$ rpki-client -vvf rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/90C06632E59811F0B79FD920496F56BC.roa File: 90C06632E59811F0B79FD920496F56BC.roa (raw, json) Hash identifier: Z/MTCzTXGo9DzTVFAZ1qXdgIiz2vNTTF/MPMd5PghNY= Subject key identifier: 0B:22:20:46:E2:1F:2F:23:57:A6:A5:55:AE:F4:2E:57:9E:9D:CF:08 Certificate issuer: /CN=A916069A/serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Certificate serial: 0128 Authority key identifier: D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/90C06632E59811F0B79FD920496F56BC.roa Signing time: Sun 01 Mar 2026 18:19:42 +0000 ROA not before: Fri 30 Jan 2026 19:22:10 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 151133 IP address blocks: 160.191.184.0/23 maxlen: 23 160.191.184.0/24 maxlen: 24 160.191.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916069A, serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Validity Not Before: Jan 30 19:22:10 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4833d-64c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8d:25:50:5e:ff:fa:0d:03:18:25:e3:ba:b6: 33:14:6d:c0:a1:d9:f3:61:61:3e:5c:f5:59:5f:86: bf:e7:35:76:70:99:47:b4:02:37:38:26:4a:cd:9e: 4c:4f:8b:74:d6:d6:29:73:d6:9b:ee:b2:57:1c:4a: 31:e1:bf:23:03:ca:30:e6:ec:8b:33:1b:60:13:40: a4:39:93:04:8f:91:b2:d1:11:9e:4b:d2:0e:8c:70: f7:76:3b:ec:87:bf:3f:fc:c4:22:fe:29:25:b2:29: f3:ef:db:b5:f7:0d:dc:46:bf:3a:c8:35:3a:87:78: a6:9a:71:47:c9:4c:8c:00:eb:93:23:b7:02:23:f0: e7:4d:c7:ce:e7:63:31:9e:5c:0a:20:59:e2:dd:ce: 61:07:0d:a0:0e:95:96:0f:c1:9d:3f:67:c6:aa:e8: ac:43:93:b5:0a:6d:fe:1a:35:b8:f7:fb:e6:0c:64: 06:0d:73:5a:8f:4f:6a:67:1a:b8:50:a1:97:70:67: a9:6d:ce:4c:0b:b2:5c:3b:0f:b0:4a:45:11:5f:a1: 17:f4:3b:d5:70:0c:dc:23:62:70:46:0b:7f:b3:8f: c8:8e:f9:c8:60:da:88:5a:14:3b:f5:69:9c:a1:4f: cf:43:f0:78:0c:d0:a0:7b:0e:d9:81:df:aa:5b:0d: 42:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:22:20:46:E2:1F:2F:23:57:A6:A5:55:AE:F4:2E:57:9E:9D:CF:08 X509v3 Authority Key Identifier: keyid:D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/90C06632E59811F0B79FD920496F56BC.roa sbgp-ipAddrBlock: critical IPv4: 160.191.184.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:97:e6:0f:6c:fc:4f:2f:07:dc:e7:3c:e8:9a:31:07:22:76: 1b:f2:0f:b6:29:9f:db:52:66:4a:16:85:42:b4:d4:aa:07:13: 6e:74:ee:d1:87:bb:d2:b0:52:20:51:01:5a:69:42:29:a8:94: 31:d8:e3:ad:a5:21:b8:71:4b:4f:81:17:74:f0:63:60:55:9a: 19:f7:ee:f9:55:f3:78:8b:75:67:c5:18:20:dd:f6:12:1a:13: 9f:91:9f:ff:9d:f9:1d:17:33:13:4e:94:3e:08:e8:8e:21:7f: 2a:b5:8f:42:bb:8c:65:86:78:f4:2e:9b:f6:e6:7e:6c:65:60: 29:1b:fe:e4:66:d0:28:ea:3f:ab:55:3f:d5:dd:06:c0:97:c9: 09:73:54:1b:dd:63:74:45:b4:63:99:e7:3e:cd:1b:ce:a0:ad: c5:88:c8:dd:84:1b:d7:d0:80:2f:92:c2:90:1b:2f:93:3a:89: 09:84:c0:18:d3:3d:1a:be:f3:90:3e:e1:51:77:83:9d:bd:be: df:56:52:bd:0d:7f:0f:33:33:5f:00:11:03:54:5d:ba:2e:ed: a0:7a:ab:01:9e:03:7a:e7:60:e7:6b:cd:51:53:58:09:25:82: e8:06:5e:82:77:e7:96:69:13:37:94:39:6a:6e:4e:a9:b7:e9: bd:26:fc:6d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA2OUExMTAvBgNVBAUTKEQ5MDgzOTNDNUJBODAzNUFGNjhCN0VDMDA5NTU4RTgx MkVEMDk1RTAwHhcNMjYwMTMwMTkyMjEwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODMzZC02NGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4I0lUF7/+g0DGCXjurYzFG3AodnzYWE+XPVZX4a/5zV2cJlHtAI3OCZKzZ5M T4t01tYpc9ab7rJXHEox4b8jA8ow5uyLMxtgE0CkOZMEj5Gy0RGeS9IOjHD3djvs h78//MQi/iklsinz79u19w3cRr86yDU6h3immnFHyUyMAOuTI7cCI/DnTcfO52Mx nlwKIFni3c5hBw2gDpWWD8GdP2fGquisQ5O1Cm3+GjW49/vmDGQGDXNaj09qZxq4 UKGXcGepbc5MC7JcOw+wSkURX6EX9DvVcAzcI2JwRgt/s4/IjvnIYNqIWhQ79Wmc oU/PQ/B4DNCgew7Zgd+qWw1CsQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAsiIEbi Hy8jV6alVa70Lleenc8IMB8GA1UdIwQYMBaAFNkIOTxbqANa9ot+wAlVjoEu0JXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDY5QS8yRUI2MDc5NjlC RjAxMUVGODFDOTAyNjdDNEY5QUUwMi8yUWc1UEZ1b0ExcjJpMzdBQ1ZXT2dTN1Fs ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJRZzVQRnVvQTFyMmkzN0FDVldPZ1M3UWxlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA2OUEvMkVCNjA3OTY5QkYwMTFFRjgxQzkwMjY3QzRGOUFFMDIvOTBDMDY2MzJF NTk4MTFGMEI3OUZEOTIwNDk2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoL+4MA0GCSqGSIb3DQEBCwUAA4IBAQCdl+YPbPxPLwfc5zzomjEH InYb8g+2KZ/bUmZKFoVCtNSqBxNudO7Rh7vSsFIgUQFaaUIpqJQx2OOtpSG4cUtP gRd08GNgVZoZ9+75VfN4i3VnxRgg3fYSGhOfkZ//nfkdFzMTTpQ+COiOIX8qtY9C u4xlhnj0Lpv25n5sZWApG/7kZtAo6j+rVT/V3QbAl8kJc1Qb3WN0RbRjmec+zRvO oK3FiMjdhBvX0IAvksKQGy+TOokJhMAY0z0avvOQPuFRd4Odvb7fVlK9DX8PMzNf ABEDVF26Lu2geqsBngN652Dna81RU1gJJYLoBl6Cd+eWaRM3lDlqbk6pt+m9Jvxt -----END CERTIFICATE-----Generated at Mon Mar 2 07:02:09 2026 by rpki-client