$ rpki-client -vvf rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/015250F6309311F084231321C4F9AE02.roa File: 015250F6309311F084231321C4F9AE02.roa (raw, json) Hash identifier: BeulAEPDoFLGO9UYVAx1+bgz0obUOcmmrn0Kzh9wNG8= Subject key identifier: C9:51:85:81:06:10:80:6E:69:66:B9:BD:15:A1:EB:1A:BD:B0:8A:38 Certificate issuer: /CN=A912A5D4/serialNumber=66134DA1BFEDAC0C919D26B1F7F9E168AF9D2B4E Certificate serial: DE Authority key identifier: 66:13:4D:A1:BF:ED:AC:0C:91:9D:26:B1:F7:F9:E1:68:AF:9D:2B:4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/015250F6309311F084231321C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:04:19 +0000 ROA not before: Tue 23 Sep 2025 07:56:15 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 8075 IP address blocks: 143.188.148.0/22 maxlen: 23 143.188.152.0/22 maxlen: 23 143.188.156.0/22 maxlen: 23 143.188.160.0/23 maxlen: 26 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.crl rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 06:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A5D4, serialNumber=66134DA1BFEDAC0C919D26B1F7F9E168AF9D2B4E Validity Not Before: Sep 23 07:56:15 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a598e3-8991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d3:4c:11:05:d4:d1:d8:18:fb:ef:0e:b5:fe: 9f:54:59:8f:33:a9:3e:aa:f5:c7:12:51:ec:34:e9: 78:8d:77:4a:74:af:e1:02:87:b5:86:9e:97:2c:49: 49:49:86:da:22:88:5e:14:90:fe:67:7b:b1:fd:ba: d6:b8:61:82:fe:06:90:7d:a5:1e:7c:80:e3:77:1e: ce:c4:28:d1:87:ce:f8:ac:96:c8:8c:fa:29:24:d9: 22:82:60:b6:26:9e:0f:ae:20:07:2f:60:a6:d9:d4: 23:c4:22:e0:f9:19:2f:b1:89:43:e8:71:ba:9e:da: 7e:cc:fa:36:c9:fb:e0:76:d5:bc:cc:57:bc:c3:f6: cc:8e:20:5d:2b:50:88:e6:ea:bb:f4:45:74:95:e2: a1:c0:a8:42:49:71:20:3c:47:12:a7:9b:85:fb:dc: 73:a4:45:ac:ac:e8:a5:f5:e2:f7:d4:1d:b4:79:f1: 26:2d:a2:b4:9f:42:87:ec:a5:a7:be:7d:39:22:82: 6a:dd:11:6b:9c:02:a2:ce:c3:26:19:b8:5b:2a:56: 7a:3c:f5:e4:f1:ba:10:d2:25:d9:1d:d1:07:7e:7a: 70:66:fd:e7:d1:ec:ed:9a:04:24:96:00:e3:9e:fa: 17:b5:ea:90:68:59:8e:79:dc:74:79:f0:1d:75:09: 93:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:51:85:81:06:10:80:6E:69:66:B9:BD:15:A1:EB:1A:BD:B0:8A:38 X509v3 Authority Key Identifier: keyid:66:13:4D:A1:BF:ED:AC:0C:91:9D:26:B1:F7:F9:E1:68:AF:9D:2B:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/015250F6309311F084231321C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 143.188.148.0-143.188.161.255 Signature Algorithm: