$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF9C/C4FEC288D3EA11EFA66C4760C4F9AE02/08476846D3EC11EFBFE6E864C4F9AE02.roa File: 08476846D3EC11EFBFE6E864C4F9AE02.roa (raw, json) Hash identifier: kB84pKyx8bpCK91KFQ/GpOuFFKtpC4+c+BC5HprgaaY= Subject key identifier: AC:94:05:D9:8B:38:18:6C:54:94:7D:AA:06:5A:99:33:BD:95:32:CA Certificate issuer: /CN=A913EF9C/serialNumber=B880B8DBD7082CD918B6217BDEA097584591DBDD Certificate serial: DB Authority key identifier: B8:80:B8:DB:D7:08:2C:D9:18:B6:21:7B:DE:A0:97:58:45:91:DB:DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uIC429cILNkYtiF73qCXWEWR290.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EF9C/C4FEC288D3EA11EFA66C4760C4F9AE02/08476846D3EC11EFBFE6E864C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:15:37 +0000 ROA not before: Fri 19 Dec 2025 05:25:47 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 153390 IP address blocks: 160.191.158.0/23 maxlen: 23 160.191.158.0/24 maxlen: 24 160.191.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EF9C/C4FEC288D3EA11EFA66C4760C4F9AE02/uIC429cILNkYtiF73qCXWEWR290.crl rsync://rpki.apnic.net/member_repository/A913EF9C/C4FEC288D3EA11EFA66C4760C4F9AE02/uIC429cILNkYtiF73qCXWEWR290.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uIC429cILNkYtiF73qCXWEWR290.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 06:16:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EF9C, serialNumber=B880B8DBD7082CD918B6217BDEA097584591DBDD Validity Not Before: Dec 19 05:25:47 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a41fd9-decf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:16:6d:23:d9:6e:e5:38:4c:3c:9c:5f:75:27: c4:21:ac:01:8a:46:1e:c0:09:0e:d4:3c:d9:85:24: d5:eb:99:21:33:42:83:27:51:e3:02:15:0b:65:ed: 30:7d:9d:a7:14:e1:e6:2b:95:9c:a1:c4:72:02:8c: 34:83:58:95:68:74:c6:e9:25:64:88:b7:df:74:ff: c5:13:6a:a8:7f:02:ea:2d:20:fb:b5:42:cb:62:40: a4:dc:ad:cc:3d:ab:1f:e6:44:e4:c1:fc:b9:5a:cc: 86:7a:e2:14:3c:29:09:a7:66:10:e9:29:08:7e:6e: 51:84:17:2a:9e:3c:05:80:f8:9b:69:a9:76:09:44: 53:91:0b:d6:58:37:2f:28:11:28:ea:91:af:7d:6b: 37:35:ee:2f:c4:b4:f0:92:28:bc:2e:b2:d7:3b:00: 35:a5:af:f5:e7:9c:7f:32:22:94:c9:ec:91:52:44: 3c:64:a6:89:99:9f:a2:a6:1c:60:69:9a:b0:ee:ba: 1f:08:a0:6e:3a:64:5e:e1:65:53:c4:29:86:c2:0b: 11:2f:4b:ac:00:76:9d:19:64:50:be:4d:fc:24:0f: 80:f5:85:78:42:b4:34:db:9f:35:a9:49:20:74:98: b5:f3:66:78:1d:31:61:95:95:60:13:8f:1b:5a:3c: a9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:94:05:D9:8B:38:18:6C:54:94:7D:AA:06:5A:99:33:BD:95:32:CA X509v3 Authority Key Identifier: keyid:B8:80:B8:DB:D7:08:2C:D9:18:B6:21:7B:DE:A0:97:58:45:91:DB:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EF9C/C4FEC288D3EA11EFA66C4760C4F9AE02/uIC429cILNkYtiF73qCXWEWR290.