$ rpki-client -vvf rpki.apnic.net/member_repository/A911C90F/D35AC63E54AE11F08363EA23C4F9AE02/CB4ACDBC54AF11F0999FAA3EC4F9AE02.roa File: CB4ACDBC54AF11F0999FAA3EC4F9AE02.roa (raw, json) Hash identifier: hHYSoks3N580H/sZ6fmFRM6go8LEkil7hnIQ/XlH+xo= Subject key identifier: 20:51:AE:54:67:E9:18:BE:98:A6:80:60:76:B1:82:63:93:EA:F0:23 Certificate issuer: /CN=A911C90F/serialNumber=343093AE13F586192ED30AE5E3D927D1873A6B46 Certificate serial: 7F Authority key identifier: 34:30:93:AE:13:F5:86:19:2E:D3:0A:E5:E3:D9:27:D1:87:3A:6B:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDCTrhP1hhku0wrl49kn0Yc6a0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C90F/D35AC63E54AE11F08363EA23C4F9AE02/CB4ACDBC54AF11F0999FAA3EC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:09:18 +0000 ROA not before: Sun 29 Jun 2025 06:10:45 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153692 IP address blocks: 163.223.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C90F/D35AC63E54AE11F08363EA23C4F9AE02/NDCTrhP1hhku0wrl49kn0Yc6a0Y.crl rsync://rpki.apnic.net/member_repository/A911C90F/D35AC63E54AE11F08363EA23C4F9AE02/NDCTrhP1hhku0wrl49kn0Yc6a0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDCTrhP1hhku0wrl49kn0Yc6a0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C90F, serialNumber=343093AE13F586192ED30AE5E3D927D1873A6B46 Validity Not Before: Jun 29 06:10:45 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3e61e-3f22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:43:09:32:a6:85:8a:de:a7:35:5b:1e:f1:1a: 5d:98:a8:75:5e:f2:a3:9f:33:24:9c:dd:da:02:48: e3:9b:d4:53:ad:8e:a3:8a:a2:df:0f:7f:74:69:f4: b7:e3:d1:f5:05:fb:a7:ee:ab:b2:e3:8b:9e:e7:ad: 99:66:1a:d8:85:f1:1c:95:55:ef:8e:25:05:d8:57: f3:f1:1a:f0:df:5e:b9:0f:69:35:cd:37:58:53:c9: fc:7c:81:6c:8b:6d:cc:60:ce:fe:95:1c:94:3d:4b: ea:d4:a6:b5:47:bf:be:c5:b4:c9:4e:8d:6b:80:18: fd:ba:96:2d:2f:ac:e7:45:09:75:e1:08:2f:d5:1f: b0:06:c2:ca:14:e4:36:f5:e4:f5:b7:86:3d:16:af: 7f:62:e0:7c:cb:18:58:51:f6:28:d3:03:a4:38:f9: 95:6f:21:ff:54:62:22:81:39:c8:0d:63:fd:27:c0: c8:15:a5:12:fa:c8:25:2c:80:44:90:00:81:3d:c5: 80:73:c4:b8:b3:07:d4:c9:ad:95:d1:09:c6:c0:e9: 16:e3:9a:86:d6:94:4f:d0:72:04:7d:a6:d9:89:f5: 3a:76:35:e1:4d:17:0e:bb:7e:b9:92:00:62:43:ce: eb:69:c8:f6:fd:9d:98:c1:c9:d0:16:46:e0:9c:08: e0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:51:AE:54:67:E9:18:BE:98:A6:80:60:76:B1:82:63:93:EA:F0:23 X509v3 Authority Key Identifier: keyid:34:30:93:AE:13:F5:86:19:2E:D3:0A:E5:E3:D9:27:D1:87:3A:6B:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C90F/D35AC63E54AE11F08363EA23C4F9AE02/NDCTrhP1hhku0wrl49kn0Yc6a0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDCTrhP1hhku0wrl49kn0Yc6a0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C90F/D35AC63E54AE11F08363EA23C4F9AE02/CB4ACDBC54AF11F0999FAA3EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.96.0/24 