$ rpki-client -vvf rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/7229FDDCDC3D11F08C062F6F696F56BC.roa File: 7229FDDCDC3D11F08C062F6F696F56BC.roa (raw, json) Hash identifier: mO+BWuAvLE1cVLG5z10U+LtaeF9p3hAXhHEP7QtGd8k= Subject key identifier: 68:70:D2:56:79:CF:85:98:9A:C6:AF:66:56:39:DC:4B:20:83:1E:81 Certificate issuer: /CN=A91C022C/serialNumber=3BA2558CA5F1A037D9696F567AE81367C6EE35E6 Certificate serial: FB Authority key identifier: 3B:A2:55:8C:A5:F1:A0:37:D9:69:6F:56:7A:E8:13:67:C6:EE:35:E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/7229FDDCDC3D11F08C062F6F696F56BC.roa Signing time: Fri 17 Apr 2026 06:41:06 +0000 ROA not before: Fri 17 Apr 2026 06:41:06 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 153528 IP address blocks: 161.248.200.0/24 maxlen: 24 161.248.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.crl rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C022C, serialNumber=3BA2558CA5F1A037D9696F567AE81367C6EE35E6 Validity Not Before: Apr 17 06:41:06 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69e1d601-409c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:94:72:03:4e:67:28:d2:1c:3a:b0:db:ae:cd: 64:e4:5e:66:92:25:90:d0:db:8c:45:6b:14:62:c6: 77:00:d1:2a:79:83:db:ee:e1:04:c1:c1:04:81:00: 1e:c6:b8:28:65:94:0b:b1:43:e8:f1:aa:08:5c:2c: fc:ad:07:c7:91:a6:4e:11:85:ac:55:7f:b5:6e:ff: 09:7c:2e:42:2e:16:2e:e2:0d:fb:5c:8b:27:64:1f: e7:c5:63:06:50:3b:f2:82:e6:cf:5d:0f:4d:43:ae: 26:7c:fb:1a:78:ff:03:b6:ec:18:d8:8e:85:6e:3a: 93:af:c2:c4:7e:5b:f5:f8:ac:36:8e:32:b1:ff:33: 96:cb:da:ae:f6:13:92:a8:13:46:e6:c4:44:bf:75: 19:73:e6:37:7d:a9:dc:4e:70:07:e4:de:fa:53:b1: 39:2b:45:78:2b:40:11:b0:5f:64:e1:24:17:6e:23: d8:0c:76:51:9b:0a:cf:dc:fe:58:c5:19:0d:89:58: c3:1c:77:df:70:51:51:c9:8e:5d:85:27:db:05:3b: aa:46:44:17:f9:ca:b6:30:20:c3:5f:8f:0e:bd:a8: fb:c1:42:7a:a2:19:e0:78:d1:ae:c2:69:5e:a4:78: 37:c2:4f:ee:3f:f7:67:99:89:d3:27:2e:12:c2:37: 84:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:70:D2:56:79:CF:85:98:9A:C6:AF:66:56:39:DC:4B:20:83:1E:81 X509v3 Authority Key Identifier: keyid:3B:A2:55:8C:A5:F1:A0:37:D9:69:6F:56:7A:E8:13:67:C6:EE:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/7229FDDCDC3D11F08C062F6F696F56BC.roa sbgp-ipAddrBlock: critical IPv4: 161.248.200.0/23 Signature Algorithm: sha256WithRSAEncryption 64:cf:a1:7c:ee:4d:a8:5a:52:95:25:3d:31:c4:eb:73:da:4a: 