$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/72C9BE36950211EFAC892C5EC4F9AE02.roa File: 72C9BE36950211EFAC892C5EC4F9AE02.roa (raw, json) Hash identifier: ye8jq88ep0wSruy1WtzE0bv/JRbtY6NOkRlK24kmsxo= Subject key identifier: 20:05:76:1E:3E:22:CE:71:F1:51:26:E1:E4:2C:17:E3:9C:8D:9A:76 Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0C22 Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/72C9BE36950211EFAC892C5EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:48:50 +0000 ROA not before: Tue 10 Jun 2025 22:10:12 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 18004 IP address blocks: 43.152.164.0/24 maxlen: 24 43.152.165.0/24 maxlen: 24 43.175.123.0/24 maxlen: 24 43.175.198.0/24 maxlen: 24 43.175.199.0/24 maxlen: 24 43.175.200.0/24 maxlen: 24 43.175.201.0/24 maxlen: 24 240d:c010:11b::/48 maxlen: 48 240d:c010:13e::/48 maxlen: 48 240d:c010:13f::/48 maxlen: 48 240d:c010:140::/48 maxlen: 48 240d:c010:141::/48 maxlen: 48 240d:c010:151::/48 maxlen: 48 240d:c010:152::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 21:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3106 (0xc22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: Jun 10 22:10:12 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a48a12-e9d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:be:c8:ac:7f:7b:b0:f9:ad:23:47:17:b8:96: 5c:fb:b0:8a:e6:3b:73:6c:0f:ad:be:f0:53:bb:ca: 31:65:16:b8:a9:cf:e1:b4:09:8f:70:57:e7:55:ca: fa:eb:02:2e:80:81:17:02:68:cc:e0:23:99:67:49: bb:4e:c1:2d:ac:f2:83:6d:38:d4:f6:8a:e3:79:49: 90:86:43:82:af:a3:1a:89:67:a4:2c:93:2e:b1:8e: 96:67:54:ea:17:fe:27:91:26:e5:e9:14:97:75:99: 43:39:84:41:03:b5:07:57:84:a1:30:8f:49:ab:9a: 88:9d:c9:93:5e:f2:1f:20:a9:1c:82:03:b2:a7:77: df:de:9c:25:3c:fd:5c:e7:be:25:04:62:59:d6:84: 3c:b9:20:71:54:44:09:59:6f:7b:78:a3:b7:95:ef: 70:bf:2f:f9:c2:8c:3e:3e:5a:c6:4e:99:e4:6e:ae: 52:e5:ca:0d:ce:42:d6:65:ca:05:b0:61:ed:04:ed: 69:58:7c:21:c7:e9:f6:a1:ea:62:eb:92:8c:0b:ad: 84:8a:1b:7c:88:17:38:84:3e:d4:9d:ab:76:58:b5: 91:da:65:d1:95:c1:ec:f9:eb:e5:ed:e8:87:db:a9: af:7f:5b:32:0f:0a:b9:4c:62:63:c9:34:5b:a7:82: 10:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:05:76:1E:3E:22:CE:71:F1:51:26:E1:E4:2C:17:E3:9C:8D:9A:76 X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/72C9BE36950211EFAC892C5EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.152.164.0/23 43.175.123.0/24 43.175.198.0-43.175.201.255 