$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/ECD8F45832C711F1809C448B9A833773.roa File: ECD8F45832C711F1809C448B9A833773.roa (raw, json) Hash identifier: vdA7Y0+FQqP1B/PSwPlcTDY8ijwH4/m6ZdsYH/Ip2Uo= Subject key identifier: B4:73:7D:34:55:75:2F:3C:AB:CD:FA:6F:66:17:FB:46:59:7D:A9:63 Certificate issuer: /CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Certificate serial: 0198 Authority key identifier: 2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/ECD8F45832C711F1809C448B9A833773.roa Signing time: Tue 07 Apr 2026 21:22:48 +0000 ROA not before: Tue 07 Apr 2026 21:22:48 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 401106 IP address blocks: 160.20.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:26:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Validity Not Before: Apr 7 21:22:48 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69d575a8-0ca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4e:a3:a4:9c:5f:c0:c5:7d:72:ef:dc:4c:f7: 66:e6:4d:7e:b8:6d:d4:91:ab:c9:0c:0b:f2:9b:ee: 32:a7:fe:b8:70:68:23:93:26:5c:39:31:9f:d3:47: 67:d6:de:77:8e:55:7d:e5:c3:5f:79:6a:27:f7:8c: ed:06:3c:81:fa:e0:a5:16:a5:a5:c4:5b:45:9c:09: 99:83:2a:37:e2:1f:76:f1:16:9b:bf:8f:2b:c2:07: 5f:a6:a2:30:d1:43:82:ec:21:a0:bf:96:9e:f3:6f: dd:71:1b:fe:43:90:0b:a6:9d:a7:a4:d8:db:b8:11: b3:cc:2b:6c:fa:9e:ea:8f:e5:06:5d:2e:fd:7f:be: 62:43:e1:31:10:a9:56:d3:52:50:14:ba:ab:5c:b3: 96:ee:39:e9:67:fa:f0:ff:11:e2:3d:96:e2:19:73: b4:8b:e5:4d:65:b5:ff:80:5c:3d:07:4c:e0:a6:99: 40:d7:44:65:c2:bb:e2:a2:03:68:62:fd:dd:b4:64: 38:14:31:0f:53:b7:02:4b:30:3e:f5:30:05:45:43: 2d:a3:b1:84:77:3a:b5:d5:48:ea:38:9c:8d:11:bc: 7b:ae:20:27:e6:2d:5e:e9:f0:8a:93:23:dc:6a:4d: 71:94:51:82:e2:2b:2b:2b:61:82:c3:51:30:f1:21: 13:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:73:7D:34:55:75:2F:3C:AB:CD:FA:6F:66:17:FB:46:59:7D:A9:63 X509v3 Authority Key Identifier: keyid:2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/ECD8F45832C711F1809C448B9A833773.roa sbgp-ipAddrBlock: critical IPv4: 160.20.121.0/24 Signature Algorithm: sha256WithRSAEncryption 23:c2:39:1f:76:b1:08:2d:87:00:81:97:15:43:c4:20:89:02: db:52:19:41:af:cc:c5:b2:65:fa:4f:ab:69:42:50:1d:0d:0a: a0:c3:68:e3:3c:46:90:86:07:7d:50:2f:70:c9:73:b3:82:56: 57:7c:e3:3f:03:0f:14:95:54:6a:96:65:3a:d0:71:11:1b:aa: e8:3f:19:ff:a0:6c:9e:5a:2b:4a:ef:45:39:8a:9a:6f:e0:51: 8f:b8:55:99:69:96:f7:44:ff:e5:4a:5b:53:82:fa:98:c8:b2: 45:54:12:bd:db:42:d9:44:a2:70:80:6d:3a:9b:00:fe:a5:a1: 72:00:cf:cb:e2:72:23:32:ac:0a:5f:e3:c7:20:c7:d5:75:c9: 81:09:fb:cc:81:fe:0f:4e:10:5f:c4:88:4b:73:9b:83:14:3f: a8:f2:c8:f8:12:bf:44:13:1a:c8:8b:2f:a0:e2:e3:53:4c:56: a1:0e:98:32:f1:c8:10:83:5a:4e:9f:74:03:69:b0:95:43:ec: 71:c0:f5:00:5b:db:88:3b:f0:de:c8:61:2f:19:e0:24:56:55: 31:c7:8c:c2:a4:5c:15:17:63:99:48:6e:48:60:19:05:6f:57: 9b:43:d3:21:a1:85:d4:12:a2:2f:5f:2e:c1:70:95:4c:88:67: 50:f0:b2:29 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKDJBQkEyQUEzQ0IzRjk0NTgxQzVEM0Q5MUJBMzZCOEE5 RDhFOERFQUQwHhcNMjYwNDA3MjEyMjQ4WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ1NzVhOC0wY2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuE6jpJxfwMV9cu/cTPdm5k1+uG3UkavJDAvym+4yp/64cGgjkyZcOTGf00dn 1t53jlV95cNfeWon94ztBjyB+uClFqWlxFtFnAmZgyo34h928Rabv48rwgdfpqIw 0UOC7CGgv5ae82/dcRv+Q5ALpp2npNjbuBGzzCts+p7qj+UGXS79f75iQ+ExEKlW 01JQFLqrXLOW7jnpZ/rw/xHiPZbiGXO0i+VNZbX/gFw9B0zgpplA10RlwrviogNo Yv3dtGQ4FDEPU7cCSzA+9TAFRUMto7GEdzq11UjqOJyNEbx7riAn5i1e6fCKkyPc ak1xlFGC4isrK2GCw1Ew8SETgQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLRzfTRV dS88q836b2YX+0ZZfaljMB8GA1UdIwQYMBaAFCq6KqPLP5RYHF09kbo2uKnY6N6t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi85ODNFNjE1MDE3 MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xGZ2NYVDJSdWphNHFkam8z cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tyb3FvOHNfbEZnY1hUMlJ1amE0cWRqbzNxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjgwQzIvOTgzRTYxNTAxNzFBMTFFRjg2NTc3NTRGQzRGOUFFMDIvRUNEOEY0NTgz MkM3MTFGMTgwOUM0NDhCOUE4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBR5MA0GCSqGSIb3DQEBCwUAA4IBAQAjwjkfdrEILYcAgZcVQ8Qg iQLbUhlBr8zFsmX6T6tpQlAdDQqgw2jjPEaQhgd9UC9wyXOzglZXfOM/Aw8UlVRq lmU60HERG6roPxn/oGyeWitK70U5ippv4FGPuFWZaZb3RP/lSltTgvqYyLJFVBK9 20LZRKJwgG06mwD+paFyAM/L4nIjMqwKX+PHIMfVdcmBCfvMgf4PThBfxIhLc5uD FD+o8sj4Er9EExrIiy+g4uNTTFahDpgy8cgQg1pOn3QDabCVQ+xxwPUAW9uIO/De yGEvGeAkVlUxx4zCpFwVF2OZSG5IYBkFb1ebQ9MhoYXUEqIvXy7BcJVMiGdQ8LIp -----END CERTIFICATE-----Generated at Fri Apr 17 16:28:05 2026 by rpki-client