$ rpki-client -vvf rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/42AD4128C0FD11F0883D987DC4F9AE02.roa File: 42AD4128C0FD11F0883D987DC4F9AE02.roa (raw, json) Hash identifier: vGDLBHhQ2uCZ7yDty8cYd4H0mY/09AkesOUGu4E2fks= Subject key identifier: 94:D9:23:3A:54:4C:02:8A:CB:0F:80:19:A3:85:5A:F4:B5:0A:46:FA Certificate issuer: /CN=A9167671/serialNumber=8A57717E62E115BAD0AF167942235B01B9B1F354 Certificate serial: 41 Authority key identifier: 8A:57:71:7E:62:E1:15:BA:D0:AF:16:79:42:23:5B:01:B9:B1:F3:54 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ildxfmLhFbrQrxZ5QiNbAbmx81Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/42AD4128C0FD11F0883D987DC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:28:12 +0000 ROA not before: Fri 14 Nov 2025 01:57:23 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 154242 IP address blocks: 138.252.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.crl rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ildxfmLhFbrQrxZ5QiNbAbmx81Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:58:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167671, serialNumber=8A57717E62E115BAD0AF167942235B01B9B1F354 Validity Not Before: Nov 14 01:57:23 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a59e7c-30db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:bc:66:a2:b0:3c:fe:a0:8a:38:3b:bd:97:50: ff:35:2e:7e:ab:e1:c8:82:de:7f:10:e2:a3:6f:e1: 45:32:de:03:4d:b1:35:fb:5b:b4:6f:5c:bb:e3:2b: d1:d8:3c:db:90:bb:90:39:28:f2:e4:7d:6f:80:82: 28:cb:a9:6c:aa:5a:19:b1:7d:81:bb:f8:cf:db:55: 2a:ed:ad:96:26:98:c1:0f:81:e7:ae:73:a6:e4:b2: 83:89:da:f0:5c:a2:33:67:e0:8c:af:68:39:75:5c: 48:3f:c7:c7:87:94:a3:4d:5a:f1:38:6b:d3:03:e5: 6e:da:41:ee:d8:02:2a:41:d8:28:8a:64:c9:46:bf: 50:3a:5a:76:f2:a6:11:53:1d:ab:41:a9:27:1a:d8: 73:dc:41:db:4e:d7:ad:cf:30:0c:4f:a7:be:52:18: 78:80:2c:1c:0c:bf:bf:b8:b2:86:b0:f0:e0:27:bf: 0c:09:1a:6c:3a:e6:e2:dd:60:a4:a3:d8:c0:7d:fa: 55:30:79:c3:a8:22:03:af:f1:43:e4:8d:cf:f6:31: 82:ee:7e:d8:94:ea:9f:f9:b6:c6:ca:0c:87:20:6e: 24:fa:68:6d:d4:63:26:1c:26:71:ae:5d:6a:3c:6c: 8e:b0:41:44:c6:ce:d5:71:5f:08:46:a6:f7:09:c4: a7:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:D9:23:3A:54:4C:02:8A:CB:0F:80:19:A3:85:5A:F4:B5:0A:46:FA X509v3 Authority Key Identifier: keyid:8A:57:71:7E:62:E1:15:BA:D0:AF:16:79:42:23:5B:01:B9:B1:F3:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ildxfmLhFbrQrxZ5QiNbAbmx81Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/42AD4128C0FD11F0883D987DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.167.0/24 