$ rpki-client -vvf rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/FFE6CB36228111EFA702E016C4F9AE02.roa File: FFE6CB36228111EFA702E016C4F9AE02.roa (raw, json) Hash identifier: U5nVSPD3T1HoVwbttFEp4zUILDT+u5lIs2AzBZe0/U4= Subject key identifier: C4:E6:F9:8B:C8:90:6F:AE:0C:1F:F4:2F:69:E9:F4:3F:74:03:14:E0 Certificate issuer: /CN=A9129023/serialNumber=4F146F5CC4F4BC873822FA1E33452A541A1EE546 Certificate serial: 0150 Authority key identifier: 4F:14:6F:5C:C4:F4:BC:87:38:22:FA:1E:33:45:2A:54:1A:1E:E5:46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TxRvXMT0vIc4IvoeM0UqVBoe5UY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/FFE6CB36228111EFA702E016C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:33:13 +0000 ROA not before: Sat 27 Sep 2025 06:03:42 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 147001 IP address blocks: 160.20.134.0/23 maxlen: 23 160.20.134.0/24 maxlen: 24 160.20.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/TxRvXMT0vIc4IvoeM0UqVBoe5UY.crl rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/TxRvXMT0vIc4IvoeM0UqVBoe5UY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TxRvXMT0vIc4IvoeM0UqVBoe5UY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:47:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129023, serialNumber=4F146F5CC4F4BC873822FA1E33452A541A1EE546 Validity Not Before: Sep 27 06:03:42 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a59fa9-c43f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c5:17:37:f3:20:7f:b3:df:3a:ad:da:9f:0a: dc:b1:35:75:4c:74:d1:5f:22:ca:64:28:63:0d:42: 1c:f5:6e:a2:f4:7c:bc:e6:30:87:05:aa:8f:6e:d0: a1:31:ca:4d:68:68:11:f8:04:d1:b3:6c:18:a1:77: bc:ac:76:37:04:ef:02:d7:5c:ab:64:83:3d:54:ae: 53:ed:f6:e0:1e:32:ac:56:2a:ef:c1:23:b7:9a:da: 19:e3:88:c1:0b:bc:48:8c:74:45:59:dd:8f:56:57: 63:7e:80:4f:8c:7b:f1:6c:43:87:f1:33:18:77:f3: f4:10:b1:e3:c2:c5:10:67:ae:a2:69:89:90:0a:3a: 6e:3c:50:e2:70:f4:6e:d6:68:b8:8b:81:88:f8:65: c2:e6:da:25:a5:f5:c4:06:58:98:5d:34:4f:3d:56: ec:65:9a:58:90:f2:3b:df:fd:ab:bc:92:20:a4:c9: 7e:97:04:38:7c:85:1a:56:49:6d:6a:90:bc:d3:0f: 85:76:23:85:e8:8e:f4:ab:d4:a3:4d:6d:1f:5f:c6: 00:0b:1b:6d:0d:dc:ed:56:1c:9b:8a:13:c5:98:5b: dc:38:ca:91:ea:e6:02:c0:1e:36:16:c9:59:d7:46: 0c:c4:70:9b:54:e5:32:cf:bb:45:f7:75:45:d4:47: b4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:E6:F9:8B:C8:90:6F:AE:0C:1F:F4:2F:69:E9:F4:3F:74:03:14:E0 X509v3 Authority Key Identifier: keyid:4F:14:6F:5C:C4:F4:BC:87:38:22:FA:1E:33:45:2A:54:1A:1E:E5:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/TxRvXMT0vIc4IvoeM0UqVBoe5UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TxRvXMT0vIc4IvoeM0UqVBoe5UY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/FFE6CB36228111EFA702E016C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.20.134.