$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/B022AC18368811EEB1BFE56AC4F9AE02.roa File: B022AC18368811EEB1BFE56AC4F9AE02.roa (raw, json) Hash identifier: usH+mk51VBx4IO/Jnd24Cx5sUXY3pfqSRJBol6HvMcY= Subject key identifier: 3C:03:99:4D:1E:A1:C7:BD:5A:EF:59:87:C0:FF:A8:03:34:58:A3:49 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 01E3 Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/B022AC18368811EEB1BFE56AC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:38:18 +0000 ROA not before: Tue 29 Apr 2025 04:40:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 4826 IP address blocks: 198.51.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 02:44:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Apr 29 04:40:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3deda-29a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:37:29:c8:59:0e:e4:13:03:e9:6d:7e:39:9c: 8e:13:c2:11:56:dd:b8:05:97:c7:3b:f6:f0:00:85: 20:98:f2:fd:4c:73:cb:1d:bf:12:c0:e6:75:34:85: 63:08:b6:78:44:6a:b4:55:72:3c:65:3d:0c:b7:50: f9:c5:d4:44:4d:71:d2:d4:f4:30:8f:51:b1:19:8c: c1:6a:e4:e0:d8:41:fd:34:d1:28:94:f5:2c:57:b2: da:8d:b4:ae:fd:b7:51:4e:a5:d9:92:75:1d:96:e8: 32:25:2c:cc:a7:32:dc:e0:92:f8:a0:0d:c6:db:04: 66:de:a2:af:11:a0:a4:fa:da:03:68:04:59:d4:84: ae:b8:d4:f1:af:70:78:b2:e0:94:40:c2:b0:5b:35: 09:b1:59:3c:64:43:ba:54:0f:eb:d5:28:ff:48:3c: d8:19:9a:fd:0f:d2:24:4d:8f:75:fa:41:7d:56:33: f4:9b:48:e2:e3:4e:df:86:49:6e:a7:76:9a:58:f8: c5:27:df:f0:b0:6d:cc:66:7d:0b:f6:38:90:2e:c3: 11:d6:a7:01:53:dc:a7:b7:89:56:df:ee:42:fd:5d: 87:f2:00:34:90:00:42:21:d0:99:7f:53:80:26:15: 22:c6:b6:49:13:d0:67:f1:63:95:2b:b1:fa:3c:51: f1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:03:99:4D:1E:A1:C7:BD:5A:EF:59:87:C0:FF:A8:03:34:58:A3:49 X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/B022AC18368811EEB1BFE56AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 198.51.210.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:90:3f:e0:6e:a6:a7:7a:c1:76:11:5e:c7:0b:43:ac:26:14: bf:8c:e9:86:48:4a:0e:62:ae:fc:b6:b1:c6:71:96:54:0a:d9: 7c:9e:7e:5d:3a:57:b3:65:5e:b4:12:6a:4d:4d:85:b9:8d:7c: d8:37:57:f2:94:aa:57:eb:57:8a:b0:0d:78:45:90:bb:2c:7e: 23:63:50:50:c6:cb:44:e6:f0:28:3f:64:3f:2d:68:91:0b:7e: e9:5b:16:e1:df:ca:48:1d:42:ae:da:75:cd:68:88:30:50:6d: d4:47:84:93:45:74:0c:a9:dc:db:d7:53:31:8c:2e:1f:1c:07: 6a:73:a1:6f:5a:d3:15:d8:6c:85:2b:d1:d5:36:50:42:1e:cb: 0d:04:f8:a8:fe:a2:d6:cb:bc:6f:d8:22:39:b4:b2:15:88:67: 30:65:10:9d:ca:71:d5:25:f0:07:88:ce:97:f8:bc:f9:37:e3: 1a:7c:3d:bc:ea:0f:40:64:4d:44:0b:e0:d1:29:55:6e:14:ed: ab:7b:bf:10:87:1f:10:a8:5c:97:de:a0:99:2f:43:2c:99:58: dc:8e:fb:6e:a2:a2:c4:75:d6:ac:74:4b:c2:9a:27:8b:66:33: 54:1f:1f:1a:b2:79:69:7c:2e:72:f9:35:98:9b:cd:76:48:14: 0d:91:13:5e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjUwNDI5MDQ0MDQxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGVkYS0yOWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTcpyFkO5BMD6W1+OZyOE8IRVt24BZfHO/bwAIUgmPL9THPLHb8SwOZ1NIVj CLZ4RGq0VXI8ZT0Mt1D5xdRETXHS1PQwj1GxGYzBauTg2EH9NNEolPUsV7LajbSu /bdRTqXZknUdlugyJSzMpzLc4JL4oA3G2wRm3qKvEaCk+toDaARZ1ISuuNTxr3B4 suCUQMKwWzUJsVk8ZEO6VA/r1Sj/SDzYGZr9D9IkTY91+kF9VjP0m0ji407fhklu p3aaWPjFJ9/wsG3MZn0L9jiQLsMR1qcBU9ynt4lW3+5C/V2H8gA0kABCIdCZf1OA JhUixrZJE9Bn8WOVK7H6PFHxHwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDwDmU0e oce9Wu9Zh8D/qAM0WKNJMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBERjAvNURFRkFDRjAzNjQ0MTFFRUFDRTVDNzJFQzRGOUFFMDIvQjAyMkFDMTgz Njg4MTFFRUIxQkZFNTZBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAxjPSMA0GCSqGSIb3DQEBCwUAA4IBAQBckD/gbqanesF2EV7HC0Os JhS/jOmGSEoOYq78trHGcZZUCtl8nn5dOlezZV60EmpNTYW5jXzYN1fylKpX61eK sA14RZC7LH4jY1BQxstE5vAoP2Q/LWiRC37pWxbh38pIHUKu2nXNaIgwUG3UR4ST RXQMqdzb11MxjC4fHAdqc6FvWtMV2GyFK9HVNlBCHssNBPio/qLWy7xv2CI5tLIV iGcwZRCdynHVJfAHiM6X+Lz5N+MafD286g9AZE1EC+DRKVVuFO2re78Qhx8QqFyX 3qCZL0MsmVjcjvtuoqLEddasdEvCmieLZjNUHx8asnlpfC5y+TWYm812SBQNkRNe -----END CERTIFICATE-----Generated at Sun Mar 8 01:44:42 2026 by rpki-client