$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/10BC8836509B11F0A1C78F35C4F9AE02.roa File: 10BC8836509B11F0A1C78F35C4F9AE02.roa (raw, json) Hash identifier: 8vDZoZnTL3EsLAf9lWoggGQcc7J0/U/rlfaQO/B5nJw= Subject key identifier: F4:1C:A6:F4:32:59:67:7C:C2:FF:15:63:BD:28:86:0A:24:83:68:06 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 355F Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/10BC8836509B11F0A1C78F35C4F9AE02.roa Signing time: Mon 20 Apr 2026 15:12:52 +0000 ROA not before: Mon 20 Apr 2026 15:12:52 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 58524 IP address blocks: 43.248.158.0/23 maxlen: 24 119.252.126.0/23 maxlen: 23 2407:4800:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:36:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13663 (0x355f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Apr 20 15:12:52 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69e64274-4da9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:3e:8c:19:f6:2f:6f:96:06:2b:0e:cd:2c:5b: c5:cd:f5:5f:65:cf:d4:74:0c:cf:02:13:f6:24:81: d4:6f:2a:1b:60:01:ed:0d:35:22:6f:46:6f:bc:16: 6e:c3:d6:fd:bc:8d:73:0b:d7:f5:b0:73:02:43:19: a6:ca:ba:4e:4c:54:c2:25:2f:4e:f6:46:be:e1:2d: 5e:fa:d7:32:ed:88:76:6b:f3:98:21:6c:2e:01:39: 76:69:07:2a:ad:c3:d1:7e:17:bd:6b:80:f2:a1:7e: ba:e8:86:0b:e1:1e:2b:7c:ca:94:9b:95:21:34:2b: 47:ea:e3:2a:14:01:23:4a:8f:80:09:52:42:20:35: ec:ea:b7:05:99:57:0a:da:36:59:30:82:74:b1:6a: 2b:1b:76:5b:db:27:82:11:25:7a:1d:1a:ec:ca:cc: d0:4a:9a:1b:bb:66:d5:db:27:e3:8d:8b:d2:20:3f: 1b:1e:40:c7:c4:94:2c:85:a5:b0:ab:93:88:2d:c0: 02:9a:32:0e:7f:e7:ac:c5:3c:4e:01:1d:51:e5:47: 49:7b:e8:83:ab:6f:de:27:e6:3c:c7:71:a8:4a:9e: b3:35:c2:24:da:77:88:a0:9d:aa:47:de:ca:eb:ac: 0f:6b:24:7b:0d:61:42:29:ab:b0:11:33:62:03:9b: 30:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:1C:A6:F4:32:59:67:7C:C2:FF:15:63:BD:28:86:0A:24:83:68:06 X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/10BC8836509B11F0A1C78F35C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.248.158.0/23 119.252.126.0/23 IPv6: 2407:4800:c000::/36 Signature Algorithm: sha256WithRSAEncryption 92:4c:61:dc:d8:d3:59:72:1a:f7:fa:a7:7f:81:a8:f1:3f:f7: 94:9f:af:1a:05:3a:29:92:61:00:73:0f:42:a8:63:c5:f8:ec: a6:7c:96:e9:ec:13:7d:a6:3c:31:0d:59:cb:dc:6b:13:40:26: 7f:e1:22:f0:a4:f8:32:49:8c:d6:a3:e4:2e:0f:fa:ab:df:d8: 92:e8:73:82:9c:63:2c:00:21:95:78:56:ed:33:3c:d4:7a:8e: 70:ac:b1:da:88:e2:20:64:ed:81:aa:3f:1d:e5:9e:37:87:5f: 5e:8d:df:fe:24:36:30:e1:c7:9a:c8:f1:e2:95:f0:b1:1b:03: 84:46:01:1e:8f:59:f8:bf:9b:b1:74:e6:2e:e6:1e:36:08:ac: a6:5a:93:0f:08:f6:5d:41:1f:ae:2a:00:e3:c2:a5:55:5c:e1: a5:8d:8f:17:ea:ed:d6:60:15:e6:c2:2c:2f:c8:00:27:6c:b9: 2c:c8:5e:ba:6b:29:b5:d3:58:52:99:28:3c:d4:2f:df:54:3b: a0:a6:39:3c:dc:bf:c8:5a:05:5b:51:7f:3e:8d:07:be:c9:cc: fa:80:f3:82:0f:8c:3e:da:dd:84:3e:94:49:40:27:60:2b:00: be:4b:a7:04:fd:82:8d:17:aa:d8:99:b6:61:6f:8a:84:b5:f9: 33:48:00:17 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgICNV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjYwNDIwMTUxMjUyWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU2NDI3NC00ZGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAij6MGfYvb5YGKw7NLFvFzfVfZc/UdAzPAhP2JIHUbyobYAHtDTUib0ZvvBZu w9b9vI1zC9f1sHMCQxmmyrpOTFTCJS9O9ka+4S1e+tcy7Yh2a/OYIWwuATl2aQcq rcPRfhe9a4DyoX666IYL4R4rfMqUm5UhNCtH6uMqFAEjSo+ACVJCIDXs6rcFmVcK 2jZZMIJ0sWorG3Zb2yeCESV6HRrsyszQSpobu2bV2yfjjYvSID8bHkDHxJQshaWw q5OILcACmjIOf+esxTxOAR1R5UdJe+iDq2/eJ+Y8x3GoSp6zNcIk2neIoJ2qR97K 66wPayR7DWFCKauwETNiA5swcwIDAQABo4ICdjCCAnIwHQYDVR0OBBYEFPQcpvQy WWd8wv8VY70ohgokg2gGMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQTAvM0EwRDkzMTAxRDhDMTFFMjhFRkY1N0U3MDhCMDJDRDIvMTBCQzg4MzY1 MDlCMTFGMEExQzc4RjM1QzRGOUFFMDIucm9hMDUGCCsGAQUFBwEHAQH/BCYwJDAS BAIAATAMAwQBK/ieAwQBd/x+MA4EAgACMAgDBgQkB0gAwDANBgkqhkiG9w0BAQsF AAOCAQEAkkxh3NjTWXIa9/qnf4Go8T/3lJ+vGgU6KZJhAHMPQqhjxfjspnyW6ewT faY8MQ1Zy9xrE0Amf+Ei8KT4MkmM1qPkLg/6q9/YkuhzgpxjLAAhlXhW7TM81HqO cKyx2ojiIGTtgao/HeWeN4dfXo3f/iQ2MOHHmsjx4pXwsRsDhEYBHo9Z+L+bsXTm LuYeNgisplqTDwj2XUEfrioA48KlVVzhpY2PF+rt1mAV5sIsL8gAJ2y5LMheumsp tdNYUpkoPNQv31Q7oKY5PNy/yFoFW1F/Po0HvsnM+oDzgg+MPtrdhD6USUAnYCsA vkunBP2CjReq2Jm2YW+KhLX5M0gAFw== -----END CERTIFICATE-----Generated at Wed May 13 03:01:00 2026 by rpki-client