$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/038610FC2D1E11EFA25C6D16C4F9AE02.roa File: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (raw, json) Hash identifier: hOp5C3KdQglyoPlRpzdVUK1HCVo7MMXzvUe8s9/qr10= Subject key identifier: 69:93:38:6C:FD:1D:5D:63:CC:A8:7B:0A:F7:96:FC:11:A5:31:4C:94 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: 014D Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/038610FC2D1E11EFA25C6D16C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:13:41 +0000 ROA not before: Sat 02 Aug 2025 15:54:24 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38887 IP address blocks: 160.22.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:23:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Aug 2 15:54:24 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42d75-acc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:72:80:51:97:dc:e1:73:05:9a:fb:c5:6e:ab: fb:8e:e7:3c:c0:af:04:ed:4f:e7:b9:6a:49:64:35: c8:ef:c7:b5:d2:91:2c:3c:95:c9:8f:be:29:8e:91: 9d:66:b7:1b:91:05:c6:1c:4d:f0:f1:89:6c:4c:36: 68:f6:fb:9a:23:6b:3d:51:32:bf:90:c9:19:98:03: 28:2a:d1:9b:94:3a:aa:f4:9c:84:e5:e3:42:8d:fd: 6f:5b:53:c9:73:cf:30:d8:5b:62:8f:d9:be:0b:aa: 5b:e0:01:4c:12:ce:b2:b1:5e:b8:37:70:78:b2:90: c3:62:13:8e:17:30:5c:be:f9:42:41:5c:51:3c:58: 1a:18:c2:44:79:f8:ea:51:a8:c9:cd:64:10:3b:cd: 73:f9:ef:71:13:83:b0:c9:44:67:54:e9:d3:24:31: 8b:aa:23:f4:cb:f0:01:b0:9f:f4:e6:56:63:43:d4: e0:32:d0:ce:a3:3e:98:9e:f9:7c:34:e9:ca:fc:39: e8:f2:5c:b3:38:fc:f1:d2:be:04:84:0b:dc:ca:85: 27:f9:a7:9e:b3:4f:ff:bc:44:4d:10:5c:44:f2:64: fd:07:eb:47:df:fa:2f:34:d5:7a:7a:d4:b2:27:b7: 9f:bf:4a:fd:f7:43:44:34:7c:25:a6:03:23:01:90: aa:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:93:38:6C:FD:1D:5D:63:CC:A8:7B:0A:F7:96:FC:11:A5:31:4C:94 X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/038610FC2D1E11EFA25C6D16C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.22.154.0/24 Signature Algorithm: sha256WithRSAEncryption 24:e7:19:12:0e:51:85:3b:ee:1e:0a:69:5e:af:0f:3f:a7:63: ca:c1:09:9b:b4:dd:d1:95:a1:95:b1:81:4e:f7:27:f1:ab:46: eb:a4:68:bb:23:7e:1c:20:aa:92:3f:46:f4:89:e9:d7:82:4f: f7:ae:d1:f0:09:13:e2:00:81:c3:c8:54:a3:e5:a4:b2:5c:a0: 96:6f:52:0f:78:58:9c:40:47:45:15:fd:3b:5e:53:cb:a4:21: 06:f6:e7:8c:70:b9:9e:fc:2e:b5:98:1f:91:0c:8f:9b:42:3b: cc:37:2c:2c:d3:e3:19:71:d4:ce:7e:cd:22:85:95:eb:b3:1d: fe:d2:55:bb:05:24:6d:3d:c8:61:fb:e9:f0:c2:12:4b:ab:f0: 1b:fa:dd:02:95:c6:a0:b5:e3:ed:9c:fa:52:c5:7b:b2:41:c8: 25:3d:0e:47:45:e1:55:44:45:5d:25:70:3b:d8:e9:78:57:95: a6:34:3b:da:cd:b3:ce:aa:02:2d:67:83:b6:94:9e:9f:69:87: 6b:14:f3:38:23:72:38:66:34:f0:c1:4d:4d:a8:2e:ac:34:80: fb:04:8e:38:57:53:a5:13:1f:f9:32:61:55:0d:74:65:7e:4a: 84:13:58:60:8f:f4:4b:b1:5e:90:0f:c3:9a:47:0d:a1:01:bc: 2a:ce:1e:1b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjUwODAyMTU1NDI0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmQ3NS1hY2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl3KAUZfc4XMFmvvFbqv7juc8wK8E7U/nuWpJZDXI78e10pEsPJXJj74pjpGd ZrcbkQXGHE3w8YlsTDZo9vuaI2s9UTK/kMkZmAMoKtGblDqq9JyE5eNCjf1vW1PJ c88w2Ftij9m+C6pb4AFMEs6ysV64N3B4spDDYhOOFzBcvvlCQVxRPFgaGMJEefjq UajJzWQQO81z+e9xE4OwyURnVOnTJDGLqiP0y/ABsJ/05lZjQ9TgMtDOoz6Ynvl8 NOnK/Dno8lyzOPzx0r4EhAvcyoUn+aees0//vERNEFxE8mT9B+tH3/ovNNV6etSy J7efv0r990NENHwlpgMjAZCqkQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGmTOGz9 HV1jzKh7CveW/BGlMUyUMB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U2RUMvMDgyQTg5RjAyQTI5MTFFRjg4OTVGMTFDQzRGOUFFMDIvMDM4NjEwRkMy RDFFMTFFRkEyNUM2RDE2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBaaMA0GCSqGSIb3DQEBCwUAA4IBAQAk5xkSDlGFO+4eCmlerw8/ p2PKwQmbtN3RlaGVsYFO9yfxq0brpGi7I34cIKqSP0b0ienXgk/3rtHwCRPiAIHD yFSj5aSyXKCWb1IPeFicQEdFFf07XlPLpCEG9ueMcLme/C61mB+RDI+bQjvMNyws 0+MZcdTOfs0ihZXrsx3+0lW7BSRtPchh++nwwhJLq/Ab+t0ClcagtePtnPpSxXuy QcglPQ5HReFVREVdJXA72Ol4V5WmNDvazbPOqgItZ4O2lJ6faYdrFPM4I3I4ZjTw wU1NqC6sNID7BI44V1OlEx/5MmFVDXRlfkqEE1hgj/RLsV6QD8OaRw2hAbwqzh4b -----END CERTIFICATE-----Generated at Mon Mar 2 14:22:55 2026 by rpki-client