$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa File: 31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa (raw, json) Hash identifier: nV38DqB6S2s+obaWtL39HR2W0RXsAZejFz8xEU6bYCg= Subject key identifier: FE:99:AD:65:EB:F9:B6:48:D0:59:BB:6F:A8:D4:2A:18:EA:BF:BD:7B Certificate issuer: /CN=A91B732A/serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Certificate serial: F1 Authority key identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:27:01 +0000 ROA not before: Sat 17 Jan 2026 05:24:13 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 135091 IP address blocks: 160.250.190.0/23 maxlen: 23 160.250.190.0/24 maxlen: 24 160.250.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Validity Not Before: Jan 17 05:24:13 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a43ea5-c771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0c:82:ce:49:b0:7e:35:12:65:24:fb:9c:0f: 78:74:97:f7:a2:47:88:29:cb:4b:d3:8f:c5:f2:8c: 37:9c:de:aa:a1:0e:b6:8b:49:83:e6:8c:9a:13:e4: 2c:df:ff:48:3e:65:f7:9f:0a:30:b7:d4:fb:66:2a: c0:9e:46:e8:d6:f9:11:ff:57:58:23:52:7a:2c:94: c1:bf:c7:2b:32:20:31:16:f3:63:6e:92:6e:67:6b: 3a:b8:ce:57:b4:d4:17:4d:b6:c1:8c:14:ef:6a:15: 86:a2:ea:fe:a8:46:23:4f:4b:90:45:78:2b:b3:37: 52:d4:9e:e3:6d:fc:f2:d7:b0:ad:cf:5a:ba:48:71: 80:62:6a:76:53:14:6d:ee:0c:71:26:ba:94:da:37: b7:d7:ce:2f:b4:ad:15:ae:bc:e8:54:66:4f:94:08: 1e:cf:77:bf:bd:86:14:c8:ba:c1:80:ec:67:fe:81: a2:fd:2c:ad:d4:ad:b5:2b:49:14:3b:cf:6a:e8:24: 8c:e1:3c:81:f5:a9:ac:60:31:94:8e:25:bb:a8:63: 60:2d:6f:3b:be:0c:91:6f:69:f2:ae:e2:55:cf:e4: 0b:b3:a4:6b:bc:bf:ad:3f:20:04:f3:d9:5b:64:a5: 7f:be:b5:e7:33:1b:4d:49:57:25:31:04:2f:4b:fe: a5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:99:AD:65:EB:F9:B6:48:D0:59:BB:6F:A8:D4:2A:18:EA:BF:BD:7B X509v3 Authority Key Identifier: keyid:6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.250.190.0/23 Signature Algorithm: sha256WithRSAEncryption 49:10:f5:15:fb:e5:e1:f2:64:a7:54:66:c4:ee:0b:d3:8a:4f: 00:ca:f2:78:87:3a:d6:b7:0c:00:68:0b:60:23:0a:e2:a4:c5: 54:5e:b6:99:81:39:28:eb:dd:89:85:da:fb:27:cd:9a:5c:83: 0f:ef:69:95:d2:22:ef:30:4e:f4:a9:e4:53:f0:df:b2:a5:bf: d3:de:39:19:ba:4c:b1:94:aa:b2:c9:8a:ae:b8:a0:9e:88:ae: f5:5d:1f:2e:e7:16:29:94:10:98:2d:33:1b:bb:15:03:4c:5a: ab:df:d9:8d:ac:b7:3c:09:c9:24:34:4d:f5:03:4d:08:82:ac: e4:7f:1c:e4:2c:f9:e9:f0:9c:7c:ee:b0:e9:f9:9d:08:77:30: cd:5a:7b:f3:67:f5:f2:22:f2:be:30:ad:73:f6:8e:17:f2:a3: 7f:0d:7c:6d:6d:6e:3f:10:d4:1c:ce:ee:c4:82:21:7b:66:ac: 9d:8d:ab:3f:90:72:94:ce:5d:65:44:14:08:3e:62:61:40:bb: 6f:88:53:32:3f:93:9f:d1:ee:ab:89:9b:d3:b8:9d:35:06:5e: 97:16:9a:bd:85:27:87:08:cc:0b:25:27:15:58:f8:3c:b5:1c: cd:79:a4:d4:0b:d0:be:8b:58:12:cc:7f:5a:c6:59:23:08:3f: ce:99:3a:dd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjczMkExMTAvBgNVBAUTKDZGM0UwMjYyMDBENTUzOUYyN0UwRjNBQTUwRDMyMEEy NDUyOEQ1N0QwHhcNMjYwMTE3MDUyNDEzWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2VhNS1jNzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQyCzkmwfjUSZST7nA94dJf3okeIKctL04/F8ow3nN6qoQ62i0mD5oyaE+Qs 3/9IPmX3nwowt9T7ZirAnkbo1vkR/1dYI1J6LJTBv8crMiAxFvNjbpJuZ2s6uM5X tNQXTbbBjBTvahWGour+qEYjT0uQRXgrszdS1J7jbfzy17Ctz1q6SHGAYmp2UxRt 7gxxJrqU2je3184vtK0VrrzoVGZPlAgez3e/vYYUyLrBgOxn/oGi/Syt1K21K0kU O89q6CSM4TyB9amsYDGUjiW7qGNgLW87vgyRb2nyruJVz+QLs6RrvL+tPyAE89lb ZKV/vrXnMxtNSVclMQQvS/6lbQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFP6ZrWXr +bZI0Fm7b6jUKhjqv717MB8GA1UdIwQYMBaAFG8+AmIA1VOfJ+DzqlDTIKJFKNV9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzMyQS9GRkYyRTZBOEI2 MzAxMUVGQTJEN0ZCNjNDNEY5QUUwMi9iejRDWWdEVlU1OG40UE9xVU5NZ29rVW8x WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2J6NENZZ0RWVTU4bjRQT3FVTk1nb2tVbzFYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjczMkEvRkZGMkU2QThCNjMwMTFFRkEyRDdGQjYzQzRGOUFFMDIvMzFFQzJFNUNC QUFCMTFFRkE5N0IyQzY2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoPq+MA0GCSqGSIb3DQEBCwUAA4IBAQBJEPUV++Xh8mSnVGbE7gvT ik8AyvJ4hzrWtwwAaAtgIwripMVUXraZgTko692Jhdr7J82aXIMP72mV0iLvME70 qeRT8N+ypb/T3jkZukyxlKqyyYquuKCeiK71XR8u5xYplBCYLTMbuxUDTFqr39mN rLc8CckkNE31A00IgqzkfxzkLPnp8Jx87rDp+Z0IdzDNWnvzZ/XyIvK+MK1z9o4X 8qN/DXxtbW4/ENQczu7EgiF7Zqydjas/kHKUzl1lRBQIPmJhQLtviFMyP5Of0e6r iZvTuJ01Bl6XFpq9hSeHCMwLJScVWPg8tRzNeaTUC9C+i1gSzH9axlkjCD/OmTrd -----END CERTIFICATE-----Generated at Mon Mar 2 21:11:00 2026 by rpki-client