$ rpki-client -vvf rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/5909D86203DB11F0B7D5DD29C4F9AE02.roa File: 5909D86203DB11F0B7D5DD29C4F9AE02.roa (raw, json) Hash identifier: tvmpk8Ite7pSp5NKIoDYEAchnf/U0Ef+pNgJmhuXtZQ= Subject key identifier: BB:D0:D4:8D:9F:9D:5E:97:CC:B6:CB:0B:03:D7:01:FD:6D:D6:20:2F Certificate issuer: /CN=A91417B0/serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Certificate serial: EC Authority key identifier: CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/5909D86203DB11F0B7D5DD29C4F9AE02.roa Signing time: Sun 05 Apr 2026 06:40:13 +0000 ROA not before: Sun 05 Apr 2026 06:40:13 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 153550 IP address blocks: 161.248.244.0/23 maxlen: 23 161.248.244.0/24 maxlen: 24 161.248.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:10:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91417B0, serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Validity Not Before: Apr 5 06:40:13 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69d203cd-c2b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e7:08:8f:b6:aa:66:db:c0:a7:0a:01:f6:27: e9:e0:d6:65:ee:38:ce:42:d8:fa:79:2d:57:14:ba: cf:a1:56:22:09:4c:71:65:9b:1a:20:26:11:40:62: f2:93:1f:9d:96:7e:75:0a:7d:69:cc:c2:e4:a3:3f: e5:c3:7b:0d:17:f8:7e:bf:13:0b:9b:06:b0:24:71: 2c:e5:97:33:bb:af:96:9a:a1:f7:1b:5c:4f:0a:43: 63:1c:6e:e9:cf:5a:2f:0a:55:ad:be:6f:8f:ca:fb: 39:06:de:b4:e2:a2:a9:6a:63:b2:a5:70:b1:16:76: 75:18:53:bb:67:3a:4b:bb:53:83:45:7e:42:5e:c7: 54:d0:ad:c4:95:54:f5:6f:72:14:df:f6:7a:10:c1: b7:4f:e7:ba:3b:9d:a3:d1:3e:59:3d:24:7a:90:26: e6:47:16:86:62:96:d4:8d:b0:f0:c8:81:67:99:c0: 8c:cd:65:a8:5d:c1:9e:e7:b4:40:76:6c:31:91:05: 86:d3:f3:5f:d4:30:ad:c8:54:8b:82:20:04:66:19: 54:10:fd:3c:20:91:ba:d4:d5:27:a2:57:9c:0a:28: bc:1b:b9:fb:44:64:41:2a:04:1f:b1:cc:9d:69:1a: 33:82:b8:28:e6:ea:fa:60:fb:63:6d:b4:b6:f2:c7: 3e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D0:D4:8D:9F:9D:5E:97:CC:B6:CB:0B:03:D7:01:FD:6D:D6:20:2F X509v3 Authority Key Identifier: keyid:CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/5909D86203DB11F0B7D5DD29C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.244.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:30:03:73:ca:3e:a1:bc:f2:23:40:e9:d9:28:9e:7a:57:7f: 87:e5:66:1b:5c:9a:aa:61:71:d1:4d:ae:f0:b2:6c:6a:f8:df: 57:09:a9:4d:60:23:8f:dd:e4:7e:f2:d7:95:db:1f:a0:10:84: e7:5c:6d:2e:f6:2b:22:8a:d4:1e:cf:48:46:63:71:2b:98:2f: 50:d0:66:90:b0:a2:66:6a:80:58:4f:28:c0:f0:71:cc:67:81: d0:85:94:8a:c8:7e:38:27:80:2a:5f:82:70:cf:5b:42:21:c5: 85:07:a6:4f:c5:ad:a3:1c:cc:d8:9c:d3:24:ef:0c:da:ae:35: b1:d8:07:df:d8:81:93:ad:0f:4a:10:8a:ab:bf:15:45:da:e8: 15:15:53:3b:36:94:4e:f5:27:9f:c6:73:9b:6c:9f:95:50:ac: 73:29:9d:78:db:d3:14:79:22:9d:c0:73:43:ea:31:58:c7:17: 42:c0:f2:c7:a1:03:b0:61:09:f3:22:02:76:3f:66:5e:f2:68: dd:4b:21:82:eb:56:17:1f:aa:1b:8d:53:3d:b8:df:e1:bb:92: 7a:d6:46:73:09:0f:6b:67:10:2d:1a:47:1b:ba:7e:d2:ea:c2: 48:ee:bc:ea:9e:9d:8d:7d:85:cd:50:c1:79:d8:f1:01:e3:46: e0:c0:95:48 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE3QjAxMTAvBgNVBAUTKENBMjk3NzQ3NDMwQTFCRUIzNDBCQ0EzOUQ2MjIyRkQy NjQxOUI3REIwHhcNMjYwNDA1MDY0MDEzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQyMDNjZC1jMmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ucIj7aqZtvApwoB9ifp4NZl7jjOQtj6eS1XFLrPoVYiCUxxZZsaICYRQGLy kx+dln51Cn1pzMLkoz/lw3sNF/h+vxMLmwawJHEs5Zczu6+WmqH3G1xPCkNjHG7p z1ovClWtvm+Pyvs5Bt604qKpamOypXCxFnZ1GFO7ZzpLu1ODRX5CXsdU0K3ElVT1 b3IU3/Z6EMG3T+e6O52j0T5ZPSR6kCbmRxaGYpbUjbDwyIFnmcCMzWWoXcGe57RA dmwxkQWG0/Nf1DCtyFSLgiAEZhlUEP08IJG61NUnolecCii8G7n7RGRBKgQfscyd aRozgrgo5ur6YPtjbbS28sc+qwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLvQ1I2f nV6XzLbLCwPXAf1t1iAvMB8GA1UdIwQYMBaAFMopd0dDChvrNAvKOdYiL9JkGbfb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTdCMC9FMUFDODIxMEQ4 ODMxMUVGOTU0QTNENzBDNEY5QUUwMi95aWwzUjBNS0ctczBDOG81MWlJdjBtUVp0 OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lpbDNSME1LRy1zMEM4bzUxaUl2MG1RWnQ5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDE3QjAvRTFBQzgyMTBEODgzMTFFRjk1NEEzRDcwQzRGOUFFMDIvNTkwOUQ4NjIw M0RCMTFGMEI3RDVERDI5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofj0MA0GCSqGSIb3DQEBCwUAA4IBAQBtMANzyj6hvPIjQOnZKJ56 V3+H5WYbXJqqYXHRTa7wsmxq+N9XCalNYCOP3eR+8teV2x+gEITnXG0u9isiitQe z0hGY3ErmC9Q0GaQsKJmaoBYTyjA8HHMZ4HQhZSKyH44J4AqX4Jwz1tCIcWFB6ZP xa2jHMzYnNMk7wzarjWx2Aff2IGTrQ9KEIqrvxVF2ugVFVM7NpRO9SefxnObbJ+V UKxzKZ1429MUeSKdwHND6jFYxxdCwPLHoQOwYQnzIgJ2P2Ze8mjdSyGC61YXH6ob jVM9uN/hu5J61kZzCQ9rZxAtGkcbun7S6sJI7rzqnp2NfYXNUMF52PEB40bgwJVI -----END CERTIFICATE-----Generated at Fri Apr 17 23:35:24 2026 by rpki-client