$ rpki-client -vvf rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/B4FED5FC8E5311EBB81E6C70C4F9AE02.roa File: B4FED5FC8E5311EBB81E6C70C4F9AE02.roa (raw, json) Hash identifier: RtWeOQX5vOyYKJEaG6UMlfI/9iSX2IM8UXwdfjXgxxk= Subject key identifier: AC:C4:58:D0:E8:57:CE:5E:32:30:87:23:8B:05:64:A0:28:49:39:58 Certificate issuer: /CN=A916814B/serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Certificate serial: 16A9 Authority key identifier: E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/B4FED5FC8E5311EBB81E6C70C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:55:52 +0000 ROA not before: Wed 26 Nov 2025 16:35:25 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 55446 IP address blocks: 49.128.108.0/22 maxlen: 22 49.128.108.0/24 maxlen: 24 49.128.109.0/24 maxlen: 24 49.128.110.0/24 maxlen: 24 49.128.111.0/24 maxlen: 24 2407:9a00::/32 maxlen: 32 2407:9a00:1::/48 maxlen: 48 2407:9a00:2::/48 maxlen: 48 2407:9a00:3::/48 maxlen: 48 2407:9a00:4::/48 maxlen: 48 2407:9a00:5::/48 maxlen: 48 2407:9a00:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5801 (0x16a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916814B, serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Validity Not Before: Nov 26 16:35:25 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46188-d579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:80:3c:d4:c5:9a:5a:65:cf:2d:b9:82:02:e7: f2:6a:b8:45:74:66:20:f9:14:b9:a5:56:7c:e4:05: ac:d2:bd:d6:b1:68:61:fc:9f:d2:7a:e6:86:63:ab: f8:ab:13:93:e7:b5:b1:d4:f2:1e:85:05:87:9a:dd: 32:77:5f:33:48:40:a6:b1:fb:e8:01:99:df:be:5f: 92:fd:e8:d2:27:b5:25:9e:21:83:9c:a4:90:c8:06: 9a:ee:3a:2e:d1:3b:1d:2e:93:58:05:db:0c:56:43: 49:54:b1:06:0a:ce:00:07:64:b7:f6:0c:85:fa:79: f6:4c:f0:90:59:f5:99:49:87:73:af:88:94:c6:75: e1:55:df:ea:4c:8c:e1:30:7a:3f:13:b3:34:f3:ad: c1:80:c1:d9:8e:51:6f:a5:d2:69:98:2a:84:c9:95: 89:79:09:9f:3c:77:7c:67:c9:ad:82:91:a8:75:f2: bf:28:1f:a2:03:9d:6a:ba:55:14:d0:be:cf:58:7d: 52:aa:f4:50:08:88:bb:86:fa:13:ab:b6:79:ed:0b: 7e:15:09:b5:21:4a:c2:2e:94:c7:80:c3:0d:8d:5f: 38:03:c6:d0:f6:5c:0a:a6:31:7a:40:94:b0:7e:28: d7:db:68:66:3c:a1:44:b3:23:98:01:46:aa:7e:25: df:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:C4:58:D0:E8:57:CE:5E:32:30:87:23:8B:05:64:A0:28:49:39:58 X509v3 Authority Key Identifier: keyid:E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/B4FED5FC8E5311EBB81E6C70C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.128.108.0/22 IPv6: 2407:9a00::/32 Signature Algorithm: