$ rpki-client -vvf rpki.apnic.net/member_repository/A9158019/FF253538211311F1A859068B253D8C67/B7547D60211611F1BB46DDA8253D8C67.roa File: B7547D60211611F1BB46DDA8253D8C67.roa (raw, json) Hash identifier: 6zoeGcCtP6FTiaINUWBwyZ7nVaRrhDbGgSD5PdYUKXw= Subject key identifier: 7C:BF:2A:63:96:D0:D2:D9:49:84:6C:7E:A7:C5:A0:39:1D:54:31:E0 Certificate issuer: /CN=A9158019/serialNumber=0B30CBC733DDC4686B34554CEE96E27D61EC9C2F Certificate serial: 02 Authority key identifier: 0B:30:CB:C7:33:DD:C4:68:6B:34:55:4C:EE:96:E2:7D:61:EC:9C:2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CzDLxzPdxGhrNFVM7pbifWHsnC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158019/FF253538211311F1A859068B253D8C67/B7547D60211611F1BB46DDA8253D8C67.roa Signing time: Mon 16 Mar 2026 09:01:27 +0000 ROA not before: Mon 16 Mar 2026 09:01:27 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 154343 IP address blocks: 138.252.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158019/FF253538211311F1A859068B253D8C67/CzDLxzPdxGhrNFVM7pbifWHsnC8.crl rsync://rpki.apnic.net/member_repository/A9158019/FF253538211311F1A859068B253D8C67/CzDLxzPdxGhrNFVM7pbifWHsnC8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CzDLxzPdxGhrNFVM7pbifWHsnC8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158019, serialNumber=0B30CBC733DDC4686B34554CEE96E27D61EC9C2F Validity Not Before: Mar 16 09:01:27 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69b7c6e7-aa3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:60:a0:6c:02:ff:41:15:63:e4:8e:b4:6a:18: 38:31:dc:9f:8b:1f:bf:83:27:62:31:c0:1d:4f:a0: 86:23:dc:bd:ef:9e:6d:c8:29:50:25:bd:36:85:b1: 52:62:2c:62:73:19:6d:6a:1e:7c:de:3f:1b:7f:8e: 95:a3:6c:99:3a:af:45:e4:83:0a:47:da:6f:56:5c: 79:59:d1:7d:7f:29:ac:d5:50:da:57:7c:b3:6d:5f: f0:dc:75:01:ca:76:4e:40:69:81:7f:d3:73:ee:7c: f4:9e:fa:db:58:a5:77:93:40:eb:c4:f6:eb:08:64: 0c:22:85:bd:63:cf:38:10:72:b4:d4:77:10:75:5f: 20:11:a9:23:8e:ae:bf:5d:9b:f9:20:0d:e1:db:7d: 7e:15:83:9e:f2:14:c6:fb:77:4e:e2:46:b4:36:bf: fe:2d:fa:b3:db:8e:52:6f:ca:94:96:b4:f0:fb:22: 8d:1e:3c:a1:db:8f:35:56:f2:3e:99:32:94:9f:2b: 9c:a7:61:5f:39:cc:46:19:7a:92:3d:78:b3:64:fd: f2:d6:60:1e:39:45:ca:10:de:13:63:10:fc:bf:5f: b2:1f:65:23:a4:32:6f:28:69:af:66:7c:2d:6d:00: ed:f2:d2:9a:62:48:42:ee:5b:31:76:18:2c:90:7c: 38:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:BF:2A:63:96:D0:D2:D9:49:84:6C:7E:A7:C5:A0:39:1D:54:31:E0 X509v3 Authority Key Identifier: keyid:0B:30:CB:C7:33:DD:C4:68:6B:34:55:4C:EE:96:E2:7D:61:EC:9C:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158019/FF253538211311F1A859068B253D8C67/CzDLxzPdxGhrNFVM7pbifWHsnC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CzDLxzPdxGhrNFVM7pbifWHsnC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158019/FF253538211311F1A859068B253D8C67/B7547D60211611F1BB46DDA8253D8C67.roa