$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/1C839F861BA111EA8BDD6114C4F9AE02.roa File: 1C839F861BA111EA8BDD6114C4F9AE02.roa (raw, json) Hash identifier: 9goWELW0trcqEqqFWMwPmGOCRkrjj1+FxG/eq2UNrIY= Subject key identifier: 4F:B2:FD:69:E2:98:23:0B:51:C1:09:73:56:4C:8D:18:63:86:BD:85 Certificate issuer: /CN=A916A983/serialNumber=B4A96AADEEDC7BEDD57D62FC9A49EA0B3FF6F50C Certificate serial: 1314 Authority key identifier: B4:A9:6A:AD:EE:DC:7B:ED:D5:7D:62:FC:9A:49:EA:0B:3F:F6:F5:0C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tKlqre7ce-3VfWL8mknqCz_29Qw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/1C839F861BA111EA8BDD6114C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:33:59 +0000 ROA not before: Wed 06 Aug 2025 17:26:39 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135887 IP address blocks: 141.168.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.crl rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tKlqre7ce-3VfWL8mknqCz_29Qw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4884 (0x1314) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983, serialNumber=B4A96AADEEDC7BEDD57D62FC9A49EA0B3FF6F50C Validity Not Before: Aug 6 17:26:39 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42427-e93f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0f:11:b6:c9:d5:f6:a3:f6:9d:00:bf:89:6d: ca:23:ca:a9:59:69:46:07:08:27:3f:3d:20:6e:1c: c5:9d:50:3e:4f:fc:00:02:ba:fc:e6:93:65:80:9c: a4:97:b4:d9:ee:0a:e8:01:af:fb:e1:9b:a7:6c:7b: 8c:27:dd:11:ae:e9:76:d0:05:a4:04:f0:67:80:b2: 05:83:de:ef:31:39:8a:fe:74:50:12:b0:38:26:6d: 43:d8:6b:0f:30:a4:96:15:74:36:95:d5:1a:70:3e: 24:3b:a7:79:ea:38:3e:46:97:ed:ce:5c:2a:fd:ea: c6:60:4e:62:81:d6:11:5a:2a:91:41:e7:89:a3:45: 60:84:26:28:a0:45:83:51:bc:34:57:88:8a:18:60: e2:3b:0c:46:86:3c:71:2d:c5:49:c7:47:d7:b3:c9: f4:6b:2b:24:35:2b:33:3b:bf:56:b5:24:b8:1c:8a: 62:41:78:80:5c:f3:17:15:71:6c:96:a6:70:ab:d0: 89:8b:31:a7:b7:ca:84:63:c0:2b:94:f2:a1:c6:21: 0f:47:31:eb:21:59:37:95:bb:c0:57:f4:f3:98:a0: cf:7e:e3:8e:87:68:5f:3d:21:97:3b:b0:60:5b:9c: 92:3b:80:cd:ec:c2:68:2f:fe:79:5c:00:57:b5:7d: 4e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B2:FD:69:E2:98:23:0B:51:C1:09:73:56:4C:8D:18:63:86:BD:85 X509v3 Authority Key Identifier: keyid:B4:A9:6A:AD:EE:DC:7B:ED:D5:7D:62:FC:9A:49:EA:0B:3F:F6:F5:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tKlqre7ce-3VfWL8mknqCz_29Qw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/1C839F861BA111EA8BDD6114C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 