$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C0944D9067A511F0A26BDB35C4F9AE02.roa File: C0944D9067A511F0A26BDB35C4F9AE02.roa (raw, json) Hash identifier: fmPUE6ExGqlzl/8PzzWwvSSzNcRBDY9KG+xZBJt0xHc= Subject key identifier: B7:AF:AB:95:EF:09:80:0F:87:8E:53:F4:62:3E:20:34:11:2C:47:78 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 085B Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C0944D9067A511F0A26BDB35C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:15:58 +0000 ROA not before: Fri 30 Jan 2026 09:49:44 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131435 IP address blocks: 148.222.80.0/24 maxlen: 24 148.222.81.0/24 maxlen: 24 148.222.90.0/24 maxlen: 24 148.222.91.0/24 maxlen: 24 148.222.93.0/24 maxlen: 24 148.222.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2139 (0x85b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Jan 30 09:49:44 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4ac8e-9c08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:73:17:97:21:7e:ca:cc:5a:c6:39:f3:54:b4: 24:81:16:e0:23:4f:84:4b:17:ee:1d:45:a1:c4:a3: 58:84:f7:1d:22:e9:a7:76:1f:09:52:85:3d:48:65: 67:90:4a:cf:49:57:51:7f:09:ae:90:f7:d2:94:6e: c1:c3:3c:43:85:84:4e:ff:d1:bb:e8:73:db:1d:68: 23:c2:66:98:87:dc:29:56:04:57:a1:0e:78:c2:26: f1:10:6c:aa:4a:8b:37:62:05:44:90:8f:11:27:f9: 4f:e4:58:dd:b5:ad:27:3f:55:a9:17:c6:d0:05:4e: 45:41:0b:09:7e:af:42:04:3d:56:4f:e0:54:0f:88: fc:80:9c:31:02:16:4d:c4:3b:b9:42:28:42:af:0d: e9:61:e4:33:3b:3d:e6:d3:01:62:1f:2b:9d:e9:fb: 60:fd:7a:10:90:66:dd:82:ab:d0:5f:76:71:a2:a5: 52:e2:90:ac:e8:5f:fb:92:30:d8:63:d2:09:20:2f: b5:68:23:c8:d5:7b:62:b4:07:e9:66:8a:f4:aa:c4: 04:c4:89:61:38:61:27:91:68:a3:eb:7e:03:0d:df: d8:32:e1:0f:2d:b9:fb:a3:75:29:3d:66:68:31:da: 72:82:28:18:8f:1e:5f:68:bc:30:d3:1a:be:d9:1d: 5c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:AF:AB:95:EF:09:80:0F:87:8E:53:F4:62:3E:20:34:11:2C:47:78 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C0944D9067A511F0A26BDB35C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 148.222.80.0/23 148.222.90.0/23 148.222.93.0/24 148.222.95.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:64:5c:9c:10:0b:56:13:36:f0:90:6f:44:88:bc:b2:64:8c: 3a:79:97:e1:55:f1:ff:7f:d1:cc:4e:7d:d6:fa:3d:df:b6:92: f7:5a:76:e8:b6:1c:87:17:6f:b3:a2:a2:7e:58:a2:0d:03:fd: ab:5b:6a:98:20:ff:10:e7:1a:7f:dc:6e:af:c8:4e:c8:cf:4c: ee:e3:82:01:72:6e:1f:ea:7f:fe:18:ec:ec:46:88:33:da:bf: d0:b2:bb:3a:10:c0:2d:ad:ed:94:a7:d2:4c:7c:5c:d2:41:cb: 90:df:0a:9c:fc:8e:a3:5b:2c:d3:fc:47:35:5b:59:ef:b3:2c: ac:db:2c:69:22:53:bc:33:cc:52:4d:49:5c:d8:b7:5b:2b:98: ab:0b:a0:45:d2:85:30:c3:ba:4a:59:9a:27:20:1d:eb:13:5c: a7:21:2d:8e:17:39:5e:f6:1b:70:10:4e:c0:1f:e0:9e:fd:f2: d0:39:a9:e7:12:2d:f9:27:47:96:4c:40:ce:59:94:3a:48:0e: 55:e3:c7:1d:1c:2f:1c:0d:b3:a0:f3:d2:0a:c6:f1:ca:21:f5: 03:1d:70:46:cb:58:93:a7:dd:f1:65:08:1b:fd:ae:e7:8b:e9: cf:e8:84:a4:fe:83:d3:1d:76:db:29:07:b5:2b:5a:43:2a:e6: 1c:eb:fc:41 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICCFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjYwMTMwMDk0OTQ0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWM4ZS05YzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnHMXlyF+ysxaxjnzVLQkgRbgI0+ESxfuHUWhxKNYhPcdIumndh8JUoU9SGVn kErPSVdRfwmukPfSlG7BwzxDhYRO/9G76HPbHWgjwmaYh9wpVgRXoQ54wibxEGyq Sos3YgVEkI8RJ/lP5Fjdta0nP1WpF8bQBU5FQQsJfq9CBD1WT+BUD4j8gJwxAhZN xDu5QihCrw3pYeQzOz3m0wFiHyud6ftg/XoQkGbdgqvQX3ZxoqVS4pCs6F/7kjDY Y9IJIC+1aCPI1XtitAfpZor0qsQExIlhOGEnkWij634DDd/YMuEPLbn7o3UpPWZo MdpygigYjx5faLww0xq+2R1cZwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFLevq5Xv CYAPh45T9GI+IDQRLEd4MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQzA5NDREOTA2 N0E1MTFGMEEyNkJEQjM1QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQBlN5QAwQBlN5aAwQAlN5dAwQAlN5fMA0GCSqGSIb3DQEBCwUAA4IB AQCbZFycEAtWEzbwkG9EiLyyZIw6eZfhVfH/f9HMTn3W+j3ftpL3WnbothyHF2+z oqJ+WKINA/2rW2qYIP8Q5xp/3G6vyE7Iz0zu44IBcm4f6n/+GOzsRogz2r/Qsrs6 EMAtre2Up9JMfFzSQcuQ3wqc/I6jWyzT/Ec1W1nvsyys2yxpIlO8M8xSTUlc2Ldb K5irC6BF0oUww7pKWZonIB3rE1ynIS2OFzle9htwEE7AH+Ce/fLQOannEi35J0eW TEDOWZQ6SA5V48cdHC8cDbOg89IKxvHKIfUDHXBGy1iTp93xZQgb/a7ni+nP6ISk /oPTHXbbKQe1K1pDKuYc6/xB -----END CERTIFICATE-----Generated at Mon Mar 2 04:31:02 2026 by rpki-client