$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/F1C7A044D91E11EFAD3C7613C4F9AE02.roa File: F1C7A044D91E11EFAD3C7613C4F9AE02.roa (raw, json) Hash identifier: X85hHwwMk7D4YA68Yefpn/DdDekokXijChU0NLic1JM= Subject key identifier: C3:56:28:B1:9A:CE:F5:49:C7:4A:4F:2E:49:3E:D6:75:1D:56:28:E3 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 05F0 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/F1C7A044D91E11EFAD3C7613C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:36:32 +0000 ROA not before: Fri 01 Aug 2025 00:36:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 4804 IP address blocks: 161.43.224.0/21 maxlen: 21 161.43.232.0/21 maxlen: 21 198.142.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1520 (0x5f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Aug 1 00:36:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46b10-62ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:24:3d:80:48:af:e8:17:0e:15:3e:9a:71:fd: f5:b0:90:69:b5:bb:a0:dc:61:af:b9:4c:58:07:a0: b1:9c:d1:50:e5:ad:59:56:cf:ff:b0:2f:3e:f5:c5: 8c:ee:bc:43:02:36:4c:59:1f:4d:02:94:fc:cf:0e: cc:44:f7:fd:5b:32:b2:25:b2:e6:a7:06:f0:8c:a8: b6:f4:dc:f9:6b:81:91:ce:fd:44:a5:b9:c9:8a:13: e8:9b:98:55:4d:30:14:bd:4e:3c:e2:c3:14:f4:4d: 3e:63:09:34:3f:4e:1b:05:b9:e0:ed:ef:3a:69:5b: e2:8b:70:d8:f4:67:08:2e:b8:47:07:36:fe:3d:4d: a9:5e:2c:5a:12:fc:f7:5e:6a:a5:89:cd:79:85:17: 4f:18:fe:b1:27:be:7d:03:29:fb:ec:91:bc:80:f3: 2d:37:e1:1c:d9:d0:5e:28:f5:99:19:4c:2c:b7:2b: f6:e7:62:c8:c2:64:67:61:74:4e:30:53:4a:fa:64: 02:5a:97:36:b7:6b:8a:99:73:fb:ef:d0:79:cf:8a: c0:8d:be:0b:27:d9:fc:60:fc:44:b0:5a:93:99:90: cf:87:b4:4f:28:da:2d:06:9d:8d:40:24:c2:90:1f: 27:fe:5f:e8:7b:a6:08:64:dd:01:14:69:a0:bb:b7: e9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:56:28:B1:9A:CE:F5:49:C7:4A:4F:2E:49:3E:D6:75:1D:56:28:E3 X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/F1C7A044D91E11EFAD3C7613C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.43.224.0/20 198.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4e:8e:f2:39:b8:87:78:45:78:c3:7b:9c:e9:e3:d7:12:54:0b: 03:8e:2d:43:1b:a4:96:c3:18:65:65:b3:1e:58:dc:3f:24:79: 00:24:5b:53:2b:53:52:2f:fd:58:00:fc:8e:a8:b3:87:de:17: d7:5a:15:41:64:a6:51:ea:2d:c0:15:49:05:87:a4:f6:67:68: 42:97:1a:82:3b:fc:e9:d4:e7:7b:3f:d6:1b:60:2d:75:0e:b8: f0:62:93:2e:27:fa:7c:85:7f:7f:53:7b:6b:66:43:6d:07:d6: 1f:88:2e:43:4e:13:0d:27:ef:a7:ec:88:95:ac:cb:75:d9:17: b1:75:84:46:6c:d4:ee:ea:2f:91:0d:5f:2e:9a:ae:31:a5:f2: f5:85:63:e6:44:fa:56:73:eb:42:e7:55:7d:c6:55:17:d4:fa: da:f9:3c:e1:cc:10:2f:62:20:a1:13:92:01:26:69:ad:ae:4f: a8:8c:55:3e:26:d9:30:02:19:51:e3:41:e8:c0:ed:08:24:32: 33:97:5f:d6:72:de:d3:91:d4:0f:cf:3b:dc:f4:31:d8:86:4e: 59:4f:74:3d:85:0a:13:ae:28:e4:02:e8:74:59:d0:7b:c5:42: 4c:a5:3b:1c:f9:a6:30:bf:94:50:4c:f0:f0:ce:08:89:f8:18: c7:7a:eb:25 -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgICBfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjUwODAxMDAzNjAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmIxMC02MmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiQ9gEiv6BcOFT6acf31sJBptbug3GGvuUxYB6CxnNFQ5a1ZVs//sC8+9cWM 7rxDAjZMWR9NApT8zw7MRPf9WzKyJbLmpwbwjKi29Nz5a4GRzv1EpbnJihPom5hV TTAUvU484sMU9E0+Ywk0P04bBbng7e86aVvii3DY9GcILrhHBzb+PU2pXixaEvz3 Xmqlic15hRdPGP6xJ759Ayn77JG8gPMtN+Ec2dBeKPWZGUwstyv252LIwmRnYXRO MFNK+mQCWpc2t2uKmXP779B5z4rAjb4LJ9n8YPxEsFqTmZDPh7RPKNotBp2NQCTC kB8n/l/oe6YIZN0BFGmgu7fpewIDAQABo4ICZTCCAmEwHQYDVR0OBBYEFMNWKLGa zvVJx0pPLkk+1nUdVijjMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvN0E4ODY0QUNGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvRjFDN0EwNDRE OTFFMTFFRkFEM0M3NjEzQzRGOUFFMDIucm9hMCQGCCsGAQUFBwEHAQH/BBUwEzAR BAIAATALAwQEoSvgAwMAxo4wDQYJKoZIhvcNAQELBQADggEBAE6O8jm4h3hFeMN7 nOnj1xJUCwOOLUMbpJbDGGVlsx5Y3D8keQAkW1MrU1Iv/VgA/I6os4feF9daFUFk plHqLcAVSQWHpPZnaEKXGoI7/OnU53s/1htgLXUOuPBiky4n+nyFf39Te2tmQ20H 1h+ILkNOEw0n76fsiJWsy3XZF7F1hEZs1O7qL5ENXy6arjGl8vWFY+ZE+lZz60Ln VX3GVRfU+tr5POHMEC9iIKETkgEmaa2uT6iMVT4m2TACGVHjQejA7QgkMjOXX9Zy 3tOR1A/PO9z0MdiGTllPdD2FChOuKOQC6HRZ0HvFQkylOxz5pjC/lFBM8PDOCIn4 GMd66yU= -----END CERTIFICATE-----Generated at Mon Mar 2 04:08:48 2026 by rpki-client