$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/459A40A0399111F0B589186BC4F9AE02.roa File: 459A40A0399111F0B589186BC4F9AE02.roa (raw, json) Hash identifier: scPqVoYPhM9N9nt8I3yfdS2nCVlGwPE0LU2L+VLMObQ= Subject key identifier: A4:E8:80:51:85:D6:3F:FB:F0:38:AC:CB:F7:29:20:C2:33:6B:5F:26 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: E4 Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/459A40A0399111F0B589186BC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:16:23 +0000 ROA not before: Wed 07 Jan 2026 05:24:38 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 153490 IP address blocks: 161.248.118.0/23 maxlen: 23 161.248.118.0/24 maxlen: 24 161.248.119.0/24 maxlen: 24 161.248.119.64/27 maxlen: 27 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Jan 7 05:24:38 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a42007-b035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:65:e4:24:41:81:95:0d:8e:e0:1f:b5:07:bc: 94:8d:f4:aa:33:f8:48:3f:7c:db:05:09:bc:f5:03: 21:0d:74:c4:76:ce:a7:5e:ec:93:f2:9e:59:54:1f: 15:05:8a:31:ca:57:77:33:b0:f4:cd:d9:62:f8:b7: 4e:06:53:5e:33:77:77:71:a1:fb:a7:d4:8b:c0:51: 5d:0c:79:b1:a8:2d:fe:3e:dd:de:47:27:78:42:37: 7d:54:e4:6c:3f:b5:12:36:26:9b:02:d6:8b:74:3d: 70:6c:f2:99:fc:a1:62:95:14:c8:94:3b:34:f5:11: 21:a7:bf:e3:f5:14:c6:a7:dd:b0:8b:92:14:49:3f: e9:c6:e2:00:46:16:da:af:53:df:3a:09:76:c5:06: 1b:34:f8:90:12:da:b8:6b:01:3b:89:0b:fa:b0:45: db:eb:d6:b8:a5:69:4a:df:81:9f:9f:20:37:77:6e: e3:d6:9d:51:75:99:77:3a:83:b8:e5:a4:6e:67:c0: c8:4f:43:50:ca:61:11:aa:a5:87:74:3f:fc:61:52: d5:08:9f:d2:50:c2:44:26:f7:ad:7e:b7:61:63:2a: b6:d2:d2:16:76:9c:b8:20:fa:ff:42:78:b6:26:82: f6:39:d3:b4:d1:92:4b:8c:e6:b5:d4:1e:d7:aa:b8: 51:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:E8:80:51:85:D6:3F:FB:F0:38:AC:CB:F7:29:20:C2:33:6B:5F:26 X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/459A40A0399111F0B589186BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.118.0/23 Signature Algorithm: sha256WithRSAEncryption f2:d0:fb:55:3b:ae:bd:e5:29:b6:a2:13:11:77:fe:38:f7:47: 5a:9d:b3:55:20:aa:81:6c:9e:6e:17:7b:6d:10:e8:69:dd:98: e7:5b:3a:b9:74:74:9a:cf:bd:47:af:b9:a6:70:6a:7b:fd:c5: a0:a2:44:04:8f:a6:10:67:fa:75:d6:f4:6e:6a:25:a1:cb:3b: 8a:50:a9:66:2c:40:93:26:87:cc:03:d6:21:43:ef:fa:a1:b5: 89:38:f8:30:c5:cc:d2:e2:9e:57:71:db:cf:d2:3c:32:11:76: 05:dc:e6:bb:76:e7:56:7f:d4:2e:49:9f:11:9a:00:25:88:c7: 56:7b:aa:d3:c6:ab:9d:f3:02:aa:ed:39:04:ac:6e:5d:61:3d: 7f:24:a7:b6:a6:20:57:ec:c2:e6:3a:9f:6b:88:ba:ab:d1:90: f6:26:0a:88:9c:ac:d0:ef:0a:2b:ca:19:e5:81:b8:c6:f6:18: c3:20:ff:05:cc:db:2a:76:c1:3a:56:f8:11:2d:25:09:72:dd: 31:af:b5:35:e6:33:c7:4b:34:12:4f:f4:60:98:3f:ce:63:df: 19:d8:68:10:c2:88:42:d5:5b:33:78:fc:9c:04:63:0d:b4:4f: c9:77:bf:a5:77:fa:a5:ee:a6:c3:19:f4:91:e0:92:7f:ef:26: 93:a6:79:8b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQTgxMTAvBgNVBAUTKENCQzY2MDMzNzBGQkU4NENDQ0UwNjRFODRGNEYyNkVE QkVDMjY3QjEwHhcNMjYwMTA3MDUyNDM4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjAwNy1iMDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mXkJEGBlQ2O4B+1B7yUjfSqM/hIP3zbBQm89QMhDXTEds6nXuyT8p5ZVB8V BYoxyld3M7D0zdli+LdOBlNeM3d3caH7p9SLwFFdDHmxqC3+Pt3eRyd4Qjd9VORs P7USNiabAtaLdD1wbPKZ/KFilRTIlDs09REhp7/j9RTGp92wi5IUST/pxuIARhba r1PfOgl2xQYbNPiQEtq4awE7iQv6sEXb69a4pWlK34GfnyA3d27j1p1RdZl3OoO4 5aRuZ8DIT0NQymERqqWHdD/8YVLVCJ/SUMJEJvetfrdhYyq20tIWdpy4IPr/Qni2 JoL2OdO00ZJLjOa11B7XqrhRBQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKTogFGF 1j/78Disy/cpIMIza18mMB8GA1UdIwQYMBaAFMvGYDNw++hMzOBk6E9PJu2+wmex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yMERBMjc0NkU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZFek00R1RvVDA4bTdiN0Na N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDlDQTgvMjBEQTI3NDZFNEZEMTFFRkFDMUNFNjdGQzRGOUFFMDIvNDU5QTQwQTAz OTkxMTFGMEI1ODkxODZCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofh2MA0GCSqGSIb3DQEBCwUAA4IBAQDy0PtVO6695Sm2ohMRd/44 90danbNVIKqBbJ5uF3ttEOhp3ZjnWzq5dHSaz71Hr7mmcGp7/cWgokQEj6YQZ/p1 1vRuaiWhyzuKUKlmLECTJofMA9YhQ+/6obWJOPgwxczS4p5XcdvP0jwyEXYF3Oa7 dudWf9QuSZ8RmgAliMdWe6rTxqud8wKq7TkErG5dYT1/JKe2piBX7MLmOp9riLqr 0ZD2JgqInKzQ7woryhnlgbjG9hjDIP8FzNsqdsE6VvgRLSUJct0xr7U15jPHSzQS T/RgmD/OY98Z2GgQwohC1VszePycBGMNtE/Jd7+ld/ql7qbDGfSR4JJ/7yaTpnmL -----END CERTIFICATE-----Generated at Mon Mar 2 05:43:28 2026 by rpki-client