$ rpki-client -vvf rpki.apnic.net/member_repository/A917C909/FF7C5FDCC0DB11EF9E871844C4F9AE02/46C0C4E0770311F09B9D387BC4F9AE02.roa File: 46C0C4E0770311F09B9D387BC4F9AE02.roa (raw, json) Hash identifier: seNWkSzPB+y0QnMqGd7lzmRBQ9fM1nYcZLpQ+T55VyE= Subject key identifier: D2:A4:DC:E4:52:47:B1:08:12:D2:2E:31:73:E1:96:FF:AE:D9:B9:FE Certificate issuer: /CN=A917C909/serialNumber=59F9D48DD916909783E31771D8AD7ECB30DC3BA2 Certificate serial: F3 Authority key identifier: 59:F9:D4:8D:D9:16:90:97:83:E3:17:71:D8:AD:7E:CB:30:DC:3B:A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WfnUjdkWkJeD4xdx2K1-yzDcO6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C909/FF7C5FDCC0DB11EF9E871844C4F9AE02/46C0C4E0770311F09B9D387BC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:13:56 +0000 ROA not before: Sat 31 Jan 2026 06:24:38 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 133458 IP address blocks: 161.248.2.0/23 maxlen: 24 209.131.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C909/FF7C5FDCC0DB11EF9E871844C4F9AE02/WfnUjdkWkJeD4xdx2K1-yzDcO6I.crl rsync://rpki.apnic.net/member_repository/A917C909/FF7C5FDCC0DB11EF9E871844C4F9AE02/WfnUjdkWkJeD4xdx2K1-yzDcO6I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WfnUjdkWkJeD4xdx2K1-yzDcO6I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C909, serialNumber=59F9D48DD916909783E31771D8AD7ECB30DC3BA2 Validity Not Before: Jan 31 06:24:38 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a41f73-26f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b7:e7:8a:4d:b2:c1:58:a6:c5:49:df:e7:58: bd:a8:92:4b:d6:42:e7:95:ed:07:32:59:1f:f1:65: d8:3d:08:d7:a1:df:64:c0:54:9e:88:3c:56:2f:7b: 55:d8:bf:5d:18:ee:a8:7e:ab:30:99:2e:40:45:d4: fd:ea:e4:4e:82:b3:c7:de:83:cc:cd:9e:65:cf:b7: 74:71:27:a6:bf:59:4a:7a:bd:f4:23:a9:c3:17:8f: 11:ab:1f:d1:b9:f5:ce:df:bb:b7:48:2e:65:85:09: a0:8b:6d:be:4e:35:36:79:49:27:49:36:6b:00:c8: 7a:66:97:42:b6:15:88:38:97:3a:f6:a5:72:05:30: 4d:46:50:b4:3b:b6:5c:de:43:2c:59:91:a2:6e:e8: 0e:f3:0d:f4:5c:8e:d3:97:d4:6e:03:eb:71:e2:c5: 1d:e8:bd:11:70:c6:29:48:e7:fc:85:5b:94:ac:01: bb:eb:14:7a:69:1b:4c:7c:51:ed:5f:03:99:eb:78: 1d:f0:bb:2b:bb:fd:27:66:33:0d:db:6d:e5:c4:ee: 42:f9:e0:19:c9:c4:b6:3a:99:89:13:27:b8:a1:11: 51:11:4b:24:14:ef:c0:d0:dd:7f:99:0e:72:2f:49: 3f:90:bb:17:2a:63:dc:86:dc:0b:25:df:e2:8f:76: a9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A4:DC:E4:52:47:B1:08:12:D2:2E:31:73:E1:96:FF:AE:D9:B9:FE X509v3 Authority Key Identifier: keyid:59:F9:D4:8D:D9:16:90:97:83:E3:17:71:D8:AD:7E:CB:30:DC:3B:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C909/FF7C5FDCC0DB11EF9E871844C4F9AE02/WfnUjdkWkJeD4xdx2K1-yzDcO6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WfnUjdkWkJeD4xdx2K1-yzDcO6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C909/FF7C5FDCC0DB11EF9E871844C4F9AE02/46C0C4E0770311F09B9D387BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.2.0/23 