$ rpki-client -vvf rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/206BA2C4AA2A11F0B670463FC4F9AE02.roa File: 206BA2C4AA2A11F0B670463FC4F9AE02.roa (raw, json) Hash identifier: OU+mhLZle+EP1xDm2dufdCPvv2y3/vJOiy9NfS4fNUw= Subject key identifier: D9:A6:4E:EB:D6:13:A8:FD:F2:7A:19:78:91:D8:BA:D7:C9:B2:1B:82 Certificate issuer: /CN=A9167A72/serialNumber=2EF4695443A4C0C7B34EA91B62A3D8F8E414517E Certificate serial: AA Authority key identifier: 2E:F4:69:54:43:A4:C0:C7:B3:4E:A9:1B:62:A3:D8:F8:E4:14:51:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LvRpVEOkwMezTqkbYqPY-OQUUX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/206BA2C4AA2A11F0B670463FC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:04:53 +0000 ROA not before: Thu 16 Oct 2025 00:51:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142292 IP address blocks: 168.140.196.0/22 maxlen: 22 168.140.196.0/24 maxlen: 24 168.140.197.0/24 maxlen: 24 168.140.198.0/24 maxlen: 24 168.140.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.crl rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LvRpVEOkwMezTqkbYqPY-OQUUX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167A72, serialNumber=2EF4695443A4C0C7B34EA91B62A3D8F8E414517E Validity Not Before: Oct 16 00:51:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a5a715-1957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:3b:0d:f1:62:23:c3:5c:a2:d2:37:24:61:59: cf:6b:56:67:67:db:a2:e1:de:71:dd:a8:4c:35:82: ac:bf:ec:2c:4c:6c:9f:60:d5:4c:4a:ce:90:ab:74: 01:18:a9:f4:f4:d9:13:cd:d2:64:2e:db:52:05:60: d6:8c:01:f0:88:e3:85:a4:3d:38:9f:ef:81:bc:f4: fe:f4:5a:98:a9:38:69:a1:0d:4d:9a:3a:11:17:17: 79:32:c8:80:1a:c9:bd:ba:1d:6c:81:f6:c1:f4:97: 08:e7:9e:02:9b:8f:40:c5:b3:e7:e9:b0:c2:76:d9: 8b:2e:7a:a4:04:e6:98:52:24:ad:37:63:ac:0c:ba: 81:a2:f6:7a:87:80:07:79:06:56:73:fa:0c:73:16: c8:43:eb:7e:66:ff:80:9d:01:44:d0:ae:ce:a2:90: 38:ff:2b:fe:35:67:27:e9:75:e6:30:e4:9f:37:58: 7b:bd:3d:6d:db:01:49:f9:09:f4:d0:a1:c0:70:4e: 6d:58:b5:60:e1:e7:fa:65:a0:dc:ef:dc:71:37:d9: 26:32:d3:ad:eb:1c:ff:d7:dc:f1:06:0c:d8:1d:ac: 3a:fd:6b:5e:12:ef:67:d6:db:da:09:ae:c3:a6:a0: 78:b3:1c:7a:2e:d9:fc:42:4c:d3:db:b1:a1:f5:35: 4d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:A6:4E:EB:D6:13:A8:FD:F2:7A:19:78:91:D8:BA:D7:C9:B2:1B:82 X509v3 Authority Key Identifier: keyid:2E:F4:69:54:43:A4:C0:C7:B3:4E:A9:1B:62:A3:D8:F8:E4:14:51:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LvRpVEOkwMezTqkbYqPY-OQUUX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/206BA2C4AA2A11F0B670463FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 