$ rpki-client -vvf rpki.apnic.net/member_repository/A91A423D/B9769BD8B09511F08C152778C4F9AE02/DEE9FAB2B0A011F0B752B713C4F9AE02.roa File: DEE9FAB2B0A011F0B752B713C4F9AE02.roa (raw, json) Hash identifier: tIyfiOIVf8LJoJNKrA+GLInMrFSEZkAOa9GYbRAVo1s= Subject key identifier: 26:0A:2E:DA:41:0B:FF:27:8B:21:B5:F4:52:A1:6F:4B:62:A1:6A:55 Certificate issuer: /CN=A91A423D/serialNumber=3CCEEB9D2059CFE9F6085677D4B7FA264F533A0F Certificate serial: 48 Authority key identifier: 3C:CE:EB:9D:20:59:CF:E9:F6:08:56:77:D4:B7:FA:26:4F:53:3A:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PM7rnSBZz-n2CFZ31Lf6Jk9TOg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A423D/B9769BD8B09511F08C152778C4F9AE02/DEE9FAB2B0A011F0B752B713C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:12:13 +0000 ROA not before: Fri 24 Oct 2025 06:15:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154316 IP address blocks: 161.229.192.0/20 maxlen: 20 161.229.192.0/24 maxlen: 24 161.229.193.0/24 maxlen: 24 161.229.194.0/24 maxlen: 24 161.229.195.0/24 maxlen: 24 161.229.196.0/24 maxlen: 24 161.229.197.0/24 maxlen: 24 161.229.198.0/24 maxlen: 24 161.229.199.0/24 maxlen: 24 161.229.200.0/24 maxlen: 24 161.229.201.0/24 maxlen: 24 161.229.202.0/24 maxlen: 24 161.229.203.0/24 maxlen: 24 161.229.204.0/24 maxlen: 24 161.229.205.0/24 maxlen: 24 161.229.206.0/24 maxlen: 24 161.229.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A423D/B9769BD8B09511F08C152778C4F9AE02/PM7rnSBZz-n2CFZ31Lf6Jk9TOg8.crl rsync://rpki.apnic.net/member_repository/A91A423D/B9769BD8B09511F08C152778C4F9AE02/PM7rnSBZz-n2CFZ31Lf6Jk9TOg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PM7rnSBZz-n2CFZ31Lf6Jk9TOg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A423D, serialNumber=3CCEEB9D2059CFE9F6085677D4B7FA264F533A0F Validity Not Before: Oct 24 06:15:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3d8bc-5201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:a8:b6:94:50:6d:42:04:31:b3:7a:a5:ba:c2: a9:af:64:75:cb:d4:62:92:00:57:cf:f7:aa:94:12: f0:17:e8:20:69:4c:c6:88:b4:93:76:c9:43:9d:ea: 78:bd:8e:23:c4:43:0f:9e:51:33:59:2f:9f:f8:57: ba:07:1a:da:66:3f:30:58:77:80:89:3b:19:76:06: 4f:00:f3:4b:b6:21:ca:89:0a:2e:d9:14:4f:09:fc: 09:1e:c2:46:28:a5:1a:b9:29:05:c4:e8:21:18:42: e6:41:13:35:19:73:cf:9b:75:f0:77:00:dd:f8:7e: cf:03:d5:cb:a6:6a:54:58:d1:65:2b:43:e9:76:ac: 81:64:0c:65:a6:07:cd:ea:c3:3a:c5:61:20:22:c5: 1f:b6:4c:c9:98:75:2e:48:15:aa:39:ec:cf:c3:2c: f1:18:9c:75:a5:db:72:8d:a9:a1:89:4f:2e:d7:d1: 76:28:29:95:b5:ec:7c:78:ed:64:10:b9:95:4d:51: f7:1e:b3:ae:03:48:ed:2f:e5:b5:be:88:09:e3:7d: 21:1a:e8:32:30:8b:0d:f5:3f:ad:e8:31:be:62:82: e2:5f:9c:2e:0f:04:72:58:7d:48:44:52:2b:8d:4f: 1a:1e:40:2a:44:67:c5:aa:13:c0:8d:60:b3:5f:f9: 28:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:0A:2E:DA:41:0B:FF:27:8B:21:B5:F4:52:A1:6F:4B:62:A1:6A:55 X509v3 Authority Key Identifier: keyid:3C:CE:EB:9D:20:59:CF:E9:F6:08:56:77:D4:B7:FA:26:4F:53:3A:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A423D/B9769BD8B09511F08C152778C4F9AE02/PM7rnSBZz-n2CFZ31Lf6Jk9TOg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PM7rnSBZz-n2CFZ31Lf6Jk9TOg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A423D/B9769BD8B09511F08C152778C4F9AE02/DEE9FAB2B0A011F0B752B713C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.229.192.0/20 Signature Algorithm: sha256WithRSAEncryption 59:c2:d8:b8:7a:a1:c1:3a:34:95:f2:5f:5e:1d:65:d0:a6:80: fc:54:ea:cc:a2:ba:10:e6:e4:92:b2:d2:87:12:97:a8:78:ee: df:25:69:af:b8:5f:5f:ad:48:04:6a:f5:56:f0:d5:2c:b3:a2: e8:d7:ea:f0:3f:b3:92:46:97:ef:30:6a:5d:44:91:49:74:73: 85:f7:9e:4c:b6:1a:1c:84:4c:7b:c6:aa:66:20:3e:b6:bf:a3: 4c:f2:8b:ec:fc:63:86:6c:52:2b:99:49:a8:58:fd:26:bf:01: 9f:ce:5c:cb:19:6f:ae:2d:4f:a0:27:d6:21:e3:83:9b:90:87: 7a:a3:eb:a2:6f:40:e4:47:59:92:48:cc:c5:38:c2:68:20:32: 57:43:fd:c9:33:d4:5a:f7:d9:d9:47:3d:02:fa:54:f3:5e:ba: 6e:2f:a2:ce:39:52:e2:38:34:f9:58:9a:9c:b8:8b:38:3a:70: fa:2e:5d:f2:24:51:9b:05:6f:c7:13:d0:28:c8:70:ef:b6:61: 86:f3:8a:d8:43:ab:91:50:38:d8:cb:49:93:2d:16:74:81:c6: 59:d8:0e:f5:31:6d:3e:55:4c:b6:f8:73:0e:a5:75:8b:2e:1b: af:94:78:c9:94:15:ce:51:5b:0f:14:93:7d:84:ec:60:2c:1c: af:8a:98:64 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDIzRDExMC8GA1UEBRMoM0NDRUVCOUQyMDU5Q0ZFOUY2MDg1Njc3RDRCN0ZBMjY0 RjUzM0EwRjAeFw0yNTEwMjQwNjE1NDNaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOGJjLTUyMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDwqLaUUG1CBDGzeqW6wqmvZHXL1GKSAFfP96qUEvAX6CBpTMaItJN2yUOd6ni9 jiPEQw+eUTNZL5/4V7oHGtpmPzBYd4CJOxl2Bk8A80u2IcqJCi7ZFE8J/AkewkYo pRq5KQXE6CEYQuZBEzUZc8+bdfB3AN34fs8D1cumalRY0WUrQ+l2rIFkDGWmB83q wzrFYSAixR+2TMmYdS5IFao57M/DLPEYnHWl23KNqaGJTy7X0XYoKZW17Hx47WQQ uZVNUfces64DSO0v5bW+iAnjfSEa6DIwiw31P63oMb5iguJfnC4PBHJYfUhEUiuN TxoeQCpEZ8WqE8CNYLNf+SgTAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUJgou2kEL /yeLIbX0UqFvS2KhalUwHwYDVR0jBBgwFoAUPM7rnSBZz+n2CFZ31Lf6Jk9TOg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0MjNEL0I5NzY5QkQ4QjA5 NTExRjA4QzE1Mjc3OEM0RjlBRTAyL1BNN3JuU0Jaei1uMkNGWjMxTGY2Sms5VE9n OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUE03cm5TQlp6LW4yQ0ZaMzFMZjZKazlUT2c4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDIzRC9COTc2OUJEOEIwOTUxMUYwOEMxNTI3NzhDNEY5QUUwMi9ERUU5RkFCMkIw QTAxMUYwQjc1MkI3MTNDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBASh5cAwDQYJKoZIhvcNAQELBQADggEBAFnC2Lh6ocE6NJXyX14dZdCm gPxU6syiuhDm5JKy0ocSl6h47t8laa+4X1+tSARq9Vbw1SyzoujX6vA/s5JGl+8w al1EkUl0c4X3nky2GhyETHvGqmYgPra/o0zyi+z8Y4ZsUiuZSahY/Sa/AZ/OXMsZ b64tT6An1iHjg5uQh3qj66JvQORHWZJIzMU4wmggMldD/ckz1Fr32dlHPQL6VPNe um4vos45UuI4NPlYmpy4izg6cPouXfIkUZsFb8cT0CjIcO+2YYbzithDq5FQONjL SZMtFnSBxlnYDvUxbT5VTLb4cw6ldYsuG6+UeMmUFc5RWw8Uk32E7GAsHK+KmGQ= -----END CERTIFICATE-----Generated at Mon Mar 2 04:18:02 2026 by rpki-client