$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/D470A60E294511F0B1412377C4F9AE02.roa File: D470A60E294511F0B1412377C4F9AE02.roa (raw, json) Hash identifier: GSkbxwT7s713aepzAHb1asdunZV2hHHIcFkvDpvvdJw= Subject key identifier: B9:36:91:2C:AA:92:D1:9C:9B:F1:6C:AF:22:63:11:6B:EF:CE:99:22 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: A0 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/D470A60E294511F0B1412377C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:17:49 +0000 ROA not before: Wed 21 Jan 2026 06:24:45 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 45586 IP address blocks: 161.248.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:39:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Jan 21 06:24:45 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a43c7d-e11e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:14:93:94:c6:a3:7a:09:50:1a:25:6a:5f:ed: ac:61:ff:04:7c:0a:2a:a4:f3:a6:4b:96:21:f4:79: 44:86:e5:77:51:e8:b3:15:1d:62:18:29:9a:c8:0b: 3b:fa:af:1d:fd:e8:54:99:83:5c:81:fa:dc:a4:ce: da:f4:3b:0c:cb:d2:7f:c2:40:1a:3d:8d:f8:71:28: a5:87:7a:6f:ba:53:c8:a6:9a:04:20:a8:ee:fe:6a: 57:8d:6f:07:53:a8:9f:0c:4d:51:61:59:d3:d0:7d: 99:cd:c4:c7:de:c4:99:5d:47:b7:d6:a5:4d:fe:69: 2f:78:bc:90:ed:17:29:1d:18:ea:b1:73:2c:6b:55: ee:4c:59:a2:6f:33:95:e5:d4:83:f1:74:f9:cc:87: 91:a2:56:3e:a0:18:22:84:3c:33:af:eb:49:f7:5e: a6:34:a4:b2:8a:2f:62:28:e9:f8:04:95:73:53:8b: 72:a5:76:6f:b7:2f:b8:31:15:09:79:ee:0b:78:88: d2:a4:df:f5:1f:be:5b:ed:ec:30:74:d6:64:08:02: a2:cb:14:7d:1a:56:19:a3:5d:e4:df:ea:1a:e1:a7: d1:12:4a:de:85:a7:01:7e:2f:ec:da:1d:bf:1c:3f: a3:ae:b9:e7:4d:4c:0a:8e:01:20:f3:f9:74:eb:68: 5d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:36:91:2C:AA:92:D1:9C:9B:F1:6C:AF:22:63:11:6B:EF:CE:99:22 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/D470A60E294511F0B1412377C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.127.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:e8:6d:35:ae:ff:f3:c4:91:3d:f5:c0:01:58:0d:36:56:b9: 80:28:31:18:36:e8:07:3b:a9:7d:9c:88:87:70:7a:85:9a:45: a0:93:ad:a4:36:dc:17:35:fa:c7:81:c3:85:3f:50:9d:14:bc: f7:b1:94:2e:dc:8d:39:10:74:15:cb:23:57:9a:4c:ad:2a:6b: 48:57:ce:a5:0b:a1:e2:62:10:ef:f6:3c:c1:64:79:a3:98:cd: 72:ca:53:04:a2:38:7b:c6:d5:ad:f2:3a:3a:fd:14:e2:46:99: bb:56:1f:a6:24:cc:c3:84:0c:0e:49:37:61:c9:ac:51:ea:15: d4:2d:cc:ab:76:ec:74:ee:65:bd:01:39:51:89:99:ab:62:74: 36:9d:5b:f6:d3:c9:c5:eb:c5:ce:df:50:b1:d8:d7:4a:e1:f3: b7:da:df:1b:78:cc:ab:c1:06:98:f9:2d:ee:30:e9:cc:3e:7b: 11:75:cc:f5:2d:20:83:45:f2:39:2b:73:6a:d5:d6:33:0c:fe: 9f:78:9e:0c:ef:7e:1d:0c:a0:6b:5a:a7:2c:a9:23:1a:3a:f4: 6f:14:fa:e7:da:56:7a:ef:8e:df:08:39:29:a3:8c:c7:c7:03: df:22:c5:92:5c:f1:7d:cd:51:a3:46:3c:62:50:b6:9a:cf:9e: 14:16:0a:c5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEQ0IxMTAvBgNVBAUTKEI1NEY4QUQxQ0VDQUMxMzZGQ0FGNDc5MkVCRkQwMEU2 OEVBMUQzNjgwHhcNMjYwMTIxMDYyNDQ1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2M3ZC1lMTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRSTlMajeglQGiVqX+2sYf8EfAoqpPOmS5Yh9HlEhuV3UeizFR1iGCmayAs7 +q8d/ehUmYNcgfrcpM7a9DsMy9J/wkAaPY34cSilh3pvulPIppoEIKju/mpXjW8H U6ifDE1RYVnT0H2ZzcTH3sSZXUe31qVN/mkveLyQ7RcpHRjqsXMsa1XuTFmibzOV 5dSD8XT5zIeRolY+oBgihDwzr+tJ916mNKSyii9iKOn4BJVzU4typXZvty+4MRUJ ee4LeIjSpN/1H75b7ewwdNZkCAKiyxR9GlYZo13k3+oa4afREkrehacBfi/s2h2/ HD+jrrnnTUwKjgEg8/l062hdKQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLk2kSyq ktGcm/FsryJjEWvvzpkiMB8GA1UdIwQYMBaAFLVPitHOysE2/K9Hkuv9AOaOodNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0RDQi9GODNBQzQ5NDI5 NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dUYjhyMGVTNl8wQTVvNmgw MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdEQ0IvRjgzQUM0OTQyOTQ0MTFGMEFFMUFCQzc0QzRGOUFFMDIvRDQ3MEE2MEUy OTQ1MTFGMEIxNDEyMzc3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAofh/MA0GCSqGSIb3DQEBCwUAA4IBAQCK6G01rv/zxJE99cABWA02 VrmAKDEYNugHO6l9nIiHcHqFmkWgk62kNtwXNfrHgcOFP1CdFLz3sZQu3I05EHQV yyNXmkytKmtIV86lC6HiYhDv9jzBZHmjmM1yylMEojh7xtWt8jo6/RTiRpm7Vh+m JMzDhAwOSTdhyaxR6hXULcyrdux07mW9ATlRiZmrYnQ2nVv208nF68XO31Cx2NdK 4fO32t8beMyrwQaY+S3uMOnMPnsRdcz1LSCDRfI5K3Nq1dYzDP6feJ4M734dDKBr WqcsqSMaOvRvFPrn2lZ6747fCDkpo4zHxwPfIsWSXPF9zVGjRjxiULaaz54UFgrF -----END CERTIFICATE-----Generated at Mon Mar 2 14:59:21 2026 by rpki-client