$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/40D0157A4E6A11F088256D4EC4F9AE02.roa File: 40D0157A4E6A11F088256D4EC4F9AE02.roa (raw, json) Hash identifier: GtB+540Na9gBA/mhZk/pwr8xgrOuS92j17VMFwnTNm4= Subject key identifier: D5:3B:A9:3F:F9:C7:BF:63:04:B7:47:76:AF:B7:75:CF:89:4F:18:FF Certificate issuer: /CN=A9169A9C/serialNumber=D520192A95AFC8D5F27374D9A34C4633CE7DAC44 Certificate serial: 0206 Authority key identifier: D5:20:19:2A:95:AF:C8:D5:F2:73:74:D9:A3:4C:46:33:CE:7D:AC:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1SAZKpWvyNXyc3TZo0xGM859rEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/40D0157A4E6A11F088256D4EC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:00:15 +0000 ROA not before: Sat 03 Jan 2026 02:21:44 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 151633 IP address blocks: 45.249.226.0/24 maxlen: 32 2401:e560::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.crl rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1SAZKpWvyNXyc3TZo0xGM859rEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:49:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A9C, serialNumber=D520192A95AFC8D5F27374D9A34C4633CE7DAC44 Validity Not Before: Jan 3 02:21:44 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41c3f-62dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0b:bf:4d:bf:93:b5:b8:59:c6:80:fe:6a:2e: b5:b0:05:82:92:1d:ad:3f:7c:2f:46:72:3e:7c:08: 80:ec:ba:18:22:71:29:27:69:6f:f2:c1:ce:a6:d0: 20:81:3b:3f:d2:79:f0:35:74:45:77:2b:2f:92:87: 99:52:0e:c1:7b:7a:21:31:77:fe:76:0e:80:b7:9a: 7a:7b:2e:5a:36:a1:56:b9:91:b2:35:d4:6a:56:fa: 10:53:a6:ae:3b:8f:84:3f:45:7f:95:8b:01:75:3f: f4:f8:4e:d8:2d:bc:d0:3f:77:0a:5b:1f:bd:3c:fe: 61:8e:b9:79:7e:c3:58:da:ca:de:c7:58:a9:70:f1: db:04:c1:e4:cf:cf:0d:5e:2d:cf:e1:e8:68:77:c2: ea:43:b7:e0:5f:9e:03:32:bf:84:72:93:48:27:a6: 48:df:54:65:af:8a:a4:d5:0a:16:f5:3f:d4:ac:3a: 1c:3a:a3:54:5c:54:13:b0:0d:dd:df:fe:44:28:44: 24:50:ff:20:15:f8:7b:50:b8:62:07:88:e1:d7:ca: 4e:f0:06:af:cd:e3:06:3e:77:1d:e5:c8:39:58:b9: 1b:14:33:f3:f4:90:d2:e0:25:66:ee:f3:8e:ec:58: 19:25:93:16:53:10:39:57:52:58:0f:76:b7:a0:7c: e1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:3B:A9:3F:F9:C7:BF:63:04:B7:47:76:AF:B7:75:CF:89:4F:18:FF X509v3 Authority Key Identifier: keyid:D5:20:19:2A:95:AF:C8:D5:F2:73:74:D9:A3:4C:46:33:CE:7D:AC:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1SAZKpWvyNXyc3TZo0xGM859rEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/40D0157A4E6A11F088256D4EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.249.226.0/24 