$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/8839CA50174911EEB005A134C4F9AE02.roa File: 8839CA50174911EEB005A134C4F9AE02.roa (raw, json) Hash identifier: mDwiw5LcSqKd7jUvoGYRrufCkpSeguvQIA3HJB0yMUg= Subject key identifier: F3:6C:C7:74:7F:BC:99:93:F7:D0:37:13:40:72:5C:94:6C:82:3E:40 Certificate issuer: /CN=A91B0BA1/serialNumber=C1CB08AD3EB866D3CD647C135D0F52FAED2546C4 Certificate serial: 01F7 Authority key identifier: C1:CB:08:AD:3E:B8:66:D3:CD:64:7C:13:5D:0F:52:FA:ED:25:46:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/8839CA50174911EEB005A134C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:37:20 +0000 ROA not before: Thu 13 Feb 2025 05:36:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 23732 IP address blocks: 202.162.160.0/24 maxlen: 24 202.162.163.0/24 maxlen: 24 202.162.164.0/24 maxlen: 24 202.162.168.0/24 maxlen: 24 202.162.172.0/24 maxlen: 24 202.162.174.0/24 maxlen: 24 202.162.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.crl rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:21:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0BA1, serialNumber=C1CB08AD3EB866D3CD647C135D0F52FAED2546C4 Validity Not Before: Feb 13 05:36:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3dea0-29d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:7f:4c:a9:96:7f:72:78:cc:10:f6:90:7d:11: 0b:14:85:c6:df:12:80:81:95:a4:c0:7d:c5:2e:55: 24:e3:4d:cd:0b:2d:72:3a:80:22:53:10:79:19:65: 34:c9:33:83:87:33:48:92:6b:68:cf:1d:7d:7d:6a: 11:b1:68:bf:38:2d:66:8d:86:9a:92:11:b3:d0:63: e2:4b:52:5d:5b:8a:31:b9:33:b9:5c:a6:c1:98:32: 56:cd:d5:1d:51:6d:fb:e5:f6:33:a9:a7:d7:6d:91: 8d:93:0a:82:02:41:e0:ae:d3:32:e4:87:e4:ac:63: 2f:71:b6:a6:2f:3f:0c:80:ed:8a:be:06:c0:4f:b0: fc:f9:52:03:bd:d0:c1:39:8a:61:76:b1:f5:fb:7f: da:c7:88:0a:be:e0:11:75:4e:9d:c2:98:2a:11:d7: 4e:12:5d:e8:37:8f:be:15:c0:c0:fc:29:be:d6:62: 1d:ed:b4:10:5f:37:82:e7:9f:e7:d7:3f:2b:3f:eb: c7:c1:93:f1:27:28:c1:5d:eb:16:9f:ac:3a:f5:91: ed:a7:05:59:f1:6b:da:00:f3:6e:93:1b:7d:9a:0c: 95:94:18:73:b7:52:e5:6b:b2:db:95:a4:36:ea:5c: 53:6e:73:69:3e:27:a4:4f:ea:14:33:a6:a8:1d:3f: b3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:6C:C7:74:7F:BC:99:93:F7:D0:37:13:40:72:5C:94:6C:82:3E:40 X509v3 Authority Key Identifier: keyid:C1:CB:08:AD:3E:B8:66:D3:CD:64:7C:13:5D:0F:52:FA:ED:25:46:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/8839CA50174911EEB005A134C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.162.160.0/24 202.162.163.0-202.162.164.255 202.162.168.0/24 202.162.172.0/24 