$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/8839CA50174911EEB005A134C4F9AE02.roa File: 8839CA50174911EEB005A134C4F9AE02.roa (raw, json) Hash identifier: TSmEaiz4ZeNDwh9MRP/V0mjyx7XbnAHTvxGeIwonNNM= Subject key identifier: AD:BE:94:45:88:BD:D4:80:86:FB:D7:6A:3F:F8:D8:C7:64:7C:BC:53 Certificate issuer: /CN=A91B0BA1/serialNumber=C1CB08AD3EB866D3CD647C135D0F52FAED2546C4 Certificate serial: 020E Authority key identifier: C1:CB:08:AD:3E:B8:66:D3:CD:64:7C:13:5D:0F:52:FA:ED:25:46:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/8839CA50174911EEB005A134C4F9AE02.roa Signing time: Tue 07 Apr 2026 02:36:28 +0000 ROA not before: Tue 07 Apr 2026 02:36:28 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 23732 IP address blocks: 202.162.160.0/24 maxlen: 24 202.162.163.0/24 maxlen: 24 202.162.164.0/24 maxlen: 24 202.162.168.0/24 maxlen: 24 202.162.172.0/24 maxlen: 24 202.162.174.0/24 maxlen: 24 202.162.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.crl rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:42:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 526 (0x20e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0BA1, serialNumber=C1CB08AD3EB866D3CD647C135D0F52FAED2546C4 Validity Not Before: Apr 7 02:36:28 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d46dac-5ef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ad:5f:27:3a:b2:69:53:5d:88:ad:4f:c2:32: 10:d9:50:5c:50:31:6e:66:ad:e5:1f:a8:ae:67:0e: 56:da:a4:34:e0:b5:9d:8e:6e:5a:9d:5e:d5:8e:1f: e3:6d:3d:1a:00:e7:bb:9c:3f:e5:bb:12:28:72:25: d4:ec:96:1e:7f:50:a3:e0:ba:cf:c3:59:45:7b:c8: 20:67:f0:5b:a2:cf:47:d5:fa:c2:09:f9:e6:13:4c: 17:1f:aa:25:87:8a:1c:ec:5b:28:f5:79:01:53:31: 1a:43:29:41:2d:7c:3c:c0:7e:02:00:31:ff:6b:5b: 21:1d:5f:3e:2d:9f:b1:1c:4d:7a:8a:80:4c:27:bf: f7:74:23:cf:c8:58:d4:48:8a:6f:f9:6b:27:96:f4: 96:54:0b:37:da:f3:14:c0:1f:8f:d5:4a:5b:3b:c9: aa:e2:e4:57:cf:d0:57:5f:21:39:4a:c7:45:11:fe: d2:eb:95:ea:66:ed:fe:5b:4d:4d:5b:42:60:43:3e: 38:10:24:fa:d6:30:da:7c:c4:40:47:a6:54:e7:5f: b5:11:7e:7a:27:56:30:26:e0:4b:70:df:35:46:a5: fc:aa:51:a1:44:04:18:c8:1f:2f:b3:b1:b7:0a:4c: 4f:2b:53:23:17:db:05:36:17:1c:fc:ad:8d:29:d7: b8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:BE:94:45:88:BD:D4:80:86:FB:D7:6A:3F:F8:D8:C7:64:7C:BC:53 X509v3 Authority Key Identifier: keyid:C1:CB:08:AD:3E:B8:66:D3:CD:64:7C:13:5D:0F:52:FA:ED:25:46:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcsIrT64ZtPNZHwTXQ9S-u0lRsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0BA1/8CCE3EDA174311EE89A8FD2FC4F9AE02/8839CA50174911EEB005A134C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.162.160.0/24 