$ rpki-client -vvf rpki.apnic.net/member_repository/A9159558/36EC8B4E42D211F1B6F10C74C7833773/C8CE775E435C11F18454B6E5B6833773.roa File: C8CE775E435C11F18454B6E5B6833773.roa (raw, json) Hash identifier: plcT4dsgJqUos2P4lyFZDl4QJQLWQP6vKlNauLCZCuI= Subject key identifier: CB:AF:F9:AF:00:B3:16:89:FC:56:1F:E1:F9:6C:76:F3:B8:87:53:05 Certificate issuer: /CN=A9159558/serialNumber=525ED5316981A50BDC02AC5BD3C5AFD41161497F Certificate serial: 03 Authority key identifier: 52:5E:D5:31:69:81:A5:0B:DC:02:AC:5B:D3:C5:AF:D4:11:61:49:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul7VMWmBpQvcAqxb08Wv1BFhSX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159558/36EC8B4E42D211F1B6F10C74C7833773/C8CE775E435C11F18454B6E5B6833773.roa Signing time: Tue 28 Apr 2026 23:48:41 +0000 ROA not before: Tue 28 Apr 2026 23:48:41 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 7575 IP address blocks: 150.203.5.0/24 maxlen: 24 150.203.15.0/24 maxlen: 24 150.203.254.0/24 maxlen: 24 203.0.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159558/36EC8B4E42D211F1B6F10C74C7833773/Ul7VMWmBpQvcAqxb08Wv1BFhSX8.crl rsync://rpki.apnic.net/member_repository/A9159558/36EC8B4E42D211F1B6F10C74C7833773/Ul7VMWmBpQvcAqxb08Wv1BFhSX8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul7VMWmBpQvcAqxb08Wv1BFhSX8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 09:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159558, serialNumber=525ED5316981A50BDC02AC5BD3C5AFD41161497F Validity Not Before: Apr 28 23:48:41 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69f14759-482e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:db:18:4b:8a:df:7e:ea:c6:88:0c:00:12:44: f8:11:00:58:bd:d6:ce:35:35:88:df:b0:8d:63:20: e4:c2:69:94:d2:1e:c2:1c:e6:db:a4:9a:44:9c:b9: 12:ed:c1:7b:45:9a:b7:24:1b:64:0c:36:5c:36:3b: f0:7b:5b:97:ef:b2:e6:53:20:29:1c:31:8f:33:9c: 08:31:22:c9:2a:ca:c6:9b:51:ed:ff:de:97:43:6d: a2:81:72:a7:96:9c:2a:0f:f9:cf:3c:68:b1:42:f2: 1f:0e:b4:06:98:e5:8f:a3:81:cc:be:41:b3:de:b6: 03:5b:11:12:df:a8:35:f9:6b:d7:93:19:7c:b3:91: 25:40:03:23:f3:86:ee:5d:c3:16:54:de:98:76:b8: c2:82:91:26:71:88:0f:0e:7f:a1:ab:74:6b:a2:84: a2:96:25:9f:cc:e2:56:8d:01:c3:13:0b:fb:65:cb: e8:16:76:84:1a:92:9d:d4:82:9f:da:37:ac:0b:59: 1c:1f:8e:70:41:9e:86:5c:37:0e:1d:42:ec:a2:69: 4f:c6:fa:8c:70:11:5f:19:56:e4:15:32:98:01:89: ac:29:3b:08:ce:88:e2:73:b3:5b:9f:ef:d3:f0:f2: ee:81:7e:99:c5:94:9f:76:2c:d0:04:63:0b:43:ed: 94:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:AF:F9:AF:00:B3:16:89:FC:56:1F:E1:F9:6C:76:F3:B8:87:53:05 X509v3 Authority Key Identifier: keyid:52:5E:D5:31:69:81:A5:0B:DC:02:AC:5B:D3:C5:AF:D4:11:61:49:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159558/36EC8B4E42D211F1B6F10C74C7833773/Ul7VMWmBpQvcAqxb08Wv1BFhSX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul7VMWmBpQvcAqxb08Wv1BFhSX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159558/36EC8B4E42D211F1B6F10C74C7833773/C8CE775E435C11F18454B6E5B6833773.roa sbgp-ipAddrBlock: critical IPv4: 150.203.5.0/24 150.203.15.0/24 150.203.254.0/24 203.0.19.0/24 Signature Algorithm: sha256WithRSAEncryption 55:ac:ac:73:f2:ac:f2:d3:fe:b8:c9:96:b1:22:e8:62:5e:57: f8:0f:81:e1:1b:69:2e:cd:4c:9f:18:14:8d:b4:f7:d9:af:82: bf:71:78:ab:7f:a8:9c:07:b9:42:7e:3f:39:1c:4e:a4:ab:61: 08:46:04:a3:3f:57:56:6f:05:d2:d6:28:69:76:c9:4e:fe:ef: 5f:8b:47:b7:73:6f:9c:d6:f3:4d:fa:dd:ae:4d:e7:99:d6:67: e7:8f:4b:ea:90:6e:c0:54:4e:90:f5:ac:56:31:c0:38:4d:3f: 4e:3d:83:9a:db:23:b0:7e:76:2f:7b:82:0b:d3:b8:e4:93:f3: e6:dd:82:01:0d:20:01:24:d2:7f:c5:8c:93:7c:71:62:f6:4c: 26:9e:5c:e6:34:bf:c9:56:eb:0f:fc:01:83:42:ed:58:80:0d: c3:6f:86:3d:cf:5b:94:96:08:a0:f4:79:32:46:f5:7c:c0:37: 45:5c:a6:7f:fc:89:60:2a:4f:d1:f2:46:52:c7:66:f8:33:98: 00:23:f4:5c:c8:c4:4a:61:8d:6a:99:ac:d1:d6:8c:6c:54:a3: 99:34:d2:b7:c3:e3:ed:6f:a1:a2:a1:6e:12:40:d9:a3:ab:95: eb:77:83:8a:c1:61:22:2f:20:fd:c2:16:6f:6c:b9:57:75:71: 28:77:78:fe -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OTU1ODExMC8GA1UEBRMoNTI1RUQ1MzE2OTgxQTUwQkRDMDJBQzVCRDNDNUFGRDQx MTYxNDk3RjAeFw0yNjA0MjgyMzQ4NDFaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZjE0NzU5LTQ4MmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCk2xhLit9+6saIDAASRPgRAFi91s41NYjfsI1jIOTCaZTSHsIc5tukmkScuRLt wXtFmrckG2QMNlw2O/B7W5fvsuZTICkcMY8znAgxIskqysabUe3/3pdDbaKBcqeW nCoP+c88aLFC8h8OtAaY5Y+jgcy+QbPetgNbERLfqDX5a9eTGXyzkSVAAyPzhu5d wxZU3ph2uMKCkSZxiA8Of6GrdGuihKKWJZ/M4laNAcMTC/tly+gWdoQakp3Ugp/a N6wLWRwfjnBBnoZcNw4dQuyiaU/G+oxwEV8ZVuQVMpgBiawpOwjOiOJzs1uf79Pw 8u6BfpnFlJ92LNAEYwtD7ZSBAgMBAAGjggJyMIICbjAdBgNVHQ4EFgQUy6/5rwCz Fon8Vh/h+Wx287iHUwUwHwYDVR0jBBgwFoAUUl7VMWmBpQvcAqxb08Wv1BFhSX8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU5NTU4LzM2RUM4QjRFNDJE MjExRjFCNkYxMEM3NEM3ODMzNzczL1VsN1ZNV21CcFF2Y0FxeGIwOFd2MUJGaFNY OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVWw3Vk1XbUJwUXZjQXF4YjA4V3YxQkZoU1g4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTU1OC8zNkVDOEI0RTQyRDIxMUYxQjZGMTBDNzRDNzgzMzc3My9DOENFNzc1RTQz NUMxMUYxODQ1NEI2RTVCNjgzMzc3My5yb2EwMQYIKwYBBQUHAQcBAf8EIjAgMB4E AgABMBgDBACWywUDBACWyw8DBACWy/4DBADLABMwDQYJKoZIhvcNAQELBQADggEB AFWsrHPyrPLT/rjJlrEi6GJeV/gPgeEbaS7NTJ8YFI2099mvgr9xeKt/qJwHuUJ+ PzkcTqSrYQhGBKM/V1ZvBdLWKGl2yU7+71+LR7dzb5zW80363a5N55nWZ+ePS+qQ bsBUTpD1rFYxwDhNP049g5rbI7B+di97ggvTuOST8+bdggENIAEk0n/FjJN8cWL2 TCaeXOY0v8lW6w/8AYNC7ViADcNvhj3PW5SWCKD0eTJG9XzAN0Vcpn/8iWAqT9Hy RlLHZvgzmAAj9FzIxEphjWqZrNHWjGxUo5k00rfD4+1voaKhbhJA2aOrlet3g4rB YSIvIP3CFm9suVd1cSh3eP4= -----END CERTIFICATE-----Generated at Wed May 13 07:14:43 2026 by rpki-client