IPv6: 240d:c010:11b::/48 240d:c010:13e::-240d:c010:141:ffff:ffff:ffff:ffff:ffff 240d:c010:151::-240d:c010:152:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 93:b1:e0:e7:1d:43:36:d3:14:c2:b1:85:05:97:71:91:c1:b6: 6d:d2:6d:6d:64:d4:99:51:a9:b6:8b:a2:32:a8:68:18:eb:36: 61:a5:4c:e4:06:93:0e:c6:08:3b:7d:bc:4e:70:66:c8:5a:66: ab:f8:36:88:0f:1e:a0:ba:26:50:e3:7c:28:ea:f5:0b:92:da: 40:e5:dd:2b:c9:1b:03:5a:0c:ef:2e:54:d4:6b:50:f4:e7:5e: 37:b8:1a:26:ae:9d:2b:a3:86:44:f1:ea:d7:eb:bc:38:39:39: 39:0d:b8:1d:08:38:ab:9a:95:c4:23:1f:22:ce:13:52:72:aa: 68:8c:8d:67:18:b6:fa:74:26:d4:6d:e0:c3:aa:3f:f3:ee:b1: 29:44:98:4e:cc:ac:1e:7c:bd:f3:69:68:b9:aa:1d:4e:c1:1d: 06:36:c1:63:6a:bd:25:10:74:dc:38:5f:6a:d5:d3:ee:32:90: 0e:6a:81:ad:c1:68:bd:a2:f9:f3:ac:65:b2:2d:2d:a3:70:70: f8:17:5f:d5:8d:e5:a7:71:6a:c8:ee:cb:12:81:45:d7:e3:17: 89:3a:c3:8d:8b:72:ea:8c:41:e4:ba:f1:3c:20:65:d8:fd:55: c6:e0:df:ae:88:fa:e4:b5:6a:55:cd:f4:b0:09:38:c6:53:7a: 17:0a:aa:16 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICDCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjUwNjEwMjIxMDEyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGExMi1lOWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwr7IrH97sPmtI0cXuJZc+7CK5jtzbA+tvvBTu8oxZRa4qc/htAmPcFfnVcr6 6wIugIEXAmjM4COZZ0m7TsEtrPKDbTjU9orjeUmQhkOCr6MaiWekLJMusY6WZ1Tq F/4nkSbl6RSXdZlDOYRBA7UHV4ShMI9Jq5qIncmTXvIfIKkcggOyp3ff3pwlPP1c 574lBGJZ1oQ8uSBxVEQJWW97eKO3le9wvy/5wow+PlrGTpnkbq5S5coNzkLWZcoF sGHtBO1pWHwhx+n2oepi65KMC62Eiht8iBc4hD7Unat2WLWR2mXRlcHs+evl7eiH 26mvf1syDwq5TGJjyTRbp4IQCwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFCAFdh4+ Is5x8VEm4eQsF+OcjZp2MB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdENjcvNjlFNkMxNkE0NDJBMTFFQjk1OTlBRDM4QzRGOUFFMDIvNzJDOUJFMzY5 NTAyMTFFRkFDODkyQzVFQzRGOUFFMDIucm9hMGwGCCsGAQUFBwEHAQH/BF0wWzAg BAIAATAaAwQBK5ikAwQAK697MAwDBAErr8YDBAErr8gwNwQCAAIwMQMHACQNwBAB GzASAwcBJA3AEAE+AwcBJA3AEAFAMBIDBwAkDcAQAVEDBwAkDcAQAVIwDQYJKoZI hvcNAQELBQADggEBAJOx4OcdQzbTFMKxhQWXcZHBtm3SbW1k1JlRqbaLojKoaBjr NmGlTOQGkw7GCDt9vE5wZshaZqv4NogPHqC6JlDjfCjq9QuS2kDl3SvJGwNaDO8u VNRrUPTnXje4GiaunSujhkTx6tfrvDg5OTkNuB0IOKualcQjHyLOE1JyqmiMjWcY tvp0JtRt4MOqP/PusSlEmE7MrB58vfNpaLmqHU7BHQY2wWNqvSUQdNw4X2rV0+4y kA5qga3BaL2i+fOsZbItLaNwcPgXX9WN5adxasjuyxKBRdfjF4k6w42LcuqMQeS6 8TwgZdj9Vcbg366I+uS1alXN9LAJOMZTehcKqhY= -----END CERTIFICATE-----Generated at Fri Mar 13 08:40:27 2026 by rpki-client