$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/D64176D81B9911ECAB0E1678C4F9AE02.roa File: D64176D81B9911ECAB0E1678C4F9AE02.roa (raw, json) Hash identifier: Bvd1DVqbTNJSqvO20x1gAUmMTRKzz6mu9NujNo2jErs= Subject key identifier: 8B:7A:25:11:4C:8B:63:3A:47:07:06:94:E2:2C:AA:FF:0E:98:E4:A1 Certificate issuer: /CN=A919F0DA/serialNumber=082F1EE92FEA6373FDA1D5AEC46E2F2D8AE8AC87 Certificate serial: 0878 Authority key identifier: 08:2F:1E:E9:2F:EA:63:73:FD:A1:D5:AE:C4:6E:2F:2D:8A:E8:AC:87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CC8e6S_qY3P9odWuxG4vLYrorIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/D64176D81B9911ECAB0E1678C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:06:16 +0000 ROA not before: Wed 30 Jul 2025 14:20:09 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4758 IP address blocks: 164.100.0.0/16 maxlen: 16 164.100.0.0/17 maxlen: 17 164.100.0.0/18 maxlen: 24 164.100.64.0/19 maxlen: 24 164.100.96.0/19 maxlen: 19 164.100.96.0/20 maxlen: 20 164.100.96.0/23 maxlen: 24 164.100.98.0/24 maxlen: 24 164.100.99.0/24 maxlen: 24 164.100.100.0/22 maxlen: 24 164.100.104.0/21 maxlen: 24 164.100.112.0/20 maxlen: 24 164.100.128.0/17 maxlen: 23 164.100.128.0/19 maxlen: 24 164.100.160.0/20 maxlen: 24 164.100.176.0/21 maxlen: 24 164.100.184.0/22 maxlen: 24 164.100.188.0/24 maxlen: 24 164.100.190.0/23 maxlen: 24 164.100.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.crl rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CC8e6S_qY3P9odWuxG4vLYrorIc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=082F1EE92FEA6373FDA1D5AEC46E2F2D8AE8AC87 Validity Not Before: Jul 30 14:20:09 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a48e28-1f9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:df:d7:3f:ac:96:6b:26:63:d3:ba:f2:83:40: 64:5b:24:bd:ac:f6:aa:8b:a2:64:d8:e4:e6:fd:77: 8e:2d:5a:3e:c4:f1:3e:1c:50:48:82:e4:0e:6b:c8: e2:e7:e5:9e:b2:ed:f3:c1:e4:99:3a:0b:36:53:d9: 93:f7:74:d9:95:c5:fb:62:85:19:da:6e:b4:49:24: 61:e4:69:28:1c:dd:7f:7c:63:ce:c8:40:d1:cc:b7: 6c:8a:e9:89:de:b6:a4:05:1a:a9:5b:46:45:00:71: dc:47:0f:7e:d9:c2:4f:54:73:2f:44:cb:2c:17:64: b6:c0:e4:9c:19:72:0b:31:49:24:21:91:c9:b1:d8: 6a:c5:40:0e:5b:d7:b9:14:67:6d:c5:76:02:d8:88: 2f:72:fe:77:29:bb:3c:69:94:a2:46:02:2f:1f:9d: a2:e4:51:e2:14:c7:97:35:8a:ba:00:69:5e:9d:1b: a3:bc:8e:7a:f3:49:e1:97:e6:bf:58:c4:4a:5c:0f: fc:0c:07:33:4e:3a:e2:95:c8:f0:c2:1f:14:83:71: 47:8c:fa:eb:c2:12:0e:50:f8:6a:56:3b:68:ba:1f: c0:a6:92:8b:f6:56:ed:18:36:f5:21:ee:38:3c:c3: 91:65:b9:f8:7b:1f:2e:0c:cd:b7:23:9d:10:2d:ff: 76:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:7A:25:11:4C:8B:63:3A:47:07:06:94:E2:2C:AA:FF:0E:98:E4:A1 X509v3 Authority Key Identifier: