$ rpki-client -vvf rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/4FB5C8F4C43D11EE973ADE48C4F9AE02.roa File: 4FB5C8F4C43D11EE973ADE48C4F9AE02.roa (raw, json) Hash identifier: UTMjBHZPDCrnOGJHz3FSfPiwSZTuCGHtvp43ltZm8SU= Subject key identifier: 04:86:5B:A9:3E:ED:06:51:55:25:4C:99:8A:71:B5:1B:BD:95:C2:65 Certificate issuer: /CN=A916C2B9/serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Certificate serial: 0188 Authority key identifier: 70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/4FB5C8F4C43D11EE973ADE48C4F9AE02.roa Signing time: Fri 27 Feb 2026 04:23:08 +0000 ROA not before: Fri 27 Feb 2026 04:23:08 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 152455 IP address blocks: 157.15.114.0/23 maxlen: 23 157.15.114.0/24 maxlen: 24 157.15.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C2B9, serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Validity Not Before: Feb 27 04:23:08 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a11c2c-b839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:52:ea:11:48:05:10:3c:52:02:f3:2e:67:a9: c4:07:2c:78:e8:b7:3b:44:66:b9:5f:96:6e:b0:9b: 0b:cd:fc:ff:b4:9d:0e:92:b2:77:9b:8a:0b:29:0a: 54:8a:44:52:c2:c9:81:f1:52:28:df:50:1d:9a:ba: 11:6e:fb:4f:ed:b4:99:e4:bf:0b:2e:55:a1:7e:5d: d9:07:d8:48:4b:15:a6:72:76:5c:62:eb:0f:27:92: db:7e:3c:37:e3:73:27:a5:3a:49:0f:b9:cf:5b:3b: bb:51:df:eb:c6:a1:3c:35:d3:37:05:77:e7:3b:cb: 5c:47:b8:06:bd:06:88:bd:08:00:ce:14:d6:8b:a5: 05:71:bf:1c:fb:87:b8:7a:39:08:5d:db:fc:4d:cc: 49:3d:c2:15:bf:13:7a:a3:74:a1:1f:ff:6e:f4:eb: 84:ca:c9:3c:37:95:fb:5c:ee:d6:89:4f:2e:79:cf: 55:10:64:35:7f:ee:48:12:81:5c:be:34:aa:34:71: 57:6a:54:26:71:c7:47:3a:9b:2b:88:9c:62:36:3b: 74:b5:ee:88:d9:d5:8a:dc:32:06:b7:70:8c:54:75: 26:fa:5a:82:a0:a4:ac:67:94:0f:21:14:31:6e:92: f2:8f:a2:a5:f3:3a:1e:da:4e:72:7d:7b:35:0e:23: 54:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:86:5B:A9:3E:ED:06:51:55:25:4C:99:8A:71:B5:1B:BD:95:C2:65 X509v3 Authority Key Identifier: keyid:70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/4FB5C8F4C43D11EE973ADE48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.15.114.0/23 Signature Algorithm: sha256WithRSAEncryption 13:f5:41:c3:55:9d:d8:26:15:da:d7:a3:f0:10:00:20:c3:de: 66:f9:a5:39:f3:78:e7:8d:1b:96:f8:af:f6:dd:5b:63:31:de: 8f:b1:9b:af:87:9f:bf:d5:3d:82:18:64:07:78:12:ce:18:f6: df:06:9b:08:b6:b3:c5:76:9d:e2:cd:6c:31:bf:a5:96:19:3d: 39:51:ce:84:68:42:9c:ae:ea:30:7e:72:59:3e:a3:04:5e:83: d2:93:99:9e:8e:4d:55:0b:5e:85:2c:60:6a:00:a7:28:54:c7: 91:5d:33:9b:40:39:ae:a1:9f:22:30:80:76:42:4b:17:8c:60: 16:a5:9d:f5:e7:22:e2:06:7e:9f:dd:e8:38:3d:15:b6:13:7f: 67:03:3b:85:3c:2c:07:d2:0e:87:c7:65:74:a7:51:63:94:4e: 98:d2:b4:27:f3:00:83:94:57:9c:ed:5f:c7:a3:9b:42:c5:4c: e3:e8:ee:77:68:0c:1f:a6:84:6e:1d:6d:05:9e:5d:d4:73:01: 35:3b:8a:bb:50:23:fe:0d:e9:e6:97:d7:a2:74:4d:29:47:e8: 54:3f:d1:ae:2f:3a:b0:e6:60:ad:3d:08:ab:f7:61:ea:e3:b6: 92:0e:3f:ea:51:a7:c2:95:06:6a:18:29:92:6b:32:24:2d:3f: 64:a6:fd:fe -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMyQjkxMTAvBgNVBAUTKDcwMTA3QkVDQjg0QUM0Q0U1RTk1Q0M2MUQxMTBBNjcy M0Y5MEM5QzMwHhcNMjYwMjI3MDQyMzA4WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDDA02OWExMWMyYy1iODM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAolLqEUgFEDxSAvMuZ6nEByx46Lc7RGa5X5ZusJsLzfz/tJ0OkrJ3m4oLKQpU ikRSwsmB8VIo31AdmroRbvtP7bSZ5L8LLlWhfl3ZB9hISxWmcnZcYusPJ5Lbfjw3 43MnpTpJD7nPWzu7Ud/rxqE8NdM3BXfnO8tcR7gGvQaIvQgAzhTWi6UFcb8c+4e4 ejkIXdv8TcxJPcIVvxN6o3ShH/9u9OuEysk8N5X7XO7WiU8uec9VEGQ1f+5IEoFc vjSqNHFXalQmccdHOpsriJxiNjt0te6I2dWK3DIGt3CMVHUm+lqCoKSsZ5QPIRQx bpLyj6Kl8zoe2k5yfXs1DiNU6QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFASGW6k+ 7QZRVSVMmYpxtRu9lcJlMB8GA1UdIwQYMBaAFHAQe+y4SsTOXpXMYdEQpnI/kMnD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzJCOS8zMDY2OTlDQUMy QTIxMUVFOTFEOTUzNUNDNEY5QUUwMi9jQkI3N0xoS3hNNWVsY3hoMFJDbWNqLVF5 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NCQjc3TGhLeE01ZWxjeGgwUkNtY2otUXljTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkMyQjkvMzA2Njk5Q0FDMkEyMTFFRTkxRDk1MzVDQzRGOUFFMDIvNEZCNUM4RjRD NDNEMTFFRTk3M0FERTQ4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQ9yMA0GCSqGSIb3DQEBCwUAA4IBAQAT9UHDVZ3YJhXa16PwEAAg w95m+aU583jnjRuW+K/23VtjMd6PsZuvh5+/1T2CGGQHeBLOGPbfBpsItrPFdp3i zWwxv6WWGT05Uc6EaEKcruowfnJZPqMEXoPSk5mejk1VC16FLGBqAKcoVMeRXTOb QDmuoZ8iMIB2QksXjGAWpZ315yLiBn6f3eg4PRW2E39nAzuFPCwH0g6Hx2V0p1Fj lE6Y0rQn8wCDlFec7V/Ho5tCxUzj6O53aAwfpoRuHW0Fnl3UcwE1O4q7UCP+Denm l9eidE0pR+hUP9GuLzqw5mCtPQir92Hq47aSDj/qUafClQZqGCmSazIkLT9kpv3+ -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:24 2026 by rpki-client