59:d9:a5:d6:2e:72:f0:cb:0a:3f:33:35:e7:9a:42:cc:1a:61: 86:eb:91:82:29:4f:3e:8f:43:76:81:64:f6:c3:af:e1:10:62: 37:8e:e8:16:ca:61:ce:88:a0:cc:a3:7e:c1:8c:df:1e:9b:4c: b5:2d:e6:f1:00:e4:a2:a1:f2:c8:17:c2:19:eb:be:8b:b4:51: 13:c4:8d:95:27:3d:56:86:af:03:b2:38:0e:66:36:54:0f:8d: a6:cb:82:04:48:25:ba:50:c1:b6:65:7d:7f:86:64:f9:58:da: 67:49:7a:16:1f:cd:78:38:ee:ed:b7:d2:9d:90:64:d6:4a:15: 87:e3:1a:44:32:03:d1:a5:af:83:4f:cc:ae:09:7d:ca:35:8a: ca:0f:f0:cd:49:73:09:18:9d:fe:93:91:b1:e0:08:e1:34:0b: bd:40:7c:d4:9a:0d:b5:94:33:b0:1f:0c:2d:06:a5:fa:6e:59: 14:5e:75:34:dd:97:82:c3:77:cf:54:6b:dd:b9:f8:7e:7f:93: 4f:2e:7e:4f:fa:9f:55:94:57:6e:75:5e:58:25:03:59:fa:68: 88:cc:98:21:1a:ef:68:6f:03:83:fc:70:05:8b:8f:34:e1:69: ca:c3:86:e1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyMkMxMTAvBgNVBAUTKDNCQTI1NThDQTVGMUEwMzdEOTY5NkY1NjdBRTgxMzY3 QzZFRTM1RTYwHhcNMjYwNDE3MDY0MTA2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUxZDYwMS00MDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5RyA05nKNIcOrDbrs1k5F5mkiWQ0NuMRWsUYsZ3ANEqeYPb7uEEwcEEgQAe xrgoZZQLsUPo8aoIXCz8rQfHkaZOEYWsVX+1bv8JfC5CLhYu4g37XIsnZB/nxWMG UDvygubPXQ9NQ64mfPsaeP8DtuwY2I6FbjqTr8LEflv1+Kw2jjKx/zOWy9qu9hOS qBNG5sREv3UZc+Y3fancTnAH5N76U7E5K0V4K0ARsF9k4SQXbiPYDHZRmwrP3P5Y xRkNiVjDHHffcFFRyY5dhSfbBTuqRkQX+cq2MCDDX48Ovaj7wUJ6ohngeNGuwmle pHg3wk/uP/dnmYnTJy4SwjeEIQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGhw0lZ5 z4WYmsavZlY53Esggx6BMB8GA1UdIwQYMBaAFDuiVYyl8aA32WlvVnroE2fG7jXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDIyQy9CMUMxODIzMEQ0 QjkxMUVGOUZBOEUyNEZDNEY5QUUwMi9PNkpWaktYeG9EZlphVzlXZXVnVFo4YnVO ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL082SlZqS1h4b0RmWmFXOVdldWdUWjhidU5lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzAyMkMvQjFDMTgyMzBENEI5MTFFRjlGQThFMjRGQzRGOUFFMDIvNzIyOUZERENE QzNEMTFGMDhDMDYyRjZGNjk2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofjIMA0GCSqGSIb3DQEBCwUAA4IBAQBkz6F87k2oWlKVJT0xxOtz 2kpZ2aXWLnLwywo/MzXnmkLMGmGG65GCKU8+j0N2gWT2w6/hEGI3jugWymHOiKDM o37BjN8em0y1LebxAOSiofLIF8IZ676LtFETxI2VJz1Whq8DsjgOZjZUD42my4IE SCW6UMG2ZX1/hmT5WNpnSXoWH814OO7tt9KdkGTWShWH4xpEMgPRpa+DT8yuCX3K NYrKD/DNSXMJGJ3+k5Gx4AjhNAu9QHzUmg21lDOwHwwtBqX6blkUXnU03ZeCw3fP VGvdufh+f5NPLn5P+p9VlFdudV5YJQNZ+miIzJghGu9obwOD/HAFi4804WnKw4bh -----END CERTIFICATE-----Generated at Fri Apr 17 09:41:50 2026 by rpki-client