168.140.196.0/22 Signature Algorithm: sha256WithRSAEncryption 21:e4:0e:73:aa:26:7d:c9:15:36:9b:6e:26:f2:72:b8:0c:7b: 7e:1e:c6:fd:34:18:d8:b0:e2:e4:fe:2d:c8:45:b0:35:6d:01: b9:e3:c1:57:fb:fa:89:56:3c:0d:c1:50:6d:11:f7:ec:a8:d3: 40:16:5c:dd:f0:f2:4d:3c:b9:ec:d0:74:e6:82:32:b4:1b:eb: 0e:f2:5c:33:a8:c5:9b:49:84:1f:17:8c:b2:f5:9e:ad:1b:e6: c2:fd:c7:33:cf:01:46:8d:36:82:01:93:64:05:7a:60:93:32: 9d:72:29:f3:16:8c:95:8b:7d:64:42:31:14:40:b8:45:49:9c: ab:d3:8d:f7:a6:cd:84:7e:bf:0e:7c:fa:54:c3:f1:94:43:9f: 4a:59:77:ad:69:1e:4c:d0:88:54:2b:14:43:c7:ba:6d:ef:52: bd:c8:54:bc:44:32:3c:63:2b:cc:97:34:25:e9:f6:b5:fe:f1: a8:ea:f4:38:8d:77:2a:82:2c:ef:a8:04:50:a8:7a:05:a2:e2: 17:40:a0:73:35:5f:7b:13:2f:22:79:97:d4:89:b9:13:6e:26: 53:85:61:ff:cc:f7:cf:79:a4:73:7c:69:f0:d0:ab:7f:d9:f0: e3:49:5b:23:ea:fc:6a:37:df:48:7a:84:eb:70:22:b2:d3:67: d8:28:b0:0e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdBNzIxMTAvBgNVBAUTKDJFRjQ2OTU0NDNBNEMwQzdCMzRFQTkxQjYyQTNEOEY4 RTQxNDUxN0UwHhcNMjUxMDE2MDA1MTQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTcxNS0xOTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmTsN8WIjw1yi0jckYVnPa1ZnZ9ui4d5x3ahMNYKsv+wsTGyfYNVMSs6Qq3QB GKn09NkTzdJkLttSBWDWjAHwiOOFpD04n++BvPT+9FqYqThpoQ1NmjoRFxd5MsiA Gsm9uh1sgfbB9JcI554Cm49AxbPn6bDCdtmLLnqkBOaYUiStN2OsDLqBovZ6h4AH eQZWc/oMcxbIQ+t+Zv+AnQFE0K7OopA4/yv+NWcn6XXmMOSfN1h7vT1t2wFJ+Qn0 0KHAcE5tWLVg4ef6ZaDc79xxN9kmMtOt6xz/19zxBgzYHaw6/WteEu9n1tvaCa7D pqB4sxx6Ltn8QkzT27Gh9TVNhwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNmmTuvW E6j98noZeJHYutfJshuCMB8GA1UdIwQYMBaAFC70aVRDpMDHs06pG2Kj2PjkFFF+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0E3Mi80NERFNjlDRTJC MTQxMUYwODUyM0YyNkJDNEY5QUUwMi9MdlJwVkVPa3dNZXpUcWtiWXFQWS1PUVVV WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0x2UnBWRU9rd01lelRxa2JZcVBZLU9RVVVYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdBNzIvNDRERTY5Q0UyQjE0MTFGMDg1MjNGMjZCQzRGOUFFMDIvMjA2QkEyQzRB QTJBMTFGMEI2NzA0NjNGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCqIzEMA0GCSqGSIb3DQEBCwUAA4IBAQAh5A5zqiZ9yRU2m24m8nK4 DHt+Hsb9NBjYsOLk/i3IRbA1bQG548FX+/qJVjwNwVBtEffsqNNAFlzd8PJNPLns 0HTmgjK0G+sO8lwzqMWbSYQfF4yy9Z6tG+bC/cczzwFGjTaCAZNkBXpgkzKdcinz FoyVi31kQjEUQLhFSZyr0433ps2Efr8OfPpUw/GUQ59KWXetaR5M0IhUKxRDx7pt 71K9yFS8RDI8YyvMlzQl6fa1/vGo6vQ4jXcqgizvqARQqHoFouIXQKBzNV97Ey8i eZfUibkTbiZThWH/zPfPeaRzfGnw0Kt/2fDjSVsj6vxqN99IeoTrcCKy02fYKLAO -----END CERTIFICATE-----Generated at Mon Mar 2 21:10:51 2026 by rpki-client