$ rpki-client -vvf rpki.apnic.net/member_repository/A9154340/F8E7607CA67711EB8B4BB13EC4F9AE02/8BF559B2A70111EBBAA7C612C4F9AE02.roa File: 8BF559B2A70111EBBAA7C612C4F9AE02.roa (raw, json) Hash identifier: 3oHRiFR8R1sFPoxVEWDvNZIXx0WOD5JxOa5Uz3vjTSA= Subject key identifier: 33:09:4F:96:62:CC:35:9B:1B:0D:FB:30:D1:8A:34:5D:87:DA:3E:32 Certificate issuer: /CN=A9154340/serialNumber=196CEE25F7D1B7EA708CE1887337143392CE471C Certificate serial: 06CA Authority key identifier: 19:6C:EE:25:F7:D1:B7:EA:70:8C:E1:88:73:37:14:33:92:CE:47:1C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GWzuJffRt-pwjOGIczcUM5LORxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154340/F8E7607CA67711EB8B4BB13EC4F9AE02/8BF559B2A70111EBBAA7C612C4F9AE02.roa Signing time: Mon 18 May 2026 22:28:02 +0000 ROA not before: Mon 18 May 2026 22:28:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142002 IP address blocks: 165.154.192.0/24 maxlen: 24 165.154.193.0/24 maxlen: 24 165.154.194.0/24 maxlen: 24 165.154.195.0/24 maxlen: 24 165.154.196.0/24 maxlen: 24 165.154.197.0/24 maxlen: 24 165.154.198.0/24 maxlen: 24 165.154.199.0/24 maxlen: 24 165.154.200.0/24 maxlen: 24 165.154.201.0/24 maxlen: 24 165.154.202.0/24 maxlen: 24 165.154.203.0/24 maxlen: 24 165.154.204.0/24 maxlen: 24 165.154.205.0/24 maxlen: 24 165.154.206.0/24 maxlen: 24 165.154.207.0/24 maxlen: 24 165.154.208.0/24 maxlen: 24 165.154.209.0/24 maxlen: 24 165.154.210.0/24 maxlen: 24 165.154.211.0/24 maxlen: 24 165.154.212.0/24 maxlen: 24 165.154.213.0/24 maxlen: 24 165.154.214.0/24 maxlen: 24 165.154.215.0/24 maxlen: 24 165.154.216.0/24 maxlen: 24 165.154.217.0/24 maxlen: 24 165.154.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154340/F8E7607CA67711EB8B4BB13EC4F9AE02/GWzuJffRt-pwjOGIczcUM5LORxw.crl rsync://rpki.apnic.net/member_repository/A9154340/F8E7607CA67711EB8B4BB13EC4F9AE02/GWzuJffRt-pwjOGIczcUM5LORxw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GWzuJffRt-pwjOGIczcUM5LORxw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 22:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1738 (0x6ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154340, serialNumber=196CEE25F7D1B7EA708CE1887337143392CE471C Validity Not Before: May 18 22:28:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a0b9272-90e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:d0:06:42:03:39:0b:36:b9:12:55:d0:82:3c: 7b:39:44:0d:c0:50:43:e6:07:21:2f:cd:e8:d6:b9: 4e:86:93:84:5b:1d:bb:88:76:a8:e6:2c:ba:b0:2f: e0:05:f1:f5:36:1d:0f:bf:54:20:c7:5a:14:6a:e0: 1c:bc:d4:c7:26:a8:ba:4b:d6:35:43:79:3c:a2:80: c1:04:e8:96:0d:03:85:8e:07:64:8e:29:83:ef:8a: a7:29:d7:b0:c7:56:ff:27:7d:20:43:b9:76:94:08: a7:82:e1:3a:f0:42:32:6d:d0:20:c0:8a:e2:38:4a: 6f:47:f0:f2:3d:a0:e2:36:c0:09:ce:70:01:30:69: cc:6a:a6:33:e5:5c:49:55:1e:4a:6b:d9:92:fd:7a: 81:e3:d6:c0:88:4f:e4:ae:ac:89:f8:af:b2:73:eb: 76:7c:25:83:1a:5d:8a:02:67:74:65:7f:4b:44:0a: dc:21:ca:39:85:e9:e3:8e:cb:1a:7f:06:54:60:6d: 68:a6:86:b1:e4:2b:90:3b:ec:2c:99:27:c6:d1:ff: c9:ce:bd:42:63:03:64:25:b2:3d:2d:d4:fd:52:a5: 9d:20:f9:6b:02:d2:33:de:3d:2c:55:7b:53:20:ba: d8:47:cd:11:6d:7d:23:0e:b3:2f:b8:16:43:2a:7d: