$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/A94836600F7111F08BC42022C4F9AE02.roa File: A94836600F7111F08BC42022C4F9AE02.roa (raw, json) Hash identifier: u576PqO+BtNCnO64DUXQ7ItjcmgVyMNM4SJ3quc5Oh0= Subject key identifier: 09:5A:FA:39:E7:A5:BA:54:AA:3F:28:69:38:5B:98:06:E6:C2:41:2A Certificate issuer: /CN=A91E6CCA/serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Certificate serial: B2 Authority key identifier: A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/A94836600F7111F08BC42022C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:27:34 +0000 ROA not before: Wed 09 Jul 2025 08:44:19 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 138975 IP address blocks: 160.20.118.0/23 maxlen: 23 160.20.118.0/24 maxlen: 24 160.20.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Validity Not Before: Jul 9 08:44:19 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3f875-0297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d4:27:3a:be:09:be:2d:70:ba:b6:07:c2:8f: 6c:cb:c6:60:0b:af:3a:61:0d:0e:7f:fb:9b:4f:ba: 12:c6:75:b8:0f:ba:92:94:fd:eb:c1:05:47:b3:18: fa:f1:ee:e1:57:e0:75:ec:9e:14:d8:7c:45:28:16: 8a:67:d7:ef:89:5a:c3:0c:ad:29:9f:3b:cb:68:0b: 2b:50:a8:49:b3:7c:b5:4a:bc:a3:1a:0a:59:49:de: 50:7e:7d:0b:f5:c2:43:db:f4:e9:7c:dd:04:8a:bc: ac:63:46:cc:72:8c:88:f8:e0:ea:17:e5:7a:46:59: 7e:8c:97:b2:b4:da:8a:da:92:58:ba:cc:b0:b6:83: ae:e8:3c:d2:02:91:10:b4:c9:1b:98:3f:95:d4:85: e6:68:f0:5a:88:82:1f:c9:da:9d:d7:34:f7:f8:af: a8:16:9f:a8:13:9d:7f:fa:ba:f1:2b:87:ef:32:d3: 13:8c:f3:80:98:76:e8:de:c1:58:98:77:0a:69:90: 05:c9:d1:0e:48:7c:1b:9c:b5:81:a4:fc:d7:a6:bf: a1:c4:42:1c:db:ec:07:7e:58:63:62:31:d3:bf:b9: de:c3:84:2c:6a:19:ac:e2:a4:a9:1f:59:7d:6d:d1: 74:a3:16:f5:4d:d5:00:6f:ff:c3:13:9c:93:cf:71: d7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:5A:FA:39:E7:A5:BA:54:AA:3F:28:69:38:5B:98:06:E6:C2:41:2A X509v3 Authority Key Identifier: keyid:A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/A94836600F7111F08BC42022C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.20.118.0/23 Signature Algorithm: sha256WithRSAEncryption 14:ae:d2:11:2b:d8:6e:57:c6:fe:11:fe:30:f9:65:0e:b3:45: c1:14:84:4a:1e:28:75:f9:90:99:0f:5f:98:95:89:bc:0b:e0: 23:58:63:ae:ff:a2:10:2d:a6:6b:11:91:dd:22:d9:e5:72:26: 52:0f:04:d0:12:1e:4a:64:20:43:91:c6:0e:85:bb:f3:a5:59: 19:f7:4d:3a:b2:56:a4:a1:60:de:71:6c:9c:29:07:df:86:cb: 2b:15:35:37:a6:2c:c1:70:a7:fd:dd:1c:9a:0b:cc:77:5f:8a: c1:59:b3:07:92:4a:77:50:ff:b8:45:e9:5e:fd:d5:f0:cf:50: b7:34:a1:1a:75:2c:ec:a5:7c:65:6b:cb:cf:75:1f:01:2b:7b: b1:bd:46:b6:43:b0:b0:61:e9:d7:1b:7b:1d:13:e1:1e:f8:b7: 70:1b:98:ea:75:93:e5:35:8f:66:b2:57:e8:0f:80:fe:2e:39: 21:24:81:4f:5b:64:0f:40:ba:49:e5:ba:03:d6:56:7d:b0:aa: 34:af:dc:10:1a:67:e6:31:c5:ca:76:f3:e3:87:71:22:63:31: b3:4a:b0:16:8b:9d:fb:90:79:ff:43:c4:fc:7a:28:69:54:88: 46:0e:ad:eb:71:75:11:40:0e:a5:c9:d2:19:66:88:81:ca:99: 0f:db:1f:59 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZDQ0ExMTAvBgNVBAUTKEE4OUQwRkQ0RjQ4QUJGNjk0RkQ5REY3NzA0RTU5NjQ2 NERFRDIxNzkwHhcNMjUwNzA5MDg0NDE5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjg3NS0wMjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdQnOr4Jvi1wurYHwo9sy8ZgC686YQ0Of/ubT7oSxnW4D7qSlP3rwQVHsxj6 8e7hV+B17J4U2HxFKBaKZ9fviVrDDK0pnzvLaAsrUKhJs3y1SryjGgpZSd5Qfn0L 9cJD2/TpfN0EirysY0bMcoyI+ODqF+V6Rll+jJeytNqK2pJYusywtoOu6DzSApEQ tMkbmD+V1IXmaPBaiIIfydqd1zT3+K+oFp+oE51/+rrxK4fvMtMTjPOAmHbo3sFY mHcKaZAFydEOSHwbnLWBpPzXpr+hxEIc2+wHflhjYjHTv7new4Qsahms4qSpH1l9 bdF0oxb1TdUAb//DE5yTz3HXLQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAla+jnn pbpUqj8oaThbmAbmwkEqMB8GA1UdIwQYMBaAFKidD9T0ir9pT9nfdwTllkZN7SF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkNDQS8xQTdBREVDQTBG NzAxMUYwOUUyRjdEMUZDNEY5QUUwMi9xSjBQMVBTS3YybFAyZDkzQk9XV1JrM3RJ WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FKMFAxUFNLdjJsUDJkOTNCT1dXUmszdElYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZDQ0EvMUE3QURFQ0EwRjcwMTFGMDlFMkY3RDFGQzRGOUFFMDIvQTk0ODM2NjAw RjcxMTFGMDhCQzQyMDIyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBR2MA0GCSqGSIb3DQEBCwUAA4IBAQAUrtIRK9huV8b+Ef4w+WUO s0XBFIRKHih1+ZCZD1+YlYm8C+AjWGOu/6IQLaZrEZHdItnlciZSDwTQEh5KZCBD kcYOhbvzpVkZ9006slakoWDecWycKQffhssrFTU3pizBcKf93RyaC8x3X4rBWbMH kkp3UP+4Rele/dXwz1C3NKEadSzspXxla8vPdR8BK3uxvUa2Q7CwYenXG3sdE+Ee +LdwG5jqdZPlNY9mslfoD4D+LjkhJIFPW2QPQLpJ5boD1lZ9sKo0r9wQGmfmMcXK dvPjh3EiYzGzSrAWi537kHn/Q8T8eihpVIhGDq3rcXURQA6lydIZZoiBypkP2x9Z -----END CERTIFICATE-----Generated at Mon Mar 2 05:39:24 2026 by rpki-client