$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/DF730482A32311EFBE77BA2EC4F9AE02.roa File: DF730482A32311EFBE77BA2EC4F9AE02.roa (raw, json) Hash identifier: +XxRxDW4o+0vEop8el6czS1WqjL0cfJHtX8rBUhX9uE= Subject key identifier: 50:68:88:B8:22:B9:A6:2D:4F:A7:30:E9:60:76:6F:64:BD:5A:4E:DE Certificate issuer: /CN=A91EA198/serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Certificate serial: 1EC2 Authority key identifier: 5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/DF730482A32311EFBE77BA2EC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:59:06 +0000 ROA not before: Fri 12 Dec 2025 16:13:51 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 24429 IP address blocks: 8.148.32.0/24 maxlen: 24 8.148.33.0/24 maxlen: 24 8.148.34.0/24 maxlen: 24 8.148.35.0/24 maxlen: 24 8.148.36.0/24 maxlen: 24 8.148.37.0/24 maxlen: 24 8.148.38.0/24 maxlen: 24 8.148.39.0/24 maxlen: 24 8.148.40.0/24 maxlen: 24 8.148.41.0/24 maxlen: 24 8.148.42.0/24 maxlen: 24 8.148.43.0/24 maxlen: 24 170.33.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7874 (0x1ec2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Validity Not Before: Dec 12 16:13:51 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4705a-51fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:58:99:a9:c5:1d:b2:93:0f:75:cb:b1:b1:61: 30:57:44:07:5b:cc:5f:68:31:65:b9:2c:f9:11:7e: e0:0b:6b:4a:3b:41:a3:cb:4d:ed:9e:d8:f5:cd:50: 52:b3:bf:30:49:4d:c6:be:c1:50:cb:b6:41:e7:92: 6b:fd:a0:a2:73:c0:60:ab:63:92:ef:ed:85:d1:2c: 9b:d5:74:9e:0d:10:0d:ef:4f:be:2f:a7:99:7e:12: b7:39:6e:06:ef:ee:aa:76:e4:cb:aa:f9:57:e1:01: 50:bf:fd:f7:39:19:a3:89:a0:ab:4d:b7:18:35:fd: d1:9f:85:46:0e:a0:d8:75:34:ae:ca:68:76:8b:23: 8e:f6:1c:5c:78:e9:f0:6f:c3:bd:60:0d:87:0e:01: 0f:5b:eb:f1:ee:41:18:e6:88:15:eb:3a:dd:f2:f8: 40:58:c5:a6:d2:5e:58:f8:89:19:19:b6:24:85:bf: c0:47:9f:33:66:79:b5:f0:90:98:ca:18:07:3b:e1: 51:ef:0a:da:ae:5a:93:42:19:70:74:28:40:5b:27: e0:1b:e1:b8:e5:1d:2d:a0:60:77:41:a7:44:e1:9c: 6e:05:0c:67:9a:06:d9:aa:79:91:a7:8e:f8:a8:17: c7:d8:76:36:ed:d5:9c:84:87:8b:12:cb:ec:8a:d9: 23:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:68:88:B8:22:B9:A6:2D:4F:A7:30:E9:60:76:6F:64:BD:5A:4E:DE X509v3 Authority Key Identifier: keyid:5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/DF730482A32311EFBE77BA2EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 8.148.32.0-8.148.43.255 170.33.98.0/24 Signature Algorithm: sha256WithRSAEncryption