$ rpki-client -vvf rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/7CB87E5C4D7311F1852BB4CA95833773.roa File: 7CB87E5C4D7311F1852BB4CA95833773.roa (raw, json) Hash identifier: P09MeZZNI9IoD7N8gzlqtiufEzZ6jxOOO+4cLeCxSQw= Subject key identifier: 7E:17:23:B9:11:A8:62:F1:D2:19:39:9E:E4:C9:B9:2F:95:66:DA:01 Certificate issuer: /CN=A9170982/serialNumber=41BFBEBE63521FB04ED8123C68E5C0CDAF5D05CD Certificate serial: 0471 Authority key identifier: 41:BF:BE:BE:63:52:1F:B0:4E:D8:12:3C:68:E5:C0:CD:AF:5D:05:CD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/7CB87E5C4D7311F1852BB4CA95833773.roa Signing time: Fri 29 May 2026 08:12:53 +0000 ROA not before: Fri 29 May 2026 08:12:53 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 16839 IP address blocks: 167.208.0.0/16 maxlen: 16 167.208.0.0/22 maxlen: 24 167.208.4.0/22 maxlen: 22 167.208.4.0/24 maxlen: 24 167.208.5.0/24 maxlen: 24 167.208.6.0/24 maxlen: 24 167.208.7.0/24 maxlen: 24 167.208.8.0/22 maxlen: 24 167.208.12.0/22 maxlen: 22 167.208.12.0/24 maxlen: 24 167.208.13.0/24 maxlen: 24 167.208.14.0/24 maxlen: 24 167.208.15.0/24 maxlen: 24 167.208.16.0/22 maxlen: 22 167.208.16.0/24 maxlen: 24 167.208.17.0/24 maxlen: 24 167.208.18.0/24 maxlen: 24 167.208.19.0/24 maxlen: 24 167.208.40.0/21 maxlen: 21 167.208.40.0/24 maxlen: 24 167.208.41.0/24 maxlen: 24 167.208.42.0/24 maxlen: 24 167.208.43.0/24 maxlen: 24 167.208.44.0/24 maxlen: 24 167.208.45.0/24 maxlen: 24 167.208.46.0/24 maxlen: 24 167.208.47.0/24 maxlen: 24 167.208.48.0/21 maxlen: 24 167.208.128.0/23 maxlen: 24 167.208.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.crl rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1137 (0x471) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170982, serialNumber=41BFBEBE63521FB04ED8123C68E5C0CDAF5D05CD Validity Not Before: May 29 08:12:53 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6a194a85-b76a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2e:9c:23:9e:d0:0a:34:de:ad:9c:42:a5:b1: 73:28:77:98:73:3c:80:70:76:b5:80:9a:72:a7:5b: 15:af:b2:94:ef:f3:38:ae:a9:d9:b4:36:94:3f:8c: d9:0d:9e:94:d9:df:7b:6e:69:90:c3:64:e1:36:f9: 1b:f0:7a:61:8d:7c:2e:c3:c5:78:14:44:e5:93:b4: 9e:8c:83:2b:00:2f:57:68:96:ce:4d:01:54:43:fe: 9d:fe:e3:a9:24:9d:f7:4d:44:3f:c3:8e:3e:d2:60: d8:98:34:a1:b8:24:ba:bc:b9:7b:ac:2c:85:f4:47: 30:92:af:97:f0:29:ec:06:66:ee:fb:5b:d9:1f:f4: bd:ce:f9:df:6a:a3:f9:83:0d:15:9a:01:a3:71:3b: e7:04:52:01:b0:32:5c:60:bc:1a:f5:bc:c3:a9:f5: 95:47:e9:b3:db:d0:5d:05:d6:dc:f6:46:f1:a4:3e: a8:e9:44:ae:2a:95:8b:90:54:51:c9:57:45:02:47: d6:cf:14:e2:9d:bd:1f:e0:1e:86:cd:5b:98:49:3a: a1:7e:51:0a:5f:89:4c:21:4c:f4:33:86:2b:8e:bc: 96:93:73:81:2f:b7:c6:31:bc:24:21:e9:41:27:7c: fd:be:3b:b9:cf:5a:c5:3d:db:16:44:f8:cd:03:ed: 94:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:17:23:B9:11:A8:62:F1:D2:19:39:9E:E4:C9:B9:2F:95:66:DA:01 X509v3 Authority Key Identifier: keyid:41:BF:BE:BE:63:52:1F:B0:4E:D8:12:3C:68:E5:C0:CD:AF:5D:05:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/7CB87E5C4D7311F1852BB4CA95833773.roa sbgp-ipAddrBlock: critical IPv4: 167.208.