Signature Algorithm: sha256WithRSAEncryption 51:76:64:1b:7e:2c:bf:b5:1d:69:c9:30:02:f5:98:97:b3:8c: b8:f8:2b:53:62:98:8f:9a:d0:a0:55:43:41:dd:18:54:30:2b: e2:32:a6:7c:d3:41:36:f9:06:04:d6:a0:25:a4:3f:32:60:d5: 70:f2:93:8d:63:ad:ff:e2:5e:16:f6:d2:37:85:cc:0f:57:96: a9:43:b9:98:a9:f7:45:4e:68:6c:e3:c3:27:65:da:b0:67:25: 9b:75:e7:d7:c4:75:1b:d1:38:14:e6:04:26:23:a7:24:48:9c: b2:4f:4d:ee:4c:f8:0f:86:76:87:c7:5f:3b:e1:8c:4e:a7:71: e8:99:ab:35:fa:62:28:3e:dc:5f:32:1a:9c:d4:18:2a:e0:28: f5:48:74:97:be:a3:31:9b:82:22:78:39:9b:2a:65:58:c4:3d: 04:02:6e:a1:9c:f9:08:35:6a:96:fb:cb:5a:2c:b9:66:ae:31: 8e:10:56:0e:5b:ee:dc:4e:69:56:99:4d:9c:d2:bd:dd:64:6b: cf:79:86:21:7d:a5:d2:59:8a:22:4a:23:0c:44:34:01:1b:57: 49:30:01:45:be:18:8e:7e:a6:db:4c:9d:c3:ff:6d:e1:75:c9: a6:ca:f6:cb:2a:2a:c2:fe:df:9c:9e:db:ce:fa:90:b7:fd:52: b1:f4:eb:31 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QzkwRjExMC8GA1UEBRMoMzQzMDkzQUUxM0Y1ODYxOTJFRDMwQUU1RTNEOTI3RDE4 NzNBNkI0NjAeFw0yNTA2MjkwNjEwNDVaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNlNjFlLTNmMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoQwkypoWK3qc1Wx7xGl2YqHVe8qOfMySc3doCSOOb1FOtjqOKot8Pf3Rp9Lfj 0fUF+6fuq7Lji57nrZlmGtiF8RyVVe+OJQXYV/PxGvDfXrkPaTXNN1hTyfx8gWyL bcxgzv6VHJQ9S+rUprVHv77FtMlOjWuAGP26li0vrOdFCXXhCC/VH7AGwsoU5Db1 5PW3hj0Wr39i4HzLGFhR9ijTA6Q4+ZVvIf9UYiKBOcgNY/0nwMgVpRL6yCUsgESQ AIE9xYBzxLizB9TJrZXRCcbA6RbjmobWlE/QcgR9ptmJ9Tp2NeFNFw67frmSAGJD zutpyPb9nZjBydAWRuCcCOD9AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUIFGuVGfp GL6YpoBgdrGCY5Pq8CMwHwYDVR0jBBgwFoAUNDCTrhP1hhku0wrl49kn0Yc6a0Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDOTBGL0QzNUFDNjNFNTRB RTExRjA4MzYzRUEyM0M0RjlBRTAyL05EQ1RyaFAxaGhrdTB3cmw0OWtuMFljNmEw WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTkRDVHJoUDFoaGt1MHdybDQ5a24wWWM2YTBZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzkwRi9EMzVBQzYzRTU0QUUxMUYwODM2M0VBMjNDNEY5QUUwMi9DQjRBQ0RCQzU0 QUYxMUYwOTk5RkFBM0VDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACj32AwDQYJKoZIhvcNAQELBQADggEBAFF2ZBt+LL+1HWnJMAL1mJez jLj4K1NimI+a0KBVQ0HdGFQwK+IypnzTQTb5BgTWoCWkPzJg1XDyk41jrf/iXhb2 0jeFzA9XlqlDuZip90VOaGzjwydl2rBnJZt159fEdRvROBTmBCYjpyRInLJPTe5M +A+GdofHXzvhjE6nceiZqzX6Yig+3F8yGpzUGCrgKPVIdJe+ozGbgiJ4OZsqZVjE PQQCbqGc+Qg1apb7y1osuWauMY4QVg5b7txOaVaZTZzSvd1ka895hiF9pdJZiiJK IwxENAEbV0kwAUW+GI5+pttMncP/beF1yabK9ssqKsL+35ye2876kLf9UrH06zE= -----END CERTIFICATE-----Generated at Mon Mar 2 20:15:18 2026 by rpki-client