$ rpki-client -vvf rpki.apnic.net/member_repository/A9161B37/532A2E0AABBC11EFB3D9CE6EC4F9AE02/172F46B6B2AA11EFA6C7B35AC4F9AE02.roa File: 172F46B6B2AA11EFA6C7B35AC4F9AE02.roa (raw, json) Hash identifier: NpfMdIbhsOVnDHFHuWg5bIrLEGDX/gm1pUFVu8n7a6k= Subject key identifier: FF:B6:FB:42:01:12:5F:1D:BC:5C:86:45:14:19:BC:23:58:D2:48:79 Certificate issuer: /CN=A9161B37/serialNumber=8A80FE8A0D23BC30C664A77AA08ED90E19B591DC Certificate serial: F7 Authority key identifier: 8A:80:FE:8A:0D:23:BC:30:C6:64:A7:7A:A0:8E:D9:0E:19:B5:91:DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ioD-ig0jvDDGZKd6oI7ZDhm1kdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161B37/532A2E0AABBC11EFB3D9CE6EC4F9AE02/172F46B6B2AA11EFA6C7B35AC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:36:58 +0000 ROA not before: Tue 01 Jul 2025 07:43:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153381 IP address blocks: 198.49.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161B37/532A2E0AABBC11EFB3D9CE6EC4F9AE02/ioD-ig0jvDDGZKd6oI7ZDhm1kdw.crl rsync://rpki.apnic.net/member_repository/A9161B37/532A2E0AABBC11EFB3D9CE6EC4F9AE02/ioD-ig0jvDDGZKd6oI7ZDhm1kdw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ioD-ig0jvDDGZKd6oI7ZDhm1kdw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161B37, serialNumber=8A80FE8A0D23BC30C664A77AA08ED90E19B591DC Validity Not Before: Jul 1 07:43:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a5a08a-5753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:18:5a:06:5c:a7:5f:1e:f5:d3:b9:f3:59:a0: eb:87:21:5d:89:24:54:e7:58:58:48:2d:ea:2d:a9: 99:e2:b2:18:50:de:bc:cf:e1:77:53:5f:ae:20:e1: 10:cf:ac:6c:c0:02:e7:aa:4c:b7:1a:51:b7:4e:20: ab:0c:fd:b8:16:92:80:0b:bc:e5:75:18:33:e1:9a: 71:d7:68:5d:ef:95:da:a6:eb:db:f4:d3:e4:8b:41: e9:17:d2:f4:10:39:af:70:47:95:21:ab:82:5f:ff: 2d:a7:0c:2a:b0:32:7d:c3:fa:da:7c:6b:51:0e:ae: 43:38:21:c4:ac:d4:25:13:ff:2a:18:ef:6f:c3:4f: 56:5c:31:cf:eb:0f:60:32:e2:b6:11:a8:52:0e:f1: f0:f8:d7:b2:98:70:cc:6e:41:dd:5a:6c:2b:fd:ee: 0c:cd:41:b6:0f:cd:07:cd:c1:a7:f1:17:ec:02:35: 17:a2:11:b2:54:00:9d:fe:40:57:f2:0c:6f:34:7b: 5a:0e:ed:07:2d:06:e9:98:15:01:5b:98:f8:5e:ad: 55:bf:ac:3e:dd:58:0c:47:d8:35:05:67:f8:00:ae: 35:9b:91:3d:5c:53:a4:26:ac:53:1a:56:ec:4e:51: 62:3b:8f:ba:68:3d:cc:1f:c1:cd:16:b1:aa:eb:df: b3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B6:FB:42:01:12:5F:1D:BC:5C:86:45:14:19:BC:23:58:D2:48:79 X509v3 Authority Key Identifier: keyid:8A:80:FE:8A:0D:23:BC:30:C6:64:A7:7A:A0:8E:D9:0E:19:B5:91:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161B37/532A2E0AABBC11EFB3D9CE6EC4F9AE02/ioD-ig0jvDDGZKd6oI7ZDhm1kdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ioD-ig0jvDDGZKd6oI7ZDhm1kdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161B37/532A2E0AABBC11EFB3D9CE6EC4F9AE02/172F46B6B2AA11EFA6C7B35AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 