$ rpki-client -vvf rpki.apnic.net/member_repository/A9187CB1/1C8940A6A4D711F0B340FC81C4F9AE02/C4FE3638A4D711F0A8D1DB3CC4F9AE02.roa File: C4FE3638A4D711F0A8D1DB3CC4F9AE02.roa (raw, json) Hash identifier: bPau6Z6P+AYKpvnSxKbqaqw77/l2J2Yx/cJ0pxXB/hA= Subject key identifier: 5E:16:CE:0B:04:8D:6B:0D:88:64:6E:D7:DB:8D:CA:59:41:B0:48:42 Certificate issuer: /CN=A9187CB1/serialNumber=0968CDEB646CB6AABC0F4232CE23B1DCE54CAD20 Certificate serial: 4C Authority key identifier: 09:68:CD:EB:64:6C:B6:AA:BC:0F:42:32:CE:23:B1:DC:E5:4C:AD:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CWjN62Rstqq8D0IyziOx3OVMrSA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187CB1/1C8940A6A4D711F0B340FC81C4F9AE02/C4FE3638A4D711F0A8D1DB3CC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:13:48 +0000 ROA not before: Thu 09 Oct 2025 06:18:28 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 154267 IP address blocks: 157.119.68.0/23 maxlen: 23 157.119.68.0/24 maxlen: 24 157.119.69.0/24 maxlen: 24 2402:2ea0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187CB1/1C8940A6A4D711F0B340FC81C4F9AE02/CWjN62Rstqq8D0IyziOx3OVMrSA.crl rsync://rpki.apnic.net/member_repository/A9187CB1/1C8940A6A4D711F0B340FC81C4F9AE02/CWjN62Rstqq8D0IyziOx3OVMrSA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CWjN62Rstqq8D0IyziOx3OVMrSA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:41:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187CB1, serialNumber=0968CDEB646CB6AABC0F4232CE23B1DCE54CAD20 Validity Not Before: Oct 9 06:18:28 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a3d91c-c095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:93:e1:c5:56:39:5f:a1:a0:e3:80:ee:ef:02: 88:10:eb:53:30:f6:6c:af:0f:38:5f:dd:d3:d3:99: 80:0b:b8:01:2c:21:e9:98:ba:2a:69:74:20:2e:70: 01:4a:e2:1b:48:fa:d2:22:93:7d:b2:3f:76:a1:4d: 0d:af:61:1e:11:87:2e:e5:9a:7a:16:50:2b:97:8a: 05:4a:9b:0f:ec:1e:8e:6f:f4:30:49:4b:70:49:e3: 81:9f:29:7f:9e:6c:b3:d3:29:06:ee:e2:6e:ce:68: 88:25:e1:08:e8:a5:bc:0a:18:a0:c4:16:55:de:a4: 64:cc:30:3f:c4:3f:ac:b3:9f:db:d8:48:fb:91:4d: 2a:71:1f:f9:16:ba:6c:ae:a5:12:5e:5c:f9:c6:ba: 48:7f:13:0c:91:ce:36:2b:ae:d9:bd:09:e2:a2:c2: 64:26:b5:fa:3e:a3:88:4f:e2:e4:35:82:ea:71:4e: 63:b2:1d:e1:65:52:e3:bf:22:6c:27:f0:6f:5e:ef: b8:f5:57:80:52:c6:c6:2b:39:15:e8:a8:6d:dd:47: 34:7b:6b:c9:f3:fa:f4:de:df:51:3a:a4:79:41:3b: 37:e5:d5:ff:10:e1:14:cf:b2:0a:e9:e7:d7:63:c0: e9:25:92:30:fb:e9:1d:ff:5c:1c:d5:2d:83:52:d6: c9:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:16:CE:0B:04:8D:6B:0D:88:64:6E:D7:DB:8D:CA:59:41:B0:48:42 X509v3 Authority Key Identifier: