$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/AE27A8A671B311EBB90BB364C4F9AE02.roa File: AE27A8A671B311EBB90BB364C4F9AE02.roa (raw, json) Hash identifier: Yz43RwlZ5yy4nBg8j+EwoqSiXNci2+WLpvODtls54Cc= Subject key identifier: 9E:1C:05:57:FF:D8:07:95:27:1A:23:4D:D4:3F:23:6D:76:93:C3:76 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 072A Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/AE27A8A671B311EBB90BB364C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:30:27 +0000 ROA not before: Fri 14 Nov 2025 21:12:26 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137978 IP address blocks: 103.158.198.0/23 maxlen: 23 103.158.198.0/24 maxlen: 24 103.158.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1834 (0x72a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Nov 14 21:12:26 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43163-45b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8e:26:2b:31:ba:d0:d1:79:df:c1:b1:d4:4b: 2b:97:90:be:73:90:1b:b9:03:7f:24:d1:62:ac:92: 32:c3:14:04:c4:3d:7b:39:aa:18:86:a7:64:f1:6a: cd:e2:a1:ab:50:03:13:6c:26:a6:2c:f0:e0:ba:20: f7:cd:de:d7:37:a8:f1:61:4f:a6:5e:4a:98:ed:97: e1:02:bb:b3:fe:50:39:27:cd:63:61:5c:27:68:e8: 5b:05:68:89:70:e4:31:13:63:7a:4a:a2:82:53:1c: 64:2c:e7:21:1d:5b:ac:19:b0:32:63:cc:cf:61:1f: ef:33:2d:27:42:f3:63:3e:49:a5:79:6d:55:06:66: 08:de:77:ac:e1:47:43:8c:08:f8:fe:81:8a:a1:52: 04:8d:78:ea:07:e9:a5:62:a1:bc:12:f5:f9:58:09: e7:02:b0:69:79:12:c6:a7:c2:99:e3:76:82:ee:52: 81:13:0f:f9:6c:87:ba:d2:55:37:f5:57:27:1d:e3: f7:98:3e:fe:b2:d1:d9:0a:77:b5:1a:e6:ec:92:09: 2b:75:40:b2:a2:eb:b0:c8:66:18:89:0b:13:27:c2: 7f:84:5b:bc:6a:8d:d8:09:f6:33:7c:bd:a0:ad:28: 44:bf:de:30:b0:f1:6c:89:9b:97:4e:14:92:0c:19: d4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:1C:05:57:FF:D8:07:95:27:1A:23:4D:D4:3F:23:6D:76:93:C3:76 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/AE27A8A671B311EBB90BB364C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.158.198.0/23 Signature Algorithm: sha256WithRSAEncryption 54:45:4f:fa:83:8e:8e:8e:b7:60:6b:71:16:df:df:8f:52:f2: de:12:ee:64:2d:96:e3:07:b9:79:49:a7:71:ff:75:b3:5f:ba: 6a:a5:52:88:86:f1:c3:a2:49:c2:e4:bb:7e:8b:4a:8a:48:0d: 5f:e2:73:0c:49:ad:03:f3:a2:fc:41:27:0e:e7:b5:30:dc:eb: bb:58:0a:fe:e8:02:10:3e:75:38:a0:41:de:fd:b2:90:49:2b: bc:fe:b7:76:7c:a0:f1:17:4c:aa:1f:d2:0f:9a:4f:0d:3f:86: fd:dd:04:96:9a:ce:93:af:2b:59:40:31:bc:91:67:cd:09:a5: 2e:02:e3:7e:b9:8d:c5:5b:1f:dc:f0:01:a3:b9:77:d3:4b:57: 24:b6:cd:50:6d:58:53:cb:aa:a8:4e:09:c3:97:fe:1e:86:ef: 13:89:a3:b5:15:4f:be:43:3a:e8:fb:d8:44:19:be:a1:2f:4a: 8a:51:5b:e9:42:78:9a:52:48:9f:f6:3e:90:5c:32:0f:b9:59: f3:f2:7b:63:f9:f3:de:66:91:db:3c:58:82:ba:80:a1:ef:f1: 4d:59:a8:b4:91:5f:ce:bf:91:56:d1:25:e6:c8:ce:6f:d9:48: 0a:0a:cf:65:70:0b:b6:67:e4:6d:0c:47:4a:aa:9d:f6:f8:88: 74:20:0e:82 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICByowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjUxMTE0MjExMjI2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzE2My00NWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyo4mKzG60NF538Gx1Esrl5C+c5AbuQN/JNFirJIywxQExD17OaoYhqdk8WrN 4qGrUAMTbCamLPDguiD3zd7XN6jxYU+mXkqY7ZfhAruz/lA5J81jYVwnaOhbBWiJ cOQxE2N6SqKCUxxkLOchHVusGbAyY8zPYR/vMy0nQvNjPkmleW1VBmYI3nes4UdD jAj4/oGKoVIEjXjqB+mlYqG8EvX5WAnnArBpeRLGp8KZ43aC7lKBEw/5bIe60lU3 9VcnHeP3mD7+stHZCne1GubskgkrdUCyouuwyGYYiQsTJ8J/hFu8ao3YCfYzfL2g rShEv94wsPFsiZuXThSSDBnUzwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJ4cBVf/ 2AeVJxojTdQ/I212k8N2MB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdCN0YvMzdCODJDNTA3MUIyMTFFQkI0NEE4NDYzQzRGOUFFMDIvQUUyN0E4QTY3 MUIzMTFFQkI5MEJCMzY0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ57GMA0GCSqGSIb3DQEBCwUAA4IBAQBURU/6g46Ojrdga3EW39+P UvLeEu5kLZbjB7l5Sadx/3WzX7pqpVKIhvHDoknC5Lt+i0qKSA1f4nMMSa0D86L8 QScO57Uw3Ou7WAr+6AIQPnU4oEHe/bKQSSu8/rd2fKDxF0yqH9IPmk8NP4b93QSW ms6TrytZQDG8kWfNCaUuAuN+uY3FWx/c8AGjuXfTS1ckts1QbVhTy6qoTgnDl/4e hu8TiaO1FU++Qzro+9hEGb6hL0qKUVvpQniaUkif9j6QXDIPuVnz8ntj+fPeZpHb PFiCuoCh7/FNWai0kV/Ov5FW0SXmyM5v2UgKCs9lcAu2Z+RtDEdKqp32+Ih0IA6C -----END CERTIFICATE-----Generated at Mon Mar 2 15:43:15 2026 by rpki-client