$ rpki-client -vvf rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa File: 7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa (raw, json) Hash identifier: 88RG+IBp3+3IKje/6h9nyZS5YfSLYuAiRdPmohXdymE= Subject key identifier: B1:EC:13:8D:A2:E5:8F:3D:98:26:BE:14:93:D4:1B:4D:E0:C8:F6:AF Certificate issuer: /CN=A91186C2/serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Certificate serial: DD Authority key identifier: C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:56:27 +0000 ROA not before: Sat 01 Nov 2025 06:50:05 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137054 IP address blocks: 160.191.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 06:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91186C2, serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Validity Not Before: Nov 1 06:50:05 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5a51b-6503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f5:6b:00:e7:d0:dd:2b:5b:3f:13:ed:fe:71: fc:82:08:dc:79:c5:21:98:5c:9e:97:45:e3:ff:89: 38:d5:96:9e:b3:66:21:41:2a:d4:ab:5e:33:26:c9: 2c:c0:78:91:02:98:90:32:04:09:ee:c5:1a:ef:40: 97:3d:f9:df:43:98:a9:a1:18:2b:f8:fa:f3:33:16: 38:24:4d:17:ee:11:ec:a9:f9:82:96:f3:a8:f3:9d: 16:e6:e7:43:6d:f0:62:8f:a6:00:fa:68:10:db:ac: 6e:60:e9:e0:d3:d2:38:92:41:bf:b2:cd:b6:ad:18: d7:11:f7:97:32:14:86:a2:c5:eb:73:a9:46:b3:a3: 3b:10:90:96:be:ef:9e:25:03:53:85:fa:36:aa:0c: 12:ee:1d:d7:57:47:af:b5:07:f7:63:84:d7:e4:21: bb:a3:75:12:e5:78:94:5d:ed:63:ea:c1:36:7f:22: cc:8d:ad:00:b1:da:ef:0e:25:6a:92:90:9d:9f:b9: c3:5d:1e:ac:e1:48:bf:72:c0:b2:81:29:da:cf:9a: 5d:3a:4f:ba:fb:1e:ae:b7:50:1c:2c:07:f6:46:6e: 74:ec:e8:de:31:8b:9b:d4:c0:88:3b:bb:ad:dc:2e: 57:5f:20:6c:d6:c2:51:9c:91:01:c7:b0:46:ba:20: c3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:EC:13:8D:A2:E5:8F:3D:98:26:BE:14:93:D4:1B:4D:E0:C8:F6:AF X509v3 Authority Key Identifier: keyid:C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.191.118.0/23 Signature Algorithm: sha256WithRSAEncryption ae:a5:9b:8c:33:d0:29:cb:4c:c0:54:f1:51:f9:f8:e2:ef:cc: 13:04:a1:26:a8:d4:8a:42:18:36:a1:49:14:16:4a:0c:ed:b6: 20:19:46:b9:b8:d8:6c:a4:1b:5a:0f:1f:d5:2b:ca:82:d2:ae: dd:14:5e:21:b8:3d:64:54:3a:51:48:64:59:41:ac:34:6d:bc: 9e:5b:a2:aa:32:f6:e5:3d:8e:b0:fa:46:45:45:be:a5:dd:39: 8f:08:5f:b8:d0:53:6e:cf:db:98:bc:a1:21:05:07:45:e4:3f: 59:5d:c4:79:ba:bb:10:c7:60:62:ae:08:06:b5:f0:2c:24:9f: c0:c1:b6:60:4b:d0:3e:a9:31:b2:51:30:4d:7e:f8:95:ea:2d: 65:f2:31:b4:9e:54:51:a0:fd:c1:3f:7b:2c:eb:92:10:f6:07: 37:87:e1:0e:4d:9c:8c:bc:19:8f:f7:a2:63:d2:dc:ab:df:32: d2:4b:7c:3c:82:c6:f8:5c:1e:5a:65:34:c0:95:1a:bf:70:1b: 40:75:12:9e:68:7f:a6:ac:c1:9b:42:22:04:4b:1f:cf:fb:c0: d5:93:4c:32:72:c9:61:55:4d:0f:1a:48:1b:c8:88:d0:fb:bb: ac:d8:0b:5f:a3:b4:be:3b:f3:1c:d2:d7:8a:ad:50:1c:24:c5: 79:09:4c:9d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2QzIxMTAvBgNVBAUTKEM2MjY1ODMyOTg1NzhEMUQ0QUY3MjczRUJENzkxQzcy MzBBMzc0NDkwHhcNMjUxMTAxMDY1MDA1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTUxYi02NTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPVrAOfQ3StbPxPt/nH8ggjcecUhmFyel0Xj/4k41Zaes2YhQSrUq14zJsks wHiRApiQMgQJ7sUa70CXPfnfQ5ipoRgr+PrzMxY4JE0X7hHsqfmClvOo850W5udD bfBij6YA+mgQ26xuYOng09I4kkG/ss22rRjXEfeXMhSGosXrc6lGs6M7EJCWvu+e JQNThfo2qgwS7h3XV0evtQf3Y4TX5CG7o3US5XiUXe1j6sE2fyLMja0AsdrvDiVq kpCdn7nDXR6s4Ui/csCygSnaz5pdOk+6+x6ut1AcLAf2Rm507OjeMYub1MCIO7ut 3C5XXyBs1sJRnJEBx7BGuiDDNwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLHsE42i 5Y89mCa+FJPUG03gyPavMB8GA1UdIwQYMBaAFMYmWDKYV40dSvcnPr15HHIwo3RJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODZDMi8xRDJGMDcyNEQx N0YxMUVGQjM4NDY5MjhDNEY5QUUwMi94aVpZTXBoWGpSMUs5eWMtdlhrY2NqQ2pk RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpWllNcGhYalIxSzl5Yy12WGtjY2pDamRFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg2QzIvMUQyRjA3MjREMTdGMTFFRkIzODQ2OTI4QzRGOUFFMDIvN0RGRkNEQTRE MTdGMTFFRjhGQUU0NTJCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoL92MA0GCSqGSIb3DQEBCwUAA4IBAQCupZuMM9Apy0zAVPFR+fji 78wTBKEmqNSKQhg2oUkUFkoM7bYgGUa5uNhspBtaDx/VK8qC0q7dFF4huD1kVDpR SGRZQaw0bbyeW6KqMvblPY6w+kZFRb6l3TmPCF+40FNuz9uYvKEhBQdF5D9ZXcR5 ursQx2BirggGtfAsJJ/AwbZgS9A+qTGyUTBNfviV6i1l8jG0nlRRoP3BP3ss65IQ 9gc3h+EOTZyMvBmP96Jj0tyr3zLSS3w8gsb4XB5aZTTAlRq/cBtAdRKeaH+mrMGb QiIESx/P+8DVk0wycslhVU0PGkgbyIjQ+7us2Atfo7S+O/Mc0teKrVAcJMV5CUyd -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:20 2026 by rpki-client