$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa File: 17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa (raw, json) Hash identifier: qO2Q3Q5zR4BZKw3pBS7JR4NiTCN8t4Ujvg2GOjsbNkA= Subject key identifier: 19:83:8D:C6:D7:3A:7E:F8:40:3F:DB:69:C1:9E:88:93:D8:5F:6B:E8 Certificate issuer: /CN=A9186D9F/serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Certificate serial: 014C Authority key identifier: 43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:54:40 +0000 ROA not before: Fri 11 Jul 2025 06:12:01 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142125 IP address blocks: 160.22.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Validity Not Before: Jul 11 06:12:01 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a58890-8d4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d0:dd:b8:bb:e4:7b:29:64:ea:29:5d:ed:bc: 31:b1:ff:bb:3e:fc:0b:7e:16:87:33:e1:2e:24:c5: ce:a9:ea:7b:90:e1:2a:ee:88:56:19:5a:bb:7f:3e: 75:90:a2:8a:09:5b:57:76:f2:52:e2:96:b8:fd:b3: 1c:41:72:dd:c8:44:38:39:c7:12:d6:c4:5c:62:0e: 6c:cc:65:0c:c9:8c:88:9c:84:e4:1e:d2:e0:41:de: be:9c:a8:5c:3d:17:9d:a8:13:fe:3a:5e:4c:6b:46: 9c:9c:69:4d:19:5f:52:39:36:b0:7b:68:0f:0e:6c: 53:9d:12:aa:7a:68:8e:fc:df:07:57:d5:b2:4b:34: 8d:c9:bc:38:67:2b:b7:6c:0d:b9:00:f4:db:a4:5a: 12:46:59:74:3f:96:f8:7f:f9:e7:22:ea:a8:95:47: ff:41:1c:8d:8e:81:64:4f:22:44:85:00:02:02:38: 37:0b:13:22:9d:fd:06:83:77:7f:26:cc:63:46:bf: b5:b4:c2:50:ab:3e:47:c8:5b:91:62:04:81:50:91: 95:c0:5b:02:c7:ee:84:2d:7c:2f:47:2c:18:13:e8: b8:91:0b:83:35:d9:19:4a:6a:69:5f:83:cb:34:e7: 96:54:d5:0e:eb:df:b4:e1:99:86:48:ac:13:5b:a9: 71:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:83:8D:C6:D7:3A:7E:F8:40:3F:DB:69:C1:9E:88:93:D8:5F:6B:E8 X509v3 Authority Key Identifier: keyid:43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.22.42.0/24 Signature Algorithm: sha256WithRSAEncryption 66:89:5a:25:ad:51:16:9d:66:40:75:ed:05:1a:59:52:82:3e: bd:9e:7e:26:19:fc:e0:9f:1e:47:a8:c9:fa:bd:83:42:f9:78: ea:b3:75:da:25:29:3e:60:13:85:37:25:d8:8c:d5:7d:da:4b: 54:5d:ed:c7:e5:e0:24:cc:aa:cf:f4:99:66:69:ca:b4:cc:f7: b2:15:f0:53:36:9d:32:44:fe:4a:22:a7:75:12:ef:a9:67:8f: af:fb:1c:fa:d0:fd:f8:5a:90:ac:0f:07:d1:d7:78:06:bb:21: 08:50:7c:8f:37:e1:c9:ce:59:4d:4a:e6:f5:34:f8:f5:f6:f5: 1e:3c:3e:cd:da:3b:87:b1:d8:a0:3e:70:ad:22:ed:33:4e:41: 65:b6:97:0a:38:00:85:92:a2:16:62:42:12:48:b8:7b:ce:0b: e8:77:56:3f:ef:62:3a:b2:74:f3:e3:b6:a7:56:db:8a:4a:81: 9e:ad:08:ea:ba:3f:00:ef:e4:20:e6:20:8a:8b:34:77:cc:71: cc:1d:b3:30:07:af:fa:2f:fb:57:ab:9e:37:2c:81:4e:f8:b2: da:f7:61:e4:b2:39:b6:a9:de:e0:6b:ec:ea:02:07:34:c3:eb: fb:1c:5d:2a:c7:a9:fe:f0:b0:29:c7:37:1a:fa:d9:a2:a7:13: 4b:af:3f:9b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKDQzRjc0MjNGOTNENkJBMDk2OTQwNTlGQjIzREVGODUy OEQyNjQ5OUQwHhcNMjUwNzExMDYxMjAxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODg5MC04ZDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNDduLvkeylk6ild7bwxsf+7PvwLfhaHM+EuJMXOqep7kOEq7ohWGVq7fz51 kKKKCVtXdvJS4pa4/bMcQXLdyEQ4OccS1sRcYg5szGUMyYyInITkHtLgQd6+nKhc PRedqBP+Ol5Ma0acnGlNGV9SOTawe2gPDmxTnRKqemiO/N8HV9WySzSNybw4Zyu3 bA25APTbpFoSRll0P5b4f/nnIuqolUf/QRyNjoFkTyJEhQACAjg3CxMinf0Gg3d/ JsxjRr+1tMJQqz5HyFuRYgSBUJGVwFsCx+6ELXwvRywYE+i4kQuDNdkZSmppX4PL NOeWVNUO69+04ZmGSKwTW6lxcwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBmDjcbX On74QD/bacGeiJPYX2voMB8GA1UdIwQYMBaAFEP3Qj+T1roJaUBZ+yPe+FKNJkmd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9BOTM2RTQ0MDJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3VnbHBRRm43STk3NFVvMG1T WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FfZENQNVBXdWdscFFGbjdJOTc0VW8wbVNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZEOUYvQTkzNkU0NDAyRTA0MTFFRjg2RjI5RDc5QzRGOUFFMDIvMTdFQTBDN0Ez OERGMTFFRjhFRURCMjVFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBYqMA0GCSqGSIb3DQEBCwUAA4IBAQBmiVolrVEWnWZAde0FGllS gj69nn4mGfzgnx5HqMn6vYNC+Xjqs3XaJSk+YBOFNyXYjNV92ktUXe3H5eAkzKrP 9Jlmacq0zPeyFfBTNp0yRP5KIqd1Eu+pZ4+v+xz60P34WpCsDwfR13gGuyEIUHyP N+HJzllNSub1NPj19vUePD7N2juHsdigPnCtIu0zTkFltpcKOACFkqIWYkISSLh7 zgvod1Y/72I6snTz47anVtuKSoGerQjquj8A7+Qg5iCKizR3zHHMHbMwB6/6L/tX q543LIFO+LLa92Hksjm2qd7ga+zqAgc0w+v7HF0qx6n+8LApxzca+tmipxNLrz+b -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:06 2026 by rpki-client