$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/5420A28C7F5211ED8A16EF81C4F9AE02.roa File: 5420A28C7F5211ED8A16EF81C4F9AE02.roa (raw, json) Hash identifier: r3++Lv3YwYTeBuQ9YwxUmnM2K/MpPtlRtHpvGBG3Tew= Subject key identifier: CC:18:C9:6F:7B:1F:AC:ED:C2:B4:58:2F:73:83:7D:DC:28:32:F4:96 Certificate issuer: /CN=A91A3E3F/serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Certificate serial: 027C Authority key identifier: 94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/5420A28C7F5211ED8A16EF81C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:15:54 +0000 ROA not before: Wed 17 Dec 2025 02:21:22 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 45139 IP address blocks: 167.220.226.0/23 maxlen: 23 167.220.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 636 (0x27c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F, serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Validity Not Before: Dec 17 02:21:22 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4663a-444e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:f7:8c:9c:80:a0:5c:c0:36:e3:d7:fd:f3:99: 60:54:20:6d:75:ed:bc:2e:04:25:da:f0:cb:d5:fe: 3d:0d:2f:4b:ef:30:66:61:89:29:9b:a7:92:42:fa: 76:d6:78:ce:9f:e9:e4:c1:45:11:a6:14:1b:15:f4: 6e:c4:69:d9:f6:13:3d:9d:30:74:71:ce:55:30:85: dd:c7:55:a7:d8:7e:c9:2b:b8:07:0d:cc:a4:54:a1: 0c:87:39:40:e2:44:ac:9a:c8:9c:f9:df:2a:12:7d: 8a:2b:fb:fd:ce:bf:87:db:eb:e8:4c:4e:ee:54:89: 01:9d:2a:ed:d9:9c:19:70:fd:d6:60:8d:87:a8:bf: 1f:d7:5a:aa:58:2a:9d:22:d8:dd:0d:14:40:a9:cb: 8f:f0:42:f0:27:4d:d4:09:52:6d:ed:41:b3:ea:2d: f5:d1:34:d3:41:6c:92:55:da:75:bc:a6:1d:c4:6d: 42:6e:c0:21:e1:e6:b5:b8:cc:75:01:b3:70:17:aa: ba:c5:01:67:87:88:21:8e:70:2c:9b:f5:e4:00:69: 3a:09:20:7a:ed:d1:15:45:fc:0c:e2:0c:b3:68:9f: b6:78:04:5a:67:bb:b0:30:1a:fd:43:fa:87:de:8a: 60:12:47:47:6b:c7:d5:99:cc:ac:ec:45:ea:8b:49: 4d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:18:C9:6F:7B:1F:AC:ED:C2:B4:58:2F:73:83:7D:DC:28:32:F4:96 X509v3 Authority Key Identifier: keyid:94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/5420A28C7F5211ED8A16EF81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 167.220.226.0/23 Signature Algorithm: sha256WithRSAEncryption 01:17:e9:23:61:2a:01:07:a3:3f:2a:c8:6c:a7:5a:d2:9d:3e: 1a:03:ac:80:ba:49:2d:09:a4:24:f8:b1:cc:ad:69:b6:a6:72: 8d:3d:3c:bc:31:38:e9:92:29:32:25:9f:20:54:3e:ea:c5:83: 9e:14:eb:75:f3:90:b5:aa:22:c6:fd:7c:28:0d:00:12:b8:7f: a2:7f:ea:fd:95:ac:38:c7:29:62:ec:d5:09:e2:0d:a2:38:67: 47:6d:2a:a3:46:3c:62:4b:11:77:29:da:e7:a9:30:10:6b:45: 4c:cd:c8:cd:84:ca:c9:e3:aa:f8:1b:eb:38:c8:2e:9c:71:40: 42:7a:6e:5b:0b:87:36:88:7b:98:33:b3:d9:01:2e:cf:ef:52: 05:3e:1f:94:f2:0b:48:e1:16:f6:7b:56:57:47:ef:1d:ad:84: 5c:52:b4:d8:06:df:c5:ae:8a:88:25:e8:7b:7e:42:a6:d3:3a: bb:80:8c:9f:d4:a3:49:49:37:71:e0:c8:30:f9:13:2e:67:38: 01:4b:6c:c9:03:98:a8:4a:59:97:dd:8e:49:0c:3a:9c:42:84: c0:72:53:bb:bb:8b:5e:b5:17:00:63:01:d5:25:94:96:e5:0f: ec:3d:cd:22:b2:b4:d2:ac:e7:3c:18:c2:a9:b7:d1:f3:f2:54: 46:8e:c1:1c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDk0M0QzRTEwQjhCQkUxMzhCNDc3MzQ1NTRCNjkwNTMx MTBENDVCRTMwHhcNMjUxMjE3MDIyMTIyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjYzYS00NDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj/eMnICgXMA249f985lgVCBtde28LgQl2vDL1f49DS9L7zBmYYkpm6eSQvp2 1njOn+nkwUURphQbFfRuxGnZ9hM9nTB0cc5VMIXdx1Wn2H7JK7gHDcykVKEMhzlA 4kSsmsic+d8qEn2KK/v9zr+H2+voTE7uVIkBnSrt2ZwZcP3WYI2HqL8f11qqWCqd ItjdDRRAqcuP8ELwJ03UCVJt7UGz6i310TTTQWySVdp1vKYdxG1CbsAh4ea1uMx1 AbNwF6q6xQFnh4ghjnAsm/XkAGk6CSB67dEVRfwM4gyzaJ+2eARaZ7uwMBr9Q/qH 3opgEkdHa8fVmcys7EXqi0lNFwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMwYyW97 H6ztwrRYL3ODfdwoMvSWMB8GA1UdIwQYMBaAFJQ9PhC4u+E4tHc0VUtpBTEQ1Fvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi8zMDVFQjg3NjdD REIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRUaTBkelJWUzJrRk1SRFVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xEMC1FTGk3NFRpMGR6UlZTMmtGTVJEVVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvMzA1RUI4NzY3Q0RCMTFFREFCODQ0QzE5QzRGOUFFMDIvNTQyMEEyOEM3 RjUyMTFFRDhBMTZFRjgxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBp9ziMA0GCSqGSIb3DQEBCwUAA4IBAQABF+kjYSoBB6M/Kshsp1rS nT4aA6yAukktCaQk+LHMrWm2pnKNPTy8MTjpkikyJZ8gVD7qxYOeFOt185C1qiLG /XwoDQASuH+if+r9law4xyli7NUJ4g2iOGdHbSqjRjxiSxF3KdrnqTAQa0VMzcjN hMrJ46r4G+s4yC6ccUBCem5bC4c2iHuYM7PZAS7P71IFPh+U8gtI4Rb2e1ZXR+8d rYRcUrTYBt/FroqIJeh7fkKm0zq7gIyf1KNJSTdx4Mgw+RMuZzgBS2zJA5ioSlmX 3Y5JDDqcQoTAclO7u4tetRcAYwHVJZSW5Q/sPc0isrTSrOc8GMKpt9Hz8lRGjsEc -----END CERTIFICATE-----Generated at Mon Mar 2 11:18:43 2026 by rpki-client