keyid:09:68:CD:EB:64:6C:B6:AA:BC:0F:42:32:CE:23:B1:DC:E5:4C:AD:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187CB1/1C8940A6A4D711F0B340FC81C4F9AE02/CWjN62Rstqq8D0IyziOx3OVMrSA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CWjN62Rstqq8D0IyziOx3OVMrSA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187CB1/1C8940A6A4D711F0B340FC81C4F9AE02/C4FE3638A4D711F0A8D1DB3CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.119.68.0/23 IPv6: 2402:2ea0::/32 Signature Algorithm: sha256WithRSAEncryption 55:af:1e:d3:cf:e2:71:de:63:31:a1:60:7f:ec:be:f5:eb:48: 65:48:bb:29:12:08:ff:c5:91:51:17:aa:87:89:69:d4:18:58: 46:16:74:a2:ea:59:ec:15:3b:4a:de:06:75:31:65:ad:bd:0f: 1f:d2:98:56:d7:b7:94:20:b8:76:92:f8:1a:fb:d9:2f:be:de: 47:e2:8d:c6:02:4d:4e:a4:9e:50:2e:4b:fc:47:8a:99:25:a5: 59:ee:d1:f6:76:54:71:e8:bb:c4:75:7f:51:e1:8f:ac:92:02: d6:4c:da:bb:bb:11:2b:b3:23:40:04:47:67:c2:c4:59:ea:01: 8a:66:8d:df:90:07:4f:5d:39:12:2d:35:8c:c8:b4:3f:73:18: ef:ee:40:4d:0e:42:02:25:e8:92:51:12:92:29:88:6b:6a:7e: 17:42:db:95:27:b8:0c:b5:aa:ea:64:6b:f1:9d:61:b4:f6:10: a7:d7:81:11:41:62:51:a0:96:4e:9a:ee:6f:3f:0a:bd:2e:0b: 8b:e8:d7:9a:a0:1e:7b:c4:62:59:9e:ca:37:5c:92:ce:f5:b7: 19:d4:52:94:80:8a:7f:ee:72:21:5e:8a:15:22:66:8c:6b:84: c5:39:73:45:f7:30:f1:db:72:29:02:65:ce:cb:1f:ca:a2:24: 78:c6:f6:21 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 N0NCMTExMC8GA1UEBRMoMDk2OENERUI2NDZDQjZBQUJDMEY0MjMyQ0UyM0IxRENF NTRDQUQyMDAeFw0yNTEwMDkwNjE4MjhaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOTFjLWMwOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIk+HFVjlfoaDjgO7vAogQ61Mw9myvDzhf3dPTmYALuAEsIemYuippdCAucAFK 4htI+tIik32yP3ahTQ2vYR4Rhy7lmnoWUCuXigVKmw/sHo5v9DBJS3BJ44GfKX+e bLPTKQbu4m7OaIgl4QjopbwKGKDEFlXepGTMMD/EP6yzn9vYSPuRTSpxH/kWumyu pRJeXPnGukh/EwyRzjYrrtm9CeKiwmQmtfo+o4hP4uQ1gupxTmOyHeFlUuO/Imwn 8G9e77j1V4BSxsYrORXoqG3dRzR7a8nz+vTe31E6pHlBOzfl1f8Q4RTPsgrp59dj wOklkjD76R3/XBzVLYNS1slpAgMBAAGjggJvMIICazAdBgNVHQ4EFgQUXhbOCwSN aw2IZG7X243KWUGwSEIwHwYDVR0jBBgwFoAUCWjN62Rstqq8D0IyziOx3OVMrSAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3Q0IxLzFDODk0MEE2QTRE NzExRjBCMzQwRkM4MUM0RjlBRTAyL0NXak42MlJzdHFxOEQwSXl6aU94M09WTXJT QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ1dqTjYyUnN0cXE4RDBJeXppT3gzT1ZNclNBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 N0NCMS8xQzg5NDBBNkE0RDcxMUYwQjM0MEZDODFDNEY5QUUwMi9DNEZFMzYzOEE0 RDcxMUYwQThEMURCM0NDNEY5QUUwMi5yb2EwLgYIKwYBBQUHAQcBAf8EHzAdMAwE AgABMAYDBAGdd0QwDQQCAAIwBwMFACQCLqAwDQYJKoZIhvcNAQELBQADggEBAFWv HtPP4nHeYzGhYH/svvXrSGVIuykSCP/FkVEXqoeJadQYWEYWdKLqWewVO0reBnUx Za29Dx/SmFbXt5QguHaS+Br72S++3kfijcYCTU6knlAuS/xHipklpVnu0fZ2VHHo u8R1f1Hhj6ySAtZM2ru7ESuzI0AER2fCxFnqAYpmjd+QB09dORItNYzItD9zGO/u QE0OQgIl6JJREpIpiGtqfhdC25UnuAy1qupka/GdYbT2EKfXgRFBYlGglk6a7m8/ Cr0uC4vo15qgHnvEYlmeyjdcks71txnUUpSAin/uciFeihUiZoxrhMU5c0X3MPHb cikCZc7LH8qiJHjG9iE= -----END CERTIFICATE-----Generated at Mon Mar 2 13:02:12 2026 by rpki-client