$ rpki-client -vvf rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/987E6D9E985711F08C4D1E11C4F9AE02.roa File: 987E6D9E985711F08C4D1E11C4F9AE02.roa (raw, json) Hash identifier: r0zQtknSI2b1VOObJtQgivU8i179m1LSf29AF/HDojU= Subject key identifier: 26:1F:DA:AB:12:8F:84:70:2D:A3:62:8B:D8:D4:8C:A1:3D:8F:81:11 Certificate issuer: /CN=A916B18B/serialNumber=368F3C938B601412521A3A819009978FCFE91E7E Certificate serial: 17F3 Authority key identifier: 36:8F:3C:93:8B:60:14:12:52:1A:3A:81:90:09:97:8F:CF:E9:1E:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/No88k4tgFBJSGjqBkAmXj8_pHn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/987E6D9E985711F08C4D1E11C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:20:34 +0000 ROA not before: Thu 04 Dec 2025 16:15:59 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 152335 IP address blocks: 143.9.0.0/16 maxlen: 16 143.9.0.0/22 maxlen: 22 143.9.0.0/23 maxlen: 23 143.9.4.0/22 maxlen: 22 143.9.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/No88k4tgFBJSGjqBkAmXj8_pHn4.crl rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/No88k4tgFBJSGjqBkAmXj8_pHn4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/No88k4tgFBJSGjqBkAmXj8_pHn4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6131 (0x17f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B18B, serialNumber=368F3C938B601412521A3A819009978FCFE91E7E Validity Not Before: Dec 4 16:15:59 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48372-f0a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:1c:91:a9:0c:2e:34:ff:12:f8:97:9f:c4:ca: fd:5d:34:fa:ee:2f:89:52:10:43:48:a8:18:3e:c6: 19:af:e4:78:6f:c7:ce:4a:f3:8b:50:08:0c:9a:6f: b4:48:6d:48:35:29:0f:da:26:b1:e1:aa:07:87:8c: 2d:8b:cd:fe:70:82:e5:d2:ec:79:97:86:34:e4:ca: 34:00:f3:3b:ab:63:97:f3:54:ab:94:3e:d0:a4:3b: 1a:e9:6b:e0:c9:4c:f2:a8:84:de:03:45:6b:f4:8c: 47:e2:bc:c7:c8:5a:8c:9b:54:81:3d:c8:80:16:eb: cd:35:e8:33:40:06:54:d2:c9:f0:9e:25:1a:c7:31: 07:53:70:78:be:d5:b6:cf:5a:6c:ca:37:98:ca:ab: ae:78:c0:1a:5a:66:04:7d:a2:d2:15:01:80:3d:a3: 51:79:52:d1:60:b9:1d:a8:14:9d:a7:38:85:8b:f1: cd:79:60:cd:0d:6c:9f:6a:8a:2c:7b:ba:d1:19:08: 83:d1:66:b5:78:50:ec:d5:91:50:7d:2e:3d:d8:fe: a8:14:f5:4a:6f:06:d7:c6:91:e9:6b:ee:59:e2:64: 2e:70:b3:d2:f9:64:d6:60:04:d1:7f:ab:51:4c:c2: 65:9e:19:2d:71:7f:9f:0b:8c:90:9a:6a:4a:c2:f0: e9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:1F:DA:AB:12:8F:84:70:2D:A3:62:8B:D8:D4:8C:A1:3D:8F:81:11 X509v3 Authority Key Identifier: keyid:36:8F:3C:93:8B:60:14:12:52:1A:3A:81:90:09:97:8F:CF:E9:1E:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/No88k4tgFBJSGjqBkAmXj8_pHn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/No88k4tgFBJSGjqBkAmXj8_pHn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/987E6D9E985711F08C4D1E11C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 143.9.