141.168.0.0/16 Signature Algorithm: sha256WithRSAEncryption 14:04:e8:bc:c3:6b:a2:21:a5:c9:db:ec:ae:fc:93:2b:ec:04: 90:40:70:d9:f8:02:cb:00:a5:42:6c:8d:64:60:81:61:e3:f6: f2:4f:27:b1:00:15:16:35:45:3a:39:8c:3b:f1:24:29:fc:bd: d9:41:93:42:08:a9:1e:d3:1e:9f:30:7a:32:e0:93:82:83:6e: 62:ac:6f:fd:c2:bd:0f:f9:a1:5a:54:a9:37:9c:27:61:71:ef: 4c:ee:a3:49:59:01:2e:f5:e2:ad:b6:ad:ca:70:13:c4:14:98: 27:9a:c1:bf:26:d8:da:68:43:cd:63:8f:31:b0:28:68:63:21: 21:bc:de:3d:e3:2d:9a:50:31:43:de:3d:2f:0f:ae:6c:98:98: d7:0e:29:a3:b3:85:3c:bc:5e:96:04:d8:03:32:df:68:f3:2b: 53:dd:50:10:01:0c:f1:0b:5d:e6:19:75:c8:c5:8d:87:37:00: b1:e9:8b:1a:e8:d6:68:4c:89:86:0f:77:9e:2b:a0:f2:b6:75: c8:5a:5e:bf:80:61:a4:41:b8:ed:fb:9f:42:4e:47:46:d1:13: ba:e2:12:fb:42:d0:dc:0f:87:8b:77:71:b5:22:59:65:f4:ae: 45:48:c1:85:df:b8:91:93:60:58:07:15:63:32:4e:4f:7b:d7: 5c:41:d2:6f -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICExQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKEI0QTk2QUFERUVEQzdCRURENTdENjJGQzlBNDlFQTBC M0ZGNkY1MEMwHhcNMjUwODA2MTcyNjM5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjQyNy1lOTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAow8RtsnV9qP2nQC/iW3KI8qpWWlGBwgnPz0gbhzFnVA+T/wAArr85pNlgJyk l7TZ7groAa/74ZunbHuMJ90Rrul20AWkBPBngLIFg97vMTmK/nRQErA4Jm1D2GsP MKSWFXQ2ldUacD4kO6d56jg+Rpftzlwq/erGYE5igdYRWiqRQeeJo0VghCYooEWD Ubw0V4iKGGDiOwxGhjxxLcVJx0fXs8n0ayskNSszO79WtSS4HIpiQXiAXPMXFXFs lqZwq9CJizGnt8qEY8ArlPKhxiEPRzHrIVk3lbvAV/TzmKDPfuOOh2hfPSGXO7Bg W5ySO4DN7MJoL/55XABXtX1OdQIDAQABo4ICXzCCAlswHQYDVR0OBBYEFE+y/Wni mCMLUcEJc1ZMjRhjhr2FMB8GA1UdIwQYMBaAFLSpaq3u3Hvt1X1i/JpJ6gs/9vUM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8yOEIxQjYxQ0NE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi90S2xxcmU3Y2UtM1ZmV0w4bWtucUN6XzI5 UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3RLbHFyZTdjZS0zVmZXTDhta25xQ3pfMjlRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE5ODMvMjhCMUI2MUNDRDBGMTFFODlEOUZGMTY1QzRGOUFFMDIvMUM4MzlGODYx QkExMTFFQThCREQ2MTE0QzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAjagwDQYJKoZIhvcNAQELBQADggEBABQE6LzDa6Ihpcnb7K78kyvs BJBAcNn4AssApUJsjWRggWHj9vJPJ7EAFRY1RTo5jDvxJCn8vdlBk0IIqR7THp8w ejLgk4KDbmKsb/3CvQ/5oVpUqTecJ2Fx70zuo0lZAS714q22rcpwE8QUmCeawb8m 2NpoQ81jjzGwKGhjISG83j3jLZpQMUPePS8PrmyYmNcOKaOzhTy8XpYE2AMy32jz K1PdUBABDPELXeYZdcjFjYc3ALHpixro1mhMiYYPd54roPK2dchaXr+AYaRBuO37 n0JOR0bRE7riEvtC0NwPh4t3cbUiWWX0rkVIwYXfuJGTYFgHFWMyTk9711xB0m8= -----END CERTIFICATE-----Generated at Mon Mar 2 08:15:40 2026 by rpki-client