$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/45322DB8BF9111F0B4CD4C4FC4F9AE02.roa File: 45322DB8BF9111F0B4CD4C4FC4F9AE02.roa (raw, json) Hash identifier: rv9K2z3jLDHYayjuD/ofwi0jQtAT/5qT98rJ5cSCRIQ= Subject key identifier: D9:1B:D2:87:4C:03:D0:C1:CC:2E:69:0E:B8:53:48:80:48:F2:D6:2A Certificate issuer: /CN=A915FDD9/serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Certificate serial: 011A Authority key identifier: 96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/45322DB8BF9111F0B4CD4C4FC4F9AE02.roa Signing time: Mon 02 Mar 2026 11:29:54 +0000 ROA not before: Sat 07 Feb 2026 06:25:00 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 153531 IP address blocks: 161.248.218.0/24 maxlen: 24 161.248.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 05:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Validity Not Before: Feb 7 06:25:00 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a574b2-0241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:ad:bb:57:09:6c:24:d0:92:32:70:10:4f:82: 4a:c4:90:aa:45:9b:6f:2e:e9:1f:0a:9a:c5:43:f3: c9:f9:5f:43:f9:9f:02:50:41:e4:b0:66:14:41:bd: ee:10:2f:02:79:97:61:ae:ec:17:9b:f6:fe:a2:65: eb:24:30:f4:09:b9:1b:98:43:10:96:64:10:21:f6: 60:9e:20:eb:27:c9:ff:30:d6:52:f6:c1:94:8a:24: 94:28:4e:4a:fc:4b:32:c5:4c:78:56:83:38:2a:4c: 84:98:14:73:00:18:53:77:a2:7d:b3:49:d6:8a:60: a6:4f:e5:a8:c1:12:82:ec:08:d6:0d:c1:0c:00:6c: 19:e2:a6:b7:e7:8b:05:dc:97:19:5c:06:a7:cf:04: 06:aa:50:42:65:b1:0d:97:71:eb:06:ab:dc:f2:17: b2:4c:2f:1d:cd:65:bf:c9:98:3c:3f:73:7a:89:0d: 73:a0:19:37:bd:71:8f:16:93:98:bd:3e:6b:fc:b4: e5:92:33:83:64:46:53:2c:78:10:88:b1:be:04:e4: 05:f3:98:02:a9:a2:8a:52:4f:23:98:95:57:69:a5: e8:e6:f1:a2:bb:30:c8:c7:78:d5:bf:3d:87:22:41: e6:92:7b:1f:dc:e1:17:d6:20:0d:12:9d:7d:2a:1e: ab:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:1B:D2:87:4C:03:D0:C1:CC:2E:69:0E:B8:53:48:80:48:F2:D6:2A X509v3 Authority Key Identifier: keyid:96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/45322DB8BF9111F0B4CD4C4FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.218.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:b3:36:2e:18:35:c4:e3:04:dc:46:14:cd:09:e4:3f:59:bd: 32:a9:f9:ab:51:17:a0:af:31:ee:c2:da:99:88:8b:b3:eb:81: d4:f8:03:06:fc:24:e0:eb:7e:15:19:47:bf:4d:0a:1a:18:5a: e1:18:99:ad:d7:e2:ae:4b:79:1d:00:cc:06:91:61:d6:88:79: 63:7f:b7:61:ad:fe:b0:11:1f:61:c8:7a:29:22:08:d2:02:1b: fd:ad:68:df:20:25:a3:bc:cd:07:9b:2c:4e:6a:29:c8:9b:54: e2:02:21:22:22:b6:dd:53:8b:8c:9f:97:0b:73:a2:f0:2a:3b: 25:dc:bd:9f:66:66:96:c9:98:23:db:19:13:6c:34:7e:d6:0d: 6e:f7:2a:b1:78:9e:c2:45:3c:ad:6e:1d:0e:39:23:06:3b:13: eb:ec:f7:ec:19:8d:fc:37:4b:d5:4f:7d:8d:86:53:30:32:20: 32:a9:c8:c8:74:9b:59:cf:7a:f4:79:10:a6:7d:f0:b9:c8:99: 0c:d3:2f:1d:6c:bf:5a:71:53:b9:79:19:87:f2:aa:da:5b:26: c2:ce:65:f8:37:e0:64:c6:f3:2b:f8:ce:6f:dc:b7:65:fc:db: 05:62:b0:7b:11:90:c3:a3:cf:8c:d8:c9:ef:b1:ae:05:87:d9: 9f:48:e4:f9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZERDkxMTAvBgNVBAUTKDk2N0I5N0Q5RTMxMTI1MEQ4Mjk0MkQyN0U0QzVGOTBE OTgxMzgwNTgwHhcNMjYwMjA3MDYyNTAwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1NzRiMi0wMjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiK27VwlsJNCSMnAQT4JKxJCqRZtvLukfCprFQ/PJ+V9D+Z8CUEHksGYUQb3u EC8CeZdhruwXm/b+omXrJDD0CbkbmEMQlmQQIfZgniDrJ8n/MNZS9sGUiiSUKE5K /EsyxUx4VoM4KkyEmBRzABhTd6J9s0nWimCmT+WowRKC7AjWDcEMAGwZ4qa354sF 3JcZXAanzwQGqlBCZbENl3HrBqvc8heyTC8dzWW/yZg8P3N6iQ1zoBk3vXGPFpOY vT5r/LTlkjODZEZTLHgQiLG+BOQF85gCqaKKUk8jmJVXaaXo5vGiuzDIx3jVvz2H IkHmknsf3OEX1iANEp19Kh6r0QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNkb0odM A9DBzC5pDrhTSIBI8tYqMB8GA1UdIwQYMBaAFJZ7l9njESUNgpQtJ+TF+Q2YE4BY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkREOS9CNjIyRkE4QUQ2 REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9sbnVYMmVNUkpRMkNsQzBuNU1YNURaZ1Rn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xudVgyZU1SSlEyQ2xDMG41TVg1RFpnVGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUZERDkvQjYyMkZBOEFENkRFMTFFRkIwNDc0RTFCQzRGOUFFMDIvNDUzMjJEQjhC RjkxMTFGMEI0Q0Q0QzRGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofjaMA0GCSqGSIb3DQEBCwUAA4IBAQCdszYuGDXE4wTcRhTNCeQ/ Wb0yqfmrURegrzHuwtqZiIuz64HU+AMG/CTg634VGUe/TQoaGFrhGJmt1+KuS3kd AMwGkWHWiHljf7dhrf6wER9hyHopIgjSAhv9rWjfICWjvM0HmyxOainIm1TiAiEi IrbdU4uMn5cLc6LwKjsl3L2fZmaWyZgj2xkTbDR+1g1u9yqxeJ7CRTytbh0OOSMG OxPr7PfsGY38N0vVT32NhlMwMiAyqcjIdJtZz3r0eRCmffC5yJkM0y8dbL9acVO5 eRmH8qraWybCzmX4N+BkxvMr+M5v3Ldl/NsFYrB7EZDDo8+M2Mnvsa4Fh9mfSOT5 -----END CERTIFICATE-----Generated at Sat Mar 14 20:38:28 2026 by rpki-client