$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/5DE5F5603D2311F0BC3F7332C4F9AE02.roa File: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (raw, json) Hash identifier: KdnM+2nBmwCpA+MGMHO0Bl1xzd46blXEMYh3gkA7MWA= Subject key identifier: 95:C0:AE:6B:16:86:E9:7A:5F:28:DC:5A:3E:A3:5C:AA:18:2F:F2:B3 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2BC1 Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/5DE5F5603D2311F0BC3F7332C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:51:32 +0000 ROA not before: Fri 16 Jan 2026 16:12:50 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 138077 IP address blocks: 160.250.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11201 (0x2bc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Jan 16 16:12:50 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a48ab4-2131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0d:ec:f6:84:ec:56:d1:43:2b:fe:7a:5e:b1: 48:f8:be:96:b3:dc:ba:db:39:07:23:97:fd:ac:07: 03:31:b5:06:be:0b:d3:9e:1a:11:4e:08:27:53:4d: 3a:1f:1d:6a:e8:2c:17:a9:35:7a:d4:e1:63:3f:88: 81:89:31:5e:40:f0:11:0a:ba:4f:62:de:a3:6d:02: ce:37:52:ad:87:88:35:a4:f6:88:d2:e7:a3:25:38: 60:95:f0:8c:b9:a5:1b:dd:fc:bd:e9:93:f0:49:2d: 74:2b:a4:81:48:4e:3b:09:9e:2c:97:9c:b9:a9:a7: 16:ab:9f:7b:3e:41:9d:04:66:86:53:61:b1:f2:b3: f4:dc:5c:b7:d6:0e:a1:fc:4e:d8:d8:8b:cd:9a:96: 05:5e:cc:d6:92:a0:fe:af:c6:c2:59:c4:d4:b5:87: 7d:a8:2c:f8:fe:66:a3:29:9a:f6:d7:bc:6d:44:cf: fa:b7:f2:10:fb:f3:8c:58:6f:43:92:13:6b:41:dd: 26:8d:91:b4:3a:ba:a9:02:bc:6f:60:c2:65:77:73: 0b:66:1c:f3:8d:eb:cd:df:48:03:0a:46:87:92:67: 20:71:8c:cd:a3:a4:36:ca:1a:5b:2a:e2:95:91:bd: 96:a3:01:f2:a0:2c:6d:9f:f6:0f:79:05:d4:ac:0d: 68:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C0:AE:6B:16:86:E9:7A:5F:28:DC:5A:3E:A3:5C:AA:18:2F:F2:B3 X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/5DE5F5603D2311F0BC3F7332C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.250.198.0/23 Signature Algorithm: sha256WithRSAEncryption 91:01:15:49:68:28:96:8d:d0:8e:23:b5:c7:7c:04:0d:48:66: 88:ee:2e:56:d1:8f:50:80:b2:40:29:3d:33:f7:7d:3b:be:d2: 45:d7:57:bb:5b:55:f0:a1:d7:a2:ff:d8:f1:99:1e:1b:7e:7e: 13:9c:a7:ad:05:d0:11:42:93:cb:2f:f5:b2:5c:e2:e1:58:aa: 87:78:f7:27:8a:a9:d1:48:44:14:d7:13:ea:7c:42:c1:29:79: 6c:96:51:c0:9d:c4:31:71:38:1d:70:20:78:5b:55:ca:0f:3d: 1d:66:64:19:25:f7:f6:05:26:dc:3b:1f:91:54:bd:d8:d6:55: dc:56:ae:29:0a:31:8f:72:fc:ad:14:cc:cc:85:4a:4f:c4:1d: d7:17:fd:d8:40:d9:24:b7:1f:a6:2e:9d:87:69:bd:6d:ab:b9: 57:74:b9:5b:28:87:6b:7e:46:93:b9:9b:d9:5e:d5:a7:e0:a1: cf:1d:49:8a:e7:4e:0c:b2:a4:3e:3c:50:f0:be:ff:dc:d5:fa: 90:0e:34:42:b6:f4:bf:11:32:c3:fb:6d:46:c6:d0:80:a4:42: eb:6a:d6:63:ae:d8:a8:f7:5c:10:2c:5a:b8:f8:77:b8:25:13: 86:ae:58:74:e4:32:43:15:69:35:c9:c0:db:42:54:32:6c:3a: 28:d2:be:30 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICK8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjYwMTE2MTYxMjUwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGFiNC0yMTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwg3s9oTsVtFDK/56XrFI+L6Ws9y62zkHI5f9rAcDMbUGvgvTnhoRTggnU006 Hx1q6CwXqTV61OFjP4iBiTFeQPARCrpPYt6jbQLON1Kth4g1pPaI0uejJThglfCM uaUb3fy96ZPwSS10K6SBSE47CZ4sl5y5qacWq597PkGdBGaGU2Gx8rP03Fy31g6h /E7Y2IvNmpYFXszWkqD+r8bCWcTUtYd9qCz4/majKZr217xtRM/6t/IQ+/OMWG9D khNrQd0mjZG0OrqpArxvYMJld3MLZhzzjevN30gDCkaHkmcgcYzNo6Q2yhpbKuKV kb2WowHyoCxtn/YPeQXUrA1o+QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJXArmsW hul6XyjcWj6jXKoYL/KzMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQjdGODE5NTgzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNURFNUY1NjAz RDIzMTFGMEJDM0Y3MzMyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoPrGMA0GCSqGSIb3DQEBCwUAA4IBAQCRARVJaCiWjdCOI7XHfAQN SGaI7i5W0Y9QgLJAKT0z9307vtJF11e7W1Xwodei/9jxmR4bfn4TnKetBdARQpPL L/WyXOLhWKqHePcniqnRSEQU1xPqfELBKXlsllHAncQxcTgdcCB4W1XKDz0dZmQZ Jff2BSbcOx+RVL3Y1lXcVq4pCjGPcvytFMzMhUpPxB3XF/3YQNkktx+mLp2Hab1t q7lXdLlbKIdrfkaTuZvZXtWn4KHPHUmK504MsqQ+PFDwvv/c1fqQDjRCtvS/ETLD +21GxtCApELratZjrtio91wQLFq4+He4JROGrlh05DJDFWk1ycDbQlQybDoo0r4w -----END CERTIFICATE-----Generated at Mon Mar 2 12:34:22 2026 by rpki-client