$ rpki-client -vvf rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9DDCAB1AC9EC11EE9644540FC4F9AE02.roa File: 9DDCAB1AC9EC11EE9644540FC4F9AE02.roa (raw, json) Hash identifier: ZFyLcy8JqNCi7y3ObJWn/ZelxHbiebd+jjozodm+Q5s= Subject key identifier: AA:03:BB:F7:3D:EA:7A:5F:15:80:E2:3E:C1:46:2D:B5:65:24:78:00 Certificate issuer: /CN=A91A55C9/serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Certificate serial: 0185 Authority key identifier: EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9DDCAB1AC9EC11EE9644540FC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:43:40 +0000 ROA not before: Mon 03 Mar 2025 07:29:24 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 17461 IP address blocks: 143.119.160.0/24 maxlen: 24 143.119.161.0/24 maxlen: 24 143.119.162.0/24 maxlen: 24 143.119.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A55C9, serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Validity Not Before: Mar 3 07:29:24 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3ee2c-d782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cf:6b:a8:1b:b8:7f:d1:51:91:cc:d3:c6:0b: 5b:86:ad:19:dd:d0:3f:8b:e6:f8:55:bf:7c:4e:c1: cb:03:5f:9b:17:38:9c:91:a5:72:db:ae:53:0c:79: b9:a8:ad:d3:ce:a6:13:00:78:32:a2:02:d8:13:7e: 79:98:9c:75:cd:cd:c0:46:27:95:eb:c6:c0:3c:df: 1e:65:cc:be:8d:2e:05:25:e4:81:74:19:27:21:40: c7:08:64:4e:b4:9f:3a:b3:58:39:a5:14:22:22:89: b1:56:02:4b:5a:72:c1:61:f2:33:0a:04:99:e4:2c: 53:74:e8:74:7e:2e:f9:2b:d3:f8:bd:bb:72:f5:6c: f9:a9:5f:f0:ed:4d:13:26:26:00:d0:a2:a8:86:01: 79:89:87:bc:0a:8d:e2:dc:e8:64:57:fa:72:cd:3e: 7b:3c:0c:3f:87:2d:2d:16:e3:2a:5f:94:39:78:ce: 0c:3c:1e:55:c6:db:42:55:dd:33:98:d7:9d:1e:7e: 1b:cd:11:06:7b:2d:f4:4f:0c:d4:70:3d:95:d3:f5: 42:5f:2c:7b:0c:f0:70:b0:aa:6d:66:5c:22:e9:28: 86:18:0c:61:51:34:56:e5:fd:4b:fa:7b:a3:9d:ed: 33:be:db:e0:12:00:4e:9e:d9:91:66:d4:be:c9:99: 0b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:03:BB:F7:3D:EA:7A:5F:15:80:E2:3E:C1:46:2D:B5:65:24:78:00 X509v3 Authority Key Identifier: keyid:EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9DDCAB1AC9EC11EE9644540FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 143.119.160.0/22 Signature Algorithm: sha256WithRSAEncryption 62:5a:e0:02:a5:8e:33:7f:8e:44:d8:d5:65:c8:12:ff:9c:d4: 02:c9:0f:13:5d:28:d3:be:e4:e3:60:51:59:06:28:0a:64:4f: 1e:1a:56:8f:a1:b5:77:42:e9:4d:73:c7:e5:78:3e:07:60:fb: fd:b3:7c:f5:d4:ff:c6:fc:d5:e9:d7:d1:eb:56:48:b8:32:f4: 57:ba:a7:af:4b:58:73:75:d5:62:76:a8:30:d1:2b:44:40:66: 55:c7:e3:72:44:90:fb:d4:18:05:c8:19:5d:97:d8:6a:be:bc: de:8c:94:d1:37:a4:b7:7e:fa:5d:3a:aa:0d:7b:5b:1b:65:ce: d3:5b:ab:fe:89:20:43:ca:6c:12:62:29:d9:88:a3:13:8a:ea: 09:0c:90:9b:27:cc:c1:7e:40:39:2c:c4:7c:e2:3f:ab:b8:f6: be:63:21:c6:ca:9d:47:5b:75:1c:38:af:12:d8:85:bf:05:00: c9:ca:b0:58:16:9b:c9:d8:33:5b:c5:c4:98:7a:0d:86:e1:c5: 4a:7c:d2:fe:29:ba:6e:47:c7:ed:07:87:f4:97:11:b6:ec:66: b7:d6:25:94:54:fd:3a:f9:9c:8c:5a:1e:65:28:de:67:ec:be: e7:52:71:57:b8:d8:8c:7f:59:f4:ce:7d:16:aa:5b:e8:c5:09: cb:c8:99:40 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1QzkxMTAvBgNVBAUTKEVDNjc4REUwRDdCQ0Y4MzlEOTk4QTBGQ0U1QzlFQjc1 RkZDODY3M0QwHhcNMjUwMzAzMDcyOTI0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWUyYy1kNzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtM9rqBu4f9FRkczTxgtbhq0Z3dA/i+b4Vb98TsHLA1+bFzickaVy265TDHm5 qK3TzqYTAHgyogLYE355mJx1zc3ARieV68bAPN8eZcy+jS4FJeSBdBknIUDHCGRO tJ86s1g5pRQiIomxVgJLWnLBYfIzCgSZ5CxTdOh0fi75K9P4vbty9Wz5qV/w7U0T JiYA0KKohgF5iYe8Co3i3OhkV/pyzT57PAw/hy0tFuMqX5Q5eM4MPB5VxttCVd0z mNedHn4bzREGey30TwzUcD2V0/VCXyx7DPBwsKptZlwi6SiGGAxhUTRW5f1L+nuj ne0zvtvgEgBOntmRZtS+yZkLvQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKoDu/c9 6npfFYDiPsFGLbVlJHgAMB8GA1UdIwQYMBaAFOxnjeDXvPg52Zig/OXJ63X/yGc9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTVDOS83RTJGMTI2OEM5 RUIxMUVFOEI4NTdCMENDNEY5QUUwMi83R2VONE5lOC1EblptS0Q4NWNucmRmX0la ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdHZU40TmU4LURuWm1LRDg1Y25yZGZfSVp6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1QzkvN0UyRjEyNjhDOUVCMTFFRThCODU3QjBDQzRGOUFFMDIvOUREQ0FCMUFD OUVDMTFFRTk2NDQ1NDBGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCj3egMA0GCSqGSIb3DQEBCwUAA4IBAQBiWuACpY4zf45E2NVlyBL/ nNQCyQ8TXSjTvuTjYFFZBigKZE8eGlaPobV3QulNc8fleD4HYPv9s3z11P/G/NXp 19HrVki4MvRXuqevS1hzddVidqgw0StEQGZVx+NyRJD71BgFyBldl9hqvrzejJTR N6S3fvpdOqoNe1sbZc7TW6v+iSBDymwSYinZiKMTiuoJDJCbJ8zBfkA5LMR84j+r uPa+YyHGyp1HW3UcOK8S2IW/BQDJyrBYFpvJ2DNbxcSYeg2G4cVKfNL+KbpuR8ft B4f0lxG27Ga31iWUVP06+ZyMWh5lKN5n7L7nUnFXuNiMf1n0zn0WqlvoxQnLyJlA -----END CERTIFICATE-----Generated at Mon Mar 2 03:34:28 2026 by rpki-client