$ rpki-client -vvf rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/4687D3AAD94911EEB080041BC4F9AE02.roa File: 4687D3AAD94911EEB080041BC4F9AE02.roa (raw, json) Hash identifier: rwz3fq3MaRlSnA/1ObGPfFXAkirRwtHLWQadfcMjbxQ= Subject key identifier: 98:2C:6C:0F:4A:4D:1A:7A:02:54:4D:F9:0E:15:CF:12:3F:E4:B2:45 Certificate issuer: /CN=A914400E/serialNumber=CE6C46F802B15B8CF4ADA345A8288AD6E7FA535E Certificate serial: 017C Authority key identifier: CE:6C:46:F8:02:B1:5B:8C:F4:AD:A3:45:A8:28:8A:D6:E7:FA:53:5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zmxG-AKxW4z0raNFqCiK1uf6U14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/4687D3AAD94911EEB080041BC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:16:23 +0000 ROA not before: Tue 11 Feb 2025 05:28:41 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152319 IP address blocks: 157.10.132.0/23 maxlen: 23 157.10.132.0/24 maxlen: 24 157.10.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/zmxG-AKxW4z0raNFqCiK1uf6U14.crl rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/zmxG-AKxW4z0raNFqCiK1uf6U14.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zmxG-AKxW4z0raNFqCiK1uf6U14.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:18:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914400E, serialNumber=CE6C46F802B15B8CF4ADA345A8288AD6E7FA535E Validity Not Before: Feb 11 05:28:41 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a5a9c7-cb68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:09:70:ff:9f:bf:d6:1c:f2:ec:06:ad:95:59: e7:93:8f:66:23:a8:be:4d:88:cb:0c:44:56:1f:49: a7:ec:3b:9a:c2:eb:83:3d:5d:88:75:91:b1:e9:f8: d0:78:90:b5:84:ad:c3:a3:56:79:72:39:9b:f1:39: 2d:eb:35:c7:4b:bf:3c:f8:9d:b0:90:e1:7a:17:35: f9:98:5a:7e:1e:11:62:14:1b:0e:fa:98:7c:e1:8a: 74:3a:59:ae:5e:48:7f:b7:f9:f9:01:fd:f8:27:c9: 68:b5:3b:2a:2b:30:c1:2c:c5:2a:c3:d3:fb:d3:b6: f8:8d:91:2e:cf:90:fd:a4:fc:b9:10:32:cb:68:8d: b3:ff:ec:4e:c3:54:07:64:06:df:98:d9:42:47:98: c2:12:df:7f:2b:cf:f0:28:e6:b6:9a:a2:50:03:d8: d5:cd:6d:2b:e2:af:ef:a1:e7:6f:44:ab:49:2f:d5: 5f:a4:77:be:a4:47:e9:5a:ce:ab:90:72:49:c1:ac: fb:d8:4c:57:4b:8e:a4:28:bc:c6:09:d5:57:de:6b: 65:11:a9:bb:f6:2b:b9:bd:85:f4:01:ab:26:62:1a: f3:91:f8:88:3c:34:66:74:e3:97:44:1f:4b:2d:a6: 79:66:7e:7a:6a:ec:c1:ad:ad:7c:73:21:4c:36:9e: 34:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:2C:6C:0F:4A:4D:1A:7A:02:54:4D:F9:0E:15:CF:12:3F:E4:B2:45 X509v3 Authority Key Identifier: keyid:CE:6C:46:F8:02:B1:5B:8C:F4:AD:A3:45:A8:28:8A:D6:E7:FA:53:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/zmxG-AKxW4z0raNFqCiK1uf6U14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zmxG-AKxW4z0raNFqCiK1uf6U14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/4687D3AAD94911EEB080041BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.132.0/23 