$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/403398AA233111EEAF768F66C4F9AE02.roa File: 403398AA233111EEAF768F66C4F9AE02.roa (raw, json) Hash identifier: Y52+tRvMTfL460RUNVYk3L8TtXM2/GdPu6P2ErCDVWQ= Subject key identifier: 5D:7F:84:AC:3A:85:18:C9:9F:3D:B7:14:A5:2A:B5:16:19:93:4E:E6 Certificate issuer: /CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Certificate serial: 1374 Authority key identifier: AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/403398AA233111EEAF768F66C4F9AE02.roa Signing time: Thu 02 Apr 2026 17:21:00 +0000 ROA not before: Thu 02 Apr 2026 17:21:00 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 133200 IP address blocks: 167.179.4.0/24 maxlen: 24 167.179.6.0/24 maxlen: 24 167.179.12.0/24 maxlen: 24 167.179.13.0/24 maxlen: 24 167.179.14.0/24 maxlen: 24 167.179.18.0/24 maxlen: 24 167.179.19.0/24 maxlen: 24 167.179.37.0/24 maxlen: 24 167.179.38.0/24 maxlen: 24 167.179.39.0/24 maxlen: 24 167.179.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4980 (0x1374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191436, serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Validity Not Before: Apr 2 17:21:00 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cea57c-ee5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d0:98:ed:cf:ce:69:6d:a5:e8:34:b5:e3:c0: 67:61:6c:af:62:61:4a:70:d5:f2:cf:c1:10:c6:c6: a7:1c:39:bf:22:7c:7c:65:aa:7a:49:f5:62:9c:ab: 15:2c:ce:e6:12:97:f3:5c:a0:fb:39:7a:d6:aa:92: 5f:43:a4:69:c7:b6:67:f9:ff:ab:27:a0:fc:8c:ad: e4:ae:dd:69:54:5f:78:8c:e4:2f:13:5d:17:69:a8: f1:20:d5:39:6d:d9:c6:1e:28:00:b0:ae:f0:61:a6: 6e:62:b7:f4:9c:37:b3:f7:b5:bc:be:4d:66:d3:d0: 03:2f:6d:f8:19:d2:cc:60:45:3c:12:4f:0c:84:4c: 4a:fc:8a:50:fb:94:24:9f:a3:c6:99:3d:b9:56:0c: 03:ee:06:0b:df:d0:4c:3a:bb:fd:bb:f9:11:a1:2e: a2:2b:3e:a6:5f:ec:7e:71:fa:4b:f2:16:7d:f9:74: 75:c5:de:0e:d5:65:99:a8:e2:51:1c:42:2e:55:7e: 89:9f:e2:76:dd:74:56:46:68:42:55:f3:6f:4f:5a: b6:a5:5f:82:42:55:9d:b9:8d:74:f9:a7:07:02:c1: 67:70:e6:d6:da:bd:a6:61:e3:77:f6:c8:c7:d5:d7: 39:5e:4e:c7:d3:f2:a8:e3:66:60:75:f3:f4:53:53: 0c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:7F:84:AC:3A:85:18:C9:9F:3D:B7:14:A5:2A:B5:16:19:93:4E:E6 X509v3 Authority Key Identifier: keyid:AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/403398AA233111EEAF768F66C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 167.179.4.0/24 167.179.6.0/24 167.179.12.0-167.179.14.255 167.179.18.0/23 167.179.37.0-167.179.47.255 Signature Algorithm: sha256WithRSAEncryption 