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2b:d0:23:ad:9c:39:0c:38:10:95:68:1c:54:ed:c3:bf:f9:f1: 7b:b1:24:57:e3:23:a6:16:8a:6a:de:e7:0e:3d:49:08:1b:75: a3:60:a5:15:2b:10:7f:0c:a8:f0:3a:d2:c0:7d:c7:a9:0c:f8: 43:05:01:53:de:bb:d0:dd:44:9c:47:90:cb:b0:87:02:89:71: f0:62:30:33:16:e7:62:2a:b1:22:a9:37:af:51:b3:c3:8c:c6: d3:aa:96:08:dc:fd:e6:3c:74:a2:a8:0e:e8:98:75:9e:ec:de: ab:e0:67:be:96:3e:dd:f1:ba:69:a5:c9:53:3b:d1:72:4c:6a: 58:6e:3f:46:86:81:22:94:23:46:c2:dd:6f:79:04:a5:34:b0: 2b:73:85:8f:53:aa:ee:49:4a:69:48:81:d4:ce:a6:19:6a:98: c5:08:7a:f7:27:19:82:ef:9b:52:e7:17:c8:6c:54:0e:8f:7a: 5f:e9:27:70:af:a6:95:a6:7b:d4:c3:54:45:d8:19:2c:57:84: 7b:ed:70:de:b5:e1:f1:55:38:2d:ac:59:7f:7e:0f:1e:11:1b: ca:ef:5c:ac:d0:6c:d1:19:a3:bd:06:c7:74:25:1d:20:76:a0: 63:e3:de:1f:f5:f3:69:79:a2:27:c0:91:b0:cc:7f:f4:64:12: 93:94:7b:dd -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICBHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5ODIxMTAvBgNVBAUTKDQxQkZCRUJFNjM1MjFGQjA0RUQ4MTIzQzY4RTVDMENE QUY1RDA1Q0QwHhcNMjYwNTI5MDgxMjUzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE5NGE4NS1iNzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuC6cI57QCjTerZxCpbFzKHeYczyAcHa1gJpyp1sVr7KU7/M4rqnZtDaUP4zZ DZ6U2d97bmmQw2ThNvkb8HphjXwuw8V4FETlk7SejIMrAC9XaJbOTQFUQ/6d/uOp JJ33TUQ/w44+0mDYmDShuCS6vLl7rCyF9Ecwkq+X8CnsBmbu+1vZH/S9zvnfaqP5 gw0VmgGjcTvnBFIBsDJcYLwa9bzDqfWVR+mz29BdBdbc9kbxpD6o6USuKpWLkFRR yVdFAkfWzxTinb0f4B6GzVuYSTqhflEKX4lMIUz0M4YrjryWk3OBL7fGMbwkIelB J3z9vju5z1rFPdsWRPjNA+2UaQIDAQABo4ICXzCCAlswHQYDVR0OBBYEFH4XI7kR qGLx0hk5nuTJuS+VZtoBMB8GA1UdIwQYMBaAFEG/vr5jUh+wTtgSPGjlwM2vXQXN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDk4Mi9DRjIwNUM2MEFD MTMxMUVDQjc3NkIyMDlDNEY5QUUwMi9RYi0tdm1OU0g3Qk8yQkk4YU9YQXphOWRC YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FiLS12bU5TSDdCTzJCSThhT1hBemE5ZEJjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5ODIvQ0YyMDVDNjBBQzEzMTFFQ0I3NzZCMjA5QzRGOUFFMDIvN0NCODdFNUM0 RDczMTFGMTg1MkJCNENBOTU4MzM3NzMucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAp9AwDQYJKoZIhvcNAQELBQADggEBACvQI62cOQw4EJVoHFTtw7/5 8XuxJFfjI6YWimre5w49SQgbdaNgpRUrEH8MqPA60sB9x6kM+EMFAVPeu9DdRJxH kMuwhwKJcfBiMDMW52IqsSKpN69Rs8OMxtOqlgjc/eY8dKKoDuiYdZ7s3qvgZ76W Pt3xummlyVM70XJMalhuP0aGgSKUI0bC3W95BKU0sCtzhY9Tqu5JSmlIgdTOphlq mMUIevcnGYLvm1LnF8hsVA6Pel/pJ3CvppWme9TDVEXYGSxXhHvtcN614fFVOC2s WX9+Dx4RG8rvXKzQbNEZo70Gx3QlHSB2oGPj3h/182l5oifAkbDMf/RkEpOUe90= -----END CERTIFICATE-----Generated at Sat Jun 13 21:20:23 2026 by rpki-client