$ rpki-client -vvf rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/CD26CAC0431611EE80B53A75C4F9AE02.roa File: CD26CAC0431611EE80B53A75C4F9AE02.roa (raw, json) Hash identifier: loySozWUl5+0sXOVLBRCH081Kxyq/ilzC/iAZMz3ol4= Subject key identifier: 4E:88:82:5B:44:0F:D5:77:25:11:FF:A8:1B:41:39:00:22:3E:5A:9B Certificate issuer: /CN=A91E00FC/serialNumber=4BD9994BC5CFF9ECB6683C94DC6EECD5EEEE0E78 Certificate serial: 0A7E Authority key identifier: 4B:D9:99:4B:C5:CF:F9:EC:B6:68:3C:94:DC:6E:EC:D5:EE:EE:0E:78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S9mZS8XP-ey2aDyU3G7s1e7uDng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/CD26CAC0431611EE80B53A75C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:30:23 +0000 ROA not before: Wed 14 May 2025 20:06:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139006 IP address blocks: 165.173.160.0/22 maxlen: 24 165.173.190.0/23 maxlen: 23 165.173.190.0/24 maxlen: 24 165.173.191.0/24 maxlen: 24 199.67.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.crl rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S9mZS8XP-ey2aDyU3G7s1e7uDng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:29:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2686 (0xa7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E00FC, serialNumber=4BD9994BC5CFF9ECB6683C94DC6EECD5EEEE0E78 Validity Not Before: May 14 20:06:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4072e-717a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c8:3e:ab:c0:98:f9:bc:69:40:01:57:a4:6d: e2:a9:02:72:2f:fe:e8:56:8d:de:7f:23:de:fe:0a: 86:25:4c:4e:86:3a:e9:23:5d:e8:ac:fd:94:41:57: eb:ec:3a:d9:4b:be:33:e4:67:26:e2:e9:e9:24:dd: b8:2c:35:6a:15:51:d7:bf:c4:64:1d:56:a5:eb:37: 14:fe:b2:25:72:a0:4d:1b:ee:fe:61:cb:4a:6d:30: 3e:52:40:3b:21:67:d2:54:8c:b8:21:44:c9:9b:8f: ab:c7:7c:52:4d:62:62:f3:49:83:b1:76:a8:da:77: 72:f9:49:ff:ea:50:b8:97:8e:a6:62:13:d1:dc:85: 81:82:e2:30:d1:2c:01:97:2c:1f:f2:a1:73:a1:92: a1:21:00:c6:56:f4:d8:22:30:54:0c:2a:89:70:e8: 25:1b:45:ae:a3:a9:b0:5b:76:5b:c8:1c:16:a3:e6: 94:c1:c9:73:3d:c9:b4:48:07:e4:c8:62:26:56:5d: 4d:42:1a:59:04:55:66:9c:84:c3:5c:dc:e2:93:b5: 82:6f:7a:6d:a3:ce:fe:80:10:14:1b:b0:5f:1e:de: f6:d8:3e:bb:10:c8:28:55:15:f6:4b:ac:f7:d1:b3: 95:72:43:00:00:e1:de:40:8c:21:d6:ee:47:03:d3: 3e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:88:82:5B:44:0F:D5:77:25:11:FF:A8:1B:41:39:00:22:3E:5A:9B X509v3 Authority Key Identifier: keyid:4B:D9:99:4B:C5:CF:F9:EC:B6:68:3C:94:DC:6E:EC:D5:EE:EE:0E:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S9mZS8XP-ey2aDyU3G7s1e7uDng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/CD26CAC0431611EE80B53A75C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.173.160.0/22 