$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/161983C2B9EB11EDB53AC21BC4F9AE02.roa File: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (raw, json) Hash identifier: ux2ARJ/bgr7if6KwYjchysUxhnA8D8TRZk6Lw4d52aw= Subject key identifier: 5B:00:86:85:28:05:0D:9C:98:07:F3:38:DE:51:B1:AD:95:9C:08:E7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 1472 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/161983C2B9EB11EDB53AC21BC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:14:14 +0000 ROA not before: Sat 20 Dec 2025 17:14:41 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 54600 IP address blocks: 2403:cfc0:1008::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5234 (0x1472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Dec 20 17:14:41 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a58d26-a742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e9:3c:a2:3d:bb:41:19:4c:e4:e1:aa:ba:30: 2e:63:7e:bf:f3:e7:8a:ae:19:bf:1b:3d:41:92:6c: 1c:b8:66:3d:0d:c5:64:c4:c2:5a:42:12:5f:75:35: c6:b0:40:cd:20:c5:ef:34:ec:44:2f:40:c9:a7:8e: f7:23:4b:33:6a:86:d1:e5:4c:3e:3a:e1:41:77:95: f8:1a:9f:a4:98:fa:37:90:66:7f:99:f5:6b:c3:fe: 10:c8:b2:93:c9:38:06:82:97:f6:ad:46:6c:3e:c2: 8f:4f:1b:37:76:ba:24:62:b3:cc:b6:7f:01:f1:54: 9c:de:dd:da:d1:f3:da:c6:28:9e:2e:db:5e:91:2b: c3:24:fa:01:53:3e:5d:53:e5:8c:79:bd:c9:93:1e: da:70:74:c6:d8:52:f6:4f:bf:a0:94:d3:7f:1c:ef: 61:64:2a:a3:17:75:91:7a:86:2b:94:0c:ba:d3:71: ca:c8:12:84:89:55:98:55:30:f0:79:1d:6b:58:a6: 89:52:bb:d9:2d:b8:66:fe:fa:7c:54:48:99:f7:0a: b5:57:30:29:50:e7:e7:14:5f:1f:ef:5e:6b:7d:9c: 9e:16:0b:a4:93:37:25:42:5d:33:9c:fa:82:81:ba: f0:96:8a:b2:dd:70:ce:87:be:a8:f7:36:91:42:f2: 50:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:00:86:85:28:05:0D:9C:98:07:F3:38:DE:51:B1:AD:95:9C:08:E7 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/161983C2B9EB11EDB53AC21BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2403:cfc0:1008::/48 Signature Algorithm: sha256WithRSAEncryption ad:e8:88:01:e1:e9:24:ec:54:f8:74:cd:c4:7c:69:a9:ab:72: 54:57:26:ee:66:fe:94:98:9f:be:dd:a3:c9:42:2b:87:5c:4a: 9a:c0:ce:3f:1f:fb:5e:26:85:3f:6c:38:1d:7a:d5:98:b4:86: 61:b9:23:4f:8e:61:07:cc:fc:2f:06:82:76:70:3c:d4:89:09: 3f:79:c4:a9:da:32:47:f2:f5:1f:f5:d3:8a:f9:b2:d8:2b:27: 97:09:7f:75:37:fc:3f:c0:16:df:96:ba:40:70:db:5f:fc:2d: aa:9e:55:48:0b:da:4f:7a:db:7b:cd:e6:9c:05:91:4f:a3:bf: e0:7c:a1:ee:db:e6:0b:9b:35:db:cc:f6:85:23:16:07:05:4e: 39:3b:86:47:80:23:08:79:17:a7:14:19:71:03:99:08:ab:22: 16:f3:73:53:0d:23:71:99:f9:7e:38:1f:e9:11:24:eb:47:83: 2c:b9:eb:d3:78:ce:74:15:f2:d0:25:46:12:4e:7a:9e:b6:5b: d1:1e:a8:e1:aa:3a:c4:e6:f5:44:7a:9f:1b:6e:cd:a2:89:90: 82:f8:17:e5:9b:c3:a4:8a:e5:32:ae:d3:5f:dd:81:aa:89:ab: b8:ca:31:97:8a:e9:18:4c:1e:1b:09:6d:72:b3:cb:cc:90:c6: 60:e0:a6:f3 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICFHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUxMjIwMTcxNDQxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGQyNi1hNzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOk8oj27QRlM5OGqujAuY36/8+eKrhm/Gz1BkmwcuGY9DcVkxMJaQhJfdTXG sEDNIMXvNOxEL0DJp473I0szaobR5Uw+OuFBd5X4Gp+kmPo3kGZ/mfVrw/4QyLKT yTgGgpf2rUZsPsKPTxs3drokYrPMtn8B8VSc3t3a0fPaxiieLttekSvDJPoBUz5d U+WMeb3Jkx7acHTG2FL2T7+glNN/HO9hZCqjF3WReoYrlAy603HKyBKEiVWYVTDw eR1rWKaJUrvZLbhm/vp8VEiZ9wq1VzApUOfnFF8f715rfZyeFgukkzclQl0znPqC gbrwloqy3XDOh76o9zaRQvJQywIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFFsAhoUo BQ2cmAfzON5Rsa2VnAjnMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNjE2NjZDMEVENjg5MTFFOEI2ODExNDMzQzRGOUFFMDIvMTYxOTgzQzJC OUVCMTFFREI1M0FDMjFCQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAPPwBAIMA0GCSqGSIb3DQEBCwUAA4IBAQCt6IgB4ekk7FT4dM3E fGmpq3JUVybuZv6UmJ++3aPJQiuHXEqawM4/H/teJoU/bDgdetWYtIZhuSNPjmEH zPwvBoJ2cDzUiQk/ecSp2jJH8vUf9dOK+bLYKyeXCX91N/w/wBbflrpAcNtf/C2q nlVIC9pPett7zeacBZFPo7/gfKHu2+YLmzXbzPaFIxYHBU45O4ZHgCMIeRenFBlx A5kIqyIW83NTDSNxmfl+OB/pESTrR4MsuevTeM50FfLQJUYSTnqetlvRHqjhqjrE 5vVEep8bbs2iiZCC+Bflm8OkiuUyrtNf3YGqiau4yjGXiukYTB4bCW1ys8vMkMZg 4Kbz -----END CERTIFICATE-----Generated at Thu Mar 26 10:15:32 2026 by rpki-client