$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/6E6FFF6A92F911ED8A66E70CC4F9AE02.roa File: 6E6FFF6A92F911ED8A66E70CC4F9AE02.roa (raw, json) Hash identifier: u7UReDbBhUIS75vFBgtwpT87KJJAUp7AZ+DWcKC1QwM= Subject key identifier: 87:0E:CF:AF:EE:EC:98:DA:44:74:5B:5F:E0:58:CA:44:DD:61:1E:C7 Certificate issuer: /CN=A9161A58/serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Certificate serial: 09B7 Authority key identifier: B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/6E6FFF6A92F911ED8A66E70CC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:20:32 +0000 ROA not before: Sat 31 May 2025 20:26:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 41095 IP address blocks: 45.116.8.0/24 maxlen: 24 45.116.9.0/24 maxlen: 24 45.116.10.0/24 maxlen: 24 45.116.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2487 (0x9b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A58, serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Validity Not Before: May 31 20:26:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a42f10-86b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:df:05:62:d4:00:94:1c:21:a0:1a:4b:1d:6e: f9:06:e5:cb:9d:fa:c5:cf:5e:30:48:d8:7d:8c:56: 35:23:47:39:cf:86:14:f3:f2:28:dc:df:80:16:c4: 9d:1e:a9:f4:e0:90:4e:20:82:1e:19:b7:c0:9c:65: 99:12:64:86:92:4a:92:37:0b:b2:1d:2e:e1:7e:f1: a9:69:65:64:06:5f:6b:c6:d8:69:a1:7f:db:23:84: 3f:95:1a:67:96:ad:5e:f3:a1:63:41:c0:da:d2:06: ec:2f:a2:e9:3d:34:6b:48:b9:ee:f1:fa:62:a5:4d: e3:f3:1c:b0:68:e3:09:1b:e4:9f:b4:2c:86:14:bc: 20:69:8c:34:11:27:5e:ae:c8:6a:c0:bc:e3:4f:eb: da:6c:d6:44:f9:ea:36:bd:b0:7d:3d:d7:b7:ac:5e: 27:2a:0f:f8:40:e5:a7:e1:10:7f:e9:4d:41:c0:ae: 76:35:47:94:74:31:31:63:a1:ea:00:6b:8b:96:cb: 24:24:4c:bf:fd:d8:e7:b1:f4:d6:ce:75:5e:38:24: 74:13:0c:ca:fc:5a:42:ea:48:bb:00:2f:7d:3a:45: da:f9:32:64:ac:cf:18:22:b8:c8:ae:89:06:0c:6a: 8d:23:3f:79:53:93:42:48:fa:6f:d5:18:ff:a0:a8: 69:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:0E:CF:AF:EE:EC:98:DA:44:74:5B:5F:E0:58:CA:44:DD:61:1E:C7 X509v3 Authority Key Identifier: keyid:B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/6E6FFF6A92F911ED8A66E70CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.116.8.0/22 Signature Algorithm: sha256WithRSAEncryption cf:ce:e3:11:06:b2:a0:54:22:27:f7:e1:f0:b1:6c:aa:8f:b2: ef:37:ef:b8:18:fe:83:8b:11:b0:94:05:88:0d:7c:b6:c0:be: 51:87:fd:5c:90:57:c8:7d:a2:8f:07:5d:c4:fe:fb:04:18:d2: f6:06:14:91:eb:d9:5f:17:18:f7:25:e4:c6:91:d5:76:d2:b7: c3:49:d7:1c:39:b5:6b:27:be:9f:b4:2a:08:b0:a9:84:fd:6c: 97:f3:87:43:b5:3d:9f:6b:eb:31:55:34:8b:56:c3:9b:02:d8: bf:06:7c:73:3a:b8:7b:c1:09:02:16:27:1d:a6:47:35:14:84: 79:1b:a7:e5:bb:e9:1e:24:2f:bc:92:93:2b:3e:6d:fe:67:05: 9c:55:73:9d:7e:91:ed:a5:59:1b:a0:5b:09:e4:e1:1a:27:ad: 8b:8a:73:13:c9:a4:0e:81:c6:2d:5d:30:9e:7e:d0:d0:12:13: 47:5e:e1:33:b1:4b:6f:40:b1:6f:17:f3:22:2f:96:39:27:fa: ec:47:d5:ac:30:02:b6:8a:41:43:f6:3e:36:5c:f3:8c:8b:4c: 92:9e:3d:7e:8a:41:e0:73:38:45:af:c8:44:b9:f3:2a:59:23: 29:30:7d:3b:ce:ba:3d:85:89:a4:c6:5d:5f:e3:00:a2:52:31: 98:05:9c:e5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNTgxMTAvBgNVBAUTKEI0NjY5RDMwRDIxMEU0OTA3Q0QyODg4QkU3NEI4OUE2 REQzQ0I2QzgwHhcNMjUwNTMxMjAyNjQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmYxMC04NmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtN8FYtQAlBwhoBpLHW75BuXLnfrFz14wSNh9jFY1I0c5z4YU8/Io3N+AFsSd Hqn04JBOIIIeGbfAnGWZEmSGkkqSNwuyHS7hfvGpaWVkBl9rxthpoX/bI4Q/lRpn lq1e86FjQcDa0gbsL6LpPTRrSLnu8fpipU3j8xywaOMJG+SftCyGFLwgaYw0ESde rshqwLzjT+vabNZE+eo2vbB9Pde3rF4nKg/4QOWn4RB/6U1BwK52NUeUdDExY6Hq AGuLlsskJEy//djnsfTWznVeOCR0EwzK/FpC6ki7AC99OkXa+TJkrM8YIrjIrokG DGqNIz95U5NCSPpv1Rj/oKhpowIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIcOz6/u 7JjaRHRbX+BYykTdYR7HMB8GA1UdIwQYMBaAFLRmnTDSEOSQfNKIi+dLiabdPLbI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1OC9CMzg5MzA0RUE3 RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVKQjgwb2lMNTB1SnB0MDh0 c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHYWRNTklRNUpCODBvaUw1MHVKcHQwOHRzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjFBNTgvQjM4OTMwNEVBN0VDMTFFQTgwNDg1ODY0QzRGOUFFMDIvNkU2RkZGNkE5 MkY5MTFFRDhBNjZFNzBDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCLXQIMA0GCSqGSIb3DQEBCwUAA4IBAQDPzuMRBrKgVCIn9+HwsWyq j7LvN++4GP6DixGwlAWIDXy2wL5Rh/1ckFfIfaKPB13E/vsEGNL2BhSR69lfFxj3 JeTGkdV20rfDSdccObVrJ76ftCoIsKmE/WyX84dDtT2fa+sxVTSLVsObAti/Bnxz Orh7wQkCFicdpkc1FIR5G6flu+keJC+8kpMrPm3+ZwWcVXOdfpHtpVkboFsJ5OEa J62LinMTyaQOgcYtXTCeftDQEhNHXuEzsUtvQLFvF/MiL5Y5J/rsR9WsMAK2ikFD 9j42XPOMi0ySnj1+ikHgczhFr8hEufMqWSMpMH07zro9hYmkxl1f4wCiUjGYBZzl -----END CERTIFICATE-----Generated at Mon Mar 2 11:39:20 2026 by rpki-client