$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/FEC5694C482311F0B2B5E45DC4F9AE02.roa File: FEC5694C482311F0B2B5E45DC4F9AE02.roa (raw, json) Hash identifier: hSLC4NqqDun1gK6ZwRrsmJ/xEHmnvf+dUfJIiSua4bA= Subject key identifier: C6:85:0B:06:1F:17:61:1A:82:08:52:46:01:E9:6A:43:BC:74:42:6B Certificate issuer: /CN=A917E1FA/serialNumber=F15C5C5BA521453707C81F5FEC0811BF21CFF40E Certificate serial: 99 Authority key identifier: F1:5C:5C:5B:A5:21:45:37:07:C8:1F:5F:EC:08:11:BF:21:CF:F4:0E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/FEC5694C482311F0B2B5E45DC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:19:47 +0000 ROA not before: Tue 03 Feb 2026 07:25:25 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 137474 IP address blocks: 160.250.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.crl rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FA, serialNumber=F15C5C5BA521453707C81F5FEC0811BF21CFF40E Validity Not Before: Feb 3 07:25:25 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a420d3-0e0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e7:2a:5a:c0:b2:48:89:b0:42:f8:9f:3b:7a: cb:47:a5:b6:eb:3e:ac:bb:bb:4c:1e:b6:83:7d:59: fc:aa:f9:4c:1f:73:10:60:be:e8:0b:39:f2:66:3d: cc:1e:2c:dc:cc:99:9d:98:53:89:66:22:b8:16:6a: c1:22:82:23:82:0b:51:9c:ae:92:04:24:74:8d:59: 0c:10:e1:c9:07:67:9e:ec:cb:8e:57:4f:4c:89:23: 91:b9:32:de:0d:fc:86:f1:ce:76:37:37:82:fe:65: 96:ef:8e:37:c9:91:73:96:11:4f:70:90:23:9c:66: 62:e7:d0:c6:02:c4:b5:cd:fa:5c:97:e6:55:0a:35: 73:df:a8:36:02:28:39:26:74:44:6d:ac:cc:ff:9d: e3:65:01:8b:a3:1f:be:34:58:89:8e:2e:7e:58:94: 09:ce:0a:6e:60:16:e5:a9:da:57:1f:2f:3a:13:3f: 19:e6:7c:e0:48:0c:2f:f8:cf:da:ad:95:d0:62:6e: 89:25:f1:98:6f:6b:51:5a:c7:31:15:c5:2b:7e:9c: e3:f9:3a:d2:df:c7:15:0c:0c:83:1a:68:b2:24:66: e6:d8:bb:13:c7:82:3e:42:ae:0b:5c:b1:29:45:05: 2a:cb:57:31:cb:ac:43:8e:cd:8c:c4:35:03:6b:27: db:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:85:0B:06:1F:17:61:1A:82:08:52:46:01:E9:6A:43:BC:74:42:6B X509v3 Authority Key Identifier: keyid:F1:5C:5C:5B:A5:21:45:37:07:C8:1F:5F:EC:08:11:BF:21:CF:F4:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/FEC5694C482311F0B2B5E45DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.250.212.0/23 Signature Algorithm: sha256WithRSAEncryption bc:d1:e2:47:4b:b0:77:9b:f4:0b:dd:b1:38:da:a9:16:a3:23: 05:64:d5:71:0f:96:7d:29:91:1e:77:eb:45:d0:9b:aa:06:9a: 31:05:bd:1c:96:b3:f8:ff:d0:b6:9d:35:46:c3:c3:d5:d5:6a: 08:53:77:2c:ae:76:a6:13:48:8f:c3:5c:86:0f:76:92:4b:17: 3b:17:09:da:95:29:a2:b4:87:7b:e2:ad:42:ac:fc:6c:1d:03: 33:af:85:47:4b:fa:21:68:5c:ea:5f:d5:dd:31:f0:8c:60:66: 72:34:db:f3:db:3b:65:e8:5b:e4:82:2c:20:88:1e:44:35:3d: 19:26:f4:f5:9f:c1:5c:02:fb:79:83:e2:e2:c5:72:d2:98:c3: 3f:c6:bc:5a:8a:06:1e:45:cb:ae:bb:56:a5:60:5f:4a:dc:55: 17:93:26:34:10:f8:1c:3f:34:3b:53:97:eb:ab:b2:16:9a:dc: ec:b8:a0:88:0c:ce:23:8c:32:be:7d:01:d2:9a:83:9f:a2:da: 8c:d5:9b:91:c3:22:2f:33:d3:35:e8:0c:58:1f:f0:dd:e6:2c: 3a:4d:cd:c2:27:40:5a:b3:91:41:3a:f5:08:67:b3:d4:62:56: e6:e3:24:80:7e:21:7d:92:ef:1a:e6:c3:53:85:e8:18:fa:d2: 88:06:81:49 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxRkExMTAvBgNVBAUTKEYxNUM1QzVCQTUyMTQ1MzcwN0M4MUY1RkVDMDgxMUJG MjFDRkY0MEUwHhcNMjYwMjAzMDcyNTI1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjBkMy0wZTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ecqWsCySImwQvifO3rLR6W26z6su7tMHraDfVn8qvlMH3MQYL7oCznyZj3M HizczJmdmFOJZiK4FmrBIoIjggtRnK6SBCR0jVkMEOHJB2ee7MuOV09MiSORuTLe DfyG8c52NzeC/mWW7443yZFzlhFPcJAjnGZi59DGAsS1zfpcl+ZVCjVz36g2Aig5 JnREbazM/53jZQGLox++NFiJji5+WJQJzgpuYBblqdpXHy86Ez8Z5nzgSAwv+M/a rZXQYm6JJfGYb2tRWscxFcUrfpzj+TrS38cVDAyDGmiyJGbm2LsTx4I+Qq4LXLEp RQUqy1cxy6xDjs2MxDUDayfbkwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMaFCwYf F2EagghSRgHpakO8dEJrMB8GA1UdIwQYMBaAFPFcXFulIUU3B8gfX+wIEb8hz/QO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFGQS85QTg3M0VCMDQ1 QTMxMUYwOTVFRkZENDhDNEY5QUUwMi84VnhjVzZVaFJUY0h5QjlmN0FnUnZ5SFA5 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhWeGNXNlVoUlRjSHlCOWY3QWdSdnlIUDlBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UxRkEvOUE4NzNFQjA0NUEzMTFGMDk1RUZGRDQ4QzRGOUFFMDIvRkVDNTY5NEM0 ODIzMTFGMEIyQjVFNDVEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoPrUMA0GCSqGSIb3DQEBCwUAA4IBAQC80eJHS7B3m/QL3bE42qkW oyMFZNVxD5Z9KZEed+tF0JuqBpoxBb0clrP4/9C2nTVGw8PV1WoIU3csrnamE0iP w1yGD3aSSxc7FwnalSmitId74q1CrPxsHQMzr4VHS/ohaFzqX9XdMfCMYGZyNNvz 2ztl6FvkgiwgiB5ENT0ZJvT1n8FcAvt5g+LixXLSmMM/xrxaigYeRcuuu1alYF9K 3FUXkyY0EPgcPzQ7U5frq7IWmtzsuKCIDM4jjDK+fQHSmoOfotqM1ZuRwyIvM9M1 6AxYH/Dd5iw6Tc3CJ0Bas5FBOvUIZ7PUYlbm4ySAfiF9ku8a5sNThegY+tKIBoFJ -----END CERTIFICATE-----Generated at Mon Mar 2 02:12:47 2026 by rpki-client