$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/5A4723DA6F3C11EF8FD45F13C4F9AE02.roa File: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (raw, json) Hash identifier: 2/r4oR0iCi4LexUGtmPzKzEWeEmDyv6SAtyEMBATvFM= Subject key identifier: 46:FC:61:9B:46:EB:CC:C8:F9:F7:01:17:22:89:F1:D9:E8:BA:A8:41 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: 013F Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/5A4723DA6F3C11EF8FD45F13C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:15:27 +0000 ROA not before: Fri 19 Sep 2025 00:05:44 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141196 IP address blocks: 152.32.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:48:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Sep 19 00:05:44 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a5a98f-c9b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7c:f7:c0:45:95:2e:f1:6f:ea:60:a3:41:a1: 2e:5d:28:b4:da:6c:83:8a:2f:2b:c9:03:eb:80:42: 84:bb:2d:37:cb:5a:a2:8c:50:08:8f:57:65:e2:d9: 42:1f:7c:8e:b2:1b:a2:3d:e0:7e:9b:e0:97:bf:54: f1:97:46:ce:7e:6e:34:ca:7d:ff:9f:39:46:64:d3: ed:0f:10:f4:d6:82:19:bd:54:fe:23:9a:50:20:3d: 61:78:64:91:ab:c8:cc:71:f4:8d:78:55:f4:a6:cb: f0:9c:a0:d4:fc:f8:65:b1:eb:15:00:65:72:31:ae: 77:ea:52:74:d8:c2:57:c2:db:00:17:08:99:c4:b1: 01:89:d9:93:34:00:5f:e4:b5:18:04:71:18:a4:be: 48:b7:07:88:d8:ab:13:d2:f6:f1:79:fc:28:44:b4: 3e:37:3b:a4:64:ca:5d:0f:33:ab:11:40:00:f6:11: 0f:4c:e0:17:05:d7:d8:7f:fc:a8:17:56:8b:34:a2: a8:c1:73:24:24:eb:01:c0:9c:76:97:18:ca:eb:90: a7:46:83:bf:d9:68:31:15:3d:9d:b8:60:72:72:08: 83:40:40:10:db:0d:59:64:8f:5f:ef:22:c9:73:20: f9:25:c7:3c:21:3c:c1:68:23:7c:9c:bb:6f:69:6e: 25:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:FC:61:9B:46:EB:CC:C8:F9:F7:01:17:22:89:F1:D9:E8:BA:A8:41 X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/5A4723DA6F3C11EF8FD45F13C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 152.32.124.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:fb:29:7b:92:eb:95:dc:32:27:5b:e0:db:28:2b:a3:51:37: e0:ff:b6:b4:89:76:49:9b:2a:8e:76:e4:21:7a:b5:bb:de:6c: d2:99:5a:1d:f4:19:78:fe:1d:9b:ab:88:79:64:af:41:99:ac: 7c:de:1e:51:15:e3:16:38:cd:5a:59:46:f3:bc:7b:bc:77:28: 0e:72:c1:f1:e2:f6:da:fe:03:c7:f0:55:40:df:5a:34:e9:ac: dd:f5:fe:27:16:bf:c0:6b:12:14:37:9c:a8:e7:58:67:16:d3: 66:d2:7b:7e:2e:54:6c:35:0d:9c:84:97:45:43:63:0e:35:f3: 6e:17:af:4f:88:2d:4f:68:d8:1f:1b:1b:07:40:64:c7:21:c4: ea:59:ff:dc:f4:50:f3:e7:a4:39:b1:f3:aa:fe:18:d6:af:33: ad:98:b8:fd:ba:6a:39:9d:4e:dd:2c:f0:ed:e4:69:ef:17:53: 0b:ec:41:c1:87:e4:e5:b7:76:be:b3:51:65:db:af:80:44:d5: d0:b5:e4:38:b0:ce:4b:e8:b5:cf:2e:14:e9:d3:d8:84:37:d3: 24:56:c8:f3:d0:66:2c:46:44:31:a0:7a:e1:ab:93:bb:64:64: 3c:1b:aa:be:1e:77:00:af:30:bd:4a:f2:36:de:5c:af:1c:4e: 63:e2:58:14 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUwOTE5MDAwNTQ0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTk4Zi1jOWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnXz3wEWVLvFv6mCjQaEuXSi02myDii8ryQPrgEKEuy03y1qijFAIj1dl4tlC H3yOshuiPeB+m+CXv1Txl0bOfm40yn3/nzlGZNPtDxD01oIZvVT+I5pQID1heGSR q8jMcfSNeFX0psvwnKDU/PhlsesVAGVyMa536lJ02MJXwtsAFwiZxLEBidmTNABf 5LUYBHEYpL5ItweI2KsT0vbxefwoRLQ+NzukZMpdDzOrEUAA9hEPTOAXBdfYf/yo F1aLNKKowXMkJOsBwJx2lxjK65CnRoO/2WgxFT2duGBycgiDQEAQ2w1ZZI9f7yLJ cyD5Jcc8ITzBaCN8nLtvaW4liwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEb8YZtG 68zI+fcBFyKJ8dnouqhBMB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTlFQ0QvRUY2MzgzRTIzRDlGMTFFRjk5MDMzNzY4QzRGOUFFMDIvNUE0NzIzREE2 RjNDMTFFRjhGRDQ1RjEzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCmCB8MA0GCSqGSIb3DQEBCwUAA4IBAQB6+yl7kuuV3DInW+DbKCuj UTfg/7a0iXZJmyqOduQherW73mzSmVod9Bl4/h2bq4h5ZK9Bmax83h5RFeMWOM1a WUbzvHu8dygOcsHx4vba/gPH8FVA31o06azd9f4nFr/AaxIUN5yo51hnFtNm0nt+ LlRsNQ2chJdFQ2MONfNuF69PiC1PaNgfGxsHQGTHIcTqWf/c9FDz56Q5sfOq/hjW rzOtmLj9umo5nU7dLPDt5GnvF1ML7EHBh+Tlt3a+s1Fl26+ARNXQteQ4sM5L6LXP LhTp09iEN9MkVsjz0GYsRkQxoHrhq5O7ZGQ8G6q+HncArzC9SvI23lyvHE5j4lgU -----END CERTIFICATE-----Generated at Thu Mar 26 10:30:49 2026 by rpki-client