$ rpki-client -vvf rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/240B1914D90B11EF95020982C4F9AE02.roa File: 240B1914D90B11EF95020982C4F9AE02.roa (raw, json) Hash identifier: 0gHNtWChBEUR4YEQpsBzxLagBwCzjHIiYU13EWlRZC8= Subject key identifier: 7E:B8:E9:D8:33:8C:61:8D:FF:70:13:7D:5F:B1:A7:22:A6:08:EA:BA Certificate issuer: /CN=A9173161/serialNumber=B49B2B11D3876DECDE13F5E8F59E641A7D093FB9 Certificate serial: DC Authority key identifier: B4:9B:2B:11:D3:87:6D:EC:DE:13:F5:E8:F5:9E:64:1A:7D:09:3F:B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/240B1914D90B11EF95020982C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:29:30 +0000 ROA not before: Mon 23 Feb 2026 05:25:16 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 136557 IP address blocks: 161.248.254.0/24 maxlen: 24 161.248.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.crl rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 05:58:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173161, serialNumber=B49B2B11D3876DECDE13F5E8F59E641A7D093FB9 Validity Not Before: Feb 23 05:25:16 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a590ba-4c9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:db:71:9c:27:37:f5:e6:27:23:de:fe:9a:bb: 75:04:6a:db:7f:d6:d3:48:11:a9:cb:30:d6:fc:fd: de:2a:3c:90:9d:d2:be:a5:0e:24:6f:9b:61:95:bf: d0:04:7f:d8:b6:62:18:e1:37:05:04:fb:23:95:54: 72:3f:40:65:5d:37:e4:53:3f:51:75:af:1c:a3:13: 3e:0f:dd:9f:29:c8:9d:47:79:d8:1a:fa:f7:4a:8b: 37:cb:f2:c0:ac:ec:2f:b8:79:42:07:b7:ba:97:6f: 88:25:10:27:5b:a5:dd:f2:9d:06:c5:2d:00:11:66: bf:a7:1b:de:08:df:08:eb:94:89:a1:b8:e5:b6:76: 1b:58:21:66:71:61:03:d7:47:ed:0b:42:15:19:f6: bd:59:cf:16:cf:03:ca:41:c8:cb:fc:c2:82:5a:3b: ac:5f:71:95:c0:bc:05:79:da:37:ef:a2:0c:d0:75: a5:6c:e1:24:64:cb:5a:09:76:25:d6:a7:ff:ea:e8: 77:5c:9b:d0:c5:80:f5:4f:61:90:e0:f9:d6:45:e3: a3:92:b4:11:8a:7f:ab:d5:06:46:18:80:e1:c1:bd: ac:c7:2d:e3:4e:b3:59:1e:91:76:1a:ce:b5:3c:fa: fe:bc:4b:42:b9:09:dc:24:ec:5f:c4:a7:92:03:d6: 9a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B8:E9:D8:33:8C:61:8D:FF:70:13:7D:5F:B1:A7:22:A6:08:EA:BA X509v3 Authority Key Identifier: keyid:B4:9B:2B:11:D3:87:6D:EC:DE:13:F5:E8:F5:9E:64:1A:7D:09:3F:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/240B1914D90B11EF95020982C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.254.0/23 Signature Algorithm: sha256WithRSAEncryption 