209.131.124.0/23 Signature Algorithm: sha256WithRSAEncryption 28:a4:e6:04:95:d0:e3:a2:e1:2f:bf:53:a7:52:5b:4c:d7:da: 08:6c:de:bd:a2:50:dd:c7:ab:02:cc:f2:66:80:4a:80:06:5e: 95:d9:cf:c3:0f:63:71:df:38:74:66:a8:41:5f:0f:f4:4c:5d: 6a:04:5c:f7:5d:30:f1:cb:9a:7f:aa:48:40:85:3a:e3:11:b2: 52:7f:b5:25:fd:7c:b9:95:36:ed:8d:40:78:26:2c:6c:54:32: 4b:53:cf:36:33:a8:51:3b:94:da:a6:ca:02:7f:26:6e:e0:8e: 28:98:f5:0c:f0:56:b5:40:75:e5:58:1d:2d:a1:64:18:fe:f7: 97:17:42:bb:eb:0f:11:53:ab:9e:70:44:f2:9c:a5:08:7f:4d: e0:49:3e:da:9d:29:be:9d:29:4b:63:6d:4f:6c:f3:25:58:4a: 20:2d:e8:8d:56:0e:fe:ff:28:15:ce:23:16:d0:0b:36:7e:ff: 5a:13:81:9e:5b:fd:48:18:0d:d5:fe:bc:3a:33:5d:ca:69:c9: fa:12:bc:53:0c:6d:b8:30:ad:ed:2f:5e:63:93:0c:43:c9:5f: 83:89:8d:1f:25:1b:4c:6a:7d:43:f8:92:e1:c4:c5:9d:34:9e: 8e:61:3b:8e:24:91:cc:39:d9:35:87:81:07:48:74:b3:78:b5: 29:e7:b6:26 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MDkxMTAvBgNVBAUTKDU5RjlENDhERDkxNjkwOTc4M0UzMTc3MUQ4QUQ3RUNC MzBEQzNCQTIwHhcNMjYwMTMxMDYyNDM4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWY3My0yNmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmbfnik2ywVimxUnf51i9qJJL1kLnle0HMlkf8WXYPQjXod9kwFSeiDxWL3tV 2L9dGO6ofqswmS5ARdT96uROgrPH3oPMzZ5lz7d0cSemv1lKer30I6nDF48Rqx/R ufXO37u3SC5lhQmgi22+TjU2eUknSTZrAMh6ZpdCthWIOJc69qVyBTBNRlC0O7Zc 3kMsWZGibugO8w30XI7Tl9RuA+tx4sUd6L0RcMYpSOf8hVuUrAG76xR6aRtMfFHt XwOZ63gd8Lsru/0nZjMN223lxO5C+eAZycS2OpmJEye4oRFREUskFO/A0N1/mQ5y L0k/kLsXKmPchtwLJd/ij3ap8wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNKk3ORS R7EIEtIuMXPhlv+u2bn+MB8GA1UdIwQYMBaAFFn51I3ZFpCXg+MXcditfssw3Dui MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkwOS9GRjdDNUZEQ0Mw REIxMUVGOUU4NzE4NDRDNEY5QUUwMi9XZm5VamRrV2tKZUQ0eGR4MksxLXl6RGNP NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dmblVqZGtXa0plRDR4ZHgySzEteXpEY082SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M5MDkvRkY3QzVGRENDMERCMTFFRjlFODcxODQ0QzRGOUFFMDIvNDZDMEM0RTA3 NzAzMTFGMDlCOUQzODdCQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBofgCAwQB0YN8MA0GCSqGSIb3DQEBCwUAA4IBAQAopOYEldDjouEv v1OnUltM19oIbN69olDdx6sCzPJmgEqABl6V2c/DD2Nx3zh0ZqhBXw/0TF1qBFz3 XTDxy5p/qkhAhTrjEbJSf7Ul/Xy5lTbtjUB4JixsVDJLU882M6hRO5TapsoCfyZu 4I4omPUM8Fa1QHXlWB0toWQY/veXF0K76w8RU6uecETynKUIf03gST7anSm+nSlL Y21PbPMlWEogLeiNVg7+/ygVziMW0As2fv9aE4GeW/1IGA3V/rw6M13Kacn6ErxT DG24MK3tL15jkwxDyV+DiY0fJRtMan1D+JLhxMWdNJ6OYTuOJJHMOdk1h4EHSHSz eLUp57Ym -----END CERTIFICATE-----Generated at Mon Mar 2 09:56:51 2026 by rpki-client