$ rpki-client -vvf rpki.apnic.net/member_repository/A9152E70/E60E937C7D8611F08FB0E879C4F9AE02/889930E805E011F18AD458A9133D8C67.roa File: 889930E805E011F18AD458A9133D8C67.roa (raw, json) Hash identifier: 6Xr8zkjpwgzzu+pV8hgykjL+uM8MQRKO4RcwgTTu2OA= Subject key identifier: 35:0A:9C:27:9E:0E:AB:AD:51:67:73:FF:A2:D8:14:5D:B6:48:E8:0F Certificate issuer: /CN=A9152E70/serialNumber=07FE89630201DEF37F4D68A20ED133A9C3B6A2A3 Certificate serial: 5C Authority key identifier: 07:FE:89:63:02:01:DE:F3:7F:4D:68:A2:0E:D1:33:A9:C3:B6:A2:A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/B_6JYwIB3vN_TWiiDtEzqcO2oqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152E70/E60E937C7D8611F08FB0E879C4F9AE02/889930E805E011F18AD458A9133D8C67.roa Signing time: Mon 09 Feb 2026 17:55:35 +0000 ROA not before: Mon 09 Feb 2026 17:55:35 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 136258 IP address blocks: 167.150.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152E70/E60E937C7D8611F08FB0E879C4F9AE02/B_6JYwIB3vN_TWiiDtEzqcO2oqM.crl rsync://rpki.apnic.net/member_repository/A9152E70/E60E937C7D8611F08FB0E879C4F9AE02/B_6JYwIB3vN_TWiiDtEzqcO2oqM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/B_6JYwIB3vN_TWiiDtEzqcO2oqM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152E70, serialNumber=07FE89630201DEF37F4D68A20ED133A9C3B6A2A3 Validity Not Before: Feb 9 17:55:35 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=698a1f97-d248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1d:d2:6a:00:2c:ce:6d:62:05:6a:33:82:02: be:1b:1a:20:0b:57:4c:a9:18:d6:33:66:99:20:12: 4d:94:62:15:ca:05:9e:f9:d2:cc:12:d4:d1:ec:49: e6:25:d0:67:7d:ff:5a:d0:2c:58:1e:7c:8c:8c:4e: d8:cb:31:b9:3f:6b:68:b1:c9:be:f4:92:da:c9:8f: 9f:f2:05:20:d2:2d:b2:cf:15:7a:87:8e:34:aa:6d: 62:71:c4:d6:c6:a7:63:ac:63:de:d2:f7:98:e3:a9: 97:0f:8f:1c:e8:61:75:29:43:e4:61:49:7e:ef:6d: dc:86:cf:f3:1e:ed:f4:45:4e:de:5f:23:cf:97:8b: 62:46:ce:0f:30:92:53:bf:34:1f:1e:f8:82:3d:15: 32:90:12:04:92:a6:a5:97:f7:0a:3d:cf:db:9c:bc: fa:93:1c:b4:55:1c:61:c2:2a:0a:c2:3a:ac:74:6d: 68:eb:c6:37:bb:42:35:b3:98:54:0f:6b:62:04:06: 7a:2e:ce:7d:9c:f3:09:6c:5a:67:06:c0:65:08:33: b0:5d:34:2d:eb:ae:9e:9c:4b:94:9e:d6:4c:fe:90: 2b:8a:2f:f4:a6:d8:ab:af:fc:79:9d:ec:59:49:10: 02:d1:67:56:a2:15:d7:c6:19:e9:59:8e:4d:bb:20: 7b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:0A:9C:27:9E:0E:AB:AD:51:67:73:FF:A2:D8:14:5D:B6:48:E8:0F X509v3 Authority Key Identifier: keyid:07:FE:89:63:02:01:DE:F3:7F:4D:68:A2:0E:D1:33:A9:C3:B6:A2:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152E70/E60E937C7D8611F08FB0E879C4F9AE02/B_6JYwIB3vN_TWiiDtEzqcO2oqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/B_6JYwIB3vN_TWiiDtEzqcO2oqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152E70/E60E937C7D8611F08FB0E879C4F9AE02/889930E805E011F18AD458A9133D8C67.