198.49.32.0/21 Signature Algorithm: sha256WithRSAEncryption 6b:83:b9:08:d4:95:2d:86:d0:f1:b3:9d:43:9a:09:4c:ab:84: c3:6e:a2:e9:34:09:99:2d:0a:f9:4b:b4:c0:76:47:df:5e:3b: 97:22:7b:e8:e8:98:49:09:97:1c:93:b0:d3:b8:68:fc:c9:99: 79:9f:84:0c:40:a3:0e:66:59:3c:95:85:3d:05:8c:86:77:87: fe:26:fd:32:86:b4:6d:ec:77:53:bb:d2:7b:0e:71:57:2e:7f: 1f:10:e9:17:51:f6:f2:a0:59:f8:13:1a:14:e2:97:df:61:cc: 98:2e:33:ba:f8:18:95:25:90:da:35:8a:44:2a:a7:87:1f:8c: 4d:6c:a2:c7:68:b6:ec:1f:6e:78:c3:6c:9a:ea:cc:c9:d2:57: 8f:4a:86:f2:8f:c5:d6:fe:ff:e0:e3:7c:31:70:be:78:bf:0a: d3:91:20:c8:89:a0:13:b4:32:7a:8d:86:c6:78:92:5f:c9:ed: 41:6a:d7:8d:b6:fd:6e:d8:b8:fb:c3:31:22:3e:bc:b9:6d:82: 54:6f:9c:3f:a6:7d:b5:0e:3e:79:c4:9f:8b:8a:95:d8:02:12: 62:dd:66:2e:10:dc:92:28:fa:e7:17:00:c2:e7:f5:33:27:a6: 5c:a8:c8:7c:66:ef:6c:2b:95:7a:00:dd:be:87:e7:d5:42:86: c9:bb:20:15 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFCMzcxMTAvBgNVBAUTKDhBODBGRThBMEQyM0JDMzBDNjY0QTc3QUEwOEVEOTBF MTlCNTkxREMwHhcNMjUwNzAxMDc0MzI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTA4YS01NzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthhaBlynXx7107nzWaDrhyFdiSRU51hYSC3qLamZ4rIYUN68z+F3U1+uIOEQ z6xswALnqky3GlG3TiCrDP24FpKAC7zldRgz4Zpx12hd75Xapuvb9NPki0HpF9L0 EDmvcEeVIauCX/8tpwwqsDJ9w/rafGtRDq5DOCHErNQlE/8qGO9vw09WXDHP6w9g MuK2EahSDvHw+NeymHDMbkHdWmwr/e4MzUG2D80HzcGn8RfsAjUXohGyVACd/kBX 8gxvNHtaDu0HLQbpmBUBW5j4Xq1Vv6w+3VgMR9g1BWf4AK41m5E9XFOkJqxTGlbs TlFiO4+6aD3MH8HNFrGq69+zVQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFP+2+0IB El8dvFyGRRQZvCNY0kh5MB8GA1UdIwQYMBaAFIqA/ooNI7wwxmSneqCO2Q4ZtZHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUIzNy81MzJBMkUwQUFC QkMxMUVGQjNEOUNFNkVDNEY5QUUwMi9pb0QtaWcwanZEREdaS2Q2b0k3WkRobTFr ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lvRC1pZzBqdkRER1pLZDZvSTdaRGhtMWtkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjFCMzcvNTMyQTJFMEFBQkJDMTFFRkIzRDlDRTZFQzRGOUFFMDIvMTcyRjQ2QjZC MkFBMTFFRkE2QzdCMzVBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDxjEgMA0GCSqGSIb3DQEBCwUAA4IBAQBrg7kI1JUthtDxs51DmglM q4TDbqLpNAmZLQr5S7TAdkffXjuXInvo6JhJCZcck7DTuGj8yZl5n4QMQKMOZlk8 lYU9BYyGd4f+Jv0yhrRt7HdTu9J7DnFXLn8fEOkXUfbyoFn4ExoU4pffYcyYLjO6 +BiVJZDaNYpEKqeHH4xNbKLHaLbsH254w2ya6szJ0lePSobyj8XW/v/g43wxcL54 vwrTkSDIiaATtDJ6jYbGeJJfye1BateNtv1u2Lj7wzEiPry5bYJUb5w/pn21Dj55 xJ+LipXYAhJi3WYuENySKPrnFwDC5/UzJ6ZcqMh8Zu9sK5V6AN2+h+fVQobJuyAV -----END CERTIFICATE-----Generated at Wed Mar 4 09:48:03 2026 by rpki-client