$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/8AE793B2E9E311F0A43C19FF656F56BC.roa File: 8AE793B2E9E311F0A43C19FF656F56BC.roa (raw, json) Hash identifier: iLjsYldebmEc4jQ39cKvj356cAs2Ip03tkyos/Cg+/w= Subject key identifier: 3B:D7:81:21:49:E3:67:82:D5:64:01:3C:26:0A:91:CD:E7:F3:59:50 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: E4 Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/8AE793B2E9E311F0A43C19FF656F56BC.roa Signing time: Sun 01 Mar 2026 15:25:31 +0000 ROA not before: Mon 05 Jan 2026 03:06:34 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 55805 IP address blocks: 161.248.150.0/24 maxlen: 24 161.248.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: Jan 5 03:06:34 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a45a6b-cb26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:02:0b:68:fc:e6:69:5a:31:d3:c8:ed:57:6b: d3:16:d7:10:7f:3b:37:0e:c4:01:6c:9e:8b:6b:f4: 16:91:6d:1f:1f:30:04:2a:76:22:31:ed:e2:88:10: dd:7d:96:3e:0c:b8:58:14:7e:70:85:f1:fe:6d:5a: 6f:17:21:37:4a:38:e6:25:50:c3:d4:96:c0:be:0a: 00:b4:c0:93:b6:88:f0:e9:ce:54:18:ae:ad:a0:0e: aa:be:49:8d:24:48:6b:e5:74:72:8c:c7:4a:0e:55: 25:bc:ae:3b:a7:56:29:b3:d0:14:fd:15:08:3c:d9: 94:cb:47:6a:49:d6:2c:b6:99:ab:4f:bf:d3:74:39: e9:48:08:c4:4a:e3:88:5b:df:5c:49:5c:e5:65:13: 51:22:00:85:f1:f9:64:74:f3:57:c7:c6:60:43:75: 14:29:5e:6e:55:ad:5b:df:bd:cd:6e:5b:4b:53:94: 66:79:5f:b5:57:45:51:60:cd:16:a0:94:cc:ba:9e: 9d:9c:fd:8b:66:82:2a:8a:08:89:62:6f:a1:7b:cd: e4:f9:d5:41:e1:c3:2c:21:c9:61:54:f8:ac:92:02: f5:c6:38:70:e8:38:51:17:03:6f:57:26:e6:d4:99: f3:bb:19:bc:fe:d3:ad:76:83:11:d0:c9:ec:79:d0: 61:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:D7:81:21:49:E3:67:82:D5:64:01:3C:26:0A:91:CD:E7:F3:59:50 X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/8AE793B2E9E311F0A43C19FF656F56BC.roa sbgp-ipAddrBlock: critical IPv4: 161.248.150.0/23 Signature Algorithm: sha256WithRSAEncryption 03:5b:9e:69:2a:de:49:c0:88:a8:78:4f:8a:bb:2d:e4:64:1c: 23:4d:9e:52:41:71:0b:91:53:4a:cc:6b:63:29:1b:1f:39:9d: 41:d0:31:21:35:9f:03:81:67:81:fc:cb:3c:88:c6:05:15:47: 1c:32:ec:ca:00:4c:e3:30:08:7c:8a:ce:1a:24:51:dc:ae:90: 6f:ba:fe:d0:af:d8:fe:76:22:ae:7e:0b:07:db:c6:41:ec:54: 5d:36:75:ce:14:c3:6e:d7:ae:b3:79:bc:b6:f0:ae:47:9c:ed: 7f:d0:65:45:9c:da:89:f6:d2:aa:a8:cf:0b:6d:f3:13:1a:3b: d3:47:59:27:a4:c4:a7:13:9a:6f:b3:67:15:f0:a4:73:fc:70: 86:18:db:64:d7:53:df:3b:18:f7:f8:06:bd:68:cf:c4:1a:6d: 84:ef:15:c3:99:ea:d0:c7:86:e0:cb:02:9b:53:9c:80:73:63: ac:6c:e3:d8:ac:6d:b1:c4:82:b2:7d:84:b5:2d:a4:bd:81:60: bd:d2:ab:da:63:b3:21:cd:d8:52:5d:12:ee:28:0d:b9:d5:08: 69:f2:95:f1:a4:d4:64:94:10:64:62:ba:4b:75:e2:31:1d:1e: 05:68:06:3d:23:8c:48:4c:f7:a4:a8:39:f2:b4:73:ce:e8:b0: e1:8b:85:14 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEEwMjcxOTVBNDgyMEYzRDcyNjRBNEQ1N0VFOUE5RDRD MkExMEM5MjMwHhcNMjYwMTA1MDMwNjM0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWE2Yi1jYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQILaPzmaVox08jtV2vTFtcQfzs3DsQBbJ6La/QWkW0fHzAEKnYiMe3iiBDd fZY+DLhYFH5whfH+bVpvFyE3SjjmJVDD1JbAvgoAtMCTtojw6c5UGK6toA6qvkmN JEhr5XRyjMdKDlUlvK47p1Yps9AU/RUIPNmUy0dqSdYstpmrT7/TdDnpSAjESuOI W99cSVzlZRNRIgCF8flkdPNXx8ZgQ3UUKV5uVa1b373NbltLU5RmeV+1V0VRYM0W oJTMup6dnP2LZoIqigiJYm+he83k+dVB4cMsIclhVPiskgL1xjhw6DhRFwNvVybm 1Jnzuxm8/tOtdoMR0MnsedBhzwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDvXgSFJ 42eC1WQBPCYKkc3n81lQMB8GA1UdIwQYMBaAFKAnGVpIIPPXJkpNV+6anUwqEMkj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS8zNUVEQTkyRUNG MEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5Y21TazFYN3BxZFRDb1F5 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE2MjEvMzVFREE5MkVDRjBEMTFFRjkyRjFFQzM2QzRGOUFFMDIvOEFFNzkzQjJF OUUzMTFGMEE0M0MxOUZGNjU2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofiWMA0GCSqGSIb3DQEBCwUAA4IBAQADW55pKt5JwIioeE+Kuy3k ZBwjTZ5SQXELkVNKzGtjKRsfOZ1B0DEhNZ8DgWeB/Ms8iMYFFUccMuzKAEzjMAh8 is4aJFHcrpBvuv7Qr9j+diKufgsH28ZB7FRdNnXOFMNu166zeby28K5HnO1/0GVF nNqJ9tKqqM8LbfMTGjvTR1knpMSnE5pvs2cV8KRz/HCGGNtk11PfOxj3+Aa9aM/E Gm2E7xXDmerQx4bgywKbU5yAc2OsbOPYrG2xxIKyfYS1LaS9gWC90qvaY7MhzdhS XRLuKA251Qhp8pXxpNRklBBkYrpLdeIxHR4FaAY9I4xITPekqDnytHPO6LDhi4UU -----END CERTIFICATE-----Generated at Mon Mar 2 05:19:00 2026 by rpki-client