$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/8D431594FFDF11EF8DF72930C4F9AE02.roa File: 8D431594FFDF11EF8DF72930C4F9AE02.roa (raw, json) Hash identifier: XIBVLN0QTNRfgKTP2te+4QcwWNVAHO7ezlqwT3o7bi8= Subject key identifier: 26:66:FE:AB:B3:45:79:2F:AB:05:75:FC:01:BD:CF:29:44:73:07:6F Certificate issuer: /CN=A91288D9/serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Certificate serial: 0126 Authority key identifier: A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/8D431594FFDF11EF8DF72930C4F9AE02.roa Signing time: Thu 04 Jun 2026 19:22:34 +0000 ROA not before: Thu 04 Jun 2026 19:22:34 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 58935 IP address blocks: 160.250.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:59:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9, serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Validity Not Before: Jun 4 19:22:34 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a21d07a-c720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ba:56:10:cb:c4:9b:a7:83:b1:5c:88:85:04: 80:82:4b:7a:92:f9:75:a9:b3:72:eb:3e:61:22:92: 7c:5a:7a:4f:b7:ae:2b:1e:1a:d3:ec:ce:d2:0d:5a: 1d:d8:72:d6:e5:a6:8b:b6:b3:8c:f0:b3:6d:72:d0: 43:dc:ee:8e:56:b6:93:c3:d4:db:6c:ac:30:d3:5f: 87:85:32:ad:53:28:e0:4f:43:6b:6f:9f:ca:4a:89: 3f:4c:1d:9d:89:6e:79:70:6e:32:4d:f8:44:e8:65: 50:59:e0:dd:bc:26:bd:c6:ba:97:30:d7:b1:95:26: f7:44:34:30:07:f0:9d:41:b9:18:92:63:67:33:1f: 57:69:12:fd:89:30:aa:e1:d9:e8:9f:ed:71:b3:1f: 4f:16:ef:43:64:2a:e6:c2:eb:c8:19:56:b2:7c:46: 21:fd:99:c6:7a:bd:d3:ec:aa:10:09:9d:d5:39:ca: de:6f:7c:3c:fe:58:7b:ea:62:2a:dd:7a:ba:f7:fa: 1e:f2:ed:f2:52:ee:60:9e:7b:ab:c6:45:e8:a1:1c: b8:c2:fd:46:4e:23:83:62:0c:91:7f:3c:77:67:d8: 71:64:dd:c3:92:98:22:1a:30:c9:f1:66:ed:d4:e8: 27:a7:d9:c3:61:e4:cc:22:66:9a:91:49:f4:39:c2: ba:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:66:FE:AB:B3:45:79:2F:AB:05:75:FC:01:BD:CF:29:44:73:07:6F X509v3 Authority Key Identifier: keyid:A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/8D431594FFDF11EF8DF72930C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.250.89.0/24 Signature Algorithm: sha256WithRSAEncryption 58:ce:0e:3b:0e:fb:dd:87:7d:56:6e:90:81:8e:22:d4:59:44: 5c:49:0e:b9:35:0a:07:bf:5f:dc:81:45:d4:a6:c9:19:e5:27: e6:4f:fd:1d:d4:2c:ed:ac:ae:ce:14:72:1e:16:cd:62:44:15: 44:71:63:bd:ae:46:27:5c:95:34:3d:2b:f4:c1:50:7a:b5:a4: 36:0e:e5:2e:65:39:c3:16:bc:0e:2e:1c:33:24:62:37:e6:3d: ff:bd:eb:66:09:cb:05:af:8b:be:e2:d0:a6:9c:45:0c:1e:f7: e5:b7:9e:37:b1:f9:73:e4:5e:ba:e2:69:bf:0d:0c:5e:a5:e0: fa:5d:2a:13:52:b4:ca:ab:ad:16:3b:41:4b:a8:51:12:5c:fc: eb:43:84:b2:6f:2f:d5:1f:f7:29:60:54:66:0f:6a:1e:b4:25: ca:67:6d:d5:bb:64:12:89:48:37:6e:ce:64:00:d7:a2:7f:ca: c9:b7:e4:4c:15:20:41:0c:cb:5c:fd:ee:d5:19:b9:b7:8b:01: e3:c4:e8:b2:d3:9a:ed:bd:c4:19:e3:be:73:32:18:20:c3:d9: 5d:f3:80:5d:c7:99:00:c2:cc:78:3e:e4:53:6e:72:d0:50:e6: 68:0c:3b:77:60:ac:db:45:c3:7e:ea:2a:05:ad:77:81:f7:fb: e5:ea:a2:a3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4RDkxMTAvBgNVBAUTKEE2NEJFNDRBQ0IwMEU0QkRBRTQ0OTFCMEZBMENENzA5 OUQyQzcyN0MwHhcNMjYwNjA0MTkyMjM0WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxZDA3YS1jNzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrpWEMvEm6eDsVyIhQSAgkt6kvl1qbNy6z5hIpJ8WnpPt64rHhrT7M7SDVod 2HLW5aaLtrOM8LNtctBD3O6OVraTw9TbbKww01+HhTKtUyjgT0Nrb5/KSok/TB2d iW55cG4yTfhE6GVQWeDdvCa9xrqXMNexlSb3RDQwB/CdQbkYkmNnMx9XaRL9iTCq 4dnon+1xsx9PFu9DZCrmwuvIGVayfEYh/ZnGer3T7KoQCZ3VOcreb3w8/lh76mIq 3Xq69/oe8u3yUu5gnnurxkXooRy4wv1GTiODYgyRfzx3Z9hxZN3DkpgiGjDJ8Wbt 1Ognp9nDYeTMImaakUn0OcK69QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCZm/quz RXkvqwV1/AG9zylEcwdvMB8GA1UdIwQYMBaAFKZL5ErLAOS9rkSRsPoM1wmdLHJ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODhEOS9GODNFM0ZDRUFE QkMxMUVGQjMwMjk4M0VDNEY5QUUwMi9wa3ZrU3NzQTVMMnVSSkd3LWd6WENaMHNj bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BrdmtTc3NBNUwydVJKR3ctZ3pYQ1owc2Nudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg4RDkvRjgzRTNGQ0VBREJDMTFFRkIzMDI5ODNFQzRGOUFFMDIvOEQ0MzE1OTRG RkRGMTFFRjhERjcyOTMwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoPpZMA0GCSqGSIb3DQEBCwUAA4IBAQBYzg47Dvvdh31WbpCBjiLU WURcSQ65NQoHv1/cgUXUpskZ5SfmT/0d1CztrK7OFHIeFs1iRBVEcWO9rkYnXJU0 PSv0wVB6taQ2DuUuZTnDFrwOLhwzJGI35j3/vetmCcsFr4u+4tCmnEUMHvflt543 sflz5F664mm/DQxepeD6XSoTUrTKq60WO0FLqFESXPzrQ4Syby/VH/cpYFRmD2oe tCXKZ23Vu2QSiUg3bs5kANeif8rJt+RMFSBBDMtc/e7VGbm3iwHjxOiy05rtvcQZ 475zMhggw9ld84Bdx5kAwsx4PuRTbnLQUOZoDDt3YKzbRcN+6ioFrXeB9/vl6qKj -----END CERTIFICATE-----Generated at Sat Jun 13 21:24:05 2026 by rpki-client