$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa File: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (raw, json) Hash identifier: pknh5TpkVdN0wm1/ojQOEGyjuZUBpmr1M782VXIzWZQ= Subject key identifier: 7A:8A:76:E8:EA:96:05:1F:45:A3:54:5D:1C:7F:0E:9D:54:CD:F6:AA Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 0949 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:33:00 +0000 ROA not before: Tue 16 Sep 2025 21:00:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 198247 IP address blocks: 116.58.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 20:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2377 (0x949) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Sep 16 21:00:43 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46a3c-c0d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:de:13:38:0d:e9:b8:be:c1:27:8b:e2:5e:eb: e5:f7:a4:b8:52:8f:a2:33:d5:c6:30:d5:ad:3d:0e: c2:1f:45:3d:f0:cf:f1:c1:db:50:f9:ec:c6:16:85: c1:a0:43:6b:f6:9b:b1:34:e9:bc:d0:42:63:6b:78: 1a:3d:32:b6:a3:03:ab:77:ee:57:38:df:4b:ca:b9: 4c:c1:04:75:0c:8b:4b:8e:8d:7c:04:a6:7d:4e:e9: 7e:21:1a:b1:84:99:ec:ab:e4:db:4c:d2:0e:f4:55: ae:f1:55:cb:55:7c:3a:35:6c:d0:78:af:1e:59:13: 77:e3:4e:02:4e:a0:95:12:f4:1d:fa:e9:1b:3e:8d: 0b:3f:a4:6a:ef:65:68:25:c7:90:c0:cc:65:9f:02: 1c:6f:b1:e7:55:d5:a9:97:b2:e3:08:9f:f9:b4:90: 34:72:3b:5e:ee:70:a2:d8:d4:6f:a1:fe:c3:33:d6: f3:76:98:ea:d9:4b:91:ca:79:b7:d5:48:b9:21:40: b2:79:5a:b7:b0:2a:ff:69:9a:ad:5d:7c:35:75:26: 15:32:b3:35:17:87:67:3e:ad:b2:e1:ab:dc:28:a9: e7:12:e6:50:c7:0d:19:11:33:b6:f5:28:62:e7:b6: e7:7c:92:ca:82:e7:3a:e5:b0:c8:81:c3:14:c8:b8: cf:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8A:76:E8:EA:96:05:1F:45:A3:54:5D:1C:7F:0E:9D:54:CD:F6:AA X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.58.7.0/24 Signature Algorithm: sha256WithRSAEncryption 77:db:c8:00:75:36:7a:b8:41:25:dd:90:e7:fb:63:56:2f:ad: cb:64:85:c7:56:1b:74:08:63:4f:99:e4:b5:88:27:08:09:05: da:66:45:63:a8:31:a6:02:8b:21:d9:79:23:90:19:c7:4a:af: 54:fa:b0:aa:24:f8:e5:41:46:45:2d:8d:47:67:25:ce:1a:bf: 20:2e:6c:cd:ec:6c:9f:48:db:a8:fb:19:d3:d9:ec:1c:6b:4a: f4:7a:73:e0:48:ef:c1:ad:5e:9d:88:ad:0a:aa:0d:28:22:07: fa:eb:46:52:a7:39:6a:12:19:9a:b3:d7:da:e1:5c:d2:50:f8: 1c:c8:e6:0c:6d:7c:8b:0a:e8:11:a9:5c:c0:96:ac:7b:38:56: 93:d0:c7:af:3a:8c:f2:09:98:40:6b:01:47:51:61:0a:c3:59: e4:32:6a:bf:18:8f:b0:18:4c:6f:7c:73:8a:f7:e1:d2:44:68: f5:b3:40:e3:1c:73:35:67:7e:5d:55:d7:1b:dd:b5:5f:ad:0e: 62:d2:41:f2:52:c8:5d:c4:7d:ac:48:cd:26:62:e1:e9:bd:e8: 3e:76:17:e3:f0:7c:9f:fc:92:c6:67:2f:57:ca:a9:99:02:64: 2b:cc:0d:89:6d:11:dd:ce:50:ed:d7:e7:15:58:84:6c:fa:6d: 63:68:32:4c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjUwOTE2MjEwMDQzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmEzYy1jMGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAld4TOA3puL7BJ4viXuvl96S4Uo+iM9XGMNWtPQ7CH0U98M/xwdtQ+ezGFoXB oENr9puxNOm80EJja3gaPTK2owOrd+5XON9LyrlMwQR1DItLjo18BKZ9Tul+IRqx hJnsq+TbTNIO9FWu8VXLVXw6NWzQeK8eWRN3404CTqCVEvQd+ukbPo0LP6Rq72Vo JceQwMxlnwIcb7HnVdWpl7LjCJ/5tJA0cjte7nCi2NRvof7DM9bzdpjq2UuRynm3 1Ui5IUCyeVq3sCr/aZqtXXw1dSYVMrM1F4dnPq2y4avcKKnnEuZQxw0ZETO29Shi 57bnfJLKguc65bDIgcMUyLjPewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHqKdujq lgUfRaNUXRx/Dp1UzfaqMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjVBMEIvMTU1ODZGNDJDNEY4MTFFQThCOUI0QzEzQzRGOUFFMDIvOEJBOUMxQ0FD NEZCMTFFQUFFQUU3QzFEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAdDoHMA0GCSqGSIb3DQEBCwUAA4IBAQB328gAdTZ6uEEl3ZDn+2NW L63LZIXHVht0CGNPmeS1iCcICQXaZkVjqDGmAosh2XkjkBnHSq9U+rCqJPjlQUZF LY1HZyXOGr8gLmzN7GyfSNuo+xnT2ewca0r0enPgSO/BrV6diK0Kqg0oIgf660ZS pzlqEhmas9fa4VzSUPgcyOYMbXyLCugRqVzAlqx7OFaT0MevOozyCZhAawFHUWEK w1nkMmq/GI+wGExvfHOK9+HSRGj1s0DjHHM1Z35dVdcb3bVfrQ5i0kHyUshdxH2s SM0mYuHpveg+dhfj8Hyf/JLGZy9XyqmZAmQrzA2JbRHdzlDt1+cVWIRs+m1jaDJM -----END CERTIFICATE-----Generated at Fri Mar 13 11:18:09 2026 by rpki-client