$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/E9F177B89D9C11EFA9526A6CC4F9AE02.roa File: E9F177B89D9C11EFA9526A6CC4F9AE02.roa (raw, json) Hash identifier: aIh23/3y8xgm3k9QGKPnGbqB42NXH2OLUXREX9l30Z4= Subject key identifier: 84:30:5A:02:AD:C7:6B:8C:DC:1B:63:47:DF:F5:BF:76:70:E1:65:BD Certificate issuer: /CN=A91EA409/serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Certificate serial: 0100 Authority key identifier: 21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/E9F177B89D9C11EFA9526A6CC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:13:29 +0000 ROA not before: Thu 25 Dec 2025 05:24:56 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 153398 IP address blocks: 160.191.194.0/24 maxlen: 24 160.191.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409, serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Validity Not Before: Dec 25 05:24:56 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43b78-24da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:47:42:ca:ed:a1:e2:ae:27:80:08:fe:77:d4: 27:95:00:bc:47:e6:11:69:e0:7a:c8:e9:18:7c:47: 88:20:5e:c9:97:e5:75:70:2e:1e:f3:cc:e8:ac:68: ac:49:7d:b1:4e:d8:2d:91:ec:49:3a:e3:2b:9e:91: 41:43:c5:2c:a9:ab:33:ff:d6:e1:db:95:b8:27:06: 57:78:f4:42:f9:ca:b5:54:a6:d1:b6:5d:7b:f8:8c: cd:85:45:93:c5:f8:e2:fa:51:f7:f6:bf:fa:8a:10: 11:2b:b6:89:a0:b4:ea:5c:6b:9d:66:ed:14:4e:33: e7:6a:6b:b7:94:8d:95:e8:01:f7:b0:37:ab:ec:33: e5:ce:19:e9:3d:1e:fb:b0:c2:5b:fb:98:5a:b8:39: a6:ea:9e:16:63:49:7e:ab:93:a8:3a:60:0c:80:7f: 31:13:54:20:e5:4b:30:ba:7a:36:2a:6f:2f:83:66: 7a:56:92:e3:87:8b:2c:13:7c:57:7c:a3:8b:12:3e: 6f:46:bd:ff:14:ca:89:af:cf:e1:db:ae:ce:2c:69: b5:6e:6b:be:50:d6:09:53:bc:ab:d3:d9:27:fa:09: 9c:f2:90:c3:f0:19:bc:5c:9b:f2:a6:55:64:d1:4e: 24:9a:09:82:da:13:94:be:34:ab:63:0a:4c:5d:b2: 64:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:30:5A:02:AD:C7:6B:8C:DC:1B:63:47:DF:F5:BF:76:70:E1:65:BD X509v3 Authority Key Identifier: keyid:21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/E9F177B89D9C11EFA9526A6CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.191.194.0/23 Signature Algorithm: sha256WithRSAEncryption 48:cf:24:d7:4f:d2:a4:3e:35:fd:43:65:64:e2:06:5c:da:55: d3:d0:88:9e:e7:c0:1b:85:f0:03:e7:d5:ff:10:22:86:11:be: fb:36:a1:76:67:e6:9b:9a:7a:df:5b:f7:3e:17:33:03:39:e6: 8f:1a:32:18:e4:ca:6c:08:7f:20:a3:1b:23:fe:29:ef:41:7f: 55:3f:99:be:18:6c:e4:d7:ac:1d:01:5f:e9:c7:07:1f:8c:d6: 02:c4:04:5c:1b:e4:22:43:46:76:8b:d8:e9:f1:c6:94:c8:d3: e0:55:2e:6e:7f:91:5e:3e:f8:ec:d2:74:16:fd:81:61:ae:8d: 56:19:5d:1f:92:12:24:b5:93:21:4a:73:0d:5c:ca:e0:2c:0d: 53:fa:c3:a5:ec:da:29:d7:d2:f7:27:6d:f7:4b:4d:b8:d1:15: fe:52:e0:79:db:d0:7d:c3:55:e5:1c:5c:b0:47:ca:7e:4a:da: 73:b5:d5:fa:a0:67:e2:85:47:d6:fc:50:59:93:5a:31:4a:32: 91:dc:7a:6d:f1:9e:6f:3e:09:c2:fd:1b:e0:f0:5a:14:bb:ca: 61:18:f8:86:a0:ad:61:45:25:ab:8d:f6:7b:69:a2:d5:a6:e1: 1b:88:58:35:be:2d:94:a7:f7:64:9a:0e:46:51:ea:ac:15:86: 6e:67:e8:b3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0MDkxMTAvBgNVBAUTKDIxNjRERDU5QTYxNUQ1RjJFMzM5M0U3MjA5OEE3M0FE ODY4RTc4REEwHhcNMjUxMjI1MDUyNDU2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2I3OC0yNGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEdCyu2h4q4ngAj+d9QnlQC8R+YRaeB6yOkYfEeIIF7Jl+V1cC4e88zorGis SX2xTtgtkexJOuMrnpFBQ8Usqasz/9bh25W4JwZXePRC+cq1VKbRtl17+IzNhUWT xfji+lH39r/6ihARK7aJoLTqXGudZu0UTjPnamu3lI2V6AH3sDer7DPlzhnpPR77 sMJb+5hauDmm6p4WY0l+q5OoOmAMgH8xE1Qg5Uswuno2Km8vg2Z6VpLjh4ssE3xX fKOLEj5vRr3/FMqJr8/h267OLGm1bmu+UNYJU7yr09kn+gmc8pDD8Bm8XJvyplVk 0U4kmgmC2hOUvjSrYwpMXbJkjwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIQwWgKt x2uM3BtjR9/1v3Zw4WW9MB8GA1UdIwQYMBaAFCFk3VmmFdXy4zk+cgmKc62Gjnja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQwOS9GOTQ0RTNDQzlD QUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFmTGpPVDV5Q1lwenJZYU9l Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lXVGRXYVlWMWZMak9UNXlDWXB6cllhT2VOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE0MDkvRjk0NEUzQ0M5Q0FCMTFFRkFCNTk1NTE2QzRGOUFFMDIvRTlGMTc3Qjg5 RDlDMTFFRkE5NTI2QTZDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoL/CMA0GCSqGSIb3DQEBCwUAA4IBAQBIzyTXT9KkPjX9Q2Vk4gZc 2lXT0Iie58AbhfAD59X/ECKGEb77NqF2Z+abmnrfW/c+FzMDOeaPGjIY5MpsCH8g oxsj/invQX9VP5m+GGzk16wdAV/pxwcfjNYCxARcG+QiQ0Z2i9jp8caUyNPgVS5u f5FePvjs0nQW/YFhro1WGV0fkhIktZMhSnMNXMrgLA1T+sOl7Nop19L3J233S024 0RX+UuB529B9w1XlHFywR8p+StpztdX6oGfihUfW/FBZk1oxSjKR3Hpt8Z5vPgnC /Rvg8FoUu8phGPiGoK1hRSWrjfZ7aaLVpuEbiFg1vi2Up/dkmg5GUeqsFYZuZ+iz -----END CERTIFICATE-----Generated at Mon Mar 2 18:12:38 2026 by rpki-client