$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/19C407C0CC1011EFBC7E0050C4F9AE02.roa File: 19C407C0CC1011EFBC7E0050C4F9AE02.roa (raw, json) Hash identifier: YhEgP7BtjPiAKP/DklQo7tOfqEOazq/YqPHJ1ipjURA= Subject key identifier: FB:B6:AC:E5:6B:6F:0C:19:C4:CD:92:5E:41:9E:87:4B:DE:86:BD:98 Certificate issuer: /CN=A91CE7A4/serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Certificate serial: DD Authority key identifier: 30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/19C407C0CC1011EFBC7E0050C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:26:44 +0000 ROA not before: Sun 01 Mar 2026 08:26:44 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153483 IP address blocks: 161.248.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE7A4, serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Validity Not Before: Mar 1 08:26:44 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3f844-cd82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:1d:71:99:22:44:8d:51:cc:1d:2b:5c:fc:60: f7:ae:f0:3f:bf:fb:fa:fc:13:1f:2f:f2:27:e2:d2: 6b:f0:7d:cc:78:48:bf:51:94:34:83:9f:75:72:8f: 2d:a4:8c:b4:02:bd:d3:d0:91:c2:b5:f5:57:77:b9: 0d:16:07:73:0e:dc:a6:a9:3b:52:21:79:2f:86:6f: da:29:42:29:74:ce:f6:67:1f:5a:65:46:6d:f0:38: 99:25:4c:d1:32:f6:8a:8e:4f:98:84:df:3b:aa:40: 14:58:56:6c:40:2a:3c:6d:c4:5a:12:4c:cd:90:7f: 83:87:58:0e:4f:49:f1:98:4b:e9:49:fe:a9:20:e6: 5d:f1:1b:f6:18:b8:5b:48:05:c7:18:3f:6a:b9:c9: e9:74:6f:51:34:a4:19:4c:d8:72:d3:1c:17:c3:1d: 6d:08:ab:d0:c7:c2:b1:7f:61:3b:80:dc:7e:2e:fa: 64:ab:96:66:ba:ea:80:a4:9a:ba:84:ca:4d:38:44: 68:4a:41:b2:6f:c7:51:76:36:26:0d:27:60:3b:43: c6:da:9e:1e:69:76:70:53:12:d3:a1:23:94:4d:1b: 96:8b:d5:fe:59:95:b3:67:73:f8:20:ad:5f:7e:cd: 34:ef:b3:87:1e:55:29:2d:fb:86:21:55:2c:88:3a: e5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B6:AC:E5:6B:6F:0C:19:C4:CD:92:5E:41:9E:87:4B:DE:86:BD:98 X509v3 Authority Key Identifier: keyid:30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/19C407C0CC1011EFBC7E0050C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.100.0/23 Signature Algorithm: sha256WithRSAEncryption 95:5d:eb:4f:7d:11:d0:28:c1:6c:25:b3:c2:42:40:ae:4d:e3: 8c:52:54:14:07:5d:20:ad:fb:e3:33:eb:46:d2:f6:08:8b:78: 1e:cc:85:75:1a:a8:65:07:72:11:0d:32:f3:2d:8e:3a:bf:fd: 4e:fa:ea:c7:e4:08:2e:77:1f:03:82:0b:95:f1:de:9f:71:34: 9f:f0:92:92:0e:a5:97:50:9e:51:7e:89:66:fc:aa:ef:35:c9: 51:5e:08:76:a5:01:b8:cd:17:e2:67:34:06:f6:3f:44:48:82: 3a:b8:0c:fb:4d:58:1c:67:ef:84:1d:5e:2b:e6:ff:ba:b2:c1: 59:c1:db:c4:5e:f9:96:b2:70:78:1b:5f:9e:fe:a5:d3:24:4a: 94:42:c6:b9:2f:36:31:ab:60:f8:b2:97:55:c2:12:cb:ce:c6: b0:a4:dc:db:cd:7d:52:70:2f:21:06:63:39:4c:97:7f:fe:5d: 80:74:c4:8f:35:96:3f:36:4d:ab:42:85:fb:9b:87:12:7f:63: 61:03:8a:58:db:f4:cb:2e:f4:41:c2:97:80:e5:32:e9:08:7c: 53:ac:03:2e:9b:8b:bc:1e:22:15:87:d6:89:39:65:e3:6d:27: ca:9f:a8:5a:b6:ee:96:6f:8a:37:59:94:e5:99:a1:9b:5c:8b: 2a:93:ea:a6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U3QTQxMTAvBgNVBAUTKDMwNjQ5MERCNzQ1Qzk1RUM4NjYxNDk5RkZDODI2NDY2 N0JBNjdGOEEwHhcNMjYwMzAxMDgyNjQ0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjg0NC1jZDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjh1xmSJEjVHMHStc/GD3rvA/v/v6/BMfL/In4tJr8H3MeEi/UZQ0g591co8t pIy0Ar3T0JHCtfVXd7kNFgdzDtymqTtSIXkvhm/aKUIpdM72Zx9aZUZt8DiZJUzR MvaKjk+YhN87qkAUWFZsQCo8bcRaEkzNkH+Dh1gOT0nxmEvpSf6pIOZd8Rv2GLhb SAXHGD9qucnpdG9RNKQZTNhy0xwXwx1tCKvQx8Kxf2E7gNx+Lvpkq5ZmuuqApJq6 hMpNOERoSkGyb8dRdjYmDSdgO0PG2p4eaXZwUxLToSOUTRuWi9X+WZWzZ3P4IK1f fs0077OHHlUpLfuGIVUsiDrlawIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPu2rOVr bwwZxM2SXkGeh0vehr2YMB8GA1UdIwQYMBaAFDBkkNt0XJXshmFJn/yCZGZ7pn+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTdBNC9CODkwREZEMkND MEYxMUVGQTI3OEZENENDNEY5QUUwMi9NR1NRMjNSY2xleUdZVW1mX0lKa1pudW1m NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HU1EyM1JjbGV5R1lVbWZfSUprWm51bWY0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U3QTQvQjg5MERGRDJDQzBGMTFFRkEyNzhGRDRDQzRGOUFFMDIvMTlDNDA3QzBD QzEwMTFFRkJDN0UwMDUwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofhkMA0GCSqGSIb3DQEBCwUAA4IBAQCVXetPfRHQKMFsJbPCQkCu TeOMUlQUB10grfvjM+tG0vYIi3gezIV1GqhlB3IRDTLzLY46v/1O+urH5Agudx8D gguV8d6fcTSf8JKSDqWXUJ5Rfolm/KrvNclRXgh2pQG4zRfiZzQG9j9ESII6uAz7 TVgcZ++EHV4r5v+6ssFZwdvEXvmWsnB4G1+e/qXTJEqUQsa5LzYxq2D4spdVwhLL zsawpNzbzX1ScC8hBmM5TJd//l2AdMSPNZY/Nk2rQoX7m4cSf2NhA4pY2/TLLvRB wpeA5TLpCHxTrAMum4u8HiIVh9aJOWXjbSfKn6hatu6Wb4o3WZTlmaGbXIsqk+qm -----END CERTIFICATE-----Generated at Mon Mar 2 12:15:36 2026 by rpki-client