IPv6: 2401:e560::/32 Signature Algorithm: sha256WithRSAEncryption 5d:eb:20:43:73:e0:eb:37:2e:66:a9:1c:6d:8d:c2:9c:ea:9b: 7a:bf:8c:7f:91:9a:94:88:13:6f:25:32:59:2c:4a:cc:02:da: 65:b5:9a:06:da:2f:ff:ee:6d:78:16:7c:5c:16:29:98:4d:18: 75:2d:91:3a:d2:91:e4:2d:e0:be:87:ba:3c:82:68:7f:73:7e: 9d:7b:a0:68:e3:33:57:97:25:91:87:bb:d0:19:b5:6a:43:c2: eb:c1:48:ce:29:24:77:b7:bc:d0:81:fc:e7:72:c1:a0:2b:c3: 6a:10:d7:c1:5d:97:68:c2:28:5b:a5:10:f1:ad:a6:95:0d:dc: 29:84:20:69:89:77:8e:30:fb:1d:f3:a7:3d:ad:4e:f5:06:19: 3c:aa:51:57:44:82:40:b4:be:bf:8e:74:05:09:cf:18:0e:28: 6f:d2:34:b7:38:d0:1c:17:1f:12:f9:2d:02:c8:a3:fa:46:8f: 50:04:12:a9:6f:a0:fb:8c:fe:1e:12:b6:e8:d8:4a:37:c1:80: ec:97:53:1f:45:b4:7e:75:11:5d:73:f0:ee:ad:c2:d6:c8:01: fc:47:23:c0:24:b4:bf:d0:43:d7:a8:ca:33:37:a6:35:cf:4a: 0d:e1:f2:b3:c2:87:9b:35:2b:a5:01:78:e4:2c:37:38:bb:cd: d8:43:5d:d4 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBOUMxMTAvBgNVBAUTKEQ1MjAxOTJBOTVBRkM4RDVGMjczNzREOUEzNEM0NjMz Q0U3REFDNDQwHhcNMjYwMTAzMDIyMTQ0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWMzZi02MmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgu/Tb+TtbhZxoD+ai61sAWCkh2tP3wvRnI+fAiA7LoYInEpJ2lv8sHOptAg gTs/0nnwNXRFdysvkoeZUg7Be3ohMXf+dg6At5p6ey5aNqFWuZGyNdRqVvoQU6au O4+EP0V/lYsBdT/0+E7YLbzQP3cKWx+9PP5hjrl5fsNY2srex1ipcPHbBMHkz88N Xi3P4ehod8LqQ7fgX54DMr+EcpNIJ6ZI31Rlr4qk1QoW9T/UrDocOqNUXFQTsA3d 3/5EKEQkUP8gFfh7ULhiB4jh18pO8AavzeMGPncd5cg5WLkbFDPz9JDS4CVm7vOO 7FgZJZMWUxA5V1JYD3a3oHzhQQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFNU7qT/5 x79jBLdHdq+3dc+JTxj/MB8GA1UdIwQYMBaAFNUgGSqVr8jV8nN02aNMRjPOfaxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUE5Qy9DM0E4MDQwNDNG ODQxMUVFQjkwMEE5MEZDNEY5QUUwMi8xU0FaS3BXdnlOWHljM1RabzB4R004NTly RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTQVpLcFd2eU5YeWMzVFpvMHhHTTg1OXJFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlBOUMvQzNBODA0MDQzRjg0MTFFRUI5MDBBOTBGQzRGOUFFMDIvNDBEMDE1N0E0 RTZBMTFGMDg4MjU2RDRFQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQALfniMA0EAgACMAcDBQAkAeVgMA0GCSqGSIb3DQEBCwUAA4IBAQBd 6yBDc+DrNy5mqRxtjcKc6pt6v4x/kZqUiBNvJTJZLErMAtpltZoG2i//7m14Fnxc FimYTRh1LZE60pHkLeC+h7o8gmh/c36de6Bo4zNXlyWRh7vQGbVqQ8LrwUjOKSR3 t7zQgfzncsGgK8NqENfBXZdowihbpRDxraaVDdwphCBpiXeOMPsd86c9rU71Bhk8 qlFXRIJAtL6/jnQFCc8YDihv0jS3ONAcFx8S+S0CyKP6Ro9QBBKpb6D7jP4eErbo 2Eo3wYDsl1MfRbR+dRFdc/DurcLWyAH8RyPAJLS/0EPXqMozN6Y1z0oN4fKzwoeb NSulAXjkLDc4u83YQ13U -----END CERTIFICATE-----Generated at Mon Mar 2 10:55:52 2026 by rpki-client