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0a:7a:8d:e1:b7:80:8f:7f:76:66:a0:8a:44:91:21:de:6c:1e: 62:b6:4c:88:f9:2e:c2:07:ca:70:5f:c5:8c:a1:68:3a:01:b1: b0:f9:f1:60:c1:8b:6c:01:e9:a2:47:fd:76:10:93:e4:8e:de: 13:27:7d:63:30:b9:60:32:f6:31:12:9e:e9:f8:82:e5:60:e1: 7b:69:ae:69:04:4c:b7:f1:f8:c1:81:fc:44:30:44:b0:c4:3b: 15:41:8e:6b:23:b8:6f:db:e6:c8:7b:63:8d:e4:32:46:70:af: 59:df:c2:a0:5c:83:b3:a9:1a:f7:86:64:f5:3a:ae:aa:ad:5a: db:80:9c:e9:3c:a0:43:ff:9a:50:98:a8:34:0a:99:30:23:1e: 70:c9:9d:61:21:fe:54:a8:4d:d9:07:dd:28:71:c2:ec:78:20: 05:e2:2d:36:17:8b:3f:a0:42:38:2b:2f:74:16:65:95:71:8e: 5e:eb:c6:f7:4c:50:01:34:cb:09:56:3d:7c:08:78:5e:7b:7e: bd:a1:11:ae:2d:76:bf:5a:de:95:68:f4:03:a7:20:12:38:97: 45:7c:be:03:c0:b1:ea:94:cd:09:cf:da:19:8f:07:25:52:40: 9f:f1:e1:38:05:80:6b:27:d6:54:af:78:33:29:ee:90:ba:8b: e4:0b:b1:6f -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICF/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOEIxMTAvBgNVBAUTKDM2OEYzQzkzOEI2MDE0MTI1MjFBM0E4MTkwMDk5NzhG Q0ZFOTFFN0UwHhcNMjUxMjA0MTYxNTU5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODM3Mi1mMGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmByRqQwuNP8S+JefxMr9XTT67i+JUhBDSKgYPsYZr+R4b8fOSvOLUAgMmm+0 SG1INSkP2iax4aoHh4wti83+cILl0ux5l4Y05Mo0APM7q2OX81SrlD7QpDsa6Wvg yUzyqITeA0Vr9IxH4rzHyFqMm1SBPciAFuvNNegzQAZU0snwniUaxzEHU3B4vtW2 z1psyjeYyquueMAaWmYEfaLSFQGAPaNReVLRYLkdqBSdpziFi/HNeWDNDWyfaoos e7rRGQiD0Wa1eFDs1ZFQfS492P6oFPVKbwbXxpHpa+5Z4mQucLPS+WTWYATRf6tR TMJlnhktcX+fC4yQmmpKwvDpPQIDAQABo4ICXzCCAlswHQYDVR0OBBYEFCYf2qsS j4RwLaNii9jUjKE9j4ERMB8GA1UdIwQYMBaAFDaPPJOLYBQSUho6gZAJl4/P6R5+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE4Qi9GOThCNUYwQzIx RjkxMUU4OTZDMUREMjNDNEY5QUUwMi9Obzg4azR0Z0ZCSlNHanFCa0FtWGo4X3BI bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05vODhrNHRnRkJKU0dqcUJrQW1YajhfcEhuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIxOEIvRjk4QjVGMEMyMUY5MTFFODk2QzFERDIzQzRGOUFFMDIvOTg3RTZEOUU5 ODU3MTFGMDhDNEQxRTExQzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAjwkwDQYJKoZIhvcNAQELBQADggEBAAp6jeG3gI9/dmagikSRId5s HmK2TIj5LsIHynBfxYyhaDoBsbD58WDBi2wB6aJH/XYQk+SO3hMnfWMwuWAy9jES nun4guVg4XtprmkETLfx+MGB/EQwRLDEOxVBjmsjuG/b5sh7Y43kMkZwr1nfwqBc g7OpGveGZPU6rqqtWtuAnOk8oEP/mlCYqDQKmTAjHnDJnWEh/lSoTdkH3Shxwux4 IAXiLTYXiz+gQjgrL3QWZZVxjl7rxvdMUAE0ywlWPXwIeF57fr2hEa4tdr9a3pVo 9AOnIBI4l0V8vgPAseqUzQnP2hmPByVSQJ/x4TgFgGsn1lSveDMp7pC6i+QLsW8= -----END CERTIFICATE-----Generated at Mon Mar 2 04:40:43 2026 by rpki-client