sha256WithRSAEncryption 4f:ba:de:b4:2f:23:7a:93:fc:9b:7b:36:ea:cd:11:94:5d:f0: 5e:d2:25:89:f7:57:e9:9d:72:e8:5f:5c:10:0a:8c:72:12:fb: 31:7e:56:7b:10:65:ff:62:b6:d7:17:a5:5f:3e:85:4c:ca:7f: 12:dd:27:cb:a3:3e:db:52:11:81:99:14:57:e7:47:ff:c6:5c: 8d:56:dc:75:c8:0f:c9:07:77:7b:23:b1:db:5d:9f:7d:c0:b1: ac:76:66:14:f8:33:84:2e:3c:4f:fe:c9:ba:3b:08:b5:c9:80: 8d:c6:64:9f:fa:c6:ba:80:28:76:bb:1a:ed:1c:ed:60:88:58: e9:f4:22:c0:e6:a8:9d:57:08:3c:e7:e3:4f:f1:87:66:ea:d5: f9:5f:04:be:c2:59:a0:65:05:55:64:c6:78:84:56:50:b8:48: 63:a3:a0:d1:dc:80:39:cc:92:84:b1:8e:21:8e:ef:91:5c:c7: 58:3d:e4:cb:28:57:bf:b4:9b:54:69:bb:05:f9:09:3c:ee:99: 27:b0:da:72:88:7f:7d:2d:f5:6c:db:f9:c9:80:b1:0a:4e:22: 21:4e:54:48:f3:f8:36:f0:f3:02:9e:b6:4e:aa:d2:18:e4:97: 9e:27:7c:89:bb:cd:c5:19:a1:53:48:31:0b:0a:cc:90:a4:84: 36:a9:8a:20 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE1RDQxMTAvBgNVBAUTKDY2MTM0REExQkZFREFDMEM5MTlEMjZCMUY3RjlFMTY4 QUY5RDJCNEUwHhcNMjUwOTIzMDc1NjE1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OThlMy04OTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19NMEQXU0dgY++8Otf6fVFmPM6k+qvXHElHsNOl4jXdKdK/hAoe1hp6XLElJ SYbaIoheFJD+Z3ux/brWuGGC/gaQfaUefIDjdx7OxCjRh874rJbIjPopJNkigmC2 Jp4PriAHL2Cm2dQjxCLg+RkvsYlD6HG6ntp+zPo2yfvgdtW8zFe8w/bMjiBdK1CI 5uq79EV0leKhwKhCSXEgPEcSp5uF+9xzpEWsrOil9eL31B20efEmLaK0n0KH7KWn vn05IoJq3RFrnAKizsMmGbhbKlZ6PPXk8boQ0iXZHdEHfnpwZv3n0eztmgQklgDj nvoXteqQaFmOedx0efAddQmT4wIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFMlRhYEG EIBuaWa5vRWh6xq9sIo4MB8GA1UdIwQYMBaAFGYTTaG/7awMkZ0msff54WivnStO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTVENC82NTBCNERFOEYz Q0UxMUVGOTE0RUY2NDRDNEY5QUUwMi9aaE5Ob2JfdHJBeVJuU2F4OV9uaGFLLWRL MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poTk5vYl90ckF5Um5TYXg5X25oYUstZEswNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkE1RDQvNjUwQjRERThGM0NFMTFFRjkxNEVGNjQ0QzRGOUFFMDIvMDE1MjUwRjYz MDkzMTFGMDg0MjMxMzIxQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAKPvJQDBAGPvKAwDQYJKoZIhvcNAQELBQADggEBAE+63rQvI3qT /Jt7NurNEZRd8F7SJYn3V+mdcuhfXBAKjHIS+zF+VnsQZf9ittcXpV8+hUzKfxLd J8ujPttSEYGZFFfnR//GXI1W3HXID8kHd3sjsdtdn33Asax2ZhT4M4QuPE/+ybo7 CLXJgI3GZJ/6xrqAKHa7Gu0c7WCIWOn0IsDmqJ1XCDzn40/xh2bq1flfBL7CWaBl BVVkxniEVlC4SGOjoNHcgDnMkoSxjiGO75Fcx1g95MsoV7+0m1RpuwX5CTzumSew 2nKIf30t9Wzb+cmAsQpOIiFOVEjz+Dbw8wKetk6q0hjkl54nfIm7zcUZoVNIMQsK zJCkhDapiiA= -----END CERTIFICATE-----Generated at Wed Mar 4 19:20:14 2026 by rpki-client