a0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:09:4F:96:62:CC:35:9B:1B:0D:FB:30:D1:8A:34:5D:87:DA:3E:32 X509v3 Authority Key Identifier: keyid:19:6C:EE:25:F7:D1:B7:EA:70:8C:E1:88:73:37:14:33:92:CE:47:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154340/F8E7607CA67711EB8B4BB13EC4F9AE02/GWzuJffRt-pwjOGIczcUM5LORxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GWzuJffRt-pwjOGIczcUM5LORxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154340/F8E7607CA67711EB8B4BB13EC4F9AE02/8BF559B2A70111EBBAA7C612C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.154.192.0-165.154.217.255 165.154.224.0/19 Signature Algorithm: sha256WithRSAEncryption a4:de:69:13:d1:fd:40:97:43:3a:a2:5e:86:40:6d:bd:d4:fe: 10:44:a7:a8:67:f0:ea:66:93:ab:b3:b0:ca:8a:cb:d4:e3:2d: 89:12:f9:b3:c1:41:d5:2a:da:dd:43:08:3b:b7:bf:ac:22:da: 8b:17:d4:91:fe:63:24:7e:9a:5a:1c:65:df:be:7e:f7:7e:15: 05:98:c8:5e:9e:46:59:2a:2c:86:ca:ba:01:8e:2d:b1:79:1e: 4a:ba:54:36:70:05:16:8a:72:ff:c1:b4:81:7f:f2:66:5d:f7: f1:5c:ca:de:7c:90:7c:d1:a0:4b:1b:c3:8a:ec:0b:31:aa:25: 83:9d:e4:f3:e9:f1:f1:0a:98:d2:6d:35:01:68:f5:5f:75:75: 74:e5:fb:3e:ec:e0:0c:e9:8d:f2:6e:08:64:95:18:8a:b7:1d: f6:de:3d:d7:d8:69:ee:c4:61:41:e1:fb:65:44:0d:dc:eb:b9: 1c:f1:11:56:d5:ef:d5:d5:58:63:6c:95:58:be:29:c7:be:87: 41:9e:85:1e:62:86:de:1a:dc:f2:38:7e:d7:ef:ea:f0:09:f1: 1e:7a:c0:07:40:96:44:fa:42:04:61:6f:0e:e2:83:ac:7d:d0: 5c:6d:a9:0c:11:21:7f:c1:63:d0:a0:84:38:38:7b:2b:ab:52: 67:e8:2a:68 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICBsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNDAxMTAvBgNVBAUTKDE5NkNFRTI1RjdEMUI3RUE3MDhDRTE4ODczMzcxNDMz OTJDRTQ3MUMwHhcNMjYwNTE4MjIyODAyWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBiOTI3Mi05MGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAidAGQgM5Cza5ElXQgjx7OUQNwFBD5gchL83o1rlOhpOEWx27iHao5iy6sC/g BfH1Nh0Pv1Qgx1oUauAcvNTHJqi6S9Y1Q3k8ooDBBOiWDQOFjgdkjimD74qnKdew x1b/J30gQ7l2lAinguE68EIybdAgwIriOEpvR/DyPaDiNsAJznABMGnMaqYz5VxJ VR5Ka9mS/XqB49bAiE/krqyJ+K+yc+t2fCWDGl2KAmd0ZX9LRArcIco5henjjssa fwZUYG1opoax5CuQO+wsmSfG0f/Jzr1CYwNkJbI9LdT9UqWdIPlrAtIz3j0sVXtT ILrYR80RbX0jDrMvuBZDKn2gUwIDAQABo4ICbjCCAmowHQYDVR0OBBYEFDMJT5Zi zDWbGw37MNGKNF2H2j4yMB8GA1UdIwQYMBaAFBls7iX30bfqcIzhiHM3FDOSzkcc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM0MC9GOEU3NjA3Q0E2 NzcxMUVCOEI0QkIxM0VDNEY5QUUwMi9HV3p1SmZmUnQtcHdqT0dJY3pjVU01TE9S eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0dXenVKZmZSdC1wd2pPR0ljemNVTTVMT1J4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQzNDAvRjhFNzYwN0NBNjc3MTFFQjhCNEJCMTNFQzRGOUFFMDIvOEJGNTU5QjJB NzAxMTFFQkJBQTdDNjEyQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBAalmsADBAGlmtgDBAWlmuAwDQYJKoZIhvcNAQELBQADggEBAKTe aRPR/UCXQzqiXoZAbb3U/hBEp6hn8Opmk6uzsMqKy9TjLYkS+bPBQdUq2t1DCDu3 v6wi2osX1JH+YyR+mlocZd++fvd+FQWYyF6eRlkqLIbKugGOLbF5Hkq6VDZwBRaK cv/BtIF/8mZd9/Fcyt58kHzRoEsbw4rsCzGqJYOd5PPp8fEKmNJtNQFo9V91dXTl +z7s4AzpjfJuCGSVGIq3HfbePdfYae7EYUHh+2VEDdzruRzxEVbV79XVWGNslVi+ Kce+h0GehR5iht4a3PI4ftfv6vAJ8R56wAdAlkT6QgRhbw7ig6x90FxtqQwRIX/B Y9CghDg4eyurUmfoKmg= -----END CERTIFICATE-----Generated at Tue Jun 2 21:24:11 2026 by rpki-client