$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/1B88FC66823D11EC8E3CB427C4F9AE02.roa File: 1B88FC66823D11EC8E3CB427C4F9AE02.roa (raw, json) Hash identifier: ac+aodcf7CV859BIQKT57PwHWz/3vXPzuwLxjQlMsmo= Subject key identifier: 8A:58:21:99:BC:58:D5:22:16:B1:DF:56:8E:1B:5F:B5:70:80:7A:5C Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 1002 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/1B88FC66823D11EC8E3CB427C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:47:08 +0000 ROA not before: Wed 14 Jan 2026 18:15:11 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 45250 IP address blocks: 220.232.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4098 (0x1002) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:15:11 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a489ac-c37f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2e:89:8c:57:ad:ec:3e:ad:8a:48:dc:f8:ed: 79:84:cc:48:c4:9e:eb:14:55:50:c7:a7:e5:60:23: 4c:b9:9f:d0:24:8e:6b:5b:08:ac:a2:f2:5e:35:1d: 31:0a:ab:52:6e:23:1a:bc:2e:b4:36:49:89:dc:dd: b5:da:18:ef:52:46:e0:d3:f2:0c:36:e7:b4:9e:4a: b4:be:5d:fc:59:f7:0e:0e:eb:5c:0d:7c:81:f9:85: 65:85:5e:c3:0a:c5:c8:31:b9:12:63:12:37:29:71: 66:e9:01:34:0e:49:b0:99:4c:45:cc:2e:cf:11:29: 75:34:5b:c5:ea:da:bc:ba:78:16:bd:48:f4:c9:c0: a3:07:be:69:21:c3:7c:d2:70:2c:03:c0:2d:1b:55: 6d:ec:90:d6:6d:2c:3d:76:36:15:25:cf:84:07:73: c3:17:13:a2:22:35:ae:84:8e:62:c2:e2:43:63:71: 01:89:fb:b4:8f:15:ee:bf:18:5d:50:22:e3:ba:e2: 8c:e8:07:6f:8c:40:38:33:cb:39:a7:b4:51:1c:d1: d6:24:4d:8f:69:6a:a5:7a:f5:f7:1a:fc:0c:12:a9: 60:22:b4:84:fe:64:38:a9:08:de:e4:3b:74:27:66: e4:85:ac:ae:b3:ff:74:d2:3c:02:33:36:3e:bd:cb: b2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:58:21:99:BC:58:D5:22:16:B1:DF:56:8E:1B:5F:B5:70:80:7A:5C X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/1B88FC66823D11EC8E3CB427C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 220.232.180.0/22 Signature Algorithm: sha256WithRSAEncryption 97:f1:c1:3a:3b:0d:d2:a2:6a:76:06:11:43:d7:19:16:30:d5: 54:21:47:11:33:19:78:4a:45:78:ed:19:23:71:ba:76:14:61: 45:4b:9c:5f:9f:bd:76:7f:28:0c:fc:0e:6c:b6:8e:33:d3:d6: 62:51:09:25:69:39:95:bb:d2:7c:0a:d2:f4:be:4e:19:b4:9d: 22:6f:6d:bf:aa:0b:f7:70:fd:ae:3f:0d:f6:74:f7:48:95:9b: d3:bf:15:cf:8d:a9:a6:f5:42:5e:5a:6a:a9:88:49:ce:bb:4a: 14:f4:0d:d5:49:0b:96:ca:77:fb:50:93:9e:ff:f2:9c:f7:5c: 0d:25:5b:3f:1c:12:0d:76:43:7d:85:64:d6:bf:41:84:67:1e: b6:48:be:4a:41:83:b9:f8:8b:d1:f1:1f:f6:7a:f8:b8:d3:e9: ab:c8:59:6d:1e:cf:15:4e:08:20:ee:4a:2f:6e:62:74:96:e2: 0b:fa:64:22:c7:57:bb:57:8c:b7:ca:f4:6f:29:dc:18:df:44: 1a:ad:aa:dc:e7:78:1f:82:72:48:c3:13:17:78:d5:45:d6:c5: 68:29:89:4e:a9:a5:0c:35:ba:5f:70:53:66:06:90:5a:7a:bd: 7f:70:92:8a:0a:46:5b:de:2e:74:90:9b:e5:51:03:1c:f7:e8: ce:1c:a4:33 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjYwMTE0MTgxNTExWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODlhYy1jMzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqy6JjFet7D6tikjc+O15hMxIxJ7rFFVQx6flYCNMuZ/QJI5rWwisovJeNR0x CqtSbiMavC60NkmJ3N212hjvUkbg0/IMNue0nkq0vl38WfcODutcDXyB+YVlhV7D CsXIMbkSYxI3KXFm6QE0DkmwmUxFzC7PESl1NFvF6tq8ungWvUj0ycCjB75pIcN8 0nAsA8AtG1Vt7JDWbSw9djYVJc+EB3PDFxOiIjWuhI5iwuJDY3EBifu0jxXuvxhd UCLjuuKM6AdvjEA4M8s5p7RRHNHWJE2PaWqlevX3GvwMEqlgIrSE/mQ4qQje5Dt0 J2bkhayus/900jwCMzY+vcuyewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIpYIZm8 WNUiFrHfVo4bX7VwgHpcMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvMUI4OEZDNjY4 MjNEMTFFQzhFM0NCNDI3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQC3Oi0MA0GCSqGSIb3DQEBCwUAA4IBAQCX8cE6Ow3Somp2BhFD1xkW MNVUIUcRMxl4SkV47Rkjcbp2FGFFS5xfn712fygM/A5sto4z09ZiUQklaTmVu9J8 CtL0vk4ZtJ0ib22/qgv3cP2uPw32dPdIlZvTvxXPjamm9UJeWmqpiEnOu0oU9A3V SQuWynf7UJOe//Kc91wNJVs/HBINdkN9hWTWv0GEZx62SL5KQYO5+IvR8R/2evi4 0+mryFltHs8VTggg7kovbmJ0luIL+mQix1e7V4y3yvRvKdwY30Qararc53gfgnJI wxMXeNVF1sVoKYlOqaUMNbpfcFNmBpBaer1/cJKKCkZb3i50kJvlUQMc9+jOHKQz -----END CERTIFICATE-----Generated at Mon Mar 2 02:24:26 2026 by rpki-client