sbgp-ipAddrBlock: critical IPv4: 138.252.148.0/23 Signature Algorithm: sha256WithRSAEncryption a7:4e:6b:9b:8b:b9:91:03:d8:e7:ab:69:4b:38:04:74:e1:08: 3a:5a:0f:47:0c:2d:bc:70:33:3e:a0:96:30:1d:6b:0d:18:54: 13:b4:af:7f:74:bd:f5:3e:9f:9e:05:23:98:69:15:4f:87:09: 54:06:92:0f:59:71:5e:b8:50:f8:e5:1e:d8:11:6e:f9:a7:39: 48:28:b9:33:ee:c8:30:d2:bf:77:db:cd:d1:52:65:22:a2:b4: a5:45:54:ca:21:74:c9:39:c6:26:de:d1:62:37:1c:0c:50:4c: cd:b4:05:3c:6e:87:70:93:b2:4d:f3:48:7b:22:6d:ea:82:72: 33:a9:3f:33:e8:88:37:b2:5c:da:0b:97:08:de:b9:9e:d3:d0: d0:74:9e:5b:ab:a8:ae:4f:24:6b:98:96:bd:14:0d:30:0f:d5: 55:d3:0d:11:e5:fd:ad:6a:fe:1e:1a:76:70:48:6b:6e:f2:70: 4c:14:db:14:34:55:d6:dd:5e:e9:17:15:7b:73:43:e5:23:d0: 5d:56:b4:01:17:d0:9b:9e:7f:58:aa:e4:dc:3e:42:6f:bb:9f: 0d:cd:df:4b:81:f8:20:2b:65:ae:ea:9c:d3:8e:d4:91:04:a1: dd:d0:c3:11:27:85:32:bd:42:5b:97:d3:71:7f:f8:62:64:98: ec:e2:3e:31 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODAxOTExMC8GA1UEBRMoMEIzMENCQzczM0REQzQ2ODZCMzQ1NTRDRUU5NkUyN0Q2 MUVDOUMyRjAeFw0yNjAzMTYwOTAxMjdaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YjdjNmU3LWFhM2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeYKBsAv9BFWPkjrRqGDgx3J+LH7+DJ2IxwB1PoIYj3L3vnm3IKVAlvTaFsVJi LGJzGW1qHnzePxt/jpWjbJk6r0XkgwpH2m9WXHlZ0X1/KazVUNpXfLNtX/DcdQHK dk5AaYF/03PufPSe+ttYpXeTQOvE9usIZAwihb1jzzgQcrTUdxB1XyARqSOOrr9d m/kgDeHbfX4Vg57yFMb7d07iRrQ2v/4t+rPbjlJvypSWtPD7Io0ePKHbjzVW8j6Z MpSfK5ynYV85zEYZepI9eLNk/fLWYB45RcoQ3hNjEPy/X7IfZSOkMm8oaa9mfC1t AO3y0ppiSELuWzF2GCyQfDi9AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUfL8qY5bQ 0tlJhGx+p8WgOR1UMeAwHwYDVR0jBBgwFoAUCzDLxzPdxGhrNFVM7pbifWHsnC8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4MDE5L0ZGMjUzNTM4MjEx MzExRjFBODU5MDY4QjI1M0Q4QzY3L0N6REx4elBkeEdock5GVk03cGJpZldIc25D OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ3pETHh6UGR4R2hyTkZWTTdwYmlmV0hzbkM4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAxOS9GRjI1MzUzODIxMTMxMUYxQTg1OTA2OEIyNTNEOEM2Ny9CNzU0N0Q2MDIx MTYxMUYxQkI0NkREQTgyNTNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/JQwDQYJKoZIhvcNAQELBQADggEBAKdOa5uLuZED2OeraUs4BHTh CDpaD0cMLbxwMz6gljAdaw0YVBO0r390vfU+n54FI5hpFU+HCVQGkg9ZcV64UPjl HtgRbvmnOUgouTPuyDDSv3fbzdFSZSKitKVFVMohdMk5xibe0WI3HAxQTM20BTxu h3CTsk3zSHsibeqCcjOpPzPoiDeyXNoLlwjeuZ7T0NB0nlurqK5PJGuYlr0UDTAP 1VXTDRHl/a1q/h4adnBIa27ycEwU2xQ0VdbdXukXFXtzQ+Uj0F1WtAEX0Juef1iq 5Nw+Qm+7nw3N30uB+CArZa7qnNOO1JEEod3QwxEnhTK9QluX03F/+GJkmOziPjE= -----END CERTIFICATE-----Generated at Thu Mar 26 17:17:21 2026 by rpki-client