$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA46/FF8AA24A9CF511EF8A6C8581C4F9AE02/3117605AFF2E11F099836B6D89EE528E.roa File: 3117605AFF2E11F099836B6D89EE528E.roa (raw, json) Hash identifier: 5oMhHK5GexMn6Fihs/+IOJ93dC15hw4lCqu3Gtv/Uc8= Subject key identifier: B1:6E:79:85:ED:E0:BC:17:35:1E:BF:07:93:70:EF:73:F1:3A:C4:43 Certificate issuer: /CN=A91EBA46/serialNumber=FD8C5F487742CB2051B2869729B466124CDF5E6B Certificate serial: 0109 Authority key identifier: FD:8C:5F:48:77:42:CB:20:51:B2:86:97:29:B4:66:12:4C:DF:5E:6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_YxfSHdCyyBRsoaXKbRmEkzfXms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA46/FF8AA24A9CF511EF8A6C8581C4F9AE02/3117605AFF2E11F099836B6D89EE528E.roa Signing time: Sun 01 Mar 2026 16:56:44 +0000 ROA not before: Tue 03 Feb 2026 05:25:20 +0000 ROA not after: Tue 02 Jun 2026 00:00:00 +0000 asID: 153394 IP address blocks: 160.191.190.0/23 maxlen: 23 160.191.190.0/24 maxlen: 24 160.191.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA46/FF8AA24A9CF511EF8A6C8581C4F9AE02/_YxfSHdCyyBRsoaXKbRmEkzfXms.crl rsync://rpki.apnic.net/member_repository/A91EBA46/FF8AA24A9CF511EF8A6C8581C4F9AE02/_YxfSHdCyyBRsoaXKbRmEkzfXms.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_YxfSHdCyyBRsoaXKbRmEkzfXms.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:51:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA46, serialNumber=FD8C5F487742CB2051B2869729B466124CDF5E6B Validity Not Before: Feb 3 05:25:20 2026 GMT Not After : Jun 2 00:00:00 2026 GMT Subject: CN=69a46fcb-2b45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:80:61:96:a3:2a:bd:98:d0:8a:c7:f6:f8:9a: b3:86:ae:74:79:70:27:17:9b:5f:52:74:ba:f1:3c: 18:c8:70:17:9b:8e:f7:73:86:66:a5:f8:1c:58:0c: ec:da:c8:bd:0f:bd:a3:48:1c:ef:5c:0c:5a:83:01: 3d:a4:81:35:7d:15:a5:97:2d:9a:1c:69:d2:8b:e9: 30:21:1d:c3:1e:51:bb:b8:af:3f:3c:6b:7e:25:da: 69:53:b4:0a:a1:67:08:be:44:00:e9:f1:79:49:15: 8e:ae:36:67:5d:87:62:fc:d3:80:20:2b:b9:75:05: 31:bc:f6:49:d0:62:53:42:7d:25:75:76:82:e3:df: bf:ff:5c:ab:09:b1:bd:b2:0c:14:a4:43:39:a8:56: 86:bf:50:82:07:3f:83:29:bc:75:fb:54:7b:b5:43: 60:a0:9f:32:e5:fd:6f:f1:b9:66:9b:18:83:74:2b: b7:43:c7:8d:51:cf:51:b4:63:b8:34:99:02:29:17: 42:19:17:36:09:0c:de:6f:c0:1f:6e:82:ab:e7:28: 18:37:77:e0:c3:1e:a9:6e:34:dd:d9:9d:54:a8:dc: cc:94:03:2a:dd:da:67:8c:18:7b:cf:07:98:3b:77: e6:8d:0e:8e:e0:97:a9:33:e1:11:b1:1a:d2:88:67: 63:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6E:79:85:ED:E0:BC:17:35:1E:BF:07:93:70:EF:73:F1:3A:C4:43 X509v3 Authority Key Identifier: