$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/F1C7A044D91E11EFAD3C7613C4F9AE02.roa File: F1C7A044D91E11EFAD3C7613C4F9AE02.roa (raw, json) Hash identifier: iuk/ykP+WarrOSzWEJv6JFHYe5vwgB3sie5LRWLne0s= Subject key identifier: 00:56:EB:01:57:5F:A8:BD:F5:65:45:DF:A6:C4:2A:64:A2:0A:67:F1 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 060C Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/F1C7A044D91E11EFAD3C7613C4F9AE02.roa Signing time: Thu 16 Apr 2026 21:07:31 +0000 ROA not before: Thu 16 Apr 2026 21:07:31 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 4804 IP address blocks: 161.43.224.0/21 maxlen: 21 161.43.232.0/21 maxlen: 21 192.131.13.0/24 maxlen: 24 198.142.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1548 (0x60c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Apr 16 21:07:31 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69e14f92-6d57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e4:1f:c5:30:36:51:a7:5d:96:ad:26:78:30: 0e:b2:27:f5:c6:b2:1c:b4:44:ed:06:ba:18:b7:51: 74:cc:ef:1c:3f:e0:7d:d4:2e:60:03:7d:74:76:3a: c0:cb:6d:fd:32:aa:8f:fb:04:63:35:fb:c4:66:b9: b2:f2:19:77:ae:c8:54:37:86:ef:ac:e3:11:18:94: 2e:39:10:fa:cc:83:36:06:69:67:49:5e:79:dc:17: fd:6b:bb:09:2b:55:57:92:94:1b:14:fc:48:c7:21: a6:39:91:7d:05:5e:a2:33:94:f7:37:9f:a2:64:df: b6:eb:6e:77:05:41:d6:3c:fe:bc:b3:73:62:9e:8f: 0f:23:ff:5c:bb:25:df:26:0c:e6:39:ad:28:14:73: 5e:36:7a:fd:bb:b9:78:f0:a3:fd:4f:b6:0a:26:f0: 97:47:4d:b9:3a:f9:8d:d6:95:fa:81:03:93:b1:c6: 4f:c3:f5:c4:40:93:a8:7e:b7:12:01:f1:45:c0:3f: 07:ff:82:7f:09:cd:b2:c3:cf:72:b9:4d:29:e7:08: 84:ce:96:45:9f:6a:8f:f4:7b:b1:e0:63:ec:b1:e4: 99:e5:f0:91:32:b1:31:2e:ac:df:f2:ff:66:f7:a7: 76:44:8d:21:27:d9:27:9f:9c:66:bf:4d:f8:06:bc: 6b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:56:EB:01:57:5F:A8:BD:F5:65:45:DF:A6:C4:2A:64:A2:0A:67:F1 X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/F1C7A044D91E11EFAD3C7613C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.43.224.0/20 192.131.13.0/24 198.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 09:3c:c1:1c:15:e1:40:58:83:94:8a:cb:a8:ca:b7:2d:ea:fd: cd:22:e0:ef:26:18:96:50:66:61:61:15:11:89:10:73:57:46: dc:5e:b2:a2:9d:92:1f:91:00:79:52:e9:8a:7a:44:03:f2:7b: 78:34:ea:0f:86:8c:3d:44:48:c4:00:e9:e7:b6:66:c9:fd:9d: 41:b5:2d:63:dc:e7:46:fe:5b:3a:ca:a5:f2:55:18:3c:b9:87: d7:fc:c6:b7:97:16:d7:47:19:90:34:f5:ad:73:98:18:36:42: c4:16:bc:cc:fe:86:d6:66:71:dd:8f:49:1d:93:d6:ed:f4:f6: 53:eb:d7:db:30:0e:09:b6:72:9b:38:e9:4a:29:65:5a:eb:d4: e0:ac:18:77:e2:f1:9a:fa:36:98:c2:b4:d0:0b:75:bb:ce:78: bd:aa:70:07:b3:bd:04:37:5f:82:a3:47:1b:5a:d6:05:fd:d5: 7d:7d:02:0b:9b:5f:5d:d0:92:fe:4e:dc:5e:a3:75:45:f1:d5: 6e:03:97:a0:a2:6d:74:98:da:a8:28:2c:4b:93:17:56:84:9a: ee:c3:54:4b:de:96:7b:fd:83:e1:16:15:d8:f3:c0:4b:2a:8b: 6a:9b:11:78:24:7e:ae:b8:a4:bb:5e:d5:da:20:40:a2:e7:97: 1e:03:ae:21 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgICBgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjYwNDE2MjEwNzMxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUxNGY5Mi02ZDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoeQfxTA2Uaddlq0meDAOsif1xrIctETtBroYt1F0zO8cP+B91C5gA310djrA y239MqqP+wRjNfvEZrmy8hl3rshUN4bvrOMRGJQuORD6zIM2BmlnSV553Bf9a7sJ K1VXkpQbFPxIxyGmOZF9BV6iM5T3N5+iZN+26253BUHWPP68s3Nino8PI/9cuyXf JgzmOa0oFHNeNnr9u7l48KP9T7YKJvCXR025OvmN1pX6gQOTscZPw/XEQJOofrcS AfFFwD8H/4J/Cc2yw89yuU0p5wiEzpZFn2qP9Hux4GPsseSZ5fCRMrExLqzf8v9m 96d2RI0hJ9knn5xmv034BrxrUwIDAQABo4ICazCCAmcwHQYDVR0OBBYEFABW6wFX X6i99WVF36bEKmSiCmfxMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvN0E4ODY0QUNGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvRjFDN0EwNDRE OTFFMTFFRkFEM0M3NjEzQzRGOUFFMDIucm9hMCoGCCsGAQUFBwEHAQH/BBswGTAX BAIAATARAwQEoSvgAwQAwIMNAwMAxo4wDQYJKoZIhvcNAQELBQADggEBAAk8wRwV 4UBYg5SKy6jKty3q/c0i4O8mGJZQZmFhFRGJEHNXRtxesqKdkh+RAHlS6Yp6RAPy e3g06g+GjD1ESMQA6ee2Zsn9nUG1LWPc50b+WzrKpfJVGDy5h9f8xreXFtdHGZA0 9a1zmBg2QsQWvMz+htZmcd2PSR2T1u309lPr19swDgm2cps46UopZVrr1OCsGHfi 8Zr6NpjCtNALdbvOeL2qcAezvQQ3X4KjRxta1gX91X19AgubX13Qkv5O3F6jdUXx 1W4Dl6CibXSY2qgoLEuTF1aEmu7DVEvelnv9g+EWFdjzwEsqi2qbEXgkfq64pLte 1dogQKLnlx4DriE= -----END CERTIFICATE-----Generated at Fri Apr 17 20:12:19 2026 by rpki-client