$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa File: AA14FB00C70811ECBAECCC78C4F9AE02.roa (raw, json) Hash identifier: 0otKT/r/yODNOlZLSeNV6wX4FAqR6L6a2jEEV+QWf0E= Subject key identifier: FA:CB:01:6A:31:81:F0:F5:AA:76:6E:87:68:04:39:FD:BB:6A:7F:A2 Certificate issuer: /CN=A9185D6E/serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE Certificate serial: 047F Authority key identifier: 8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:58:10 +0000 ROA not before: Thu 02 Oct 2025 23:24:38 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 16509 IP address blocks: 141.163.128.0/20 maxlen: 24 141.163.144.0/20 maxlen: 24 141.163.160.0/20 maxlen: 24 141.163.176.0/20 maxlen: 24 141.163.192.0/20 maxlen: 24 141.163.208.0/20 maxlen: 24 141.163.224.0/20 maxlen: 24 141.163.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 22:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1151 (0x47f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE Validity Not Before: Oct 2 23:24:38 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a45402-4439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ba:b5:32:88:ba:4d:70:1a:6b:de:d8:16:ed: 06:5f:d8:c3:95:02:79:81:91:54:bf:62:d5:31:41: fd:29:0c:f6:b1:63:33:e1:43:c4:83:af:98:85:a8: 9a:36:78:03:df:0d:dc:e5:14:7f:ec:a5:df:c9:c8: cb:6e:c4:25:a2:ec:88:54:89:f8:4e:af:f0:87:e4: 90:8a:3a:23:bc:55:e5:8f:2a:dc:94:17:b1:30:f2: ff:4e:b5:72:5a:55:11:60:9e:4a:58:4b:ff:54:24: 68:45:c9:20:5a:1a:98:6b:48:53:3d:e1:fe:f8:1a: 8e:a2:a2:82:86:b0:0c:39:ce:39:e9:aa:23:18:d7: 1e:5a:1a:a6:b9:3a:fa:4e:5b:44:53:7d:9e:45:cb: e4:ec:95:18:88:dd:4f:d4:78:ec:ce:a8:79:d8:2e: 6a:41:cf:a6:b5:f6:a4:b5:ac:8a:8d:5d:21:8f:fa: 1b:f9:0b:b4:7d:60:8e:2b:19:3b:96:91:a6:31:1c: 77:49:0d:e4:c2:f5:b8:70:dd:53:46:45:26:30:e8: 42:20:d2:64:41:e1:32:d7:02:61:ba:cd:76:75:77: ac:04:d0:f0:51:c5:35:e1:72:75:27:4f:ec:e9:41: 8c:be:63:a1:ef:d0:a8:d5:a1:68:42:70:4d:38:f1: 1b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:CB:01:6A:31:81:F0:F5:AA:76:6E:87:68:04:39:FD:BB:6A:7F:A2 X509v3 Authority Key Identifier: keyid:8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 141.163.128.0/17 Signature Algorithm: sha256WithRSAEncryption 15:85:f2:02:1e:e9:94:8b:c3:99:fe:1f:cb:ab:5d:9e:f8:ce: 89:6c:c0:3b:e9:52:9e:90:57:ab:16:a9:13:a9:a7:b8:2f:99: 75:0b:3c:c0:c2:86:3b:ee:f5:21:79:ae:79:b2:be:4d:c5:c2: 4a:d4:a7:1d:66:d2:ef:17:be:86:87:22:38:d3:c4:dd:b3:16: d6:7b:35:e9:3f:2c:84:a0:9c:88:a9:a3:2c:4f:72:fb:d5:8d: 34:3a:c2:d8:49:9a:6b:f9:c1:34:8b:ac:57:a9:97:26:ec:6a: ce:98:8f:80:1d:e7:0f:b9:42:f0:57:c5:fd:cf:13:42:55:79: a6:6e:f4:11:b9:f2:e9:56:81:a1:e4:ab:5e:51:0c:28:30:49: e3:92:9a:12:78:66:92:fa:3e:e1:02:2e:e0:37:cd:31:c2:63: 32:b9:ae:2e:06:50:20:4a:1e:18:61:68:f8:e6:49:c6:e2:f2: b5:6f:4b:9b:4c:0f:dc:76:a8:65:e7:51:40:42:20:67:29:b2: b0:15:15:b5:2f:ec:fd:f9:3b:04:19:c3:d2:90:5f:5e:f6:45: 52:09:87:f0:7b:3e:22:fc:53:13:e0:0b:ca:bf:21:59:df:31: c7:6b:cf:ef:ef:3c:fb:0d:f2:0d:18:61:bf:3d:f3:91:be:0d: d6:fb:76:1f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDhEMjAyMDdEMUVEQjVGNUMyRDY2M0IwQTZBMTBCQ0Q0 MEJBRDNBREUwHhcNMjUxMDAyMjMyNDM4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTQwMi00NDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrq1Moi6TXAaa97YFu0GX9jDlQJ5gZFUv2LVMUH9KQz2sWMz4UPEg6+Yhaia NngD3w3c5RR/7KXfycjLbsQlouyIVIn4Tq/wh+SQijojvFXljyrclBexMPL/TrVy WlURYJ5KWEv/VCRoRckgWhqYa0hTPeH++BqOoqKChrAMOc456aojGNceWhqmuTr6 TltEU32eRcvk7JUYiN1P1Hjszqh52C5qQc+mtfaktayKjV0hj/ob+Qu0fWCOKxk7 lpGmMRx3SQ3kwvW4cN1TRkUmMOhCINJkQeEy1wJhus12dXesBNDwUcU14XJ1J0/s 6UGMvmOh79Co1aFoQnBNOPEbCwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPrLAWox gfD1qnZuh2gEOf27an+iMB8GA1UdIwQYMBaAFI0gIH0e219cLWY7CmoQvNQLrTre MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS9BNDZCRTU4ODg4 ODgxMUVDOTEyMzNBNzBDNEY5QUUwMi9qU0FnZlI3Ylgxd3RaanNLYWhDODFBdXRP dDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2pTQWdmUjdiWDF3dFpqc0thaEM4MUF1dE90NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVENkUvQTQ2QkU1ODg4ODg4MTFFQzkxMjMzQTcwQzRGOUFFMDIvQUExNEZCMDBD NzA4MTFFQ0JBRUNDQzc4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQHjaOAMA0GCSqGSIb3DQEBCwUAA4IBAQAVhfICHumUi8OZ/h/Lq12e +M6JbMA76VKekFerFqkTqae4L5l1CzzAwoY77vUhea55sr5NxcJK1KcdZtLvF76G hyI408TdsxbWezXpPyyEoJyIqaMsT3L71Y00OsLYSZpr+cE0i6xXqZcm7GrOmI+A HecPuULwV8X9zxNCVXmmbvQRufLpVoGh5KteUQwoMEnjkpoSeGaS+j7hAi7gN80x wmMyua4uBlAgSh4YYWj45knG4vK1b0ubTA/cdqhl51FAQiBnKbKwFRW1L+z9+TsE GcPSkF9e9kVSCYfwez4i/FMT4AvKvyFZ3zHHa8/v7zz7DfINGGG/PfORvg3W+3Yf -----END CERTIFICATE-----Generated at Sat Mar 7 16:13:10 2026 by rpki-client