$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/74F996F62F2511EF8D78DC62C4F9AE02.roa File: 74F996F62F2511EF8D78DC62C4F9AE02.roa (raw, json) Hash identifier: 8bUh0kpIukv/E/FlB04nGDeGIjA5R0mIQU759W+dS/s= Subject key identifier: 54:D1:C4:C0:15:57:91:DA:BC:6E:78:9A:5A:83:19:FF:DC:5B:F2:0F Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 01B9 Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/74F996F62F2511EF8D78DC62C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:17:33 +0000 ROA not before: Fri 28 Mar 2025 17:26:15 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9411 IP address blocks: 158.108.0.0/16 maxlen: 16 158.108.0.0/20 maxlen: 20 158.108.16.0/20 maxlen: 20 158.108.32.0/20 maxlen: 20 158.108.48.0/20 maxlen: 20 158.108.64.0/20 maxlen: 20 158.108.80.0/20 maxlen: 20 158.108.96.0/20 maxlen: 20 158.108.112.0/20 maxlen: 20 158.108.128.0/20 maxlen: 20 158.108.144.0/20 maxlen: 20 158.108.160.0/20 maxlen: 20 158.108.176.0/20 maxlen: 20 158.108.192.0/20 maxlen: 20 158.108.208.0/20 maxlen: 20 158.108.224.0/20 maxlen: 20 158.108.240.0/20 maxlen: 20 192.102.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Mar 28 17:26:15 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a4042d-1048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c0:7a:b5:c7:a3:9a:54:2f:11:61:77:ee:11: 12:a0:83:a5:9a:2f:45:0f:a9:e9:09:e2:e4:f1:c4: da:5b:90:6d:db:24:9a:fb:31:3d:53:56:da:17:30: f2:9d:c3:50:28:da:4d:50:e8:6e:a1:d4:59:f5:92: 55:56:2c:89:10:6b:33:22:b7:6a:0f:c3:91:50:5b: c3:6f:46:d2:50:94:33:03:72:26:b4:3a:cb:e7:f5: 4f:81:25:c0:47:3b:dd:89:fe:5e:47:c3:29:e5:47: 0a:ca:31:9b:25:5e:31:dc:f1:b0:d2:46:4b:c8:2b: 36:5f:8d:69:44:39:6f:a3:02:5e:73:87:67:79:5d: 35:e8:33:b8:e6:6b:80:03:bc:3e:1b:61:dc:8a:5d: 9c:fc:82:b4:2d:27:83:81:ff:a6:40:2f:ff:91:8c: 49:5a:4d:bd:c3:94:68:48:4d:03:1e:5b:fc:2e:15: b7:1a:00:f9:96:e2:c4:4a:31:99:3c:32:a8:06:d3: e5:3b:4a:8e:ca:ec:65:54:e9:08:5f:ef:52:be:7e: 1b:10:f4:02:44:59:bb:eb:c0:c6:3c:ad:7c:09:8d: 0b:af:a9:c2:73:a2:16:a3:3f:96:0b:a4:8a:0c:4e: f2:ec:3b:a4:fb:1b:4b:89:0f:81:d9:22:45:f3:eb: 5e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D1:C4:C0:15:57:91:DA:BC:6E:78:9A:5A:83:19:FF:DC:5B:F2:0F X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/74F996F62F2511EF8D78DC62C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 158.108.0.0/16 192.102.83.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:76:08:b7:0e:11:05:68:cc:41:72:d1:ed:57:2f:2e:9c:f5: 69:5e:b8:d0:e9:b9:08:b8:eb:e7:32:b9:bf:ce:30:8c:30:5d: a4:46:b3:2e:4a:05:63:29:8e:b6:24:ea:57:d0:ec:88:73:56: 91:42:40:04:b1:04:28:a1:46:f8:3e:1e:89:01:52:f0:61:b8: 94:80:1c:31:85:36:9a:dd:7f:bb:7b:b7:7d:9b:e6:50:f8:15: 78:d3:65:ba:a7:4f:e5:00:a3:4f:3c:52:45:bc:00:a0:29:e4: f8:88:3e:89:76:f9:71:72:98:e9:81:68:7c:21:82:61:67:e1: 7c:6d:c3:c5:e1:e3:35:d9:d4:66:8f:1a:39:9d:96:04:09:85: d8:f1:60:78:84:89:cf:75:4e:d7:34:f3:d6:81:df:fb:a1:96: a7:c9:4b:9f:db:14:a1:75:25:51:55:7a:03:71:68:31:7e:70: 1c:57:ea:48:ed:c8:3c:00:06:c7:a9:44:fb:35:ca:e9:3f:50: cc:11:51:bf:e1:ba:c1:9c:17:4c:73:76:c5:9c:e8:d9:0d:b2: 59:5a:b9:e1:c9:0b:07:65:48:e9:1f:d5:f4:f4:a1:c9:2e:88: 55:b4:37:e2:20:e1:8e:9a:d5:e2:ec:d0:28:83:99:3f:e8:b6: 5f:b1:1a:55 -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjUwMzI4MTcyNjE1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDQyZC0xMDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8B6tcejmlQvEWF37hESoIOlmi9FD6npCeLk8cTaW5Bt2ySa+zE9U1baFzDy ncNQKNpNUOhuodRZ9ZJVViyJEGszIrdqD8ORUFvDb0bSUJQzA3ImtDrL5/VPgSXA Rzvdif5eR8Mp5UcKyjGbJV4x3PGw0kZLyCs2X41pRDlvowJec4dneV016DO45muA A7w+G2Hcil2c/IK0LSeDgf+mQC//kYxJWk29w5RoSE0DHlv8LhW3GgD5luLESjGZ PDKoBtPlO0qOyuxlVOkIX+9Svn4bEPQCRFm768DGPK18CY0Lr6nCc6IWoz+WC6SK DE7y7Duk+xtLiQ+B2SJF8+teGwIDAQABo4ICZTCCAmEwHQYDVR0OBBYEFFTRxMAV V5HavG54mlqDGf/cW/IPMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkZBNDkvQTRDMENBOTY5MDA5MTFFRTlFNTRBMDMzQzRGOUFFMDIvNzRGOTk2RjYy RjI1MTFFRjhENzhEQzYyQzRGOUFFMDIucm9hMCQGCCsGAQUFBwEHAQH/BBUwEzAR BAIAATALAwMAnmwDBADAZlMwDQYJKoZIhvcNAQELBQADggEBAG12CLcOEQVozEFy 0e1XLy6c9WleuNDpuQi46+cyub/OMIwwXaRGsy5KBWMpjrYk6lfQ7IhzVpFCQASx BCihRvg+HokBUvBhuJSAHDGFNprdf7t7t32b5lD4FXjTZbqnT+UAo088UkW8AKAp 5PiIPol2+XFymOmBaHwhgmFn4Xxtw8Xh4zXZ1GaPGjmdlgQJhdjxYHiEic91Ttc0 89aB3/uhlqfJS5/bFKF1JVFVegNxaDF+cBxX6kjtyDwABsepRPs1yuk/UMwRUb/h usGcF0xzdsWc6NkNsllaueHJCwdlSOkf1fT0ockuiFW0N+Ig4Y6a1eLs0CiDmT/o tl+xGlU= -----END CERTIFICATE-----Generated at Mon Mar 2 14:58:45 2026 by rpki-client