$ rpki-client -vvf rpki.apnic.net/member_repository/A9187347/4A9372F60E3F11F1B2CCDB73183D8C67/8C5B4E020E3F11F18FED49E9183D8C67.roa File: 8C5B4E020E3F11F18FED49E9183D8C67.roa (raw, json) Hash identifier: Hz/ArrYvezX4EXJ8DDY9ijBLJGuFrjsekFb24N7uhk8= Subject key identifier: B3:25:25:75:40:0B:4A:3C:DB:CC:16:71:1E:58:51:67:56:A7:01:04 Certificate issuer: /CN=A9187347/serialNumber=D312EE50E651FAF03968EDF4EA001149E595FC0E Certificate serial: 0C Authority key identifier: D3:12:EE:50:E6:51:FA:F0:39:68:ED:F4:EA:00:11:49:E5:95:FC:0E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0xLuUOZR-vA5aO306gARSeWV_A4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187347/4A9372F60E3F11F1B2CCDB73183D8C67/8C5B4E020E3F11F18FED49E9183D8C67.roa Signing time: Sun 01 Mar 2026 05:33:38 +0000 ROA not before: Fri 20 Feb 2026 09:35:53 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 137007 IP address blocks: 151.158.100.0/23 maxlen: 23 151.158.100.0/24 maxlen: 24 151.158.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187347/4A9372F60E3F11F1B2CCDB73183D8C67/0xLuUOZR-vA5aO306gARSeWV_A4.crl rsync://rpki.apnic.net/member_repository/A9187347/4A9372F60E3F11F1B2CCDB73183D8C67/0xLuUOZR-vA5aO306gARSeWV_A4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0xLuUOZR-vA5aO306gARSeWV_A4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187347, serialNumber=D312EE50E651FAF03968EDF4EA001149E595FC0E Validity Not Before: Feb 20 09:35:53 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a3cfb2-3b50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c1:84:25:8e:80:a2:e8:f2:46:a4:df:7c:f1: d1:33:4f:68:a7:c8:1e:49:44:3c:3e:b4:16:48:af: 1f:91:86:f1:f3:93:36:2d:b1:b0:39:97:9a:93:61: db:8b:7f:08:b8:1e:34:5a:07:2b:de:dd:4e:fe:9f: d3:8a:17:09:f0:a0:97:f7:cb:f3:64:b9:f1:28:4d: e8:fe:b2:e4:53:02:af:a0:5a:6e:a5:a7:42:01:51: e8:37:59:84:63:7d:81:c4:75:1a:09:c0:2b:04:e3: c9:9b:26:86:82:ec:dc:94:c9:1b:52:de:34:b1:05: 73:6b:e5:a6:10:6b:75:96:43:6a:3f:90:37:6c:b8: ab:96:55:c3:bd:9c:35:99:f0:17:c0:5e:43:9a:9a: 62:bc:4d:d5:5a:33:10:9b:ba:53:84:5a:57:d9:ea: 31:0e:a3:1b:78:d2:ec:62:f8:04:92:90:b3:af:2c: 9c:49:6f:df:58:b7:b2:e3:85:10:8a:33:2c:1c:79: 25:8d:93:71:aa:80:52:3f:14:77:77:b5:3a:08:ce: 65:4d:b5:4f:83:0e:53:fe:35:b6:e8:8e:ae:2e:99: 10:d1:71:0e:4e:11:a4:35:25:73:f4:bc:5f:4d:cf: da:77:68:d4:50:48:08:01:de:b0:40:01:95:5a:a2: 10:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:25:25:75:40:0B:4A:3C:DB:CC:16:71:1E:58:51:67:56:A7:01:04 X509v3 Authority Key Identifier: keyid:D3:12:EE:50:E6:51:FA:F0:39:68:ED:F4:EA:00:11:49:E5:95:FC:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187347/4A9372F60E3F11F1B2CCDB73183D8C67/0xLuUOZR-vA5aO306gARSeWV_A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0xLuUOZR-vA5aO306gARSeWV_A4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187347/4A9372F60E3F11F1B2CCDB73183D8C67/8C5B4E020E3F11F18FED49E9183D8C67.roa