$ rpki-client -vvf rpki.apnic.net/member_repository/A9159B6F/2AD5F6D8D09C11EE80AB8D7EC4F9AE02/FF5BF8249A4111F0A04F703EC4F9AE02.roa File: FF5BF8249A4111F0A04F703EC4F9AE02.roa (raw, json) Hash identifier: FgMnGGxYcOkrgsXBrsW+IcK5qUF9rL9FnEJI3VGsE4k= Subject key identifier: 48:E6:C0:35:64:2C:58:99:5B:C4:F3:3B:C3:1B:50:16:8E:7C:1E:FA Certificate issuer: /CN=A9159B6F/serialNumber=15839330A81ED8992073A23804C9F590538FB9D2 Certificate serial: 019A Authority key identifier: 15:83:93:30:A8:1E:D8:99:20:73:A2:38:04:C9:F5:90:53:8F:B9:D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FYOTMKge2Jkgc6I4BMn1kFOPudI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159B6F/2AD5F6D8D09C11EE80AB8D7EC4F9AE02/FF5BF8249A4111F0A04F703EC4F9AE02.roa Signing time: Mon 23 Mar 2026 04:39:05 +0000 ROA not before: Mon 23 Mar 2026 04:39:05 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 138032 IP address blocks: 157.20.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159B6F/2AD5F6D8D09C11EE80AB8D7EC4F9AE02/FYOTMKge2Jkgc6I4BMn1kFOPudI.crl rsync://rpki.apnic.net/member_repository/A9159B6F/2AD5F6D8D09C11EE80AB8D7EC4F9AE02/FYOTMKge2Jkgc6I4BMn1kFOPudI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FYOTMKge2Jkgc6I4BMn1kFOPudI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:45:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159B6F, serialNumber=15839330A81ED8992073A23804C9F590538FB9D2 Validity Not Before: Mar 23 04:39:05 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c0c3e9-f244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1d:26:56:7f:55:7d:44:71:a0:ac:35:1e:b7: 65:25:28:a3:2e:d8:9d:a9:d8:e8:5d:63:86:aa:3c: d4:4a:b2:a2:e4:19:53:96:58:b0:53:89:46:18:9f: 3d:1f:bb:65:69:0a:0d:65:36:68:fe:23:1d:79:ba: 56:de:62:d9:e6:16:2e:ad:d8:b7:1a:1b:20:41:1c: 1d:fa:fc:61:0c:e5:ea:3f:bc:ae:84:96:50:86:32: f9:4b:fc:cf:e2:48:d9:c4:77:ba:2d:81:ea:b1:6b: e5:e3:dc:91:91:0e:08:95:d9:01:f0:1d:d4:25:8a: 7f:89:5a:18:8e:f9:f0:d6:fa:3b:f8:e0:e8:53:cc: 77:45:fd:0b:6a:06:aa:8b:11:aa:bd:d2:f4:33:ab: 32:a1:fe:7d:68:6e:f8:83:70:8a:9b:66:97:8e:19: b5:c5:fb:2c:df:bd:34:c6:62:a1:48:39:dd:6d:1b: be:45:ea:f9:e8:a4:4e:c9:a2:b2:64:f1:4c:13:36: 9b:c8:e5:87:ec:46:18:10:b0:e1:54:26:ec:e1:6f: c3:e3:d1:78:3d:41:50:5e:57:4c:37:bc:26:be:70: 75:00:5f:88:e0:04:2c:a9:43:7a:88:02:fe:c8:6f: 77:73:7d:94:69:9d:f2:ed:f4:b7:a4:58:3e:85:77: 95:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:E6:C0:35:64:2C:58:99:5B:C4:F3:3B:C3:1B:50:16:8E:7C:1E:FA X509v3 Authority Key Identifier: