$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/458AC21A684111EEA6632877C4F9AE02.roa File: 458AC21A684111EEA6632877C4F9AE02.roa (raw, json) Hash identifier: ZcOPoAMlcJysHiwrollWvtIG++qNRpg0y+gKM/5fjXk= Subject key identifier: 17:43:59:CE:01:C4:DC:03:6E:F5:54:19:5D:9E:D6:8B:EC:04:E7:F3 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 04B8 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/458AC21A684111EEA6632877C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:29:27 +0000 ROA not before: Sun 21 Dec 2025 00:21:04 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 137547 IP address blocks: 150.129.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 00:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1208 (0x4b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Dec 21 00:21:04 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a48587-5df6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bc:7d:6e:e6:d1:19:ad:33:de:b5:b5:80:f5: de:b9:06:30:fb:b8:a0:28:b4:4c:9e:2a:44:7a:61: 8e:6d:ef:fb:3d:64:02:a8:e0:e4:89:38:fb:58:c6: ce:56:82:7e:f7:04:45:56:3a:3f:83:2e:25:fb:03: bd:f2:64:01:6b:af:29:95:dc:bd:d1:f0:46:f1:6e: ca:31:6f:97:98:c0:f2:e9:06:88:09:d3:08:46:49: db:be:31:dc:19:a9:b7:c4:fe:ba:24:45:33:f3:00: 18:c1:ae:1d:33:ff:80:2d:9e:44:db:81:26:f1:f5: da:87:13:8a:e0:41:64:5c:72:9d:75:1d:56:4c:fd: b0:45:4b:72:10:b1:c9:37:c6:f1:3f:f3:25:88:f1: 32:23:0c:bf:71:83:2a:7b:4c:ac:a7:56:7f:21:f4: 01:33:59:68:f9:47:fe:ba:e8:26:e9:0c:39:14:bb: 13:5e:a3:d8:06:3b:05:39:63:76:c7:8b:0c:35:d4: cb:82:3f:12:98:1b:6e:54:3a:e7:87:69:e4:b0:b5: f3:ae:92:f0:88:99:e1:56:98:9f:53:51:6e:76:84: 3b:97:cf:2c:81:bd:06:c5:69:d0:e2:a6:5e:2c:98: 7f:1b:a1:64:9b:db:c4:06:3c:d1:ef:e5:5e:1e:3d: 46:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:43:59:CE:01:C4:DC:03:6E:F5:54:19:5D:9E:D6:8B:EC:04:E7:F3 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/458AC21A684111EEA6632877C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 150.129.218.0/24 Signature Algorithm: sha256WithRSAEncryption 35:42:c1:50:c6:d3:38:6d:f3:40:e0:db:17:2a:5f:f8:62:51: df:91:b2:20:9d:6d:10:88:ee:66:84:10:9a:74:31:e3:bb:fd: f8:7d:d3:0d:98:a8:00:a7:7a:e9:39:0d:2c:69:01:5e:77:dc: be:54:ac:77:4d:48:34:4f:77:93:5d:ec:2e:2b:95:61:be:5a: ed:db:11:27:55:23:ab:ef:df:b6:6c:f8:12:d3:9b:78:2d:fb: b3:5c:b1:88:c2:05:0e:a4:45:7e:b6:45:a0:23:41:7d:ab:c6: 96:59:19:9e:82:ba:bd:43:27:55:7a:34:dc:24:7a:b6:0f:cb: ad:6a:53:d0:38:0b:fe:f3:3e:cd:1c:2d:47:80:c0:f3:b8:ce: d9:6d:28:5d:eb:14:35:79:0e:00:0f:94:28:68:f7:c1:ab:b8: fa:e7:67:77:88:67:fb:9e:09:0c:be:cd:70:0d:ff:30:bf:16: 07:22:a3:88:23:ee:88:9b:08:7b:b6:38:1c:fd:a9:50:bd:f9: 47:26:82:66:fe:16:43:62:18:d2:77:38:37:68:81:71:b4:f5: c3:3e:97:16:52:cf:a4:09:25:29:97:ad:1e:02:c9:2e:16:74: 23:84:bb:ad:c0:84:8d:ec:de:9f:f5:a8:87:85:4a:23:1f:66: f3:24:52:b9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUxMjIxMDAyMTA0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODU4Ny01ZGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07x9bubRGa0z3rW1gPXeuQYw+7igKLRMnipEemGObe/7PWQCqODkiTj7WMbO VoJ+9wRFVjo/gy4l+wO98mQBa68pldy90fBG8W7KMW+XmMDy6QaICdMIRknbvjHc Gam3xP66JEUz8wAYwa4dM/+ALZ5E24Em8fXahxOK4EFkXHKddR1WTP2wRUtyELHJ N8bxP/MliPEyIwy/cYMqe0ysp1Z/IfQBM1lo+Uf+uugm6Qw5FLsTXqPYBjsFOWN2 x4sMNdTLgj8SmBtuVDrnh2nksLXzrpLwiJnhVpifU1FudoQ7l88sgb0GxWnQ4qZe LJh/G6Fkm9vEBjzR7+VeHj1GtQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBdDWc4B xNwDbvVUGV2e1ovsBOfzMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1N0IvOERBNzI2NDBDMUZBMTFFQ0IzMEVFMjFBQzRGOUFFMDIvNDU4QUMyMUE2 ODQxMTFFRUE2NjMyODc3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAloHaMA0GCSqGSIb3DQEBCwUAA4IBAQA1QsFQxtM4bfNA4NsXKl/4 YlHfkbIgnW0QiO5mhBCadDHju/34fdMNmKgAp3rpOQ0saQFed9y+VKx3TUg0T3eT XewuK5Vhvlrt2xEnVSOr79+2bPgS05t4LfuzXLGIwgUOpEV+tkWgI0F9q8aWWRme grq9QydVejTcJHq2D8utalPQOAv+8z7NHC1HgMDzuM7ZbShd6xQ1eQ4AD5QoaPfB q7j652d3iGf7ngkMvs1wDf8wvxYHIqOII+6Imwh7tjgc/alQvflHJoJm/hZDYhjS dzg3aIFxtPXDPpcWUs+kCSUpl60eAskuFnQjhLutwISN7N6f9aiHhUojH2bzJFK5 -----END CERTIFICATE-----Generated at Wed Mar 11 12:50:16 2026 by rpki-client