$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa File: 9580A702548211EFAADB996FC4F9AE02.roa (raw, json) Hash identifier: W7D/CE6bwRnzbpMvwdGdNhRCXEBo9prgW8s4Z6/gD9o= Subject key identifier: FC:31:0D:4E:73:52:60:D5:EB:6E:91:AA:BA:59:DD:C1:51:73:F6:DC Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: 0168 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:20:57 +0000 ROA not before: Thu 17 Jul 2025 06:07:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150436 IP address blocks: 45.78.192.0/18 maxlen: 24 69.5.0.0/19 maxlen: 24 207.166.160.0/19 maxlen: 24 216.19.0.0/18 maxlen: 24 216.230.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Jul 17 06:07:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a43d39-e65e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f7:cb:fb:5b:b7:6b:21:d3:f1:56:14:09:2b: 67:43:da:07:89:e9:29:fd:a9:b2:5f:3e:7b:85:f9: ef:59:99:93:32:a4:61:ed:4f:b7:f2:16:54:28:03: 47:05:86:09:02:79:fb:f8:d0:89:91:03:cc:79:06: 59:25:cd:78:eb:1a:3e:03:c9:0d:4d:74:48:f7:c1: 7a:7c:2c:a1:09:fb:a8:7f:7c:d8:64:78:80:b3:d7: 28:d8:3b:26:41:9d:02:79:79:55:7d:b8:8e:a0:c8: 0e:d1:f6:38:d1:4a:9a:5b:95:00:e0:fb:3c:3c:f4: ea:7f:3b:d8:ce:30:2c:54:ac:c8:8c:ea:0b:7a:97: 84:fc:d2:1f:6f:9c:54:12:76:57:3a:69:f9:04:ba: 87:38:19:c1:e2:9d:13:5d:11:02:b2:f1:6c:e9:bb: 82:a1:48:73:9f:00:8b:60:2a:d1:be:94:8b:55:c1: 9a:8d:cd:fb:51:2e:20:4b:ef:c6:04:19:de:9a:d2: ab:6a:95:8b:f9:de:57:02:c3:20:23:28:f4:0a:01: 11:85:5d:5c:59:7d:5a:21:85:f1:21:80:76:42:30: eb:ec:63:a7:61:07:07:60:a9:03:d5:0c:e5:e4:8a: e2:59:1d:f1:50:f4:5f:9f:54:54:4b:71:53:05:ce: 7f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:31:0D:4E:73:52:60:D5:EB:6E:91:AA:BA:59:DD:C1:51:73:F6:DC X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.78.192.0/18 69.5.0.0/19 207.166.160.0/19 216.19.0.0/18 216.230.192.0/19 Signature Algorithm: sha256WithRSAEncryption 64:76:b0:a3:e4:3f:d4:f0:95:70:bf:e1:2e:48:91:7c:e5:74: da:58:38:6a:e1:f5:96:80:e3:b0:85:70:c3:11:13:00:48:b3: 61:2e:e5:68:c9:2d:01:9f:6e:86:04:32:ca:a9:bd:c0:b3:fd: b7:56:13:62:7a:e0:c0:4e:36:db:8d:18:17:e9:35:3e:8b:4a: 4f:f2:ba:5e:a0:41:4d:ca:49:a6:3b:78:b4:7c:87:af:e5:04: 91:d6:22:fd:1e:c1:c8:e9:93:05:e5:ea:4f:a6:d3:5c:30:bb: 09:d2:36:a1:fe:0f:28:24:e2:e3:e9:a0:54:2e:09:a8:84:94: ac:15:3f:5c:af:88:34:ac:2e:20:71:71:82:65:4f:8b:3a:57: b0:e8:51:54:26:69:43:7e:8d:94:81:89:77:9e:c7:bd:5b:c8: 52:c0:cd:8c:43:14:64:8e:1c:cf:8e:4f:b0:65:29:df:e7:ad: 05:2d:1d:3b:00:fc:29:cb:6e:2c:2b:fa:0d:4c:96:8e:74:bb: 7d:1f:3f:04:e2:a0:99:8a:06:56:02:5d:f9:54:24:85:b7:1b: 06:7c:35:b7:c2:9f:a8:f0:9d:43:8e:e2:84:e9:62:ae:49:89: bf:5d:15:81:96:0e:c8:5f:25:70:ef:4c:43:f0:29:c1:bd:63: 8f:4c:26:1a -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUwNzE3MDYwNzE0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2QzOS1lNjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/fL+1u3ayHT8VYUCStnQ9oHiekp/amyXz57hfnvWZmTMqRh7U+38hZUKANH BYYJAnn7+NCJkQPMeQZZJc146xo+A8kNTXRI98F6fCyhCfuof3zYZHiAs9co2Dsm QZ0CeXlVfbiOoMgO0fY40UqaW5UA4Ps8PPTqfzvYzjAsVKzIjOoLepeE/NIfb5xU EnZXOmn5BLqHOBnB4p0TXRECsvFs6buCoUhznwCLYCrRvpSLVcGajc37US4gS+/G BBnemtKrapWL+d5XAsMgIyj0CgERhV1cWX1aIYXxIYB2QjDr7GOnYQcHYKkD1Qzl 5IriWR3xUPRfn1RUS3FTBc5/+QIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFPwxDU5z UmDV626RqrpZ3cFRc/bcMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MjAvOEY5MDkxRDQzMkIwMTFFRkE0Q0JGOTZBQzRGOUFFMDIvOTU4MEE3MDI1 NDgyMTFFRkFBREI5OTZGQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQGLU7AAwQFRQUAAwQFz6agAwQG2BMAAwQF2ObAMA0GCSqGSIb3DQEB CwUAA4IBAQBkdrCj5D/U8JVwv+EuSJF85XTaWDhq4fWWgOOwhXDDERMASLNhLuVo yS0Bn26GBDLKqb3As/23VhNieuDATjbbjRgX6TU+i0pP8rpeoEFNykmmO3i0fIev 5QSR1iL9HsHI6ZMF5epPptNcMLsJ0jah/g8oJOLj6aBULgmohJSsFT9cr4g0rC4g cXGCZU+LOlew6FFUJmlDfo2UgYl3nse9W8hSwM2MQxRkjhzPjk+wZSnf560FLR07 APwpy24sK/oNTJaOdLt9Hz8E4qCZigZWAl35VCSFtxsGfDW3wp+o8J1DjuKE6WKu SYm/XRWBlg7IXyVw70xD8CnBvWOPTCYa -----END CERTIFICATE-----Generated at Mon Mar 2 09:09:26 2026 by rpki-client