keyid:15:83:93:30:A8:1E:D8:99:20:73:A2:38:04:C9:F5:90:53:8F:B9:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159B6F/2AD5F6D8D09C11EE80AB8D7EC4F9AE02/FYOTMKge2Jkgc6I4BMn1kFOPudI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FYOTMKge2Jkgc6I4BMn1kFOPudI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159B6F/2AD5F6D8D09C11EE80AB8D7EC4F9AE02/FF5BF8249A4111F0A04F703EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.75.0/24 Signature Algorithm: sha256WithRSAEncryption 21:97:4a:b3:ee:7d:70:cf:28:53:ae:20:84:e9:6f:80:57:ac: e8:51:3b:3f:18:90:f5:e0:b3:ee:ce:9c:32:26:0f:2d:9b:bf: 5a:21:b4:64:7a:41:ae:ab:eb:30:20:36:e8:72:db:2a:67:ca: 7e:bc:82:79:e0:37:1e:92:45:c4:10:bd:d7:bf:50:8f:24:26: dd:e7:51:61:2c:62:fb:ea:0e:90:d5:b6:78:1b:c9:78:c6:37: c8:6e:e6:1f:34:af:b8:41:37:e0:24:2c:08:69:10:0a:59:3e: 22:68:c4:21:82:02:36:68:72:88:88:8d:0d:66:42:ed:cf:7c: 21:98:9d:e5:b5:31:c5:5b:5d:9e:d2:2a:ac:49:87:de:a1:c3: 31:56:15:ff:6b:05:84:20:46:92:e8:de:11:6b:64:10:87:5d: c8:84:0e:7f:63:4e:3b:43:5d:47:87:8b:08:1a:f8:6f:1c:2b: 95:b6:33:a7:6c:de:10:a9:ca:f3:b9:cc:60:5e:9e:c6:b5:98: 6f:aa:6a:02:6b:df:01:e6:ec:54:ef:6b:d5:68:a8:ac:34:09: 15:ff:67:99:c7:0e:be:ba:1f:ff:9b:b2:2a:23:c3:c0:36:bf: 5f:9a:a0:96:a4:be:a6:f8:ed:c2:1c:f5:aa:f2:ad:0c:ea:d7: 31:8e:72:54 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlCNkYxMTAvBgNVBAUTKDE1ODM5MzMwQTgxRUQ4OTkyMDczQTIzODA0QzlGNTkw NTM4RkI5RDIwHhcNMjYwMzIzMDQzOTA1WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWMwYzNlOS1mMjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqR0mVn9VfURxoKw1HrdlJSijLtidqdjoXWOGqjzUSrKi5BlTlliwU4lGGJ89 H7tlaQoNZTZo/iMdebpW3mLZ5hYurdi3GhsgQRwd+vxhDOXqP7yuhJZQhjL5S/zP 4kjZxHe6LYHqsWvl49yRkQ4IldkB8B3UJYp/iVoYjvnw1vo7+ODoU8x3Rf0Lagaq ixGqvdL0M6syof59aG74g3CKm2aXjhm1xfss3700xmKhSDndbRu+Rer56KROyaKy ZPFMEzabyOWH7EYYELDhVCbs4W/D49F4PUFQXldMN7wmvnB1AF+I4AQsqUN6iAL+ yG93c32UaZ3y7fS3pFg+hXeVtwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEjmwDVk LFiZW8TzO8MbUBaOfB76MB8GA1UdIwQYMBaAFBWDkzCoHtiZIHOiOATJ9ZBTj7nS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUI2Ri8yQUQ1RjZEOEQw OUMxMUVFODBBQjhEN0VDNEY5QUUwMi9GWU9UTUtnZTJKa2djNkk0Qk1uMWtGT1B1 ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZZT1RNS2dlMkprZ2M2STRCTW4xa0ZPUHVkSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTlCNkYvMkFENUY2RDhEMDlDMTFFRTgwQUI4RDdFQzRGOUFFMDIvRkY1QkY4MjQ5 QTQxMTFGMEEwNEY3MDNFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAnRRLMA0GCSqGSIb3DQEBCwUAA4IBAQAhl0qz7n1wzyhTriCE6W+A V6zoUTs/GJD14LPuzpwyJg8tm79aIbRkekGuq+swIDboctsqZ8p+vIJ54DcekkXE EL3Xv1CPJCbd51FhLGL76g6Q1bZ4G8l4xjfIbuYfNK+4QTfgJCwIaRAKWT4iaMQh ggI2aHKIiI0NZkLtz3whmJ3ltTHFW12e0iqsSYfeocMxVhX/awWEIEaS6N4Ra2QQ h13IhA5/Y047Q11Hh4sIGvhvHCuVtjOnbN4QqcrzucxgXp7GtZhvqmoCa98B5uxU 72vVaKisNAkV/2eZxw6+uh//m7IqI8PANr9fmqCWpL6m+O3CHPWq8q0M6tcxjnJU -----END CERTIFICATE-----Generated at Thu Mar 26 22:01:06 2026 by rpki-client