJF7SDpq4KohQ6bLUiQ 7HJNljIpTmlvx8wdtjBkHIG0dwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFD5jIodr VHPaHIItcds2XGaMqRv+MB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvN0E4ODY0QUNGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvQUYwQTNGMTQx Nzg5MTFFQzg3NkY1RjUwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQGoStAAwQGoSvAMA0GCSqGSIb3DQEBCwUAA4IBAQDGc2yslfoxo627 lEclMEerTu8yz6Max91iI/+qkQ9z7wmR0gplLc4tOp0uxwyaxvv+t73i4wOzKjvH kaFUU1e5HnEduBqOmg7e1L9djunQFdRGevGj8jcWnV2JYcPzgBalfW0eKPE1Vw2m y85biVO27rTe+iS+c66QQ6yArWuwRcRmwC73x41JOtDVp58FhPjYBHSORgEgUpj+ /MIRxd3C7/j7iX0B+wDRuiWgYoiC0kUPIyb3v7T+he3ThxispE+bk4mQaccBAdcJ DoANEFjPbv2o6rHjec6z+9jBaGQtYT1zQz93wP0n3FILbuCgI7H1yG1RR33qXaPV YzogQrCf -----END CERTIFICATE-----Generated at Mon Mar 2 16:47:09 2026 by rpki-client