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:16:e8:15:c9:93:1e:2a:c9:42:72:9d:5f:ed:05:f7:12:f4: 79:87:e9:27:d1:27:a7:07:7a:38:ae:11:77:5c:6b:e9:79:d8: 94:bb:dd:d0:38:4d:ce:32:63:56:b8:24:1e:86:c7:1a:18:6c: 1f:e8:a5:a1:5e:e9:8f:76:c0:9a:7d:1b:2c:0b:b7:e9:e8:99: cf:e6:e0:cc:4b:92:84:da:ae:a4:f7:36:72:88:ca:8e:cd:50: f9:a4:93:0c:f1:d9:fc:42:5e:46:04:d3:71:64:89:1c:f3:f0: a4:bf:98:ac:4d:f8:a8:34:01:a7:e1:ae:28:19:4f:f0:26:79: 80:6b:57:fd:14:8c:b5:96:f5:82:5c:6c:af:ba:ba:2d:16:d4: b5:c4:1e:09:d3:b3:1f:8c:82:2c:15:0e:91:6e:a6:60:b5:3b: 8c:49:2b:fe:59:5a:9d:22:8a:11:58:39:2b:44:91:ba:2d:de: 4b:45:f0:ef:1c:f0:94:32:90:c0:03:c6:10:d5:f1:ea:e9:11: 04:6f:d0:32:aa:38:36:2e:67:ad:d1:f6:35:a7:5c:02:84:59: 2f:bb:0f:74:2f:8d:e9:59:18:93:4e:8f:ca:df:cc:21:e5:65: ab:d6:74:f0:75:d2:be:e1:eb:45:6b:ee:9f:60:84:da:dd:66: f0:f7:f4:42 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkwMjMxMTAvBgNVBAUTKDRGMTQ2RjVDQzRGNEJDODczODIyRkExRTMzNDUyQTU0 MUExRUU1NDYwHhcNMjUwOTI3MDYwMzQyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWZhOS1jNDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMUXN/Mgf7PfOq3anwrcsTV1THTRXyLKZChjDUIc9W6i9Hy85jCHBaqPbtCh McpNaGgR+ATRs2wYoXe8rHY3BO8C11yrZIM9VK5T7fbgHjKsVirvwSO3mtoZ44jB C7xIjHRFWd2PVldjfoBPjHvxbEOH8TMYd/P0ELHjwsUQZ66iaYmQCjpuPFDicPRu 1mi4i4GI+GXC5tolpfXEBliYXTRPPVbsZZpYkPI73/2rvJIgpMl+lwQ4fIUaVklt apC80w+FdiOF6I70q9SjTW0fX8YACxttDdztVhybihPFmFvcOMqR6uYCwB42FslZ 10YMxHCbVOUyz7tF93VF1Ee0BQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMTm+YvI kG+uDB/0L2np9D90AxTgMB8GA1UdIwQYMBaAFE8Ub1zE9LyHOCL6HjNFKlQaHuVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTAyMy9GMzNCQjRBNjIy ODAxMUVGQTcyODNDMTRDNEY5QUUwMi9UeFJ2WE1UMHZJYzRJdm9lTTBVcVZCb2U1 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1R4UnZYTVQwdkljNEl2b2VNMFVxVkJvZTVVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjkwMjMvRjMzQkI0QTYyMjgwMTFFRkE3MjgzQzE0QzRGOUFFMDIvRkZFNkNCMzYy MjgxMTFFRkE3MDJFMDE2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBSGMA0GCSqGSIb3DQEBCwUAA4IBAQArFugVyZMeKslCcp1f7QX3 EvR5h+kn0SenB3o4rhF3XGvpediUu93QOE3OMmNWuCQehscaGGwf6KWhXumPdsCa fRssC7fp6JnP5uDMS5KE2q6k9zZyiMqOzVD5pJMM8dn8Ql5GBNNxZIkc8/Ckv5is TfioNAGn4a4oGU/wJnmAa1f9FIy1lvWCXGyvurotFtS1xB4J07MfjIIsFQ6RbqZg tTuMSSv+WVqdIooRWDkrRJG6Ld5LRfDvHPCUMpDAA8YQ1fHq6REEb9Ayqjg2Lmet 0fY1p1wChFkvuw90L43pWRiTTo/K38wh5WWr1nTwddK+4etFa+6fYITa3Wbw9/RC -----END CERTIFICATE-----Generated at Wed Mar 4 10:08:41 2026 by rpki-client