$ rpki-client -vvf rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/1B2031C645B911EFB15BD970C4F9AE02.roa File: 1B2031C645B911EFB15BD970C4F9AE02.roa (raw, json) Hash identifier: dXWvzmI36/WnRSGkqNG90+TZgLmjYERv4giBlG6EeOs= Subject key identifier: 41:07:E1:2B:1D:D8:C3:85:2D:95:79:30:FA:76:7C:48:1B:14:19:5E Certificate issuer: /CN=A9158D5B/serialNumber=CED0ADB99F803F441F50DCCB83CEE72076DC3288 Certificate serial: 013A Authority key identifier: CE:D0:AD:B9:9F:80:3F:44:1F:50:DC:CB:83:CE:E7:20:76:DC:32:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ztCtuZ-AP0QfUNzLg87nIHbcMog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/1B2031C645B911EFB15BD970C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:10:26 +0000 ROA not before: Tue 13 Jan 2026 04:24:09 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 152317 IP address blocks: 157.10.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/ztCtuZ-AP0QfUNzLg87nIHbcMog.crl rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/ztCtuZ-AP0QfUNzLg87nIHbcMog.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ztCtuZ-AP0QfUNzLg87nIHbcMog.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158D5B, serialNumber=CED0ADB99F803F441F50DCCB83CEE72076DC3288 Validity Not Before: Jan 13 04:24:09 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a43ac1-b862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:bf:cd:f2:f6:83:6e:17:96:fd:3e:0d:de:7d: de:85:1f:ea:ec:24:d7:e2:cc:80:b6:be:7e:e2:00: 41:17:ab:1e:44:39:ab:e7:36:ea:ea:06:a4:d2:7a: 1b:ba:d4:5c:a9:0a:78:6b:e1:83:33:93:85:bf:82: bb:ba:bc:ed:16:42:f1:54:f1:3d:14:bd:c1:41:59: cc:5d:ad:c2:8a:47:95:6a:50:89:4b:93:57:04:0d: 40:54:44:c8:37:e0:52:01:e9:a8:d2:01:8d:b4:c5: 20:25:d1:e4:16:bf:11:54:b2:1c:84:27:8e:45:7d: bf:e7:cb:ef:23:80:0b:d7:0d:3c:1b:88:36:91:de: af:2e:3b:64:7e:52:77:8a:dc:fe:e2:53:f9:35:3b: ea:80:66:53:9a:47:65:46:06:21:a4:d2:cc:73:6c: 2f:da:29:47:28:a9:ac:c4:9e:a0:e2:03:86:83:6c: 0f:3c:cd:c2:d0:18:f4:c2:76:c6:0a:30:21:89:98: 30:2c:e9:23:4e:db:bd:4b:38:4b:a3:fb:1b:71:68: 45:06:68:a2:24:3d:7d:de:1d:8f:f7:a7:64:95:31: 81:bb:8a:b3:76:12:2b:30:02:1f:22:70:33:c3:69: ab:e9:85:5b:c0:c2:f8:37:98:ab:ca:f2:b4:97:c9: d1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:07:E1:2B:1D:D8:C3:85:2D:95:79:30:FA:76:7C:48:1B:14:19:5E X509v3 Authority Key Identifier: keyid:CE:D0:AD:B9:9F:80:3F:44:1F:50:DC:CB:83:CE:E7:20:76:DC:32:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/ztCtuZ-AP0QfUNzLg87nIHbcMog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ztCtuZ-AP0QfUNzLg87nIHbcMog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/1B2031C645B911EFB15BD970C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.144.0/23 