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uIC429cILNkYtiF73qCXWEWR290.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF9C/C4FEC288D3EA11EFA66C4760C4F9AE02/08476846D3EC11EFBFE6E864C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.191.158.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:b9:2d:04:4f:6b:a0:a3:d0:9f:08:5c:46:07:a1:35:95:42: fe:26:6e:5c:8a:9b:b9:73:67:15:d9:c4:02:ac:99:36:bb:eb: 3f:78:61:13:28:ac:44:41:7e:70:89:08:24:55:7c:a1:67:c8: d0:06:41:76:81:46:06:19:24:20:c9:4b:f6:53:93:af:a3:a5: e4:f7:d8:54:8b:cd:33:ce:e5:82:bd:fe:65:c9:e9:9b:15:f2: 1d:30:f6:99:90:32:a8:bc:05:b3:2d:32:7b:27:5d:9e:49:70: e2:ab:a8:5a:0d:a8:a9:f2:0b:99:0f:3e:75:cb:59:e9:a9:86: d7:d0:08:6f:ec:55:78:7e:e8:63:ca:7f:76:8d:f2:10:c0:12: ab:27:69:4b:a7:4c:0a:2a:4f:77:d4:2b:7b:99:48:91:d7:1d: 0a:b7:55:7f:e3:88:86:d0:da:49:43:c6:f8:71:4c:26:82:2f: df:f4:22:e2:04:c9:33:d5:eb:4c:85:6c:ff:47:46:ba:df:dd: 30:10:cd:39:51:ce:cd:bb:fa:1a:c4:7e:30:26:0f:0c:e7:57: c8:19:08:5b:27:60:51:8e:f5:af:de:02:33:a3:c8:78:b8:bb: 18:1f:23:4f:37:7e:fd:1e:a5:87:29:6e:ec:ee:79:c7:73:43: 2f:82:49:3b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VGOUMxMTAvBgNVBAUTKEI4ODBCOERCRDcwODJDRDkxOEI2MjE3QkRFQTA5NzU4 NDU5MURCREQwHhcNMjUxMjE5MDUyNTQ3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWZkOS1kZWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkhZtI9lu5ThMPJxfdSfEIawBikYewAkO1DzZhSTV65khM0KDJ1HjAhULZe0w fZ2nFOHmK5WcocRyAow0g1iVaHTG6SVkiLffdP/FE2qofwLqLSD7tULLYkCk3K3M Pasf5kTkwfy5WsyGeuIUPCkJp2YQ6SkIfm5RhBcqnjwFgPibaal2CURTkQvWWDcv KBEo6pGvfWs3Ne4vxLTwkii8LrLXOwA1pa/155x/MiKUyeyRUkQ8ZKaJmZ+iphxg aZqw7rofCKBuOmRe4WVTxCmGwgsRL0usAHadGWRQvk38JA+A9YV4QrQ02581qUkg dJi182Z4HTFhlZVgE48bWjyp2wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKyUBdmL OBhsVJR9qgZamTO9lTLKMB8GA1UdIwQYMBaAFLiAuNvXCCzZGLYhe96gl1hFkdvd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUY5Qy9DNEZFQzI4OEQz RUExMUVGQTY2QzQ3NjBDNEY5QUUwMi91SUM0MjljSUxOa1l0aUY3M3FDWFdFV1Iy OTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3VJQzQyOWNJTE5rWXRpRjczcUNYV0VXUjI5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0VGOUMvQzRGRUMyODhEM0VBMTFFRkE2NkM0NzYwQzRGOUFFMDIvMDg0NzY4NDZE M0VDMTFFRkJGRTZFODY0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoL+eMA0GCSqGSIb3DQEBCwUAA4IBAQA8uS0ET2ugo9CfCFxGB6E1 lUL+Jm5cipu5c2cV2cQCrJk2u+s/eGETKKxEQX5wiQgkVXyhZ8jQBkF2gUYGGSQg yUv2U5Ovo6Xk99hUi80zzuWCvf5lyembFfIdMPaZkDKovAWzLTJ7J12eSXDiq6ha Daip8guZDz51y1npqYbX0Ahv7FV4fuhjyn92jfIQwBKrJ2lLp0wKKk931Ct7mUiR 1x0Kt1V/44iG0NpJQ8b4cUwmgi/f9CLiBMkz1etMhWz/R0a6390wEM05Uc7Nu/oa xH4wJg8M51fIGQhbJ2BRjvWv3gIzo8h4uLsYHyNPN379HqWHKW7s7nnHc0Mvgkk7 -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:08 2026 by rpki-client