$ rpki-client -vvf rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/7EF2846AD16911EF9ECCE01FC4F9AE02.roa File: 7EF2846AD16911EF9ECCE01FC4F9AE02.roa (raw, json) Hash identifier: ytF+Ga6u8T83+pz2nu9bDRMDy5//nap2u0HT6T2VLwM= Subject key identifier: E9:32:98:DC:B7:44:B2:D8:32:D5:64:B0:01:16:B7:96:6A:BE:6E:1C Certificate issuer: /CN=A9114EF6/serialNumber=AF461D57A90A335B2FA77A7AAEC16734954923B1 Certificate serial: ED Authority key identifier: AF:46:1D:57:A9:0A:33:5B:2F:A7:7A:7A:AE:C1:67:34:95:49:23:B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r0YdV6kKM1svp3p6rsFnNJVJI7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/7EF2846AD16911EF9ECCE01FC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:17:01 +0000 ROA not before: Mon 01 Dec 2025 05:02:14 +0000 ROA not after: Sat 31 Mar 2029 00:00:00 +0000 asID: 153491 IP address blocks: 161.248.120.0/23 maxlen: 23 161.248.120.0/24 maxlen: 24 161.248.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.crl rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r0YdV6kKM1svp3p6rsFnNJVJI7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 06:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114EF6, serialNumber=AF461D57A90A335B2FA77A7AAEC16734954923B1 Validity Not Before: Dec 1 05:02:14 2025 GMT Not After : Mar 31 00:00:00 2029 GMT Subject: CN=69a58dcc-45da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:11:d9:f4:b9:b3:4e:0d:05:86:b9:54:c8:b7: f5:98:06:b6:af:b5:bf:32:24:d8:cb:74:2e:14:15: 13:4a:72:5e:98:c6:1f:f7:d6:7c:97:89:10:66:cd: 0b:04:93:a7:a8:36:5f:e4:66:2a:d1:4d:c3:be:86: b5:35:49:ed:03:eb:5d:17:33:72:9d:9d:2a:41:d8: 09:0d:1c:de:a5:6e:5c:e0:28:29:d1:26:ca:1a:52: 9a:d4:65:de:6f:da:35:eb:f8:09:dc:a8:bd:9e:41: 8c:a8:a5:ca:83:20:34:f3:c9:24:56:f1:cd:6e:b2: ee:f9:83:0c:31:36:0c:39:f5:c9:4b:20:05:10:07: aa:68:00:0b:8d:e1:fc:75:b3:89:ff:1e:ae:1d:8e: f3:c9:21:b0:98:c3:80:bd:c8:6c:ea:58:ae:9c:50: cc:5d:29:d5:f9:58:2e:29:78:14:7c:00:44:0a:7b: 82:8e:89:f8:0a:72:7b:43:f1:bc:d6:5f:f6:8e:af: 98:f6:03:fe:c5:ae:51:7f:66:87:cb:d4:05:87:58: a0:00:05:39:b7:63:b6:95:83:de:ce:a1:fa:f2:9c: 81:41:45:b6:3e:f8:26:0d:c3:d0:d8:a3:2d:56:3a: 5d:c2:34:9f:fa:dd:58:ca:e4:a8:70:2f:91:40:e8: ec:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:32:98:DC:B7:44:B2:D8:32:D5:64:B0:01:16:B7:96:6A:BE:6E:1C X509v3 Authority Key Identifier: keyid:AF:46:1D:57:A9:0A:33:5B:2F:A7:7A:7A:AE:C1:67:34:95:49:23:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r0YdV6kKM1svp3p6rsFnNJVJI7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/7EF2846AD16911EF9ECCE01FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.120.0/23 