$ rpki-client -vvf rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/294CEBA68FDD11EDBC45E84DC4F9AE02.roa File: 294CEBA68FDD11EDBC45E84DC4F9AE02.roa (raw, json) Hash identifier: hgHBm4hp3RapLpi/uDm+lqvL2Jv07HJ2pVNo82bX6vM= Subject key identifier: 23:C2:2C:30:7D:99:EF:04:7B:AC:47:74:9A:C2:06:1C:80:7C:EA:9C Certificate issuer: /CN=A9157A68/serialNumber=65B7AD9675B3809ECE04AF301C2EB7037FF02BBB Certificate serial: 08AC Authority key identifier: 65:B7:AD:96:75:B3:80:9E:CE:04:AF:30:1C:2E:B7:03:7F:F0:2B:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/294CEBA68FDD11EDBC45E84DC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:33:29 +0000 ROA not before: Mon 02 Jun 2025 21:08:30 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 141366 IP address blocks: 45.249.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.crl rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2220 (0x8ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157A68, serialNumber=65B7AD9675B3809ECE04AF301C2EB7037FF02BBB Validity Not Before: Jun 2 21:08:30 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a46a59-e0f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:44:00:64:a4:bb:c4:7f:6a:73:4b:ac:1a:70: b2:11:51:d4:25:a2:42:11:70:7a:fb:aa:54:80:e9: d6:5c:c3:7f:25:4c:3d:22:c7:91:74:41:0f:1b:1a: 30:b8:36:2f:a0:45:95:29:be:b9:be:8b:20:aa:9a: 8b:0e:7f:af:09:a5:04:00:c6:30:28:73:3d:89:6f: 1a:60:15:7e:8e:ee:6d:37:6a:f3:53:66:09:c1:79: 8b:fe:bb:07:8a:5d:9f:e9:78:ea:b3:5a:2a:d7:d8: f6:65:24:38:af:e7:4c:c2:7d:87:cc:c3:e9:0e:0a: f2:a7:3c:66:7e:a6:c1:6e:9b:93:02:7b:74:f1:d1: 62:1e:21:f0:12:41:60:97:9c:e4:40:eb:1c:dd:76: 08:20:2c:f3:31:42:3b:5b:c3:b7:a3:24:03:6a:b3: 27:01:59:2c:b8:f2:ce:b7:0f:1c:98:23:b0:d0:2d: 31:d1:62:9b:ef:6a:98:b3:75:6b:1b:88:0f:0e:2b: 9d:b8:65:0a:e9:44:c6:b4:ba:2a:70:f9:b1:24:c4: 1b:c4:d2:f8:ac:dc:7f:b6:51:08:11:b2:3e:0b:0e: 3c:6d:42:da:36:31:3d:f3:7a:97:96:3c:be:1f:d9: 7e:a7:0d:9d:02:bd:4c:1f:4b:aa:8c:46:63:e2:c5: cf:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:C2:2C:30:7D:99:EF:04:7B:AC:47:74:9A:C2:06:1C:80:7C:EA:9C X509v3 Authority Key Identifier: keyid:65:B7:AD:96:75:B3:80:9E:CE:04:AF:30:1C:2E:B7:03:7F:F0:2B:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/294CEBA68FDD11EDBC45E84DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.249.99.0/24 Signature Algorithm: sha256WithRSAEncryption