Signature Algorithm: sha256WithRSAEncryption 75:6f:e5:b4:64:a8:c7:f6:79:51:a2:40:e4:2e:de:ee:39:0b: ae:92:10:fd:e1:5e:29:85:00:cb:23:e5:07:87:3e:09:e4:04: 42:ce:5d:ed:9a:a5:e9:20:57:c4:a3:98:5e:00:30:76:8c:b4: 03:1d:f0:b6:15:66:5b:5e:46:f4:e5:7f:83:30:ce:14:52:bc: 99:76:76:d7:a7:24:a0:71:65:98:13:61:1b:3c:d3:7b:52:07: 2e:0c:c6:ed:5e:d8:34:e2:cd:28:b5:a0:42:95:16:77:5d:8d: 29:bf:54:68:db:a1:b6:6e:ee:7b:15:cf:a3:7b:78:6f:f7:fe: ea:a9:1a:47:9a:74:7b:21:3d:b3:2d:ca:ec:c1:64:1c:4b:52: 11:90:90:3e:77:b6:cd:aa:99:fa:ee:3b:e9:3f:79:17:33:24: c0:f0:b5:e5:49:e3:e5:1f:76:d3:de:b6:be:3e:5e:31:70:e6: fe:16:de:51:69:3b:5a:de:33:5c:bb:d0:43:f5:9c:35:56:ba: 45:51:6a:77:4a:e0:f1:19:8e:ef:c5:77:64:d2:a5:7c:2c:6b: a0:5b:d0:ba:ef:f2:f3:c4:d7:15:85:db:5f:20:41:b5:71:01: cb:69:d0:01:bf:7c:f1:26:36:92:14:5e:4e:c6:92:91:9b:ff: 7b:f3:08:6c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQwMEUxMTAvBgNVBAUTKENFNkM0NkY4MDJCMTVCOENGNEFEQTM0NUE4Mjg4QUQ2 RTdGQTUzNUUwHhcNMjUwMjExMDUyODQxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTljNy1jYjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Alw/5+/1hzy7AatlVnnk49mI6i+TYjLDERWH0mn7DuawuuDPV2IdZGx6fjQ eJC1hK3Do1Z5cjmb8Tkt6zXHS788+J2wkOF6FzX5mFp+HhFiFBsO+ph84Yp0Olmu Xkh/t/n5Af34J8lotTsqKzDBLMUqw9P707b4jZEuz5D9pPy5EDLLaI2z/+xOw1QH ZAbfmNlCR5jCEt9/K8/wKOa2mqJQA9jVzW0r4q/voedvRKtJL9VfpHe+pEfpWs6r kHJJwaz72ExXS46kKLzGCdVX3mtlEam79iu5vYX0AasmYhrzkfiIPDRmdOOXRB9L LaZ5Zn56auzBra18cyFMNp40RQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJgsbA9K TRp6AlRN+Q4VzxI/5LJFMB8GA1UdIwQYMBaAFM5sRvgCsVuM9K2jRagoitbn+lNe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDAwRS9DNTJCMDI2NEQ5 NDgxMUVFQkEzNEI0N0JDNEY5QUUwMi96bXhHLUFLeFc0ejByYU5GcUNpSzF1ZjZV MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pteEctQUt4VzR6MHJhTkZxQ2lLMXVmNlUxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQwMEUvQzUyQjAyNjREOTQ4MTFFRUJBMzRCNDdCQzRGOUFFMDIvNDY4N0QzQUFE OTQ5MTFFRUIwODAwNDFCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQqEMA0GCSqGSIb3DQEBCwUAA4IBAQB1b+W0ZKjH9nlRokDkLt7u OQuukhD94V4phQDLI+UHhz4J5ARCzl3tmqXpIFfEo5heADB2jLQDHfC2FWZbXkb0 5X+DMM4UUryZdnbXpySgcWWYE2EbPNN7UgcuDMbtXtg04s0otaBClRZ3XY0pv1Ro 26G2bu57Fc+je3hv9/7qqRpHmnR7IT2zLcrswWQcS1IRkJA+d7bNqpn67jvpP3kX MyTA8LXlSePlH3bT3ra+Pl4xcOb+Ft5RaTta3jNcu9BD9Zw1VrpFUWp3SuDxGY7v xXdk0qV8LGugW9C67/LzxNcVhdtfIEG1cQHLadABv3zxJjaSFF5OxpKRm/978whs -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:07 2026 by rpki-client