keyid:08:2F:1E:E9:2F:EA:63:73:FD:A1:D5:AE:C4:6E:2F:2D:8A:E8:AC:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CC8e6S_qY3P9odWuxG4vLYrorIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/D64176D81B9911ECAB0E1678C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 164.100.0.0/16 Signature Algorithm: sha256WithRSAEncryption 42:1f:5f:32:17:95:e9:f8:9d:47:55:16:e5:8c:66:2f:b1:e9: d9:e5:b6:af:eb:c5:b5:38:e0:a2:9b:96:83:ba:28:47:94:30: b7:59:8a:b8:a0:94:6f:4a:98:e0:c8:d9:43:e4:97:05:c6:4c: 97:06:73:ec:10:bb:ec:99:4a:0b:8e:c5:c4:59:e5:bb:50:9f: 3c:e6:ca:08:a4:ff:ab:0e:68:ea:ee:29:4f:fb:24:4e:fe:c4: c9:b2:07:31:76:4f:8f:9e:2c:9c:c7:62:1b:f8:bd:2a:c2:71: 48:7e:26:e6:b9:dd:5e:9b:e1:f0:9d:14:89:61:c3:58:e9:aa: 06:ad:b9:d7:d0:37:6e:55:d1:a6:41:b6:65:0c:a1:01:3d:a8: 3e:80:c0:57:86:d0:ba:73:d5:b2:45:70:23:46:69:8f:17:c7: ea:c3:c9:52:5b:f2:75:c5:00:9a:e2:0a:01:76:5e:5b:58:6b: fc:71:25:59:d4:43:42:15:78:33:0f:c0:cd:88:0e:aa:bc:74: 78:a8:85:3c:87:b2:7f:b1:83:fb:e2:9e:4f:bf:fa:37:0c:3a: 36:55:03:77:72:9e:2c:0d:98:a9:bf:24:cc:60:a2:4f:da:35: 14:4c:cb:18:cc:b7:e2:85:d6:16:09:4e:85:a6:61:19:e6:7f: d8:61:c6:54 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDA4MkYxRUU5MkZFQTYzNzNGREExRDVBRUM0NkUyRjJE OEFFOEFDODcwHhcNMjUwNzMwMTQyMDA5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGUyOC0xZjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyd/XP6yWayZj07ryg0BkWyS9rPaqi6Jk2OTm/XeOLVo+xPE+HFBIguQOa8ji 5+Wesu3zweSZOgs2U9mT93TZlcX7YoUZ2m60SSRh5GkoHN1/fGPOyEDRzLdsiumJ 3rakBRqpW0ZFAHHcRw9+2cJPVHMvRMssF2S2wOScGXILMUkkIZHJsdhqxUAOW9e5 FGdtxXYC2Igvcv53Kbs8aZSiRgIvH52i5FHiFMeXNYq6AGlenRujvI5680nhl+a/ WMRKXA/8DAczTjrilcjwwh8Ug3FHjPrrwhIOUPhqVjtouh/AppKL9lbtGDb1Ie44 PMORZbn4ex8uDM23I50QLf923wIDAQABo4ICXzCCAlswHQYDVR0OBBYEFIt6JRFM i2M6RwcGlOIsqv8OmOShMB8GA1UdIwQYMBaAFAgvHukv6mNz/aHVrsRuLy2K6KyH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS9GQzYxRTAwODFE NjcxMUUyOEMxODI4QTQwOEIwMkNEMi9DQzhlNlNfcVkzUDlvZFd1eEc0dkxZcm9y SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NDOGU2U19xWTNQOW9kV3V4RzR2TFlyb3JJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYwREEvRkM2MUUwMDgxRDY3MTFFMjhDMTgyOEE0MDhCMDJDRDIvRDY0MTc2RDgx Qjk5MTFFQ0FCMEUxNjc4QzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMApGQwDQYJKoZIhvcNAQELBQADggEBAEIfXzIXlen4nUdVFuWMZi+x 6dnltq/rxbU44KKbloO6KEeUMLdZiriglG9KmODI2UPklwXGTJcGc+wQu+yZSguO xcRZ5btQnzzmygik/6sOaOruKU/7JE7+xMmyBzF2T4+eLJzHYhv4vSrCcUh+Jua5 3V6b4fCdFIlhw1jpqgatudfQN25V0aZBtmUMoQE9qD6AwFeG0Lpz1bJFcCNGaY8X x+rDyVJb8nXFAJriCgF2XltYa/xxJVnUQ0IVeDMPwM2IDqq8dHiohTyHsn+xg/vi nk+/+jcMOjZVA3dyniwNmKm/JMxgok/aNRRMyxjMt+KF1hYJToWmYRnmf9hhxlQ= -----END CERTIFICATE-----Generated at Mon Mar 2 12:40:28 2026 by rpki-client