$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C0944D9067A511F0A26BDB35C4F9AE02.roa File: C0944D9067A511F0A26BDB35C4F9AE02.roa (raw, json) Hash identifier: bKMhmzPQd7YjkXi+rhHUX15+7LKnXXnwnyA5e55kulc= Subject key identifier: 36:D1:0D:DF:76:E4:70:0B:04:F8:28:19:B6:FD:17:67:8C:92:35:DE Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2216 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C0944D9067A511F0A26BDB35C4F9AE02.roa Signing time: Wed 15 Apr 2026 08:15:10 +0000 ROA not before: Wed 15 Apr 2026 08:15:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131435 IP address blocks: 148.222.80.0/23 maxlen: 23 148.222.80.0/24 maxlen: 24 148.222.81.0/24 maxlen: 24 148.222.90.0/24 maxlen: 24 148.222.91.0/24 maxlen: 24 148.222.93.0/24 maxlen: 24 148.222.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8726 (0x2216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Apr 15 08:15:10 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69df490e-0d06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4d:7b:04:79:2e:de:50:ee:71:7b:2d:d0:f3: 94:f3:bb:4c:20:bf:71:c4:f9:fe:f4:ff:40:0c:a9: 58:ea:17:98:a6:c1:92:fb:b8:60:3c:b0:c5:08:be: 9e:99:43:9e:9e:a2:fb:07:36:13:cc:99:2d:90:fb: 01:ef:4d:87:2e:5a:b9:e5:af:f1:8f:3d:39:7b:e2: 36:15:b9:76:8d:26:95:f7:56:4f:74:f8:70:91:34: 12:2c:7b:ee:93:d4:60:48:2f:ce:e9:25:57:59:78: cc:86:09:48:14:ab:f9:d4:d1:88:2c:b0:1f:92:30: 01:52:78:12:d5:3f:19:7b:29:7f:74:c3:f4:36:57: 26:05:36:f2:f3:b6:2e:3b:b0:b9:43:36:c5:cc:e2: 21:2a:d1:61:31:43:a1:3c:d9:86:fd:b3:b4:7d:01: 65:3a:30:9e:8f:d1:1e:45:f7:4e:19:72:8a:06:80: e0:6e:87:0a:62:fa:d2:e0:70:07:3a:4a:30:84:c5: 4a:65:fa:38:c3:48:50:1a:43:7f:f3:1b:f9:a9:88: 3e:3b:b8:68:c9:7a:37:dd:00:d6:66:a1:da:9e:d9: 36:2c:b6:2a:15:93:30:a7:01:7f:53:50:23:b2:58: 85:84:65:9c:eb:47:c5:16:69:8b:04:d4:42:87:c1: 37:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D1:0D:DF:76:E4:70:0B:04:F8:28:19:B6:FD:17:67:8C:92:35:DE X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C0944D9067A511F0A26BDB35C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 148.222.80.0/23 148.222.90.0/23 148.222.93.0/24 148.222.95.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:2b:3a:38:93:5a:43:04:98:ce:8d:08:07:1e:f8:de:ef:2a: 52:38:0f:b4:82:34:8a:f6:5a:3f:5c:a9:98:22:f4:5a:c6:fe: 0e:0f:7f:ea:f6:bb:a7:f7:0a:3b:55:61:f9:ba:4a:37:38:76: cf:57:ef:bc:8f:15:f8:7c:6b:73:6d:f0:a2:3e:59:ae:6d:d1: 41:c9:ac:d4:d6:1c:59:76:6f:35:16:f3:06:0d:f2:8a:7e:c0: f4:b7:01:a7:f2:f2:25:c3:66:f1:17:4f:58:fc:81:66:b9:60: 8f:e9:85:76:59:0e:02:af:32:14:45:cc:f2:c5:57:11:b6:0a: 0c:81:0e:ed:5a:c3:81:37:a9:30:4d:f3:d1:70:04:a5:e0:bc: 7e:c2:35:8a:f0:3b:ec:8a:86:9e:d8:e0:15:3a:52:6f:1a:17: f6:aa:ae:f5:75:e9:ef:96:92:a1:b0:c7:2b:c2:ac:ad:49:87: bc:5c:c1:d7:07:f0:e4:b4:7c:a8:41:04:d0:d9:60:f8:eb:dc: 3c:81:03:48:aa:6f:22:2f:85:27:a8:47:79:58:af:03:25:97: 99:26:c4:66:70:c0:0a:e3:3a:d5:78:63:14:ec:8c:6b:05:f3: a6:b5:ed:e6:e2:2c:d1:3e:d1:75:ee:77:21:90:46:cf:ca:83: c1:92:2d:f5 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICIhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjYwNDE1MDgxNTEwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWRmNDkwZS0wZDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr017BHku3lDucXst0POU87tMIL9xxPn+9P9ADKlY6heYpsGS+7hgPLDFCL6e mUOenqL7BzYTzJktkPsB702HLlq55a/xjz05e+I2Fbl2jSaV91ZPdPhwkTQSLHvu k9RgSC/O6SVXWXjMhglIFKv51NGILLAfkjABUngS1T8Zeyl/dMP0NlcmBTby87Yu O7C5QzbFzOIhKtFhMUOhPNmG/bO0fQFlOjCej9EeRfdOGXKKBoDgbocKYvrS4HAH OkowhMVKZfo4w0hQGkN/8xv5qYg+O7hoyXo33QDWZqHantk2LLYqFZMwpwF/U1Aj sliFhGWc60fFFmmLBNRCh8E3yQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFDbRDd92 5HALBPgoGbb9F2eMkjXeMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQzA5NDREOTA2 N0E1MTFGMEEyNkJEQjM1QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQBlN5QAwQBlN5aAwQAlN5dAwQAlN5fMA0GCSqGSIb3DQEBCwUAA4IB AQAfKzo4k1pDBJjOjQgHHvje7ypSOA+0gjSK9lo/XKmYIvRaxv4OD3/q9run9wo7 VWH5uko3OHbPV++8jxX4fGtzbfCiPlmubdFByazU1hxZdm81FvMGDfKKfsD0twGn 8vIlw2bxF09Y/IFmuWCP6YV2WQ4CrzIURczyxVcRtgoMgQ7tWsOBN6kwTfPRcASl 4Lx+wjWK8Dvsioae2OAVOlJvGhf2qq71denvlpKhsMcrwqytSYe8XMHXB/DktHyo QQTQ2WD469w8gQNIqm8iL4UnqEd5WK8DJZeZJsRmcMAK4zrVeGMU7IxrBfOmte3m 4izRPtF17nchkEbPyoPBki31 -----END CERTIFICATE-----Generated at Fri Apr 17 15:47:40 2026 by rpki-client