$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/23D70458076811F1A996F976023D8C67.roa File: 23D70458076811F1A996F976023D8C67.roa (raw, json) Hash identifier: P/jKVKxpnPS5oM0vxp1cgktFei7qJGJt+hIa7BJlhbs= Subject key identifier: F1:58:57:7F:80:A0:6C:57:AB:EF:63:37:FA:87:F2:78:F3:42:6C:89 Certificate issuer: /CN=A91AAE16/serialNumber=394EA086895C6F17D936548A32238B82CF79294D Certificate serial: 1057 Authority key identifier: 39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/23D70458076811F1A996F976023D8C67.roa Signing time: Sun 01 Mar 2026 17:46:04 +0000 ROA not before: Wed 11 Feb 2026 16:38:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 19905 IP address blocks: 111.221.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:42:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4183 (0x1057) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=394EA086895C6F17D936548A32238B82CF79294D Validity Not Before: Feb 11 16:38:48 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a47b5c-c4f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:95:32:48:c5:6d:bc:cb:4e:88:b8:2b:b5:f4: ec:73:b6:47:5e:55:92:6c:29:0f:d1:d9:56:06:61: 6e:2d:08:fc:9b:fb:9e:d9:fb:42:ae:0c:a9:b6:cb: 78:0b:4a:62:69:21:45:31:31:d9:96:2a:38:9f:28: 96:4d:ad:1a:33:ce:50:6e:28:78:a9:be:09:92:24: e8:f5:be:f2:1a:46:b9:95:19:d1:56:ce:d6:1e:55: 7f:e1:2c:97:c4:b4:8c:5f:d3:77:9c:54:4c:9a:84: 01:ff:8e:cc:a6:11:a8:2e:a1:6f:9a:2f:0e:e3:9d: b4:42:88:9e:99:fc:73:22:0d:ab:d4:0c:6a:31:d4: f0:aa:6b:11:17:b0:ec:4b:64:62:85:fc:a3:31:4d: 43:fe:51:0c:da:2a:16:18:55:0e:84:93:60:dc:f3: 40:e2:99:28:2c:cc:26:4c:17:5c:f2:d3:44:f8:3c: fe:36:56:7f:a1:bc:72:17:30:9f:fa:fe:c6:80:b9: c5:f6:b6:94:b3:f3:c5:f6:f2:1c:ba:f0:c3:20:df: 55:33:5a:27:8c:12:98:ca:66:27:f2:bc:66:d6:8c: 90:93:a4:62:ef:6e:71:5a:ac:9d:b4:2e:2b:cf:ad: 86:8f:00:d9:4d:33:0a:aa:c4:70:b0:d6:89:19:56: d2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:58:57:7F:80:A0:6C:57:AB:EF:63:37:FA:87:F2:78:F3:42:6C:89 X509v3 Authority Key Identifier: keyid:39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/23D70458076811F1A996F976023D8C67.roa sbgp-ipAddrBlock: critical IPv4: 111.221.56.0/24 Signature Algorithm: sha256WithRSAEncryption 02:6c:e0:7f:96:6b:5f:8d:c0:71:f2:85:17:d1:b5:25:69:cc: 9b:a1:a6:99:eb:21:9a:cc:b8:54:1e:97:96:49:92:f4:2e:cf: e7:c6:5d:cd:b0:56:1a:61:46:f0:4d:3e:f7:28:4e:22:bc:a9: 56:ef:77:5c:1c:0b:65:e5:30:86:54:15:a4:84:db:dd:6d:cc: 93:71:2e:f3:10:ef:ff:03:c2:b8:32:49:f6:ee:09:f5:79:98: 58:65:da:da:e1:54:6b:f1:a3:66:15:e0:ca:7b:49:49:bc:a7: 7c:1a:83:63:42:f7:05:91:67:6a:00:f9:f1:14:7b:f3:59:7b: ae:5b:17:1d:f4:fa:4c:07:4c:d0:4e:02:5e:5f:e4:a1:23:43: 2e:f2:c9:fa:25:bb:8a:8b:86:6f:ab:74:82:0a:17:6e:26:44: 4a:1e:13:57:55:68:f4:35:6e:f1:e2:ea:74:f0:a8:62:d3:91: 33:cb:24:4b:93:c3:6b:6f:cd:ad:9f:6e:f6:43:02:ab:da:04: a3:c8:c4:2f:bf:88:68:75:82:d9:94:5d:0e:c5:c6:48:02:d2: a9:fe:65:86:0e:a0:2e:f2:82:f9:96:e0:cf:c9:23:91:de:54: 12:37:01:9e:5a:50:08:dc:9e:61:ec:4c:90:76:14:eb:41:f7: 92:4c:99:b7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKDM5NEVBMDg2ODk1QzZGMTdEOTM2NTQ4QTMyMjM4Qjgy Q0Y3OTI5NEQwHhcNMjYwMjExMTYzODQ4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2I1Yy1jNGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZUySMVtvMtOiLgrtfTsc7ZHXlWSbCkP0dlWBmFuLQj8m/ue2ftCrgyptst4 C0piaSFFMTHZlio4nyiWTa0aM85Qbih4qb4JkiTo9b7yGka5lRnRVs7WHlV/4SyX xLSMX9N3nFRMmoQB/47MphGoLqFvmi8O4520QoiemfxzIg2r1AxqMdTwqmsRF7Ds S2RihfyjMU1D/lEM2ioWGFUOhJNg3PNA4pkoLMwmTBdc8tNE+Dz+NlZ/obxyFzCf +v7GgLnF9raUs/PF9vIcuvDDIN9VM1onjBKYymYn8rxm1oyQk6Ri725xWqydtC4r z62GjwDZTTMKqsRwsNaJGVbSgQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPFYV3+A oGxXq+9jN/qH8njzQmyJMB8GA1UdIwQYMBaAFDlOoIaJXG8X2TZUijIji4LPeSlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8xNzQ4ODU1MDVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4ZlpObFNLTWlPTGdzOTVL VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09VNmdob2xjYnhmWk5sU0tNaU9MZ3M5NUtVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFMTYvMTc0ODg1NTA1QkIxMTFFOThCMTAzQjEzQzRGOUFFMDIvMjNENzA0NTgw NzY4MTFGMUE5OTZGOTc2MDIzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAb904MA0GCSqGSIb3DQEBCwUAA4IBAQACbOB/lmtfjcBx8oUX0bUl acyboaaZ6yGazLhUHpeWSZL0Ls/nxl3NsFYaYUbwTT73KE4ivKlW73dcHAtl5TCG VBWkhNvdbcyTcS7zEO//A8K4Mkn27gn1eZhYZdra4VRr8aNmFeDKe0lJvKd8GoNj QvcFkWdqAPnxFHvzWXuuWxcd9PpMB0zQTgJeX+ShI0Mu8sn6JbuKi4Zvq3SCChdu JkRKHhNXVWj0NW7x4up08Khi05EzyyRLk8Nrb82tn272QwKr2gSjyMQvv4hodYLZ lF0OxcZIAtKp/mWGDqAu8oL5luDPySOR3lQSNwGeWlAI3J5h7EyQdhTrQfeSTJm3 -----END CERTIFICATE-----Generated at Mon Mar 2 09:42:47 2026 by rpki-client