$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/D7A7F3FEE18711F0A8B43181426F56BC.roa File: D7A7F3FEE18711F0A8B43181426F56BC.roa (raw, json) Hash identifier: vh4+TvOiKZauBrK2eZX3+JUCcmsgQa2Igdr6PGVraWs= Subject key identifier: A0:A7:56:DD:5A:37:66:C3:FF:D0:09:A7:87:4D:11:82:B6:46:B6:82 Certificate issuer: /CN=A9149C62/serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Certificate serial: 010C Authority key identifier: CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/D7A7F3FEE18711F0A8B43181426F56BC.roa Signing time: Sun 01 Mar 2026 15:23:08 +0000 ROA not before: Wed 31 Dec 2025 12:24:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152690 IP address blocks: 163.61.48.0/24 maxlen: 24 202.37.166.0/24 maxlen: 24 2401:dfa0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C62, serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Validity Not Before: Dec 31 12:24:56 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a459dc-f852 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a6:0c:1a:00:ee:0d:b9:ec:f8:19:68:1e:eb: 25:5e:32:e7:be:db:20:75:2a:22:54:3f:8b:08:c2: c0:f6:5a:bd:77:66:26:6e:50:ab:1e:d3:24:54:8c: b6:1a:39:a3:75:d3:6e:02:ca:ad:65:a3:49:a9:47: 7d:21:c3:a9:0b:35:97:5f:d9:1c:62:a8:69:47:4b: 1d:29:22:33:18:45:0d:38:4d:c9:40:9b:b9:08:96: 16:e7:36:ed:53:30:e7:03:0d:db:53:c0:2b:70:a7: f1:58:ec:41:fa:79:77:3c:8a:e9:54:4d:64:f7:43: 30:ee:13:82:2a:3b:db:0a:a1:7a:63:22:74:da:ba: bf:63:8b:02:50:84:76:df:0a:a4:5d:eb:d8:b6:73: 0d:93:e4:df:68:3e:d7:6e:eb:df:e7:c4:39:4d:e3: da:5e:a6:66:eb:fb:50:13:1d:ac:1d:3f:1b:f7:b8: 75:8c:d6:36:80:a3:16:36:c1:bf:84:97:be:1c:56: 7c:96:e4:83:be:b0:16:f4:41:84:57:44:77:f7:09: 81:fa:45:75:d4:d2:97:51:0d:4e:5c:a6:9c:b7:73: 27:a4:09:3f:39:fa:c8:11:92:e2:28:91:7a:11:ab: 76:dc:68:da:07:4c:45:14:55:0a:0b:90:dc:6d:e0: 43:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A7:56:DD:5A:37:66:C3:FF:D0:09:A7:87:4D:11:82:B6:46:B6:82 X509v3 Authority Key Identifier: keyid:CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/D7A7F3FEE18711F0A8B43181426F56BC.roa sbgp-ipAddrBlock: critical IPv4: 163.61.48.0/24 202.37.166.0/24 IPv6: 2401:dfa0::/32 Signature Algorithm: sha256WithRSAEncryption 23:88:dc:a1:a1:0a:cf:ed:17:3b:57:44:d9:2d:db:c7:fd:5f: 93:71:f6:8f:7e:76:aa:45:be:15:1b:40:eb:56:9d:05:62:16: 27:9a:ef:8d:56:d9:ac:1c:ac:d5:b7:d8:4c:7f:e2:3a:e6:82: 02:f2:c7:36:08:93:60:5d:47:ea:ac:0d:48:d2:80:e0:2e:77: a2:f4:79:1b:a2:8a:3d:fd:9d:9d:8e:84:26:f2:62:8e:79:c6: 45:dd:08:f4:6d:30:ae:68:5b:de:08:4a:60:97:d4:26:d7:94: 1e:c8:09:20:d0:8d:bd:e6:10:47:91:aa:4d:55:5c:e6:0f:af: d3:84:c7:43:80:8c:06:85:64:b7:db:45:fc:8a:55:a2:b1:5c: 28:c2:5d:ed:20:d0:2c:92:06:0a:78:8d:f4:57:18:b3:d5:11: a9:56:7c:fe:70:7a:49:85:9e:5f:0e:81:4c:c5:bd:a4:db:01: 79:bf:f9:a9:77:81:3f:63:44:09:b4:bd:c9:c3:2f:6a:81:e0: 1d:06:1c:f3:4e:1c:3a:4b:36:f6:64:7c:8e:ba:69:43:24:07: 5b:0d:ab:39:f1:0e:dd:af:fa:f7:88:7e:d2:ff:dd:10:c0:9a: 7f:a2:c4:4f:d6:3b:7a:5e:fc:fa:02:eb:68:a4:b3:da:17:c5: 85:d7:08:69 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDNjIxMTAvBgNVBAUTKENGODA0QTZGM0Q4NkExOTcxM0E0RTg4NkQ1OTdCNERD NjQ0NTY4NkEwHhcNMjUxMjMxMTIyNDU2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTlkYy1mODUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnKYMGgDuDbns+BloHuslXjLnvtsgdSoiVD+LCMLA9lq9d2YmblCrHtMkVIy2 GjmjddNuAsqtZaNJqUd9IcOpCzWXX9kcYqhpR0sdKSIzGEUNOE3JQJu5CJYW5zbt UzDnAw3bU8ArcKfxWOxB+nl3PIrpVE1k90Mw7hOCKjvbCqF6YyJ02rq/Y4sCUIR2 3wqkXevYtnMNk+TfaD7Xbuvf58Q5TePaXqZm6/tQEx2sHT8b97h1jNY2gKMWNsG/ hJe+HFZ8luSDvrAW9EGEV0R39wmB+kV11NKXUQ1OXKact3MnpAk/OfrIEZLiKJF6 Eat23GjaB0xFFFUKC5DcbeBDKQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFKCnVt1a N2bD/9AJp4dNEYK2RraCMB8GA1UdIwQYMBaAFM+ASm89hqGXE6TohtWXtNxkRWhq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUM2Mi84NEY0NkI2ODk4 MTUxMUVGQTRCRDNENTdDNEY5QUUwMi96NEJLYnoyR29aY1RwT2lHMVplMDNHUkZh R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0QktiejJHb1pjVHBPaUcxWmUwM0dSRmFHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlDNjIvODRGNDZCNjg5ODE1MTFFRkE0QkQzRDU3QzRGOUFFMDIvRDdBN0YzRkVF MTg3MTFGMEE4QjQzMTgxNDI2RjU2QkMucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAoz0wAwQAyiWmMA0EAgACMAcDBQAkAd+gMA0GCSqGSIb3DQEBCwUA A4IBAQAjiNyhoQrP7Rc7V0TZLdvH/V+TcfaPfnaqRb4VG0DrVp0FYhYnmu+NVtms HKzVt9hMf+I65oIC8sc2CJNgXUfqrA1I0oDgLnei9Hkbooo9/Z2djoQm8mKOecZF 3Qj0bTCuaFveCEpgl9Qm15QeyAkg0I295hBHkapNVVzmD6/ThMdDgIwGhWS320X8 ilWisVwowl3tINAskgYKeI30Vxiz1RGpVnz+cHpJhZ5fDoFMxb2k2wF5v/mpd4E/ Y0QJtL3Jwy9qgeAdBhzzThw6Szb2ZHyOumlDJAdbDas58Q7dr/r3iH7S/90QwJp/ osRP1jt6Xvz6AutopLPaF8WF1whp -----END CERTIFICATE-----Generated at Thu Mar 26 07:39:54 2026 by rpki-client