202.162.174.0/23 Signature Algorithm: sha256WithRSAEncryption 78:35:1c:33:e3:c4:f7:60:24:c1:59:39:ea:c9:d6:cd:59:49: 45:32:73:d7:2d:de:7a:2c:72:da:dd:cf:e1:7e:cf:61:05:51: 3e:51:fd:67:2f:b1:97:68:c3:48:92:91:72:48:e6:e3:0a:82: 63:a2:62:75:64:b3:c8:6d:90:a8:e8:51:0f:4b:ca:f3:42:7c: fb:64:62:90:97:9d:3d:e3:f6:a9:21:ce:ab:bf:22:56:40:1c: 21:0c:21:1c:3a:26:83:a9:b6:d6:a4:08:07:e1:89:ce:78:c1: 3d:8b:a1:0b:04:29:7a:d8:f0:f7:d8:b9:f3:3e:44:1b:f7:20: 28:f5:44:61:18:1e:47:aa:a2:48:a7:2f:f2:42:f7:c8:b1:78: b5:bd:69:cb:30:39:90:0c:26:8a:66:fc:ad:eb:11:d5:e2:f8: 53:6b:ca:51:2b:c4:62:cb:17:8e:c7:d5:cb:b0:ae:c5:03:5c: f2:7d:59:67:d2:2b:c4:07:29:6c:65:fd:4c:8e:9b:85:92:ae: f6:66:43:ca:7f:67:00:f0:52:a7:fd:8b:c6:35:cd:67:18:f6: 3f:98:0c:76:41:fd:3c:b1:e5:ff:53:8f:e3:ff:3f:29:4f:7a: d0:4e:7c:41:32:99:8d:2f:03:0f:56:dd:4a:09:d0:aa:f3:c6: 81:66:00:9a -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBCQTExMTAvBgNVBAUTKEMxQ0IwOEFEM0VCODY2RDNDRDY0N0MxMzVEMEY1MkZB RUQyNTQ2QzQwHhcNMjUwMjEzMDUzNjQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGVhMC0yOWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkX9MqZZ/cnjMEPaQfRELFIXG3xKAgZWkwH3FLlUk403NCy1yOoAiUxB5GWU0 yTODhzNIkmtozx19fWoRsWi/OC1mjYaakhGz0GPiS1JdW4oxuTO5XKbBmDJWzdUd UW375fYzqafXbZGNkwqCAkHgrtMy5IfkrGMvcbamLz8MgO2KvgbAT7D8+VIDvdDB OYphdrH1+3/ax4gKvuARdU6dwpgqEddOEl3oN4++FcDA/Cm+1mId7bQQXzeC55/n 1z8rP+vHwZPxJyjBXesWn6w69ZHtpwVZ8WvaAPNukxt9mgyVlBhzt1Lla7LblaQ2 6lxTbnNpPiekT+oUM6aoHT+zVwIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFPNsx3R/ vJmT99A3E0ByXJRsgj5AMB8GA1UdIwQYMBaAFMHLCK0+uGbTzWR8E10PUvrtJUbE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEJBMS84Q0NFM0VEQTE3 NDMxMUVFODlBOEZEMkZDNEY5QUUwMi93Y3NJclQ2NFp0UE5aSHdUWFE5Uy11MGxS c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3djc0lyVDY0WnRQTlpId1RYUTlTLXUwbFJzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBCQTEvOENDRTNFREExNzQzMTFFRTg5QThGRDJGQzRGOUFFMDIvODgzOUNBNTAx NzQ5MTFFRUIwMDVBMTM0QzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAs BAIAATAmAwQAyqKgMAwDBADKoqMDBADKoqQDBADKoqgDBADKoqwDBAHKoq4wDQYJ KoZIhvcNAQELBQADggEBAHg1HDPjxPdgJMFZOerJ1s1ZSUUyc9ct3nosctrdz+F+ z2EFUT5R/WcvsZdow0iSkXJI5uMKgmOiYnVks8htkKjoUQ9LyvNCfPtkYpCXnT3j 9qkhzqu/IlZAHCEMIRw6JoOpttakCAfhic54wT2LoQsEKXrY8PfYufM+RBv3ICj1 RGEYHkeqokinL/JC98ixeLW9acswOZAMJopm/K3rEdXi+FNrylErxGLLF47H1cuw rsUDXPJ9WWfSK8QHKWxl/UyOm4WSrvZmQ8p/ZwDwUqf9i8Y1zWcY9j+YDHZB/Tyx 5f9Tj+P/PylPetBOfEEymY0vAw9W3UoJ0KrzxoFmAJo= -----END CERTIFICATE-----Generated at Mon Mar 2 19:42:02 2026 by rpki-client