$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa File: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (raw, json) Hash identifier: cFTNjWmWAl/Ioxhdrn8peplOv2/LEeZJ3Jpud6hMyaA= Subject key identifier: 01:37:D8:E1:62:B5:67:82:58:DC:A5:25:6D:13:88:82:38:9D:30:D7 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 0253 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa Signing time: Sun 03 May 2026 02:34:45 +0000 ROA not before: Sun 03 May 2026 02:34:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 38829 IP address blocks: 118.127.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 02:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: May 3 02:34:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f6b445-91d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:dd:1e:66:e4:6e:23:78:fc:37:2d:52:72:04: 1d:b4:32:1e:00:0a:60:1d:e2:eb:1f:46:49:e5:3a: 95:41:98:0d:9d:92:6b:3b:c6:7a:72:85:3f:88:b1: 65:01:dd:0e:d9:20:10:33:ef:25:2f:73:18:88:38: e3:24:e3:d1:bb:03:a1:2e:44:8b:10:d2:8e:ab:39: 64:14:b1:c6:ef:7b:ae:d5:88:79:8e:69:a5:36:31: b2:5d:46:19:e5:8c:43:02:8d:a6:eb:51:33:bc:f0: ad:7b:3d:77:34:7f:45:3e:0e:06:04:11:9c:53:c5: 02:b2:7e:7f:0c:08:30:a9:25:67:fa:9e:66:4a:cc: bc:07:d5:dd:ca:6d:2f:e2:6a:f0:59:3b:a8:f7:42: 69:ff:2c:b7:d0:cf:cd:cd:cc:1d:d5:cc:71:7c:44: c3:7e:96:82:62:e0:93:9c:f2:f1:50:b5:bd:97:b6: 71:f2:af:df:18:9d:8a:1c:06:12:13:ab:3b:ed:b4: a8:d3:32:cf:8a:fa:bc:15:15:c8:8f:dc:9f:1e:4c: a6:d0:f9:4d:8d:42:14:a8:65:96:35:de:0b:92:0a: b6:2c:0e:e9:40:bc:24:14:c5:8f:94:85:14:24:28: bf:9b:64:f6:e8:c4:d3:92:4b:22:f3:c4:6e:e1:68: 9a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:37:D8:E1:62:B5:67:82:58:DC:A5:25:6D:13:88:82:38:9D:30:D7 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 118.127.160.0/21 Signature Algorithm: sha256WithRSAEncryption 24:11:dd:f5:23:87:06:8d:a7:1d:b6:df:59:d6:5e:63:6a:80: bd:3b:94:39:2a:95:cc:ce:9b:91:6f:36:6e:c6:ee:0a:77:b5: d7:07:91:bc:c0:b5:10:f5:3a:5f:0b:95:5b:3a:26:91:da:75: 09:3f:23:59:52:a3:03:b9:93:6e:5f:63:75:30:1e:2e:08:28: d2:2c:b3:18:eb:59:ae:14:ce:e3:5f:1d:36:1f:60:cf:03:0b: 6b:11:9e:33:cd:bb:34:6d:08:f3:15:b1:c1:35:e6:5f:33:09: 5b:a7:57:be:cb:ab:6d:df:4c:15:13:bb:98:e8:b6:23:04:aa: be:eb:69:f9:94:0c:41:91:f2:e1:0c:69:5b:1f:4b:21:fa:3e: 39:ab:94:a9:2e:6c:d1:b2:34:78:18:fb:57:12:57:f1:d5:1d: f7:b7:f3:63:00:91:82:30:89:23:4e:6c:4d:7d:f9:e1:a6:07: 6e:dc:bf:5a:6c:9d:6d:a4:26:92:28:b6:36:44:22:2a:6f:44: aa:f9:da:f6:8d:0e:38:c0:24:0c:84:6e:b1:bb:39:75:fe:04: b5:5c:59:57:5d:56:5b:6c:9d:6c:13:40:73:c1:31:49:88:c3: a3:08:e1:39:06:07:0f:3e:01:70:c7:74:63:9b:e1:b1:60:17: 30:71:3b:d5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjYwNTAzMDIzNDQ1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2YjQ0NS05MWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAud0eZuRuI3j8Ny1ScgQdtDIeAApgHeLrH0ZJ5TqVQZgNnZJrO8Z6coU/iLFl Ad0O2SAQM+8lL3MYiDjjJOPRuwOhLkSLENKOqzlkFLHG73uu1Yh5jmmlNjGyXUYZ 5YxDAo2m61EzvPCtez13NH9FPg4GBBGcU8UCsn5/DAgwqSVn+p5mSsy8B9Xdym0v 4mrwWTuo90Jp/yy30M/Nzcwd1cxxfETDfpaCYuCTnPLxULW9l7Zx8q/fGJ2KHAYS E6s77bSo0zLPivq8FRXIj9yfHkym0PlNjUIUqGWWNd4Lkgq2LA7pQLwkFMWPlIUU JCi/m2T26MTTkksi88Ru4WianwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAE32OFi tWeCWNylJW0TiII4nTDXMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhDNzMvOEU1QzlDQzBDMzE0MTFFRDk3QTBBMzdGQzRGOUFFMDIvRDhFQzJEODRD NkZGMTFFREE5M0ExRDQzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDdn+gMA0GCSqGSIb3DQEBCwUAA4IBAQAkEd31I4cGjacdtt9Z1l5j aoC9O5Q5KpXMzpuRbzZuxu4Kd7XXB5G8wLUQ9TpfC5VbOiaR2nUJPyNZUqMDuZNu X2N1MB4uCCjSLLMY61muFM7jXx02H2DPAwtrEZ4zzbs0bQjzFbHBNeZfMwlbp1e+ y6tt30wVE7uY6LYjBKq+62n5lAxBkfLhDGlbH0sh+j45q5SpLmzRsjR4GPtXElfx 1R33t/NjAJGCMIkjTmxNffnhpgdu3L9abJ1tpCaSKLY2RCIqb0Sq+dr2jQ44wCQM hG6xuzl1/gS1XFlXXVZbbJ1sE0BzwTFJiMOjCOE5BgcPPgFwx3Rjm+GxYBcwcTvV -----END CERTIFICATE-----Generated at Wed May 13 01:20:53 2026 by rpki-client