$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/D3D36BE0271011ECA0D7D95AC4F9AE02.roa File: D3D36BE0271011ECA0D7D95AC4F9AE02.roa (raw, json) Hash identifier: 3HHpLWwhlM54c0ygayHpZ//nfGJy4YzZlrDagN2/hEE= Subject key identifier: 70:54:2B:FC:54:0C:75:32:4A:E4:F8:DB:83:7C:E7:50:8F:4F:49:AC Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 05EF Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/D3D36BE0271011ECA0D7D95AC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:36:32 +0000 ROA not before: Fri 01 Aug 2025 00:36:00 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 198949 IP address blocks: 161.43.102.0/24 maxlen: 24 161.43.122.0/24 maxlen: 24 198.142.0.0/24 maxlen: 24 198.142.152.0/24 maxlen: 24 198.142.231.0/24 maxlen: 24 198.142.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 22:40:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1519 (0x5ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Aug 1 00:36:00 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46b0f-d3e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cf:46:8a:bc:d1:cb:32:86:a2:50:a6:58:7d: 56:9e:8b:df:57:39:d8:2a:31:78:48:51:00:ef:1e: 1a:97:dd:34:63:9b:33:62:84:73:8b:c5:77:2b:59: 65:76:1c:39:18:45:27:c4:d1:a4:9b:e8:34:b6:ff: 52:22:78:23:b8:1f:15:85:56:eb:e8:0e:2a:4e:1b: 3f:a4:ec:a7:4a:98:b9:5f:14:40:c2:05:a9:30:ed: 62:27:53:64:48:51:5b:d2:04:e4:a6:78:81:30:0e: 0d:c6:20:ff:5f:9b:f1:72:9c:f2:f3:5e:86:93:5b: 51:e7:ea:23:37:4a:80:0a:cb:6c:44:8d:90:df:53: 3d:84:e0:a3:cc:03:be:ef:21:38:9e:70:fc:a1:08: 83:ea:92:ed:43:bb:db:e4:9d:17:3e:b8:da:c4:5f: 85:71:98:95:4f:1c:fd:00:16:8f:b1:6b:a4:95:d9: 71:6f:ad:6a:4c:53:9b:23:61:d9:19:78:0e:22:3b: 6c:86:8f:da:b9:c1:e4:b5:3f:b1:0d:ea:cf:3d:fd: f1:c4:07:5a:76:05:c6:37:20:41:69:b3:36:34:33: 9d:f9:b2:a5:e9:4b:69:76:80:9c:3c:d1:e2:e7:9c: d2:5f:c8:a9:bb:7d:e9:6e:78:58:5d:03:8d:4c:d0: fb:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:54:2B:FC:54:0C:75:32:4A:E4:F8:DB:83:7C:E7:50:8F:4F:49:AC X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/D3D36BE0271011ECA0D7D95AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.43.102.0/24 161.43.122.0/24 198.142.0.0/24 198.142.152.0/24 198.142.231.0/24 198.142.235.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:d6:ea:28:c4:3b:55:0f:a8:c9:86:56:b3:16:68:2b:4d:f3: 56:c2:a5:b6:40:cc:82:af:a8:7b:1c:27:a5:75:42:de:70:75: f6:0b:9e:db:ca:84:26:9d:b8:7f:00:1b:07:3f:f8:0d:4c:f8: 3d:cc:48:66:45:88:14:4a:e3:d9:83:a2:6b:a4:6f:3a:70:97: 6b:ed:32:fb:60:24:41:03:b6:2f:82:18:6d:76:2b:29:89:8e: 3e:54:06:fb:69:55:33:4e:db:aa:a3:33:87:b6:4a:4a:fe:7b: 61:f5:aa:bf:85:25:06:20:c5:93:2e:7c:fd:d1:f6:98:0c:2a: 87:6a:79:5b:73:55:32:f0:3f:09:8e:01:fd:75:5c:76:ec:67: 7a:64:7f:da:31:ce:32:dc:94:4b:e7:c5:7a:95:94:2f:65:cd: 45:c8:8d:c2:36:82:d7:75:95:ae:39:16:b0:26:03:bc:5d:22: a6:a2:0e:5b:9c:dc:85:28:d0:cd:23:66:ef:6d:fd:53:a6:ff: 5f:c9:95:a5:e7:41:2e:51:35:62:6a:c3:65:60:54:5e:0c:b6: f8:b7:c3:b7:66:1b:ef:42:c3:5b:3a:c7:25:47:82:3c:00:ed: 28:9a:2d:f4:14:6e:c7:c0:08:bf:8f:77:b4:08:f5:f7:50:21: b6:10:03:2b -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICBe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjUwODAxMDAzNjAwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmIwZi1kM2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1c9GirzRyzKGolCmWH1WnovfVznYKjF4SFEA7x4al900Y5szYoRzi8V3K1ll dhw5GEUnxNGkm+g0tv9SIngjuB8VhVbr6A4qThs/pOynSpi5XxRAwgWpMO1iJ1Nk SFFb0gTkpniBMA4NxiD/X5vxcpzy816Gk1tR5+ojN0qACstsRI2Q31M9hOCjzAO+ 7yE4nnD8oQiD6pLtQ7vb5J0XPrjaxF+FcZiVTxz9ABaPsWukldlxb61qTFObI2HZ GXgOIjtsho/aucHktT+xDerPPf3xxAdadgXGNyBBabM2NDOd+bKl6UtpdoCcPNHi 55zSX8ipu33pbnhYXQONTND7QQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFHBUK/xU DHUySuT424N851CPT0msMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvN0E4ODY0QUNGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvRDNEMzZCRTAy NzEwMTFFQ0EwRDdEOTVBQzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAq BAIAATAkAwQAoStmAwQAoSt6AwQAxo4AAwQAxo6YAwQAxo7nAwQAxo7rMA0GCSqG SIb3DQEBCwUAA4IBAQCO1uooxDtVD6jJhlazFmgrTfNWwqW2QMyCr6h7HCeldULe cHX2C57byoQmnbh/ABsHP/gNTPg9zEhmRYgUSuPZg6JrpG86cJdr7TL7YCRBA7Yv ghhtdispiY4+VAb7aVUzTtuqozOHtkpK/nth9aq/hSUGIMWTLnz90faYDCqHanlb c1Uy8D8JjgH9dVx27Gd6ZH/aMc4y3JRL58V6lZQvZc1FyI3CNoLXdZWuORawJgO8 XSKmog5bnNyFKNDNI2bvbf1Tpv9fyZWl50EuUTViasNlYFReDLb4t8O3ZhvvQsNb OsclR4I8AO0omi30FG7HwAi/j3e0CPX3UCG2EAMr -----END CERTIFICATE-----Generated at Fri Mar 13 07:24:39 2026 by rpki-client