$ rpki-client -vvf rpki.apnic.net/member_repository/A917B04C/11A2F3DA2C2711F19BAFCA1D9C833773/984616082C2A11F1B015EE939D833773.roa File: 984616082C2A11F1B015EE939D833773.roa (raw, json) Hash identifier: oF4VI5NZfC+UNgW9AHSKJ6DEAMeK3Nd3QJRoxE5Ngzs= Subject key identifier: D8:A6:95:91:4B:6F:DE:02:41:AC:D6:55:0C:E0:93:28:6A:D9:B5:F7 Certificate issuer: /CN=A917B04C/serialNumber=0D22FFD4704A54AE9EDAD1B7E5A4E0353F45DA17 Certificate serial: 02 Authority key identifier: 0D:22:FF:D4:70:4A:54:AE:9E:DA:D1:B7:E5:A4:E0:35:3F:45:DA:17 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DSL_1HBKVK6e2tG35aTgNT9F2hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B04C/11A2F3DA2C2711F19BAFCA1D9C833773/984616082C2A11F1B015EE939D833773.roa Signing time: Mon 30 Mar 2026 11:21:28 +0000 ROA not before: Mon 30 Mar 2026 11:21:28 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 154498 IP address blocks: 151.158.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B04C/11A2F3DA2C2711F19BAFCA1D9C833773/DSL_1HBKVK6e2tG35aTgNT9F2hc.crl rsync://rpki.apnic.net/member_repository/A917B04C/11A2F3DA2C2711F19BAFCA1D9C833773/DSL_1HBKVK6e2tG35aTgNT9F2hc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DSL_1HBKVK6e2tG35aTgNT9F2hc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 02:50:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B04C, serialNumber=0D22FFD4704A54AE9EDAD1B7E5A4E0353F45DA17 Validity Not Before: Mar 30 11:21:28 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69ca5cb8-4c55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4b:c7:73:71:99:6b:a7:7f:ed:33:92:4c:a3: ba:02:1d:fc:d4:5b:15:f2:6c:ed:68:41:04:4f:2c: 9e:15:00:0a:1c:4a:79:c1:69:c2:b3:b2:3a:72:be: 33:11:44:f9:61:7c:31:3d:44:d5:33:6a:24:79:17: 34:d2:d2:e0:35:4d:ba:17:ea:9b:8e:c8:c7:ac:9e: ec:73:57:43:2e:6d:33:ae:f3:bf:b9:92:ea:86:99: 3c:fa:75:af:57:98:bf:08:65:9a:1b:09:60:ab:71: 79:f8:e3:14:0d:55:f0:22:5e:44:ec:41:41:4f:82: df:9c:c6:07:9a:1f:3c:e0:44:f6:8f:55:f3:e0:87: 5c:17:29:86:65:f3:52:f5:b9:a2:49:6a:36:98:8e: ee:48:9c:61:3e:1f:79:53:69:c8:1c:b8:52:f8:cd: f0:68:39:b1:9c:b3:74:24:6a:f1:75:48:d6:95:8e: 46:a8:b2:d6:09:f5:28:e8:9c:72:23:8a:6b:b3:0f: 57:2f:ff:12:d5:be:01:02:3d:6c:6c:61:c0:1a:ee: 37:05:d9:13:f4:14:eb:50:97:85:a7:03:62:22:2c: 8c:e6:5e:e4:e4:93:37:c9:ab:57:f6:c4:51:b3:3a: 99:fb:10:46:d6:39:b9:2e:ca:73:f8:91:13:22:29: 42:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A6:95:91:4B:6F:DE:02:41:AC:D6:55:0C:E0:93:28:6A:D9:B5:F7 X509v3 Authority Key Identifier: keyid:0D:22:FF:D4:70:4A:54:AE:9E:DA:D1:B7:E5:A4:E0:35:3F:45:DA:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B04C/11A2F3DA2C2711F19BAFCA1D9C833773/DSL_1HBKVK6e2tG35aTgNT9F2hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DSL_1HBKVK6e2tG35aTgNT9F2hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B04C/11A2F3DA2C2711F19BAFCA1D9C833773/984616082C2A11F1B015EE939D833773.roa sbgp-ipAddrBlock: critical IPv4: 151.158.172.