$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/47CA35E4720711EF9DC8BA21C4F9AE02/21642FDA720811EF8F352D23C4F9AE02.roa File: 21642FDA720811EF8F352D23C4F9AE02.roa (raw, json) Hash identifier: BX/V4MXnmfeUAN5WHp08JX8MMvFEmP1cWkHTdG2V9bw= Subject key identifier: D6:86:AA:8F:EC:66:1E:B5:85:96:0D:38:D1:5F:4C:12:EF:4C:30:4F Certificate issuer: /CN=A9151932/serialNumber=F54F808016AB4BB06F796A894667C70BDD48FBF6 Certificate serial: 012A Authority key identifier: F5:4F:80:80:16:AB:4B:B0:6F:79:6A:89:46:67:C7:0B:DD:48:FB:F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9U-AgBarS7BveWqJRmfHC91I-_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/47CA35E4720711EF9DC8BA21C4F9AE02/21642FDA720811EF8F352D23C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:05:27 +0000 ROA not before: Mon 27 Oct 2025 00:18:28 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153325 IP address blocks: 64.255.42.0/24 maxlen: 24 64.255.54.0/24 maxlen: 24 107.6.124.0/24 maxlen: 24 160.187.32.0/24 maxlen: 24 160.187.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/47CA35E4720711EF9DC8BA21C4F9AE02/9U-AgBarS7BveWqJRmfHC91I-_Y.crl rsync://rpki.apnic.net/member_repository/A9151932/47CA35E4720711EF9DC8BA21C4F9AE02/9U-AgBarS7BveWqJRmfHC91I-_Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9U-AgBarS7BveWqJRmfHC91I-_Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:57:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=F54F808016AB4BB06F796A894667C70BDD48FBF6 Validity Not Before: Oct 27 00:18:28 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a59927-0b39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:aa:a3:90:53:07:67:79:fb:53:99:9e:f7:8b: 8d:a3:b8:5f:d2:2f:d9:27:23:39:e2:25:07:69:fa: 02:a9:b3:19:22:f2:55:7f:db:fb:8d:6b:0d:4d:9d: ff:60:a1:ec:41:c3:d1:24:d9:ab:09:97:15:56:b3: 6e:e3:7c:b6:bf:3f:2f:ec:d0:7a:61:01:aa:06:d2: 6e:03:b8:5f:84:f9:ec:86:02:9c:75:42:bd:af:19: 07:c6:2d:bc:53:e6:d0:35:70:fe:70:bf:3f:55:a2: 36:9e:50:bd:4a:9d:1d:4e:14:37:86:79:6b:07:16: 3a:76:f9:70:cb:39:3d:b1:a8:ca:e6:f3:fa:6a:5e: a3:68:f3:30:da:7b:72:50:d3:cc:46:62:66:89:1a: b9:7e:7e:fb:10:1c:7c:4a:55:db:32:93:9e:ee:f9: a4:7b:40:26:ff:04:e4:32:c3:7a:b6:88:a2:24:b6: b4:c5:e9:09:e1:c2:cb:30:f6:e1:50:c1:56:3d:23: f8:23:7e:ab:c0:d1:1b:6a:f1:12:c9:78:47:13:a5: b8:7d:02:be:8d:24:3f:78:24:27:de:9a:df:7a:d4: fe:2e:b3:27:f4:e0:3a:16:93:69:f3:00:cf:ed:03: 07:42:07:b2:e6:ad:79:4d:27:4a:02:82:8b:a3:0e: 6c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:86:AA:8F:EC:66:1E:B5:85:96:0D:38:D1:5F:4C:12:EF:4C:30:4F X509v3 Authority Key Identifier: keyid:F5:4F:80:80:16:AB:4B:B0:6F:79:6A:89:46:67:C7:0B:DD:48:FB:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/47CA35E4720711EF9DC8BA21C4F9AE02/9U-AgBarS7BveWqJRmfHC91I-_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9U-AgBarS7BveWqJRmfHC91I-_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/47CA35E4720711EF9DC8BA21C4F9AE02/21642FDA720811EF8F352D23C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 64.255.42.0/24 64.255.54.0/24 107.6.124.0/24 160.187.32.0/23 Signature Algorithm: sha256WithRSAEncryption 22:c1:0d:b5:6f:58:3f:88:63:f2:5d:a8:f5:c8:9e:b9:c7:ba: c6:9b:ac:ad:af:5e:94:fb:e6:7b:69:3e:64:fe:d3:ad:a1:0b: 42:60:d3:76:f0:16:d1:c0:d6:b1:10:ec:47:b1:f3:fe:39:a9: a1:62:6d:ee:98:0d:7f:8a:e7:3c:4b:8a:87:30:96:5e:51:d2: 4b:b4:3d:b9:9d:29:50:2a:e5:e5:fb:14:57:35:05:40:fc:90: 12:98:2e:40:89:35:e9:77:8e:62:59:77:41:f6:ec:17:0b:cf: 1d:f1:c6:c9:ff:a8:ee:d1:b5:20:d6:62:70:fd:a4:89:eb:02: c4:32:d2:25:49:bc:fc:d9:09:ab:1d:79:ce:c2:2a:b4:da:59: 51:8f:a7:06:43:a2:72:9d:4c:ae:a0:05:ff:9c:1b:be:cb:0f: 70:9f:6e:5e:fc:c6:c2:7f:9c:71:b5:5b:22:83:62:8c:d9:54: 96:c8:3c:7f:2c:da:2e:56:3a:68:9d:1d:26:b7:58:f8:b4:f8: 86:ee:8c:59:85:02:05:56:9b:4d:6e:cf:46:2a:f9:78:67:7f: 20:70:9c:fd:cb:df:f6:69:47:a5:0f:6f:fb:7d:74:21:05:44: 29:c5:13:97:6c:91:8b:4c:9d:3f:94:1c:d5:82:9d:b1:27:13: c9:bf:88:93 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE5MzIxMTAvBgNVBAUTKEY1NEY4MDgwMTZBQjRCQjA2Rjc5NkE4OTQ2NjdDNzBC REQ0OEZCRjYwHhcNMjUxMDI3MDAxODI4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTkyNy0wYjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnKqjkFMHZ3n7U5me94uNo7hf0i/ZJyM54iUHafoCqbMZIvJVf9v7jWsNTZ3/ YKHsQcPRJNmrCZcVVrNu43y2vz8v7NB6YQGqBtJuA7hfhPnshgKcdUK9rxkHxi28 U+bQNXD+cL8/VaI2nlC9Sp0dThQ3hnlrBxY6dvlwyzk9sajK5vP6al6jaPMw2nty UNPMRmJmiRq5fn77EBx8SlXbMpOe7vmke0Am/wTkMsN6toiiJLa0xekJ4cLLMPbh UMFWPSP4I36rwNEbavESyXhHE6W4fQK+jSQ/eCQn3prfetT+LrMn9OA6FpNp8wDP 7QMHQgey5q15TSdKAoKLow5sOQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFNaGqo/s Zh61hZYNONFfTBLvTDBPMB8GA1UdIwQYMBaAFPVPgIAWq0uwb3lqiUZnxwvdSPv2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTkzMi80N0NBMzVFNDcy MDcxMUVGOURDOEJBMjFDNEY5QUUwMi85VS1BZ0JhclM3QnZlV3FKUm1mSEM5MUkt X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlVLUFnQmFyUzdCdmVXcUpSbWZIQzkxSS1fWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE5MzIvNDdDQTM1RTQ3MjA3MTFFRjlEQzhCQTIxQzRGOUFFMDIvMjE2NDJGREE3 MjA4MTFFRjhGMzUyRDIzQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAQP8qAwQAQP82AwQAawZ8AwQBoLsgMA0GCSqGSIb3DQEBCwUAA4IB AQAiwQ21b1g/iGPyXaj1yJ65x7rGm6ytr16U++Z7aT5k/tOtoQtCYNN28BbRwNax EOxHsfP+OamhYm3umA1/iuc8S4qHMJZeUdJLtD25nSlQKuXl+xRXNQVA/JASmC5A iTXpd45iWXdB9uwXC88d8cbJ/6ju0bUg1mJw/aSJ6wLEMtIlSbz82QmrHXnOwiq0 2llRj6cGQ6JynUyuoAX/nBu+yw9wn25e/MbCf5xxtVsig2KM2VSWyDx/LNouVjpo nR0mt1j4tPiG7oxZhQIFVptNbs9GKvl4Z38gcJz9y9/2aUelD2/7fXQhBUQpxROX bJGLTJ0/lBzVgp2xJxPJv4iT -----END CERTIFICATE-----Generated at Thu Mar 26 22:04:18 2026 by rpki-client