keyid:FD:8C:5F:48:77:42:CB:20:51:B2:86:97:29:B4:66:12:4C:DF:5E:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA46/FF8AA24A9CF511EF8A6C8581C4F9AE02/_YxfSHdCyyBRsoaXKbRmEkzfXms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_YxfSHdCyyBRsoaXKbRmEkzfXms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA46/FF8AA24A9CF511EF8A6C8581C4F9AE02/3117605AFF2E11F099836B6D89EE528E.roa sbgp-ipAddrBlock: critical IPv4: 160.191.190.0/23 Signature Algorithm: sha256WithRSAEncryption 66:28:ae:a4:16:aa:1d:4e:f7:ac:d0:f9:0f:60:3d:86:8c:98: 0f:e4:21:9c:ab:04:49:ce:bd:92:1d:9c:03:1c:d8:8b:e5:8f: ca:12:5f:84:c2:72:d8:b6:b8:07:27:44:ad:87:89:45:7c:a3: e7:f4:44:21:69:c3:dd:c0:ec:a3:2f:3e:47:e7:08:95:70:c9: 70:4b:f8:e9:a0:4a:9e:51:77:13:cc:8e:54:88:7c:a3:7f:0d: 88:81:b3:3f:e9:02:56:a1:8e:df:41:d9:21:3d:57:28:3b:e8: e2:8c:ce:1d:81:68:26:c6:ad:48:0b:cc:3a:71:0c:6a:7f:72: a4:a3:ba:c6:85:80:40:83:d7:45:c9:f5:9f:c3:6a:fc:37:e2: c2:0f:31:81:77:44:fe:72:41:c7:54:43:2c:d0:72:03:04:7d: 16:d3:f8:5d:08:d1:f1:fc:c3:18:0b:b3:d2:f1:65:19:d5:04: 6c:bd:54:0d:89:0a:f9:e7:e1:31:ac:45:23:fe:c7:be:a7:06: 5e:de:3f:8d:c4:b0:1d:bd:0d:05:c7:99:b0:5a:01:bb:09:ca: c6:4c:29:7a:cf:b5:9e:71:e7:a3:18:c9:36:cc:84:d7:f5:b8: 17:7c:3d:d3:7e:19:cf:db:ef:5e:b2:6a:99:7b:c9:65:9a:f3: 29:66:7b:b1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBNDYxMTAvBgNVBAUTKEZEOEM1RjQ4Nzc0MkNCMjA1MUIyODY5NzI5QjQ2NjEy NENERjVFNkIwHhcNMjYwMjAzMDUyNTIwWhcNMjYwNjAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmZjYi0yYjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YBhlqMqvZjQisf2+Jqzhq50eXAnF5tfUnS68TwYyHAXm473c4ZmpfgcWAzs 2si9D72jSBzvXAxagwE9pIE1fRWlly2aHGnSi+kwIR3DHlG7uK8/PGt+JdppU7QK oWcIvkQA6fF5SRWOrjZnXYdi/NOAICu5dQUxvPZJ0GJTQn0ldXaC49+//1yrCbG9 sgwUpEM5qFaGv1CCBz+DKbx1+1R7tUNgoJ8y5f1v8blmmxiDdCu3Q8eNUc9RtGO4 NJkCKRdCGRc2CQzeb8AfboKr5ygYN3fgwx6pbjTd2Z1UqNzMlAMq3dpnjBh7zweY O3fmjQ6O4JepM+ERsRrSiGdjMwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLFueYXt 4LwXNR6/B5Nw73PxOsRDMB8GA1UdIwQYMBaAFP2MX0h3QssgUbKGlym0ZhJM315r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkE0Ni9GRjhBQTI0QTlD RjUxMUVGOEE2Qzg1ODFDNEY5QUUwMi9fWXhmU0hkQ3l5QlJzb2FYS2JSbUVremZY bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19ZeGZTSGRDeXlCUnNvYVhLYlJtRWt6Zlhtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJBNDYvRkY4QUEyNEE5Q0Y1MTFFRjhBNkM4NTgxQzRGOUFFMDIvMzExNzYwNUFG RjJFMTFGMDk5ODM2QjZEODlFRTUyOEUucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoL++MA0GCSqGSIb3DQEBCwUAA4IBAQBmKK6kFqodTves0PkPYD2G jJgP5CGcqwRJzr2SHZwDHNiL5Y/KEl+EwnLYtrgHJ0Sth4lFfKPn9EQhacPdwOyj Lz5H5wiVcMlwS/jpoEqeUXcTzI5UiHyjfw2IgbM/6QJWoY7fQdkhPVcoO+jijM4d gWgmxq1IC8w6cQxqf3Kko7rGhYBAg9dFyfWfw2r8N+LCDzGBd0T+ckHHVEMs0HID BH0W0/hdCNHx/MMYC7PS8WUZ1QRsvVQNiQr55+ExrEUj/se+pwZe3j+NxLAdvQ0F x5mwWgG7CcrGTCl6z7WeceejGMk2zITX9bgXfD3TfhnP2+9esmqZe8llmvMpZnux -----END CERTIFICATE-----Generated at Mon Mar 2 08:58:13 2026 by rpki-client