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:a9:c0:9e:1d:0a:df:e7:6f:71:bb:9b:40:c7:ac:c3:03:af: 5e:af:6f:04:01:eb:07:45:41:af:b5:61:29:df:23:17:ae:cf: 67:02:91:69:24:96:4e:e1:59:05:76:d0:7c:4f:7f:56:41:b6: 55:b6:20:66:94:be:1a:77:2d:a6:fd:df:b2:15:67:8f:64:ee: c3:ad:51:74:9c:81:9f:3f:d9:d9:87:64:c1:d5:bf:46:ff:91: 7b:e0:8a:14:0b:f9:cf:c8:35:55:04:b7:b3:18:10:e3:6e:c5: 75:b3:e0:aa:64:25:89:b8:02:c0:60:7c:7d:4a:fc:72:0d:71: dc:0d:41:a9:3b:c1:d2:ae:c4:a3:ce:3f:6e:4a:6b:61:4c:bf: ab:25:3b:21:e1:31:2d:63:38:cd:05:10:04:e8:f0:68:76:02: ab:59:db:79:49:34:e9:e0:80:81:f2:92:54:a9:6a:9e:2d:55: db:cb:a1:9a:41:4a:b0:2e:e3:93:23:62:68:21:7e:da:84:dd: 7e:96:35:da:3d:92:a6:01:92:81:0d:5e:43:70:f4:a8:10:81: 17:27:d5:ec:a9:8c:35:84:4e:96:fd:5b:9b:7d:90:1d:3d:4e: a7:6a:62:3c:b0:6e:86:97:4b:4a:08:26:10:03:a5:4e:5d:56: 0e:8c:77:16 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjA0QzExMC8GA1UEBRMoMEQyMkZGRDQ3MDRBNTRBRTlFREFEMUI3RTVBNEUwMzUz RjQ1REExNzAeFw0yNjAzMzAxMTIxMjhaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5Y2E1Y2I4LTRjNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/S8dzcZlrp3/tM5JMo7oCHfzUWxXybO1oQQRPLJ4VAAocSnnBacKzsjpyvjMR RPlhfDE9RNUzaiR5FzTS0uA1TboX6puOyMesnuxzV0MubTOu87+5kuqGmTz6da9X mL8IZZobCWCrcXn44xQNVfAiXkTsQUFPgt+cxgeaHzzgRPaPVfPgh1wXKYZl81L1 uaJJajaYju5InGE+H3lTacgcuFL4zfBoObGcs3QkavF1SNaVjkaostYJ9SjonHIj imuzD1cv/xLVvgECPWxsYcAa7jcF2RP0FOtQl4WnA2IiLIzmXuTkkzfJq1f2xFGz Opn7EEbWObkuynP4kRMiKUI3AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU2KaVkUtv 3gJBrNZVDOCTKGrZtfcwHwYDVR0jBBgwFoAUDSL/1HBKVK6e2tG35aTgNT9F2hcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCMDRDLzExQTJGM0RBMkMy NzExRjE5QkFGQ0ExRDlDODMzNzczL0RTTF8xSEJLVks2ZTJ0RzM1YVRnTlQ5RjJo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvRFNMXzFIQktWSzZlMnRHMzVhVGdOVDlGMmhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjA0Qy8xMUEyRjNEQTJDMjcxMUYxOUJBRkNBMUQ5QzgzMzc3My85ODQ2MTYwODJD MkExMUYxQjAxNUVFOTM5RDgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGXnqwwDQYJKoZIhvcNAQELBQADggEBAHqpwJ4dCt/nb3G7m0DHrMMD r16vbwQB6wdFQa+1YSnfIxeuz2cCkWkklk7hWQV20HxPf1ZBtlW2IGaUvhp3Lab9 37IVZ49k7sOtUXScgZ8/2dmHZMHVv0b/kXvgihQL+c/INVUEt7MYEONuxXWz4Kpk JYm4AsBgfH1K/HINcdwNQak7wdKuxKPOP25Ka2FMv6slOyHhMS1jOM0FEATo8Gh2 AqtZ23lJNOnggIHyklSpap4tVdvLoZpBSrAu45MjYmghftqE3X6WNdo9kqYBkoEN XkNw9KgQgRcn1eypjDWETpb9W5t9kB09TqdqYjywboaXS0oIJhADpU5dVg6MdxY= -----END CERTIFICATE-----Generated at Sun Apr 19 15:18:56 2026 by rpki-client