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.150.100.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:35:57:10:66:e6:2f:32:a4:db:99:64:23:5e:d1:d2:61:c0: c1:ef:72:03:36:bc:93:8a:01:a5:e8:c6:4e:46:84:1f:18:a8: 97:86:fd:f8:1b:3a:f8:d4:0f:a5:b5:1a:52:ed:dc:b4:42:2f: db:5e:7b:75:e7:59:dc:a5:aa:d9:d3:45:c1:42:3c:af:80:e7: fe:5f:69:da:ba:19:b2:b1:e7:38:a7:7f:c9:91:c0:2b:63:3f: a2:08:cf:f4:90:35:a7:0a:19:c3:5c:54:87:5d:cf:84:ee:df: 78:13:3b:ff:c6:e3:1e:6a:0e:fa:ee:9a:57:b3:c6:ee:a7:93: 14:7e:9f:4c:70:cc:9b:73:7a:09:17:75:74:d4:e0:19:25:b3: d5:0c:92:31:a2:b2:47:e2:cd:96:ba:cd:45:f6:36:fb:df:86: 1f:58:77:e6:fc:14:26:ab:06:33:bc:45:65:1a:12:a6:02:31: c2:86:72:9a:75:b6:67:f8:49:14:55:c7:12:ac:a8:43:af:ec: 8a:4d:ce:f7:c8:63:0a:17:d9:ba:7f:c1:1b:2e:a7:b9:75:5c: 1b:13:24:65:4d:d7:06:12:56:9c:95:24:89:0a:e2:50:a5:3a: ff:ae:c1:05:cc:2e:97:ab:26:f2:9a:17:d0:ec:ce:f6:9d:83: fa:34:32:ec -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MkU3MDExMC8GA1UEBRMoMDdGRTg5NjMwMjAxREVGMzdGNEQ2OEEyMEVEMTMzQTlD M0I2QTJBMzAeFw0yNjAyMDkxNzU1MzVaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMMDTY5OGExZjk3LWQyNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNHdJqACzObWIFajOCAr4bGiALV0ypGNYzZpkgEk2UYhXKBZ750swS1NHsSeYl 0Gd9/1rQLFgefIyMTtjLMbk/a2ixyb70ktrJj5/yBSDSLbLPFXqHjjSqbWJxxNbG p2OsY97S95jjqZcPjxzoYXUpQ+RhSX7vbdyGz/Me7fRFTt5fI8+Xi2JGzg8wklO/ NB8e+II9FTKQEgSSpqWX9wo9z9ucvPqTHLRVHGHCKgrCOqx0bWjrxje7QjWzmFQP a2IEBnouzn2c8wlsWmcGwGUIM7BdNC3rrp6cS5Se1kz+kCuKL/Sm2Kuv/Hmd7FlJ EALRZ1aiFdfGGelZjk27IHurAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNQqcJ54O q61RZ3P/otgUXbZI6A8wHwYDVR0jBBgwFoAUB/6JYwIB3vN/TWiiDtEzqcO2oqMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyRTcwL0U2MEU5MzdDN0Q4 NjExRjA4RkIwRTg3OUM0RjlBRTAyL0JfNkpZd0lCM3ZOX1RXaWlEdEV6cWNPMm9x TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQl82Sll3SUIzdk5fVFdpaUR0RXpxY08yb3FNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkU3MC9FNjBFOTM3QzdEODYxMUYwOEZCMEU4NzlDNEY5QUUwMi84ODk5MzBFODA1 RTAxMUYxOEFENDU4QTkxMzNEOEM2Ny5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKeWZDANBgkqhkiG9w0BAQsFAAOCAQEASzVXEGbmLzKk25lk I17R0mHAwe9yAza8k4oBpejGTkaEHxiol4b9+Bs6+NQPpbUaUu3ctEIv2157dedZ 3KWq2dNFwUI8r4Dn/l9p2roZsrHnOKd/yZHAK2M/ogjP9JA1pwoZw1xUh13PhO7f eBM7/8bjHmoO+u6aV7PG7qeTFH6fTHDMm3N6CRd1dNTgGSWz1QySMaKyR+LNlrrN RfY2+9+GH1h35vwUJqsGM7xFZRoSpgIxwoZymnW2Z/hJFFXHEqyoQ6/sik3O98hj ChfZun/BGy6nuXVcGxMkZU3XBhJWnJUkiQriUKU6/67BBcwul6sm8poX0OzO9p2D +jQy7A== -----END CERTIFICATE-----Generated at Mon Mar 2 07:59:50 2026 by rpki-client