$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/1C6D5ED2C51F11F08993E41BC4F9AE02.roa File: 1C6D5ED2C51F11F08993E41BC4F9AE02.roa (raw, json) Hash identifier: h9DoWAti9FtevIgArDst4H6dPePV+rhbEHLYlKOnyqw= Subject key identifier: 28:58:20:3E:57:B5:0E:8E:E9:54:91:32:46:D2:0C:E3:85:10:66:CA Certificate issuer: /CN=A91423C1/serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Certificate serial: 0120 Authority key identifier: 4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/1C6D5ED2C51F11F08993E41BC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:58:43 +0000 ROA not before: Fri 09 Jan 2026 03:23:15 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63969 IP address blocks: 161.248.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:11:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423C1, serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Validity Not Before: Jan 9 03:23:15 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a47e53-6320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b2:05:21:e7:cf:0e:54:9f:fc:17:7a:35:0b: 58:38:b8:b8:ce:69:c2:56:38:31:13:23:29:8b:38: 4f:ea:5e:3f:39:cb:65:ab:f2:2f:6b:f1:50:1f:7b: ac:45:a8:35:03:6f:77:29:50:4a:18:fe:ce:18:e3: 88:36:33:4c:16:65:db:55:28:09:24:f2:61:50:90: 9a:80:c3:75:90:f3:42:f5:d1:36:0b:0c:f3:5c:bf: 28:1c:c5:fe:d8:67:c3:75:95:29:db:3f:44:47:e2: 89:c6:b8:2f:b3:9c:f1:cd:7e:bd:13:77:98:d9:c8: 83:cb:a7:ad:f8:ca:71:99:15:f2:55:cd:ac:3e:f0: f0:be:a0:e3:44:2b:75:70:94:12:bb:f4:b7:4a:8d: 13:be:ed:b2:f8:45:c7:ad:78:ba:d5:13:41:29:24: a4:fe:c6:6c:93:d8:3b:2b:90:a7:ac:f5:ec:0b:58: 70:8a:fc:e0:39:c4:c3:b7:7d:8a:99:9d:b2:bd:6b: a3:d5:fc:7a:c8:c5:69:e5:c7:0e:9e:a8:a5:05:4d: 80:07:55:36:d0:a1:96:32:4a:55:e7:40:ca:38:68: 8b:75:f2:85:90:93:c6:45:b3:09:95:a9:80:c9:b0: 78:21:44:83:61:4d:52:a2:3e:f7:df:cc:8d:5a:7b: ea:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:58:20:3E:57:B5:0E:8E:E9:54:91:32:46:D2:0C:E3:85:10:66:CA X509v3 Authority Key Identifier: keyid:4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/1C6D5ED2C51F11F08993E41BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.10.0/24 Signature Algorithm: sha256WithRSAEncryption 96:57:50:b5:75:fc:26:d9:f8:3b:12:6f:c6:74:68:f7:73:bd: d1:e8:60:e5:1e:43:0a:2f:bf:55:07:f8:98:05:e9:ae:2d:54: b4:41:aa:f7:8d:4f:20:97:29:65:5f:34:bd:9a:e2:87:84:7a: df:83:65:4e:8f:33:a8:df:58:48:55:7c:6f:26:1d:bb:96:24: b9:a9:d9:5b:96:42:20:f2:e0:92:8e:29:23:be:ff:17:49:49: ac:45:17:e9:d6:5b:c9:66:87:55:82:f1:45:e4:db:65:05:ac: eb:31:16:fe:23:b2:07:dc:34:a5:46:0b:b0:c1:6f:01:42:27: de:ed:66:c7:c1:86:26:f1:af:7e:54:9d:f5:21:4e:6b:32:db: 2f:f5:40:e5:4d:ff:95:b5:d6:2d:72:fa:50:f1:6e:ab:5f:f3: 43:5e:6b:7c:e4:ab:97:5e:45:12:ca:d0:c3:58:e4:43:37:bc: 77:e1:14:32:2f:6b:10:06:26:09:27:61:eb:f6:d7:5b:af:ff: 23:52:5b:6b:64:84:d3:f1:02:6c:09:44:88:d8:4a:8d:34:4a: 6d:ac:eb:a5:6f:de:5b:a3:4d:df:d0:ee:cc:93:0d:6d:d2:3b: 98:bd:fd:ac:15:44:f7:80:c1:fc:2b:e2:23:06:4a:43:31:aa: 9c:ff:46:eb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzQzExMTAvBgNVBAUTKDREQzdFMjhCNTQ2RjJBMEI1MzhFOENERjgzMkQ5QUEx RjM3Q0M4RTQwHhcNMjYwMTA5MDMyMzE1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2U1My02MzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrIFIefPDlSf/Bd6NQtYOLi4zmnCVjgxEyMpizhP6l4/Octlq/Iva/FQH3us Rag1A293KVBKGP7OGOOINjNMFmXbVSgJJPJhUJCagMN1kPNC9dE2CwzzXL8oHMX+ 2GfDdZUp2z9ER+KJxrgvs5zxzX69E3eY2ciDy6et+MpxmRXyVc2sPvDwvqDjRCt1 cJQSu/S3So0Tvu2y+EXHrXi61RNBKSSk/sZsk9g7K5CnrPXsC1hwivzgOcTDt32K mZ2yvWuj1fx6yMVp5ccOnqilBU2AB1U20KGWMkpV50DKOGiLdfKFkJPGRbMJlamA ybB4IUSDYU1Soj7338yNWnvqHwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFChYID5X tQ6O6VSRMkbSDOOFEGbKMB8GA1UdIwQYMBaAFE3H4otUbyoLU46M34MtmqHzfMjk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNDMS9EMDMyMEVGOEJG NEYxMUVGQkNGNjg5NDRDNEY5QUUwMi9UY2ZpaTFSdktndFRqb3pmZ3kyYW9mTjh5 T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RjZmlpMVJ2S2d0VGpvemZneTJhb2ZOOHlPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIzQzEvRDAzMjBFRjhCRjRGMTFFRkJDRjY4OTQ0QzRGOUFFMDIvMUM2RDVFRDJD NTFGMTFGMDg5OTNFNDFCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAofgKMA0GCSqGSIb3DQEBCwUAA4IBAQCWV1C1dfwm2fg7Em/GdGj3 c73R6GDlHkMKL79VB/iYBemuLVS0Qar3jU8glyllXzS9muKHhHrfg2VOjzOo31hI VXxvJh27liS5qdlblkIg8uCSjikjvv8XSUmsRRfp1lvJZodVgvFF5NtlBazrMRb+ I7IH3DSlRguwwW8BQife7WbHwYYm8a9+VJ31IU5rMtsv9UDlTf+VtdYtcvpQ8W6r X/NDXmt85KuXXkUSytDDWORDN7x34RQyL2sQBiYJJ2Hr9tdbr/8jUltrZITT8QJs CUSI2EqNNEptrOulb95bo03f0O7Mkw1t0juYvf2sFUT3gMH8K+IjBkpDMaqc/0br -----END CERTIFICATE-----Generated at Mon Mar 2 09:57:22 2026 by rpki-client