sbgp-ipAddrBlock: critical IPv4: 151.158.100.0/23 Signature Algorithm: sha256WithRSAEncryption 91:fd:85:62:7f:c0:5d:ea:ce:d0:96:35:37:cb:88:99:49:79: 2c:bb:aa:21:83:c2:a8:1b:0c:a1:6c:e7:ab:bc:c6:b3:f8:f7: bf:cc:45:f3:0a:4b:56:93:ba:c5:1c:fe:08:e3:51:d5:cf:9e: 9c:aa:18:67:8c:35:1d:30:16:c7:b6:9f:08:11:9b:7b:61:f6: e9:80:59:c1:a1:ce:e1:a7:76:6b:b2:89:d9:9d:6c:bc:32:c2: e8:c1:ac:d4:75:30:30:c8:87:a5:d7:56:0a:05:b9:e7:ff:6d: 0b:e8:1c:cc:38:37:91:6f:a5:b4:6a:55:6b:a6:bf:f4:e0:a5: b4:36:39:16:c9:a5:15:f7:d3:9b:fa:f8:05:85:9d:03:48:ff: c4:06:cf:90:26:90:2c:23:8b:85:44:a7:e3:93:ba:d0:41:1d: aa:4e:81:d5:40:12:f7:ad:9d:46:cd:2d:07:1a:80:29:88:61: 1f:db:6a:92:92:fe:e0:a5:72:cd:50:56:57:99:e6:5a:7b:71: b0:7f:bf:39:4d:ad:49:d7:78:3e:be:9c:74:ac:6d:9b:b8:19: f8:0c:09:d5:97:ab:42:5c:6b:ac:4f:f0:70:35:4b:1a:c5:0d: 28:6f:a3:95:b6:26:2e:5b:92:f3:49:08:f8:5e:fa:ec:e8:98: 56:d5:ff:9a -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzM0NzExMC8GA1UEBRMoRDMxMkVFNTBFNjUxRkFGMDM5NjhFREY0RUEwMDExNDlF NTk1RkMwRTAeFw0yNjAyMjAwOTM1NTNaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNjZmIyLTNiNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTwYQljoCi6PJGpN988dEzT2inyB5JRDw+tBZIrx+RhvHzkzYtsbA5l5qTYduL fwi4HjRaByve3U7+n9OKFwnwoJf3y/NkufEoTej+suRTAq+gWm6lp0IBUeg3WYRj fYHEdRoJwCsE48mbJoaC7NyUyRtS3jSxBXNr5aYQa3WWQ2o/kDdsuKuWVcO9nDWZ 8BfAXkOammK8TdVaMxCbulOEWlfZ6jEOoxt40uxi+ASSkLOvLJxJb99Yt7LjhRCK MywceSWNk3GqgFI/FHd3tToIzmVNtU+DDlP+Nbbojq4umRDRcQ5OEaQ1JXP0vF9N z9p3aNRQSAgB3rBAAZVaohAtAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUsyUldUAL SjzbzBZxHlhRZ1anAQQwHwYDVR0jBBgwFoAU0xLuUOZR+vA5aO306gARSeWV/A4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3MzQ3LzRBOTM3MkY2MEUz RjExRjFCMkNDREI3MzE4M0Q4QzY3LzB4THVVT1pSLXZBNWFPMzA2Z0FSU2VXVl9B NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvMHhMdVVPWlItdkE1YU8zMDZnQVJTZVdWX0E0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzM0Ny80QTkzNzJGNjBFM0YxMUYxQjJDQ0RCNzMxODNEOEM2Ny84QzVCNEUwMjBF M0YxMUYxOEZFRDQ5RTkxODNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGXnmQwDQYJKoZIhvcNAQELBQADggEBAJH9hWJ/wF3qztCWNTfLiJlJ eSy7qiGDwqgbDKFs56u8xrP497/MRfMKS1aTusUc/gjjUdXPnpyqGGeMNR0wFse2 nwgRm3th9umAWcGhzuGndmuyidmdbLwywujBrNR1MDDIh6XXVgoFuef/bQvoHMw4 N5FvpbRqVWumv/TgpbQ2ORbJpRX305v6+AWFnQNI/8QGz5AmkCwji4VEp+OTutBB HapOgdVAEvetnUbNLQcagCmIYR/bapKS/uClcs1QVleZ5lp7cbB/vzlNrUnXeD6+ nHSsbZu4GfgMCdWXq0Jca6xP8HA1SxrFDShvo5W2Ji5bkvNJCPhe+uzomFbV/5o= -----END CERTIFICATE-----Generated at Mon Mar 2 05:17:03 2026 by rpki-client