e5:fe:52:5a:b6:f6:ad:ae:a0:8f:4c:23:f5:e2:5a:ea:c4:86: 9b:fd:73:5a:b5:73:c1:97:5f:01:25:04:6e:0e:2b:e2:fc:df: fd:1b:d1:ba:d7:d6:a9:80:28:5e:91:9f:99:4d:90:9c:38:a7: 30:ab:dc:7a:04:77:c6:51:31:cb:47:a0:93:ab:c7:78:01:8a: 9b:d7:ba:58:eb:ae:20:37:8e:24:38:3e:05:d6:09:f8:3f:a6: b8:10:4b:ca:be:f0:dc:16:71:46:f9:23:f4:f7:fb:fd:d1:12: 65:b6:82:a7:bc:7b:5f:b5:0c:27:50:08:07:78:fe:61:92:10: a4:5d:01:a5:c3:ab:df:06:10:75:37:7f:5d:ca:22:41:0f:5b: bb:e2:ac:28:cd:28:89:7e:20:71:c4:b1:a3:4c:db:b3:3f:20: de:fa:80:72:96:f6:fe:9b:a2:b6:47:80:1b:3c:cf:2b:26:46: fe:a5:ec:1c:0a:59:af:23:f7:6c:8a:cd:ef:45:d6:dd:03:c3: 7b:2b:c8:7d:13:18:a5:e1:a2:2b:53:c9:87:09:6a:fe:70:8b: d0:a0:68:32:01:9a:ba:be:8f:4f:51:d6:a4:66:fd:d6:cf:8c: e3:e7:24:49:08:a5:bb:b6:51:28:4a:04:13:42:12:5f:09:c0: b4:dd:e7:3f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdBNjgxMTAvBgNVBAUTKDY1QjdBRDk2NzVCMzgwOUVDRTA0QUYzMDFDMkVCNzAz N0ZGMDJCQkIwHhcNMjUwNjAyMjEwODMwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmE1OS1lMGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUQAZKS7xH9qc0usGnCyEVHUJaJCEXB6+6pUgOnWXMN/JUw9IseRdEEPGxow uDYvoEWVKb65vosgqpqLDn+vCaUEAMYwKHM9iW8aYBV+ju5tN2rzU2YJwXmL/rsH il2f6Xjqs1oq19j2ZSQ4r+dMwn2HzMPpDgrypzxmfqbBbpuTAnt08dFiHiHwEkFg l5zkQOsc3XYIICzzMUI7W8O3oyQDarMnAVksuPLOtw8cmCOw0C0x0WKb72qYs3Vr G4gPDiuduGUK6UTGtLoqcPmxJMQbxNL4rNx/tlEIEbI+Cw48bULaNjE983qXljy+ H9l+pw2dAr1MH0uqjEZj4sXPawIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCPCLDB9 me8Ee6xHdJrCBhyAfOqcMB8GA1UdIwQYMBaAFGW3rZZ1s4CezgSvMBwutwN/8Cu7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0E2OC80QjM2QjlCOERC REExMUVBOUE4RDI4NDBDNEY5QUUwMi9aYmV0bG5XemdKN09CSzh3SEM2M0EzX3dL N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1piZXRsbld6Z0o3T0JLOHdIQzYzQTNfd0s3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdBNjgvNEIzNkI5QjhEQkRBMTFFQTlBOEQyODQwQzRGOUFFMDIvMjk0Q0VCQTY4 RkREMTFFREJDNDVFODREQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQALfljMA0GCSqGSIb3DQEBCwUAA4IBAQDl/lJatvatrqCPTCP14lrq xIab/XNatXPBl18BJQRuDivi/N/9G9G619apgChekZ+ZTZCcOKcwq9x6BHfGUTHL R6CTq8d4AYqb17pY664gN44kOD4F1gn4P6a4EEvKvvDcFnFG+SP09/v90RJltoKn vHtftQwnUAgHeP5hkhCkXQGlw6vfBhB1N39dyiJBD1u74qwozSiJfiBxxLGjTNuz PyDe+oBylvb+m6K2R4AbPM8rJkb+pewcClmvI/dsis3vRdbdA8N7K8h9Exil4aIr U8mHCWr+cIvQoGgyAZq6vo9PUdakZv3Wz4zj5yRJCKW7tlEoSgQTQhJfCcC03ec/ -----END CERTIFICATE-----Generated at Mon Mar 2 12:36:40 2026 by rpki-client