72:74:13:00:6c:c4:13:3b:4a:ee:74:f5:7f:ca:da:d7:77:d9: 61:27:b5:a4:25:56:15:e8:28:36:f7:c3:42:b3:e5:c3:a3:02: 7b:92:c7:c6:0a:2b:f5:01:e3:1d:f6:b9:2f:20:fe:50:b3:1e: ac:95:53:58:1e:88:1f:fc:ef:e0:f0:37:6b:dd:cb:00:3c:da: ab:27:0f:94:fe:e4:ba:5e:2e:02:f0:ca:e8:dc:82:92:9a:2d: 8f:b0:c6:e0:a0:45:7a:f7:38:4b:93:bd:20:b1:2d:07:b7:ae: 11:bc:0b:2f:90:66:b6:c3:22:c5:0c:5f:57:cb:73:87:2f:93: 63:85:f8:5f:78:9f:91:6a:1d:77:a3:8b:48:ee:8b:a9:53:c0: b2:ea:53:3f:ad:2c:b6:cc:00:b5:d3:63:6f:f9:6b:fd:9c:54: 1e:da:ac:78:69:0b:13:c3:af:36:0e:30:a2:f7:dc:4e:f9:73: 3a:c3:7c:f1:b6:12:4c:e0:06:ce:85:a7:17:6a:ea:b0:bd:c9: f6:53:0a:bf:61:19:7a:78:4d:6d:53:9f:c5:d7:62:c0:98:79: 17:ad:c0:03:64:c4:29:21:cc:71:ac:9e:97:d8:19:62:0e:5d: 50:e5:26:97:d7:68:27:91:37:f4:98:cd:d7:93:51:0d:4a:e3: d4:dd:ff:0c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxNjExMTAvBgNVBAUTKEI0OUIyQjExRDM4NzZERUNERTEzRjVFOEY1OUU2NDFB N0QwOTNGQjkwHhcNMjYwMjIzMDUyNTE2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTBiYS00YzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAldtxnCc39eYnI97+mrt1BGrbf9bTSBGpyzDW/P3eKjyQndK+pQ4kb5thlb/Q BH/YtmIY4TcFBPsjlVRyP0BlXTfkUz9Rda8coxM+D92fKcidR3nYGvr3Sos3y/LA rOwvuHlCB7e6l2+IJRAnW6Xd8p0GxS0AEWa/pxveCN8I65SJobjltnYbWCFmcWED 10ftC0IVGfa9Wc8WzwPKQcjL/MKCWjusX3GVwLwFedo376IM0HWlbOEkZMtaCXYl 1qf/6uh3XJvQxYD1T2GQ4PnWReOjkrQRin+r1QZGGIDhwb2sxy3jTrNZHpF2Gs61 PPr+vEtCuQncJOxfxKeSA9aaHQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFH646dgz jGGN/3ATfV+xpyKmCOq6MB8GA1UdIwQYMBaAFLSbKxHTh23s3hP16PWeZBp9CT+5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzE2MS83MTMyRUY5QUQ5 MDcxMUVGQjI3Rjc4NTdDNEY5QUUwMi90SnNyRWRPSGJlemVFX1hvOVo1a0duMEpQ N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RKc3JFZE9IYmV6ZUVfWG85WjVrR24wSlA3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzMxNjEvNzEzMkVGOUFEOTA3MTFFRkIyN0Y3ODU3QzRGOUFFMDIvMjQwQjE5MTRE OTBCMTFFRjk1MDIwOTgyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofj+MA0GCSqGSIb3DQEBCwUAA4IBAQBydBMAbMQTO0rudPV/ytrX d9lhJ7WkJVYV6Cg298NCs+XDowJ7ksfGCiv1AeMd9rkvIP5Qsx6slVNYHogf/O/g 8Ddr3csAPNqrJw+U/uS6Xi4C8Mro3IKSmi2PsMbgoEV69zhLk70gsS0Ht64RvAsv kGa2wyLFDF9Xy3OHL5NjhfhfeJ+Rah13o4tI7oupU8Cy6lM/rSy2zAC102Nv+Wv9 nFQe2qx4aQsTw682DjCi99xO+XM6w3zxthJM4AbOhacXauqwvcn2Uwq/YRl6eE1t U5/F12LAmHkXrcADZMQpIcxxrJ6X2BliDl1Q5SaX12gnkTf0mM3Xk1ENSuPU3f8M -----END CERTIFICATE-----Generated at Sat Mar 7 22:33:46 2026 by rpki-client