$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/FD990E7AF0B311EE9923BC84C4F9AE02.roa File: FD990E7AF0B311EE9923BC84C4F9AE02.roa (raw, json) Hash identifier: VwI4htuyMxcGwrz52sIqcL8v2K+xVngLHVndBMFj5NM= Subject key identifier: 26:66:59:26:A5:20:46:60:F2:B7:FA:ED:FB:D2:63:3F:BF:A5:3F:A3 Certificate issuer: /CN=A9171882/serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Certificate serial: 0167 Authority key identifier: 5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/FD990E7AF0B311EE9923BC84C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:05:38 +0000 ROA not before: Mon 17 Mar 2025 04:51:20 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152604 IP address blocks: 157.20.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Validity Not Before: Mar 17 04:51:20 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a59932-6293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:da:ca:3b:df:99:41:c0:53:5d:cf:1b:dc:41: ff:f7:28:1f:6c:16:b7:aa:cc:df:37:6d:23:46:b1: e0:c1:77:aa:60:94:f6:44:d9:55:cd:f2:7f:b0:bf: e8:8c:5b:d9:7c:65:d6:96:53:8e:e7:4f:7f:c4:74: d7:32:cb:b0:92:67:d1:9d:0c:dd:92:c6:ef:d8:0b: bc:35:4e:23:b7:fc:59:0c:a5:09:f2:49:33:61:f9: 14:08:b5:af:b9:b1:a7:5e:2f:3b:8e:01:11:67:dd: 78:2a:a2:88:e0:f6:7c:ec:f4:e5:1d:3d:ad:d4:cc: ef:d8:7e:ec:10:9d:49:c5:1a:f0:ea:0b:09:b1:14: 03:60:8f:fa:bd:1e:a0:03:e4:51:4d:8b:09:da:c7: 21:93:c2:ac:67:2a:e1:15:a4:9d:42:96:a3:cf:31: fc:b3:f9:5d:4f:17:59:f8:58:49:10:61:d1:de:31: 0e:b5:2d:5a:56:fc:65:83:df:dd:3b:e7:5e:b0:16: 03:73:8e:6b:4b:66:2b:ba:eb:ae:c1:60:57:1d:3e: 9a:9d:81:2b:7c:be:02:f3:0c:16:7d:14:35:af:f2: 31:ae:db:9b:07:8b:78:08:4a:53:0d:60:3b:3b:69: 54:40:09:42:eb:fe:de:a1:38:cc:5b:24:30:dc:20: 37:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:66:59:26:A5:20:46:60:F2:B7:FA:ED:FB:D2:63:3F:BF:A5:3F:A3 X509v3 Authority Key Identifier: keyid:5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/FD990E7AF0B311EE9923BC84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.140.0/23 Signature Algorithm: sha256WithRSAEncryption a0:e2:eb:35:da:ab:50:9e:2a:b0:0f:cd:c1:8f:25:41:1f:8c: d2:3e:e1:3d:ec:f9:11:17:a3:b2:7d:27:05:0b:b8:7e:69:a7: d8:c0:66:52:45:a0:93:54:14:15:41:ae:c3:00:79:f0:13:e8: 43:60:be:65:c0:d9:5f:0d:98:a4:e2:70:45:b0:a0:e3:96:b0: a5:d9:3a:85:a3:88:72:52:9a:a6:b9:09:a5:d0:9a:d4:47:ca: 25:e1:20:42:b8:1f:42:5c:6d:1a:d5:f0:72:ca:a1:22:64:99: d0:7a:0f:a8:dc:1b:5d:4b:b6:f7:fe:d1:df:b4:6a:8a:ef:7d: 8a:69:f5:ed:1d:3a:13:91:43:21:0c:3c:30:b8:4f:f4:74:d3: 67:fe:a7:42:ab:21:fb:fa:81:41:71:ac:58:d4:39:c1:fb:15: a4:0a:61:37:64:a6:aa:a1:13:d3:b3:ab:6a:7c:33:64:a9:b2: f1:7b:14:e5:6d:d8:1b:7a:54:cf:97:16:e5:d0:b2:85:f9:2b: 2e:f3:70:a0:c0:aa:cd:f7:f5:30:43:e7:18:a9:3f:7e:3e:c8: 94:de:28:51:7b:b2:e8:92:81:a6:52:a6:1f:10:79:bf:0b:61: 6d:93:1a:97:39:d1:80:41:bc:5c:6b:1f:b3:0f:40:cc:8d:89: de:d1:09:e8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDVCQzQ5NEU4OUQwQTQxNTVCNTUyNTM2M0QxMjM1QzVF REMwRkRFMkYwHhcNMjUwMzE3MDQ1MTIwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTkzMi02MjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtrKO9+ZQcBTXc8b3EH/9ygfbBa3qszfN20jRrHgwXeqYJT2RNlVzfJ/sL/o jFvZfGXWllOO509/xHTXMsuwkmfRnQzdksbv2Au8NU4jt/xZDKUJ8kkzYfkUCLWv ubGnXi87jgERZ914KqKI4PZ87PTlHT2t1Mzv2H7sEJ1JxRrw6gsJsRQDYI/6vR6g A+RRTYsJ2schk8KsZyrhFaSdQpajzzH8s/ldTxdZ+FhJEGHR3jEOtS1aVvxlg9/d O+desBYDc45rS2YruuuuwWBXHT6anYErfL4C8wwWfRQ1r/IxrtubB4t4CEpTDWA7 O2lUQAlC6/7eoTjMWyQw3CA3eQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCZmWSal IEZg8rf67fvSYz+/pT+jMB8GA1UdIwQYMBaAFFvElOidCkFVtVJTY9EjXF7cD94v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9BOEMyNTFFQUYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9XOFNVNkowS1FWVzFVbE5qMFNOY1h0d1Az aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1c4U1U2SjBLUVZXMVVsTmowU05jWHR3UDNpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE4ODIvQThDMjUxRUFGMEIzMTFFRUE0QzcyRjg0QzRGOUFFMDIvRkQ5OTBFN0FG MEIzMTFFRTk5MjNCQzg0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRSMMA0GCSqGSIb3DQEBCwUAA4IBAQCg4us12qtQniqwD83BjyVB H4zSPuE97PkRF6OyfScFC7h+aafYwGZSRaCTVBQVQa7DAHnwE+hDYL5lwNlfDZik 4nBFsKDjlrCl2TqFo4hyUpqmuQml0JrUR8ol4SBCuB9CXG0a1fByyqEiZJnQeg+o 3BtdS7b3/tHftGqK732KafXtHToTkUMhDDwwuE/0dNNn/qdCqyH7+oFBcaxY1DnB +xWkCmE3ZKaqoRPTs6tqfDNkqbLxexTlbdgbelTPlxbl0LKF+Ssu83CgwKrN9/Uw Q+cYqT9+PsiU3ihRe7LokoGmUqYfEHm/C2FtkxqXOdGAQbxcax+zD0DMjYne0Qno -----END CERTIFICATE-----Generated at Mon Mar 2 15:50:51 2026 by rpki-client