28:02:a3:6a:8b:76:56:6b:f4:c5:e7:48:91:a8:68:b5:4a:ad: 21:e9:a9:f2:ae:10:55:b3:46:39:44:78:27:06:c0:c0:f5:1d: d1:66:d6:d3:43:a3:c0:8f:a7:0c:5e:6c:a2:48:ba:52:66:e0: 32:70:c9:28:89:de:ff:d4:ca:7a:6d:74:c2:a5:f4:87:1e:02: 7b:8d:0d:d7:a6:52:75:d8:98:1d:56:20:79:75:f9:f7:b2:f4: a6:54:3c:d3:bf:26:b3:7b:eb:d3:de:08:2a:89:08:f5:6d:fb: ff:c4:4d:4c:99:3e:d9:e5:a0:5c:8e:1a:35:5b:ef:ff:6b:fe: 95:a9:f1:1a:e4:53:c6:cd:0a:4f:b7:26:dd:41:de:60:8f:2d: f1:7a:c8:a6:13:0e:6a:19:11:02:65:14:61:ce:3b:d0:9b:82: 8f:ca:fc:7a:1d:6a:08:3a:f0:b5:11:f0:2e:b2:9d:aa:f9:78: b8:d2:59:26:4b:20:09:d5:cb:a1:b1:f2:fc:4a:d5:7b:16:8e: b9:fa:40:c3:bb:2d:52:bf:52:f8:5f:cf:75:7b:54:dd:ee:48: c1:1a:55:96:64:75:83:92:cc:78:15:90:65:c0:29:5c:61:0f: e5:8b:9e:8f:29:ae:12:74:7c:e6:13:60:71:9c:e1:6f:ac:09: 16:85:8b:38 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgICE3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE0MzYxMTAvBgNVBAUTKEFEM0JCNjAzQjE0RUZCMjZENzE1NjgyRkIwNDEzNTFF QzhGOUQzNjcwHhcNMjYwNDAyMTcyMTAwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlYTU3Yy1lZTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9CY7c/OaW2l6DS148BnYWyvYmFKcNXyz8EQxsanHDm/Inx8Zap6SfVinKsV LM7mEpfzXKD7OXrWqpJfQ6Rpx7Zn+f+rJ6D8jK3krt1pVF94jOQvE10XaajxINU5 bdnGHigAsK7wYaZuYrf0nDez97W8vk1m09ADL234GdLMYEU8Ek8MhExK/IpQ+5Qk n6PGmT25VgwD7gYL39BMOrv9u/kRoS6iKz6mX+x+cfpL8hZ9+XR1xd4O1WWZqOJR HEIuVX6Jn+J23XRWRmhCVfNvT1q2pV+CQlWduY10+acHAsFncObW2r2mYeN39sjH 1dc5Xk7H0/Ko42ZgdfP0U1MMdwIDAQABo4ICiDCCAoQwHQYDVR0OBBYEFF1/hKw6 hRjJnz23FKUqtRYZk07mMB8GA1UdIwQYMBaAFK07tgOxTvsm1xVoL7BBNR7I+dNn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTQzNi9BMzBCNUE0QUM3 OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15YlhGV2d2c0VFMUhzajUw MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JUdTJBN0ZPLXliWEZXZ3ZzRUUxSHNqNTAyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE0MzYvQTMwQjVBNEFDNzhDMTFFOEE3NkNEOTE0QzRGOUFFMDIvNDAzMzk4QUEy MzMxMTFFRUFGNzY4RjY2QzRGOUFFMDIucm9hMEcGCCsGAQUFBwEHAQH/BDgwNjA0 BAIAATAuAwQAp7MEAwQAp7MGMAwDBAKnswwDBACnsw4DBAGnsxIwDAMEAKezJQME BKezIDANBgkqhkiG9w0BAQsFAAOCAQEAKAKjaot2Vmv0xedIkahotUqtIemp8q4Q VbNGOUR4JwbAwPUd0WbW00OjwI+nDF5soki6UmbgMnDJKIne/9TKem10wqX0hx4C e40N16ZSddiYHVYgeXX597L0plQ8078ms3vr094IKokI9W37/8RNTJk+2eWgXI4a NVvv/2v+lanxGuRTxs0KT7cm3UHeYI8t8XrIphMOahkRAmUUYc470JuCj8r8eh1q CDrwtRHwLrKdqvl4uNJZJksgCdXLobHy/ErVexaOufpAw7stUr9S+F/PdXtU3e5I wRpVlmR1g5LMeBWQZcApXGEP5YuejymuEnR85hNgcZzhb6wJFoWLOA== -----END CERTIFICATE-----Generated at Fri Apr 17 09:44:40 2026 by rpki-client