$ rpki-client -vvf rpki.apnic.net/member_repository/A9160AEE/188CAF06A3EC11F0B8E97F37C4F9AE02/6FBBA45AFD2711F0B1802E18426F56BC.roa File: 6FBBA45AFD2711F0B1802E18426F56BC.roa (raw, json) Hash identifier: InU5YhYgQdECTfOQlDj5F02bMyaCjuUJFEGGYk6O1Jc= Subject key identifier: 84:87:1E:C0:AF:05:99:E5:F7:BA:01:D6:3C:37:F4:D1:7F:B6:F6:C4 Certificate issuer: /CN=A9160AEE/serialNumber=CC4240707410363735EBF6EFB194FB670F345F42 Certificate serial: 71 Authority key identifier: CC:42:40:70:74:10:36:37:35:EB:F6:EF:B1:94:FB:67:0F:34:5F:42 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zEJAcHQQNjc16_bvsZT7Zw80X0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160AEE/188CAF06A3EC11F0B8E97F37C4F9AE02/6FBBA45AFD2711F0B1802E18426F56BC.roa Signing time: Sun 01 Mar 2026 18:05:13 +0000 ROA not before: Thu 29 Jan 2026 16:01:05 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154285 IP address blocks: 138.252.18.0/23 maxlen: 23 138.252.18.0/24 maxlen: 24 138.252.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160AEE/188CAF06A3EC11F0B8E97F37C4F9AE02/zEJAcHQQNjc16_bvsZT7Zw80X0I.crl rsync://rpki.apnic.net/member_repository/A9160AEE/188CAF06A3EC11F0B8E97F37C4F9AE02/zEJAcHQQNjc16_bvsZT7Zw80X0I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zEJAcHQQNjc16_bvsZT7Zw80X0I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160AEE, serialNumber=CC4240707410363735EBF6EFB194FB670F345F42 Validity Not Before: Jan 29 16:01:05 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47fd9-87e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:04:ab:55:b9:6e:f1:61:30:89:d8:b3:37:ee: 71:36:83:d3:02:48:a2:4c:9d:1b:6a:c5:e0:ea:27: c8:16:ae:3f:b5:bf:81:42:a9:c7:22:b6:b9:3f:fe: a4:a9:08:4d:ea:32:a6:01:68:01:fd:34:80:e7:a3: 7e:6b:92:c6:7e:c0:ee:8f:bd:57:67:21:76:6a:7c: e6:1a:30:d8:0c:93:ee:51:32:97:e5:f2:c5:c9:a1: 04:4f:27:4f:06:e0:7e:82:73:0d:bf:80:4d:93:27: db:ee:0c:aa:b8:58:05:1c:dd:45:50:7b:80:32:26: 71:d1:cc:fd:4e:06:8f:b5:72:f5:56:c3:85:8e:97: fa:41:37:64:49:10:ac:37:58:a5:9d:4b:a2:b7:0f: 45:ae:1e:f2:cc:fa:80:65:09:bc:27:8b:78:f9:87: dd:ab:12:20:d8:24:6e:c4:45:f3:db:d9:5e:63:60: 5b:08:d7:0a:57:e8:72:25:29:00:9f:87:d2:ef:e2: 31:e9:78:6a:40:08:34:2a:34:2d:85:6a:e7:b6:be: 03:d5:53:af:e5:1f:c8:de:40:59:79:7f:b6:ed:0d: 4b:bd:af:fa:36:3b:e4:b2:51:9c:4b:8f:b6:85:a5: ad:fb:06:c8:ba:84:14:16:57:3c:13:bf:58:e0:8f: a7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:87:1E:C0:AF:05:99:E5:F7:BA:01:D6:3C:37:F4:D1:7F:B6:F6:C4 X509v3 Authority Key Identifier: keyid:CC:42:40:70:74:10:36:37:35:EB:F6:EF:B1:94:FB:67:0F:34:5F:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160AEE/188CAF06A3EC11F0B8E97F37C4F9AE02/zEJAcHQQNjc16_bvsZT7Zw80X0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zEJAcHQQNjc16_bvsZT7Zw80X0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160AEE/188CAF06A3EC11F0B8E97F37C4F9AE02/6FBBA45AFD2711F0B1802E18426F56BC.roa