Signature Algorithm: sha256WithRSAEncryption 82:25:ef:fc:5d:f4:88:5c:d5:80:45:06:0a:6f:93:84:ff:36: cd:d0:2d:13:fc:d7:75:8e:cb:f3:d7:ea:89:03:57:5f:95:b1: 13:2f:7c:f9:dc:9d:f0:9a:6c:39:48:f2:31:b9:d4:54:ea:30: 17:cd:46:cb:eb:10:65:c5:77:3f:43:33:38:63:07:3f:c7:82: 54:da:76:97:1e:fc:1b:15:99:72:07:23:a8:c8:df:6f:4e:51: ab:fc:f4:03:bf:2c:de:21:37:d6:7f:7c:a7:2c:f8:94:09:c2: a4:6e:08:f6:46:50:4f:c3:c8:4c:b5:08:91:ee:fd:55:a7:92: a0:69:d8:6f:45:dc:d7:fe:08:68:4b:4d:2e:5b:4b:61:ac:9d: 27:65:f2:6d:63:41:2d:4d:4f:38:46:f4:aa:e6:72:7d:0c:d6: bf:fa:e7:80:1c:81:f5:00:ad:20:56:46:a3:60:9f:c8:cb:b1: 4d:ed:61:83:09:f9:3c:0d:a0:39:81:fe:c7:8e:d7:10:88:82: 43:d9:73:d6:0b:bc:a1:2f:f8:aa:39:28:7f:64:d2:f4:ed:5d: de:87:c0:a2:19:29:f6:e9:d9:94:53:eb:27:bb:9f:9a:c6:71: b1:ff:6f:f5:51:83:78:fa:1e:c0:e3:e2:f7:50:61:2b:73:4e: 2c:68:10:7c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRFRjYxMTAvBgNVBAUTKEFGNDYxRDU3QTkwQTMzNUIyRkE3N0E3QUFFQzE2NzM0 OTU0OTIzQjEwHhcNMjUxMjAxMDUwMjE0WhcNMjkwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGRjYy00NWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hHZ9LmzTg0FhrlUyLf1mAa2r7W/MiTYy3QuFBUTSnJemMYf99Z8l4kQZs0L BJOnqDZf5GYq0U3Dvoa1NUntA+tdFzNynZ0qQdgJDRzepW5c4Cgp0SbKGlKa1GXe b9o16/gJ3Ki9nkGMqKXKgyA088kkVvHNbrLu+YMMMTYMOfXJSyAFEAeqaAALjeH8 dbOJ/x6uHY7zySGwmMOAvchs6liunFDMXSnV+VguKXgUfABECnuCjon4CnJ7Q/G8 1l/2jq+Y9gP+xa5Rf2aHy9QFh1igAAU5t2O2lYPezqH68pyBQUW2PvgmDcPQ2KMt VjpdwjSf+t1YyuSocC+RQOjs2wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOkymNy3 RLLYMtVksAEWt5Zqvm4cMB8GA1UdIwQYMBaAFK9GHVepCjNbL6d6eq7BZzSVSSOx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEVGNi84REFFMDVBMEQw RDQxMUVGQkNENTEyM0VDNEY5QUUwMi9yMFlkVjZrS00xc3ZwM3A2cnNGbk5KVkpJ N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3IwWWRWNmtLTTFzdnAzcDZyc0ZuTkpWSkk3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTRFRjYvOERBRTA1QTBEMEQ0MTFFRkJDRDUxMjNFQzRGOUFFMDIvN0VGMjg0NkFE MTY5MTFFRjlFQ0NFMDFGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofh4MA0GCSqGSIb3DQEBCwUAA4IBAQCCJe/8XfSIXNWARQYKb5OE /zbN0C0T/Nd1jsvz1+qJA1dflbETL3z53J3wmmw5SPIxudRU6jAXzUbL6xBlxXc/ QzM4Ywc/x4JU2naXHvwbFZlyByOoyN9vTlGr/PQDvyzeITfWf3ynLPiUCcKkbgj2 RlBPw8hMtQiR7v1Vp5KgadhvRdzX/ghoS00uW0thrJ0nZfJtY0EtTU84RvSq5nJ9 DNa/+ueAHIH1AK0gVkajYJ/Iy7FN7WGDCfk8DaA5gf7HjtcQiIJD2XPWC7yhL/iq OSh/ZNL07V3eh8CiGSn26dmUU+snu5+axnGx/2/1UYN4+h7A4+L3UGErc04saBB8 -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:13 2026 by rpki-client