202.162.163.0-202.162.164.255 202.162.168.0/24 202.162.172.0/24 202.162.174.0/23 Signature Algorithm: sha256WithRSAEncryption c9:30:06:1c:a0:15:ec:ed:8a:77:da:4e:b2:cd:42:a9:cc:71: 09:71:55:ee:af:37:ae:da:f5:59:8f:42:b0:55:b7:07:fa:74: 15:69:c4:8c:bc:43:c5:06:d5:dd:44:82:50:c6:ef:1e:3e:61: 2d:aa:87:6f:c9:60:bf:51:e6:d7:42:2d:7a:ef:39:cf:db:5c: 22:1d:45:45:c9:a4:9b:38:08:87:dc:99:91:c1:2e:5b:b6:8a: 8a:5d:f8:3e:64:f2:6a:38:98:ad:8d:56:db:3d:3c:51:ff:33: 78:98:b4:aa:c2:02:92:cb:1d:1a:71:a8:be:7b:d1:56:99:f2: 59:fe:20:8c:1f:17:24:10:1e:d5:35:c1:ac:11:3f:27:ac:3f: 58:50:2e:e5:d3:bc:0a:c2:04:aa:2b:9b:ae:40:de:b9:02:49: 1b:a2:a5:d3:37:2e:f0:d1:e1:b1:fb:3b:c3:c9:08:8a:01:27: 9a:0e:5c:4f:f5:2d:e9:7b:bb:58:15:4c:e1:87:50:1e:ee:fd: 4e:f9:0e:08:6e:bc:65:65:c4:71:ff:ae:3d:63:43:8b:23:43: 73:6e:cf:f6:c8:81:c8:f2:d4:f0:82:a6:d7:5e:57:16:7b:d9: 35:6d:fa:cc:3f:1e:e6:78:8c:43:2b:11:77:4b:27:7f:56:5d: e5:99:9e:ed -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBCQTExMTAvBgNVBAUTKEMxQ0IwOEFEM0VCODY2RDNDRDY0N0MxMzVEMEY1MkZB RUQyNTQ2QzQwHhcNMjYwNDA3MDIzNjI4WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ0NmRhYy01ZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA461fJzqyaVNdiK1PwjIQ2VBcUDFuZq3lH6iuZw5W2qQ04LWdjm5anV7Vjh/j bT0aAOe7nD/luxIociXU7JYef1Cj4LrPw1lFe8ggZ/Bbos9H1frCCfnmE0wXH6ol h4oc7Fso9XkBUzEaQylBLXw8wH4CADH/a1shHV8+LZ+xHE16ioBMJ7/3dCPPyFjU SIpv+WsnlvSWVAs32vMUwB+P1UpbO8mq4uRXz9BXXyE5SsdFEf7S65XqZu3+W01N W0JgQz44ECT61jDafMRAR6ZU51+1EX56J1YwJuBLcN81RqX8qlGhRAQYyB8vs7G3 CkxPK1MjF9sFNhcc/K2NKde4gQIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFK2+lEWI vdSAhvvXaj/42MdkfLxTMB8GA1UdIwQYMBaAFMHLCK0+uGbTzWR8E10PUvrtJUbE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEJBMS84Q0NFM0VEQTE3 NDMxMUVFODlBOEZEMkZDNEY5QUUwMi93Y3NJclQ2NFp0UE5aSHdUWFE5Uy11MGxS c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3djc0lyVDY0WnRQTlpId1RYUTlTLXUwbFJzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBCQTEvOENDRTNFREExNzQzMTFFRTg5QThGRDJGQzRGOUFFMDIvODgzOUNBNTAx NzQ5MTFFRUIwMDVBMTM0QzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAs BAIAATAmAwQAyqKgMAwDBADKoqMDBADKoqQDBADKoqgDBADKoqwDBAHKoq4wDQYJ KoZIhvcNAQELBQADggEBAMkwBhygFeztinfaTrLNQqnMcQlxVe6vN67a9VmPQrBV twf6dBVpxIy8Q8UG1d1EglDG7x4+YS2qh2/JYL9R5tdCLXrvOc/bXCIdRUXJpJs4 CIfcmZHBLlu2iopd+D5k8mo4mK2NVts9PFH/M3iYtKrCApLLHRpxqL570VaZ8ln+ IIwfFyQQHtU1wawRPyesP1hQLuXTvArCBKorm65A3rkCSRuipdM3LvDR4bH7O8PJ CIoBJ5oOXE/1Lel7u1gVTOGHUB7u/U75DghuvGVlxHH/rj1jQ4sjQ3Nuz/bIgcjy 1PCCptdeVxZ72TVt+sw/HuZ4jEMrEXdLJ39WXeWZnu0= -----END CERTIFICATE-----Generated at Fri Apr 17 16:31:59 2026 by rpki-client