Signature Algorithm: sha256WithRSAEncryption 94:07:d6:4c:fa:96:a5:bb:56:0b:bf:4c:a8:97:89:c2:0f:e4: eb:16:cb:ab:42:89:3e:34:12:01:2f:d5:e7:b6:41:02:a4:fc: 3d:ca:37:79:6c:42:dd:2a:8c:de:9d:90:33:11:1b:4c:25:0f: dd:c8:d9:36:c2:0a:09:14:d0:2e:8f:08:29:a1:ca:25:1f:36: 0e:70:97:fc:64:a7:a0:4c:a2:29:02:bd:12:40:e8:aa:f2:ff: e7:c8:a6:4b:16:bd:fe:f5:6b:97:b7:54:1f:dc:68:9b:8e:4c: aa:39:b1:00:07:98:67:06:ae:09:62:80:71:96:0b:86:0d:fb: cb:21:66:de:1c:2e:0b:60:30:68:26:8a:b7:53:98:30:a7:75: 52:d5:3e:8a:6a:65:f3:eb:ab:8b:b7:fd:b1:2b:3b:c0:5e:97: b5:1c:07:4f:ad:41:ea:b5:2e:ee:9e:ab:d7:c7:20:9c:98:89: f7:ed:5c:3b:0b:a8:e5:03:bc:57:42:c5:52:92:c4:6d:cc:06: e7:8d:65:f3:bc:da:a9:57:eb:3d:d3:e7:1b:44:65:b1:11:6d: 19:04:70:9e:e0:86:fe:29:f0:3a:c8:05:61:a2:b7:95:48:9e: b4:df:95:13:72:68:87:55:6c:f1:3d:50:c0:e7:4f:1a:8e:0e: fc:0d:22:88 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NzY3MTExMC8GA1UEBRMoOEE1NzcxN0U2MkUxMTVCQUQwQUYxNjc5NDIyMzVCMDFC OUIxRjM1NDAeFw0yNTExMTQwMTU3MjNaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU5ZTdjLTMwZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmvGaisDz+oIo4O72XUP81Ln6r4ciC3n8Q4qNv4UUy3gNNsTX7W7RvXLvjK9HY PNuQu5A5KPLkfW+AgijLqWyqWhmxfYG7+M/bVSrtrZYmmMEPgeeuc6bksoOJ2vBc ojNn4IyvaDl1XEg/x8eHlKNNWvE4a9MD5W7aQe7YAipB2CiKZMlGv1A6WnbyphFT HatBqSca2HPcQdtO163PMAxPp75SGHiALBwMv7+4soaw8OAnvwwJGmw65uLdYKSj 2MB9+lUwecOoIgOv8UPkjc/2MYLuftiU6p/5tsbKDIcgbiT6aG3UYyYcJnGuXWo8 bI6wQUTGztVxXwhGpvcJxKeBAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUlNkjOlRM AorLD4AZo4Va9LUKRvowHwYDVR0jBBgwFoAUildxfmLhFbrQrxZ5QiNbAbmx81Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3NjcxLzQ2MEIwODA0QkUx RjExRjA5NTQzNUQ2RUM0RjlBRTAyL2lsZHhmbUxoRmJyUXJ4WjVRaU5iQWJteDgx US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaWxkeGZtTGhGYnJRcnhaNVFpTmJBYm14ODFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzY3MS80NjBCMDgwNEJFMUYxMUYwOTU0MzVENkVDNEY5QUUwMi80MkFENDEyOEMw RkQxMUYwODgzRDk4N0RDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACK/KcwDQYJKoZIhvcNAQELBQADggEBAJQH1kz6lqW7Vgu/TKiXicIP 5OsWy6tCiT40EgEv1ee2QQKk/D3KN3lsQt0qjN6dkDMRG0wlD93I2TbCCgkU0C6P CCmhyiUfNg5wl/xkp6BMoikCvRJA6Kry/+fIpksWvf71a5e3VB/caJuOTKo5sQAH mGcGrgligHGWC4YN+8shZt4cLgtgMGgmirdTmDCndVLVPopqZfPrq4u3/bErO8Be l7UcB0+tQeq1Lu6eq9fHIJyYifftXDsLqOUDvFdCxVKSxG3MBueNZfO82qlX6z3T 5xtEZbERbRkEcJ7ghv4p8DrIBWGit5VInrTflRNyaIdVbPE9UMDnTxqODvwNIog= -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:19 2026 by rpki-client