$ rpki-client -vvf rpki.apnic.net/member_repository/A9187BAC/BE318FB0D02C11EFB5584915C4F9AE02/40D442EAE8AB11F0A6A9087C576F56BC.roa File: 40D442EAE8AB11F0A6A9087C576F56BC.roa (raw, json) Hash identifier: tzLlHJukcx5JOovy2IfMsqt8PmmqcmCex92jH5vGw5c= Subject key identifier: A8:10:7E:83:35:8A:86:8C:BD:4F:1D:5F:AF:11:EF:D4:71:38:D6:C7 Certificate issuer: /CN=A9187BAC/serialNumber=7B62620BFEB38CEB64D210C9805DC2480415707D Certificate serial: EA Authority key identifier: 7B:62:62:0B:FE:B3:8C:EB:64:D2:10:C9:80:5D:C2:48:04:15:70:7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/e2JiC_6zjOtk0hDJgF3CSAQVcH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187BAC/BE318FB0D02C11EFB5584915C4F9AE02/40D442EAE8AB11F0A6A9087C576F56BC.roa Signing time: Sun 01 Mar 2026 13:27:40 +0000 ROA not before: Sat 07 Feb 2026 06:24:42 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 58062 IP address blocks: 161.248.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187BAC/BE318FB0D02C11EFB5584915C4F9AE02/e2JiC_6zjOtk0hDJgF3CSAQVcH0.crl rsync://rpki.apnic.net/member_repository/A9187BAC/BE318FB0D02C11EFB5584915C4F9AE02/e2JiC_6zjOtk0hDJgF3CSAQVcH0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/e2JiC_6zjOtk0hDJgF3CSAQVcH0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 06:13:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187BAC, serialNumber=7B62620BFEB38CEB64D210C9805DC2480415707D Validity Not Before: Feb 7 06:24:42 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a43ecc-b72c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:36:60:e6:b4:96:74:4a:fe:c4:e3:8d:78:ff: d3:b2:dc:b8:fb:63:d7:ef:73:99:b7:9e:66:71:c7: db:c4:a1:19:c8:3d:97:05:52:1f:92:42:69:81:c1: b2:7b:8c:b0:55:cd:cb:be:62:c6:6d:91:52:3c:57: 21:ab:f1:17:5b:82:8a:e3:65:68:6e:4f:8c:7c:aa: 30:37:f5:e8:1a:1b:48:81:3f:e6:54:3c:38:7c:17: 17:5e:76:60:58:0b:38:b2:c5:1d:f4:fc:07:18:c5: fd:58:1a:57:bb:d9:00:c6:2a:44:cb:55:75:10:46: 8f:87:49:02:d2:66:69:9a:4c:98:5a:6b:11:b1:36: fc:a3:0f:4d:92:ba:77:a6:83:2a:a8:80:35:54:5e: 95:1c:82:9c:f2:8d:cb:da:79:bc:e6:33:27:91:86: 3f:46:24:55:89:09:66:83:2e:d1:70:4b:74:f6:d9: 5d:3f:e4:b3:85:34:1b:61:21:b7:70:e6:19:51:94: 7e:b6:cb:a2:a3:0a:6f:35:46:ce:52:35:bb:78:9f: 7e:80:df:97:c8:0c:f9:98:2e:ea:c9:7a:0a:3e:0c: fe:7f:7e:d4:0c:9f:ab:34:25:6b:b5:d0:77:9a:fc: fd:34:c3:08:3a:30:c1:4d:41:6e:da:9c:79:58:79: 55:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:10:7E:83:35:8A:86:8C:BD:4F:1D:5F:AF:11:EF:D4:71:38:D6:C7 X509v3 Authority Key Identifier: keyid:7B:62:62:0B:FE:B3:8C:EB:64:D2:10:C9:80:5D:C2:48:04:15:70:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187BAC/BE318FB0D02C11EFB5584915C4F9AE02/e2JiC_6zjOtk0hDJgF3CSAQVcH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/e2JiC_6zjOtk0hDJgF3CSAQVcH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187BAC/BE318FB0D02C11EFB5584915C4F9AE02/40D442EAE8AB11F0A6A9087C576F56BC.roa sbgp-ipAddrBlock: critical IPv4: 161.248.137.