165.173.190.0/23 199.67.70.0/24 Signature Algorithm: sha256WithRSAEncryption 99:dc:41:0b:b0:d4:1f:f3:4d:f9:20:22:40:87:eb:98:03:26: 81:07:09:61:ac:99:4f:78:f1:b1:da:b0:d3:4a:86:e2:cb:4b: 76:f5:37:8a:45:a5:ab:16:34:cb:6d:05:e6:d6:99:e4:ca:7b: 0c:a1:58:27:df:86:4f:12:d0:fc:91:98:a7:cb:18:7b:af:e3: 84:8b:75:4b:f5:f5:dd:11:e0:af:76:38:62:62:88:c8:a6:ec: 5c:a7:da:6c:49:c2:40:a6:0b:12:06:cd:1c:92:70:a5:4f:0a: de:63:67:ae:f6:22:ff:63:7e:84:ac:6f:5c:27:9a:76:db:3f: 6b:b5:d8:d1:21:58:ef:c9:ef:33:55:56:bf:17:25:50:69:d2: e5:3d:0c:bc:8a:88:28:d4:df:e1:af:3c:53:af:19:cc:47:9c: ad:bc:ae:56:07:e3:16:a0:97:f5:79:f0:16:3f:65:66:77:49: a2:6a:e6:63:b5:c4:9a:54:de:54:6c:a6:34:77:2f:38:49:d9: a6:76:5b:f6:9f:29:64:21:06:4d:2f:d4:8e:d4:2c:ac:aa:a4: eb:65:1f:1d:ee:78:2a:ca:80:93:93:8e:8f:ca:d1:ca:0c:64: 87:2d:14:7f:95:af:12:c8:8d:a6:cd:e6:38:a9:25:f1:99:9f: 5b:d7:c9:9c -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAwRkMxMTAvBgNVBAUTKDRCRDk5OTRCQzVDRkY5RUNCNjY4M0M5NERDNkVFQ0Q1 RUVFRTBFNzgwHhcNMjUwNTE0MjAwNjE0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDcyZS03MTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmcg+q8CY+bxpQAFXpG3iqQJyL/7oVo3efyPe/gqGJUxOhjrpI13orP2UQVfr 7DrZS74z5Gcm4unpJN24LDVqFVHXv8RkHVal6zcU/rIlcqBNG+7+YctKbTA+UkA7 IWfSVIy4IUTJm4+rx3xSTWJi80mDsXao2ndy+Un/6lC4l46mYhPR3IWBguIw0SwB lywf8qFzoZKhIQDGVvTYIjBUDCqJcOglG0Wuo6mwW3ZbyBwWo+aUwclzPcm0SAfk yGImVl1NQhpZBFVmnITDXNzik7WCb3pto87+gBAUG7BfHt722D67EMgoVRX2S6z3 0bOVckMAAOHeQIwh1u5HA9M+hQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFE6IgltE D9V3JRH/qBtBOQAiPlqbMB8GA1UdIwQYMBaAFEvZmUvFz/nstmg8lNxu7NXu7g54 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDBGQy81NUYyQzRDNjdG MkYxMUVBQURGNEJGNkFDNEY5QUUwMi9TOW1aUzhYUC1leTJhRHlVM0c3czFlN3VE bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1M5bVpTOFhQLWV5MmFEeVUzRzdzMWU3dURuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTAwRkMvNTVGMkM0QzY3RjJGMTFFQUFERjRCRjZBQzRGOUFFMDIvQ0QyNkNBQzA0 MzE2MTFFRTgwQjUzQTc1QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCpa2gAwQBpa2+AwQAx0NGMA0GCSqGSIb3DQEBCwUAA4IBAQCZ3EEL sNQf8035ICJAh+uYAyaBBwlhrJlPePGx2rDTSobiy0t29TeKRaWrFjTLbQXm1pnk ynsMoVgn34ZPEtD8kZinyxh7r+OEi3VL9fXdEeCvdjhiYojIpuxcp9psScJApgsS Bs0cknClTwreY2eu9iL/Y36ErG9cJ5p22z9rtdjRIVjvye8zVVa/FyVQadLlPQy8 iogo1N/hrzxTrxnMR5ytvK5WB+MWoJf1efAWP2Vmd0miauZjtcSaVN5UbKY0dy84 Sdmmdlv2nylkIQZNL9SO1CysqqTrZR8d7ngqyoCTk46PytHKDGSHLRR/la8SyI2m zeY4qSXxmZ9b18mc -----END CERTIFICATE-----Generated at Mon Mar 2 07:11:49 2026 by rpki-client