sbgp-ipAddrBlock: critical IPv4: 138.252.18.0/23 Signature Algorithm: sha256WithRSAEncryption 04:47:03:fc:d5:1a:00:52:aa:a6:e1:db:37:c7:25:ab:5b:b1: 42:81:a1:48:d8:5f:2e:33:88:ce:45:dd:17:95:8d:51:cb:ca: 75:91:44:6c:ed:28:87:e9:7f:06:c9:ce:74:4c:7c:7a:c3:90: 83:4a:f8:d8:1a:d0:9a:70:d6:b4:a4:b3:15:ee:17:40:ee:0b: 81:d0:c2:de:1f:44:8b:e0:fd:4f:14:cd:64:47:af:09:6d:15: 5d:d3:54:43:99:db:31:7e:90:02:f4:9a:75:34:b2:05:98:40: 59:e4:96:27:c5:b9:17:a4:9c:e6:e3:3f:69:44:ec:54:32:ca: d5:d9:5f:41:9c:96:c0:e8:6d:14:84:bd:06:d3:96:c1:d3:e3: 4f:45:26:31:9a:5c:b8:d0:28:60:e7:ef:e6:ea:e6:ab:90:d7: b0:ee:d7:cc:02:fc:11:1d:e3:54:13:dd:34:f6:65:a0:90:2c: bd:4d:ec:f2:32:42:1e:12:03:76:72:81:d0:4a:34:88:44:c2: 12:5f:55:11:c1:14:51:11:a5:43:e6:82:2d:4c:e5:2d:97:c4: ce:79:f2:61:e0:3a:66:8f:32:9a:6d:5a:ad:02:0f:26:41:9a: 9c:41:73:79:18:57:26:ef:bb:07:96:77:ff:54:08:a1:b4:c9: fc:58:42:d7 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MEFFRTExMC8GA1UEBRMoQ0M0MjQwNzA3NDEwMzYzNzM1RUJGNkVGQjE5NEZCNjcw RjM0NUY0MjAeFw0yNjAxMjkxNjAxMDVaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQ3ZmQ5LTg3ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYBKtVuW7xYTCJ2LM37nE2g9MCSKJMnRtqxeDqJ8gWrj+1v4FCqccitrk//qSp CE3qMqYBaAH9NIDno35rksZ+wO6PvVdnIXZqfOYaMNgMk+5RMpfl8sXJoQRPJ08G 4H6Ccw2/gE2TJ9vuDKq4WAUc3UVQe4AyJnHRzP1OBo+1cvVWw4WOl/pBN2RJEKw3 WKWdS6K3D0WuHvLM+oBlCbwni3j5h92rEiDYJG7ERfPb2V5jYFsI1wpX6HIlKQCf h9Lv4jHpeGpACDQqNC2Faue2vgPVU6/lH8jeQFl5f7btDUu9r/o2O+SyUZxLj7aF pa37Bsi6hBQWVzwTv1jgj6dfAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUhIcewK8F meX3ugHWPDf00X+29sQwHwYDVR0jBBgwFoAUzEJAcHQQNjc16/bvsZT7Zw80X0Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwQUVFLzE4OENBRjA2QTNF QzExRjBCOEU5N0YzN0M0RjlBRTAyL3pFSkFjSFFRTmpjMTZfYnZzWlQ3Wnc4MFgw SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvekVKQWNIUVFOamMxNl9idnNaVDdadzgwWDBJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEFFRS8xODhDQUYwNkEzRUMxMUYwQjhFOTdGMzdDNEY5QUUwMi82RkJCQTQ1QUZE MjcxMUYwQjE4MDJFMTg0MjZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/BIwDQYJKoZIhvcNAQELBQADggEBAARHA/zVGgBSqqbh2zfHJatb sUKBoUjYXy4ziM5F3ReVjVHLynWRRGztKIfpfwbJznRMfHrDkINK+Nga0Jpw1rSk sxXuF0DuC4HQwt4fRIvg/U8UzWRHrwltFV3TVEOZ2zF+kAL0mnU0sgWYQFnklifF uReknObjP2lE7FQyytXZX0GclsDobRSEvQbTlsHT409FJjGaXLjQKGDn7+bq5quQ 17Du18wC/BEd41QT3TT2ZaCQLL1N7PIyQh4SA3ZygdBKNIhEwhJfVRHBFFERpUPm gi1M5S2XxM558mHgOmaPMpptWq0CDyZBmpxBc3kYVybvuweWd/9UCKG0yfxYQtc= -----END CERTIFICATE-----Generated at Mon Mar 2 16:36:57 2026 by rpki-client