Signature Algorithm: sha256WithRSAEncryption 04:bd:89:58:9b:79:7f:a1:33:eb:88:5f:0b:3b:17:7b:eb:fa: 28:c1:f7:c9:15:f2:c7:02:a9:9c:15:f0:f3:b5:86:d0:73:b8: 16:11:34:fe:44:9f:f6:66:03:3a:a2:22:a1:3b:72:c4:15:60: 19:34:e4:b9:67:3a:ef:ed:ff:85:df:d6:7b:bb:86:8d:06:63: 2b:90:cc:5e:f3:57:b8:6c:6e:38:d1:97:b9:56:51:60:36:b0: 73:97:bc:17:7d:17:03:7a:7d:f0:10:53:64:9c:60:96:4e:fd: 0e:84:90:69:a5:d5:46:94:2e:88:0e:75:ee:6b:68:5e:07:17: 7d:17:96:47:7f:0c:81:a0:35:35:1f:27:4e:77:8d:9d:17:30: ea:d1:da:12:3e:9c:80:19:e9:3f:f1:a2:56:7f:71:b3:60:71: 81:0a:36:8c:cd:39:0f:41:0a:1d:93:a2:5e:26:c6:d5:d1:0a: 55:31:9f:1d:58:f4:7c:d2:15:7f:02:4b:9f:ba:12:ec:0b:94: 7c:a7:9b:2f:d4:de:20:70:83:1b:d0:29:69:20:21:ea:89:3d: 99:2c:84:f4:34:e8:91:b1:4e:4b:d1:e0:3f:56:62:15:30:36: b8:ce:8f:a8:7a:9f:6e:59:50:2d:b2:63:2e:38:6c:de:e1:fb: 1d:a8:59:4a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThENUIxMTAvBgNVBAUTKENFRDBBREI5OUY4MDNGNDQxRjUwRENDQjgzQ0VFNzIw NzZEQzMyODgwHhcNMjYwMTEzMDQyNDA5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2FjMS1iODYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAir/N8vaDbheW/T4N3n3ehR/q7CTX4syAtr5+4gBBF6seRDmr5zbq6gak0nob utRcqQp4a+GDM5OFv4K7urztFkLxVPE9FL3BQVnMXa3CikeValCJS5NXBA1AVETI N+BSAemo0gGNtMUgJdHkFr8RVLIchCeORX2/58vvI4AL1w08G4g2kd6vLjtkflJ3 itz+4lP5NTvqgGZTmkdlRgYhpNLMc2wv2ilHKKmsxJ6g4gOGg2wPPM3C0Bj0wnbG CjAhiZgwLOkjTtu9SzhLo/sbcWhFBmiiJD193h2P96dklTGBu4qzdhIrMAIfInAz w2mr6YVbwML4N5iryvK0l8nR9wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEEH4Ssd 2MOFLZV5MPp2fEgbFBleMB8GA1UdIwQYMBaAFM7QrbmfgD9EH1Dcy4PO5yB23DKI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEQ1Qi83Q0M4RjE5RTQ1 QjcxMUVGQTZERkQwMzJDNEY5QUUwMi96dEN0dVotQVAwUWZVTnpMZzg3bklIYmNN b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3p0Q3R1Wi1BUDBRZlVOekxnODduSUhiY01vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThENUIvN0NDOEYxOUU0NUI3MTFFRkE2REZEMDMyQzRGOUFFMDIvMUIyMDMxQzY0 NUI5MTFFRkIxNUJEOTcwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQqQMA0GCSqGSIb3DQEBCwUAA4IBAQAEvYlYm3l/oTPriF8LOxd7 6/oowffJFfLHAqmcFfDztYbQc7gWETT+RJ/2ZgM6oiKhO3LEFWAZNOS5Zzrv7f+F 39Z7u4aNBmMrkMxe81e4bG440Ze5VlFgNrBzl7wXfRcDen3wEFNknGCWTv0OhJBp pdVGlC6IDnXua2heBxd9F5ZHfwyBoDU1HydOd42dFzDq0doSPpyAGek/8aJWf3Gz YHGBCjaMzTkPQQodk6JeJsbV0QpVMZ8dWPR80hV/AkufuhLsC5R8p5sv1N4gcIMb 0ClpICHqiT2ZLIT0NOiRsU5L0eA/VmIVMDa4zo+oep9uWVAtsmMuOGze4fsdqFlK -----END CERTIFICATE-----Generated at Mon Mar 2 05:59:29 2026 by rpki-client