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:de:6b:c4:cb:d1:37:d5:7f:63:99:d0:4b:3d:05:d4:57:e7: 28:f4:c3:93:e7:6e:83:07:fe:e4:ee:59:d6:28:4a:33:54:27: 1f:ad:09:04:a3:ed:e4:52:59:88:2c:d0:52:fe:63:c9:60:f7: 97:9a:c2:51:3c:77:dd:36:7e:e2:e4:5a:5c:b6:74:26:0a:ac: 6c:96:f5:ee:e2:6e:75:af:29:98:ac:dd:7e:28:eb:6d:eb:49: eb:19:d9:06:e9:3c:cf:0a:22:6a:de:6e:38:ea:dd:08:34:da: dd:37:91:bf:10:d6:a8:32:09:28:03:74:41:ba:8d:80:9d:86: c5:98:bf:f1:2d:5c:72:c0:73:42:11:c3:83:37:3b:80:1a:b2: a2:64:ad:56:4d:a4:c8:0f:da:0f:f4:81:4d:03:78:2f:fb:bd: 4a:40:d5:fb:74:f6:52:c8:62:57:ff:99:f5:6a:de:96:69:54: 80:67:b4:a7:e7:f7:9e:9b:19:9f:5d:c6:79:25:55:84:88:10: 39:b0:e5:75:71:fa:ca:f7:da:fe:c4:df:b8:37:45:0c:bb:aa: d9:c5:d0:0d:1f:14:a1:92:a5:a9:84:2e:cb:b2:49:63:20:b9: ff:7d:d6:fd:a6:69:0d:2c:76:1b:a5:24:ce:23:0f:9e:a5:e0: 75:de:38:23 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODdCQUMxMTAvBgNVBAUTKDdCNjI2MjBCRkVCMzhDRUI2NEQyMTBDOTgwNURDMjQ4 MDQxNTcwN0QwHhcNMjYwMjA3MDYyNDQyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2VjYy1iNzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TZg5rSWdEr+xOONeP/Tsty4+2PX73OZt55mccfbxKEZyD2XBVIfkkJpgcGy e4ywVc3LvmLGbZFSPFchq/EXW4KK42Vobk+MfKowN/XoGhtIgT/mVDw4fBcXXnZg WAs4ssUd9PwHGMX9WBpXu9kAxipEy1V1EEaPh0kC0mZpmkyYWmsRsTb8ow9Nkrp3 poMqqIA1VF6VHIKc8o3L2nm85jMnkYY/RiRViQlmgy7RcEt09tldP+SzhTQbYSG3 cOYZUZR+tsuiowpvNUbOUjW7eJ9+gN+XyAz5mC7qyXoKPgz+f37UDJ+rNCVrtdB3 mvz9NMMIOjDBTUFu2px5WHlVrwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKgQfoM1 ioaMvU8dX68R79RxONbHMB8GA1UdIwQYMBaAFHtiYgv+s4zrZNIQyYBdwkgEFXB9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4N0JBQy9CRTMxOEZCMEQw MkMxMUVGQjU1ODQ5MTVDNEY5QUUwMi9lMkppQ182empPdGswaERKZ0YzQ1NBUVZj SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2UySmlDXzZ6ak90azBoREpnRjNDU0FRVmNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODdCQUMvQkUzMThGQjBEMDJDMTFFRkI1NTg0OTE1QzRGOUFFMDIvNDBENDQyRUFF OEFCMTFGMEE2QTkwODdDNTc2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAofiJMA0GCSqGSIb3DQEBCwUAA4IBAQAb3mvEy9E31X9jmdBLPQXU V+co9MOT526DB/7k7lnWKEozVCcfrQkEo+3kUlmILNBS/mPJYPeXmsJRPHfdNn7i 5FpctnQmCqxslvXu4m51rymYrN1+KOtt60nrGdkG6TzPCiJq3m446t0INNrdN5G/ ENaoMgkoA3RBuo2AnYbFmL/xLVxywHNCEcODNzuAGrKiZK1WTaTID9oP9IFNA3gv +71KQNX7dPZSyGJX/5n1at6WaVSAZ7Sn5/eemxmfXcZ5JVWEiBA5sOV1cfrK99r+ xN+4N0UMu6rZxdANHxShkqWphC7LskljILn/fdb9pmkNLHYbpSTOIw+epeB13jgj -----END CERTIFICATE-----Generated at Wed Mar 4 09:51:07 2026 by rpki-client