$ rpki-client -vvf rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/122C6942D9CE11EEB6EA7F6CC4F9AE02.roa File: 122C6942D9CE11EEB6EA7F6CC4F9AE02.roa (raw, json) Hash identifier: KwPytA+KujGmJ38zMwLjvUJdfvsWlYXoPJvKji6j9iM= Subject key identifier: D5:00:FF:DD:B9:57:45:96:EF:5E:58:DB:87:FC:7A:14:B6:56:BB:58 Certificate issuer: /CN=A9169BAF/serialNumber=AD161240E97A32D103099BA78A028CD09F5F5B93 Certificate serial: 017D Authority key identifier: AD:16:12:40:E9:7A:32:D1:03:09:9B:A7:8A:02:8C:D0:9F:5F:5B:93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rRYSQOl6MtEDCZunigKM0J9fW5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/122C6942D9CE11EEB6EA7F6CC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:35:02 +0000 ROA not before: Wed 05 Mar 2025 06:22:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152107 IP address blocks: 157.20.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/rRYSQOl6MtEDCZunigKM0J9fW5M.crl rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/rRYSQOl6MtEDCZunigKM0J9fW5M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rRYSQOl6MtEDCZunigKM0J9fW5M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169BAF, serialNumber=AD161240E97A32D103099BA78A028CD09F5F5B93 Validity Not Before: Mar 5 06:22:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a59206-14ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:21:64:7c:e9:5a:e3:6e:e7:ad:f5:76:1d:e3: 04:c3:3a:00:39:fc:99:00:b9:0f:91:dc:6b:85:2e: a0:7b:03:d5:ff:7d:69:df:a3:67:1f:a3:5f:2b:33: 39:78:be:0e:0d:ef:aa:20:02:fc:9b:9f:a5:d8:15: 47:43:7b:d3:39:75:01:2f:61:dd:42:1f:f0:b1:de: e7:a0:d4:85:a4:3b:d5:ca:aa:f6:13:5f:05:c8:d2: fb:bd:00:61:4b:1e:47:92:fd:96:db:19:b0:2b:29: a4:ae:52:0e:d4:22:51:6c:b2:76:37:21:11:44:64: fa:b8:65:0b:b1:da:c6:db:a0:5a:71:c5:35:ab:fe: 68:26:fa:72:80:a3:00:e2:3c:5e:9d:2f:f7:84:af: f5:27:69:90:d8:65:8f:4b:e3:99:dc:f0:ed:e7:9b: 32:0f:bf:d3:0a:1a:24:01:a6:f1:37:95:3e:71:93: 56:1d:37:4d:70:bf:32:f1:ae:db:5c:55:81:2e:f2: 89:92:25:8e:bd:b4:c4:ca:41:f0:33:d1:c2:e4:1d: eb:81:1d:3f:b2:5d:a7:67:ef:8d:6b:23:46:ab:c3: eb:99:0b:39:ec:a8:b1:e0:09:d8:b8:a2:35:5c:65: 07:ec:99:52:96:d8:ca:25:d8:e8:fb:d0:d2:d1:1d: f9:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:00:FF:DD:B9:57:45:96:EF:5E:58:DB:87:FC:7A:14:B6:56:BB:58 X509v3 Authority Key Identifier: keyid:AD:16:12:40:E9:7A:32:D1:03:09:9B:A7:8A:02:8C:D0:9F:5F:5B:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/rRYSQOl6MtEDCZunigKM0J9fW5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rRYSQOl6MtEDCZunigKM0J9fW5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/122C6942D9CE11EEB6EA7F6CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.143.0/24 