sha256WithRSAEncryption a6:91:0d:c9:93:f4:ee:3e:d9:4e:b2:8d:35:54:ba:b4:47:77: b9:a9:ae:73:0b:f8:d3:63:c0:cb:92:e0:c2:ff:02:f5:1c:60: e7:4f:cc:e1:4b:b4:5e:58:9e:e2:47:a6:ba:55:08:b2:2c:a0: 8b:fd:38:8d:9f:f7:34:32:8d:ff:09:2f:5b:0e:56:6c:0b:b7: 07:9f:5a:31:e2:93:83:99:a3:2d:4a:ab:8b:38:58:d8:3d:d6: e8:9d:4a:a0:a0:45:19:84:f7:a3:c3:a3:22:9c:df:13:91:6f: da:1a:93:58:90:c1:b8:33:bc:fc:25:a6:fa:b4:29:3e:9a:4f: 7c:51:4a:64:8c:bb:10:cd:55:40:e4:02:ba:e5:e2:d5:73:df: 44:5c:08:f5:25:44:e6:cd:03:15:72:22:18:8b:f5:b9:b0:b7: 9f:df:a0:f5:31:b1:ff:23:dd:1c:13:04:2e:4c:e7:eb:b5:a1: 0d:ba:7e:d0:5c:bc:31:0f:46:6c:d2:c0:dd:1d:61:7a:44:96: f6:6f:5e:8d:f2:8f:fc:eb:d3:d8:3c:3b:3e:ff:86:0a:c4:c7: bd:b0:51:c8:32:4c:67:87:92:52:86:61:71:70:8f:cd:e0:54: 6e:69:45:0d:3a:b2:db:b0:ab:5e:ed:6d:ef:a2:16:aa:cf:79: e2:d1:35:9b -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICFqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxNEIxMTAvBgNVBAUTKEUxODMyREI2QTUxRTRBMjU5RTkwRkVDODFFNDdDNTQ2 OUM1MkE2ODkwHhcNMjUxMTI2MTYzNTI1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjE4OC1kNTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9oA81MWaWmXPLbmCAufyarhFdGYg+RS5pVZ85AWs0r3WsWhh/J/SeuaGY6v4 qxOT57Wx1PIehQWHmt0yd18zSECmsfvoAZnfvl+S/ejSJ7UlniGDnKSQyAaa7jou 0TsdLpNYBdsMVkNJVLEGCs4AB2S39gyF+nn2TPCQWfWZSYdzr4iUxnXhVd/qTIzh MHo/E7M0863BgMHZjlFvpdJpmCqEyZWJeQmfPHd8Z8mtgpGodfK/KB+iA51qulUU 0L7PWH1SqvRQCIi7hvoTq7Z57Qt+FQm1IUrCLpTHgMMNjV84A8bQ9lwKpjF6QJSw fijX22hmPKFEsyOYAUaqfiXffQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFKzEWNDo V85eMjCHI4sFZKAoSTlYMB8GA1UdIwQYMBaAFOGDLbalHkolnpD+yB5HxUacUqaJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODE0Qi8wMkEyRDk3MDE2 MkYxMUU4QjhERTI2NjlDNEY5QUUwMi80WU10dHFVZVNpV2VrUDdJSGtmRlJweFNw b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTXR0cVVlU2lXZWtQN0lIa2ZGUnB4U3Bvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgxNEIvMDJBMkQ5NzAxNjJGMTFFOEI4REUyNjY5QzRGOUFFMDIvQjRGRUQ1RkM4 RTUzMTFFQkI4MUU2QzcwQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCMYBsMA0EAgACMAcDBQAkB5oAMA0GCSqGSIb3DQEBCwUAA4IBAQCm kQ3Jk/TuPtlOso01VLq0R3e5qa5zC/jTY8DLkuDC/wL1HGDnT8zhS7ReWJ7iR6a6 VQiyLKCL/TiNn/c0Mo3/CS9bDlZsC7cHn1ox4pODmaMtSquLOFjYPdbonUqgoEUZ hPejw6MinN8TkW/aGpNYkMG4M7z8Jab6tCk+mk98UUpkjLsQzVVA5AK65eLVc99E XAj1JUTmzQMVciIYi/W5sLef36D1MbH/I90cEwQuTOfrtaENun7QXLwxD0Zs0sDd HWF6RJb2b16N8o/869PYPDs+/4YKxMe9sFHIMkxnh5JShmFxcI/N4FRuaUUNOrLb sKte7W3vohaqz3ni0TWb -----END CERTIFICATE-----Generated at Mon Mar 2 09:46:22 2026 by rpki-client