b1:ca:2e:ff:a2:96:18:21:38:f7:ab:a0:1c:18:2c:2f:02:13: 5e:db:be:17:77:19:7d:30:ce:7b:bc:be:a7:ef:c6:8b:e8:e5: a0:d6:71:21:82:3a:5f:d1:06:40:71:40:78:8f:2d:18:50:de: 5e:fe:33:a2:a8:07:d4:ba:e5:64:fa:34:7e:62:8d:14:62:06: e2:e3:fd:8b:40:9a:13:c5:8f:21:81:7d:30:fb:40:a1:48:ae: c3:49:86:65:62:98:aa:36:5d:cd:34:89:d3:83:84:0c:15:8e: 45:d8:f9:7c:2f:f7:47:cc:4e:03:5b:5e:56:fc:a4:51:03:59: d8:50:49:73:b4:66:cc:6d:ef:34:58:57:54:c0:c5:51:8d:4b: 09:7e:c6:f3:62:14:a5:b6:68:39:06:ad:c7:c8:30:08:09:76: 97:32:d7:a6:df:15:3b:22:3d:78:13:4a:36:38:6b:00:6f:db: f7:e8:b8:97:98:fd:52:91:fa:b6:b9:68:3a:63:58:36:75:84: 7c:17:a1:5f:30:34:e6:61:5a:17:57:eb:6f:40:80:33:f7:69: 6e:e3:ad:e4:b6:fa:54:ba:7d:11:9a:27:e8:de:09:c6:02:a2: 49:a1:c1:1a:73:e2:19:f8:dc:b5:ce:63:ed:91:9d:3f:ca:7e: aa:9e:3d:90 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICHsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDVGRUVERTlEMzgyNTQzRjA1MTUyN0ZBNTMzRDQ3QTkx NzA3N0U2MzIwHhcNMjUxMjEyMTYxMzUxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzA1YS01MWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuViZqcUdspMPdcuxsWEwV0QHW8xfaDFluSz5EX7gC2tKO0Gjy03tntj1zVBS s78wSU3GvsFQy7ZB55Jr/aCic8Bgq2OS7+2F0Syb1XSeDRAN70++L6eZfhK3OW4G 7+6qduTLqvlX4QFQv/33ORmjiaCrTbcYNf3Rn4VGDqDYdTSuymh2iyOO9hxceOnw b8O9YA2HDgEPW+vx7kEY5ogV6zrd8vhAWMWm0l5Y+IkZGbYkhb/AR58zZnm18JCY yhgHO+FR7wrarlqTQhlwdChAWyfgG+G45R0toGB3QadE4ZxuBQxnmgbZqnmRp474 qBfH2HY27dWchIeLEsvsitkjuwIDAQABo4ICbjCCAmowHQYDVR0OBBYEFFBoiLgi uaYtT6cw6WB2b2S9Wk7eMB8GA1UdIwQYMBaAFF/u3p04JUPwUVJ/pTPUepFwd+Yy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC9BRDYyOTIyMkI1 MjUxMUU2QUY2Qzg5NUVDNEY5QUUwMi9YLTdlblRnbFFfQlJVbi1sTTlSNmtYQjM1 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1gtN2VuVGdsUV9CUlVuLWxNOVI2a1hCMzVqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvQUQ2MjkyMjJCNTI1MTFFNkFGNkM4OTVFQzRGOUFFMDIvREY3MzA0ODJB MzIzMTFFRkJFNzdCQTJFQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBAUIlCADBAIIlCgDBACqIWIwDQYJKoZIhvcNAQELBQADggEBALHK Lv+ilhghOPeroBwYLC8CE17bvhd3GX0wznu8vqfvxovo5aDWcSGCOl/RBkBxQHiP LRhQ3l7+M6KoB9S65WT6NH5ijRRiBuLj/YtAmhPFjyGBfTD7QKFIrsNJhmVimKo2 Xc00idODhAwVjkXY+Xwv90fMTgNbXlb8pFEDWdhQSXO0Zsxt7zRYV1TAxVGNSwl+ xvNiFKW2aDkGrcfIMAgJdpcy16bfFTsiPXgTSjY4awBv2/fouJeY/VKR+ra5aDpj WDZ1hHwXoV8wNOZhWhdX629AgDP3aW7jreS2+lS6fRGaJ+jeCcYCokmhwRpz4hn4 3LXOY+2RnT/KfqqePZA= -----END CERTIFICATE-----Generated at Mon Mar 2 06:16:18 2026 by rpki-client