Signature Algorithm: sha256WithRSAEncryption 53:49:02:e6:27:2f:53:7a:81:43:08:4c:d4:e2:16:b2:fe:64: 2b:43:cb:fa:8d:fe:8a:21:e6:e2:43:5a:4a:d0:df:ce:17:dc: 50:20:26:c9:58:06:b0:bf:2e:41:ea:c6:4a:e8:f6:11:cb:94: 6c:fd:19:3e:ad:b1:06:bd:00:4e:f5:d5:0b:f0:83:00:46:54: 2a:a4:6e:cf:55:a4:d7:67:54:55:41:e0:07:b2:03:dd:d5:21: ee:15:58:52:62:9d:9b:df:d7:63:6e:89:cf:1b:41:c4:05:14: 8d:e4:09:c9:34:11:60:d5:e1:a6:34:f4:d6:87:f0:df:64:fd: 38:e3:c1:4a:be:96:7a:82:ad:64:4a:b4:a1:9a:e6:ff:29:81: d9:b4:38:6f:df:aa:cc:d8:ca:c4:fa:01:9d:cb:03:5f:00:df: 62:ca:76:b8:c1:0f:de:5d:a7:d4:8c:95:9e:80:e2:6a:e5:a0: 53:c0:67:e0:46:fb:e3:af:f7:d4:57:0a:db:81:f9:94:d1:b6: d6:da:f3:dd:c3:3b:81:01:69:1a:99:43:10:22:e0:b3:39:73: 62:6f:56:9b:19:09:5f:6b:4a:55:b3:ac:ac:78:0b:93:15:5d: 2a:a1:e3:5c:1f:0f:46:45:79:15:f9:cf:48:fb:ac:85:75:fa: 51:06:38:41 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlCQUYxMTAvBgNVBAUTKEFEMTYxMjQwRTk3QTMyRDEwMzA5OUJBNzhBMDI4Q0Qw OUY1RjVCOTMwHhcNMjUwMzA1MDYyMjQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTIwNi0xNGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyFkfOla427nrfV2HeMEwzoAOfyZALkPkdxrhS6gewPV/31p36NnH6NfKzM5 eL4ODe+qIAL8m5+l2BVHQ3vTOXUBL2HdQh/wsd7noNSFpDvVyqr2E18FyNL7vQBh Sx5Hkv2W2xmwKymkrlIO1CJRbLJ2NyERRGT6uGULsdrG26BaccU1q/5oJvpygKMA 4jxenS/3hK/1J2mQ2GWPS+OZ3PDt55syD7/TChokAabxN5U+cZNWHTdNcL8y8a7b XFWBLvKJkiWOvbTEykHwM9HC5B3rgR0/sl2nZ++NayNGq8PrmQs57Kix4AnYuKI1 XGUH7JlSltjKJdjo+9DS0R35vQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNUA/925 V0WW715Y24f8ehS2VrtYMB8GA1UdIwQYMBaAFK0WEkDpejLRAwmbp4oCjNCfX1uT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUJBRi9BRUY3MDQ5MEQ5 QkUxMUVFQUM1QkQzNkRDNEY5QUUwMi9yUllTUU9sNk10RURDWnVuaWdLTTBKOWZX NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JSWVNRT2w2TXRFRENadW5pZ0tNMEo5Zlc1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlCQUYvQUVGNzA0OTBEOUJFMTFFRUFDNUJEMzZEQzRGOUFFMDIvMTIyQzY5NDJE OUNFMTFFRUI2RUE3RjZDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAnRSPMA0GCSqGSIb3DQEBCwUAA4IBAQBTSQLmJy9TeoFDCEzU4hay /mQrQ8v6jf6KIebiQ1pK0N/OF9xQICbJWAawvy5B6sZK6PYRy5Rs/Rk+rbEGvQBO 9dUL8IMARlQqpG7PVaTXZ1RVQeAHsgPd1SHuFVhSYp2b39djbonPG0HEBRSN5AnJ NBFg1eGmNPTWh/DfZP0448FKvpZ6gq1kSrShmub/KYHZtDhv36rM2MrE+gGdywNf AN9iyna4wQ/eXafUjJWegOJq5aBTwGfgRvvjr/fUVwrbgfmU0bbW2vPdwzuBAWka mUMQIuCzOXNib1abGQlfa0pVs6yseAuTFV0qoeNcHw9GRXkV+c9I+6yFdfpRBjhB -----END CERTIFICATE-----Generated at Mon Mar 2 23:24:04 2026 by rpki-client