$ rpki-client -vvf rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/CD9B554E58DF11F0A0F08D09C4F9AE02.roa File: CD9B554E58DF11F0A0F08D09C4F9AE02.roa (raw, json) Hash identifier: OaRClTNTWcQXYlnD4cBkGyCqgiY8xb8R1pIP6cxJg0o= Subject key identifier: DE:93:25:49:EF:6C:84:33:F3:94:D5:C1:97:D3:FB:AA:E2:0D:34:93 Certificate issuer: /CN=A912434D/serialNumber=30D719F9C6D37E2AC9F4D6D4B1F7D978EC2A3289 Certificate serial: 87 Authority key identifier: 30:D7:19:F9:C6:D3:7E:2A:C9:F4:D6:D4:B1:F7:D9:78:EC:2A:32:89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/CD9B554E58DF11F0A0F08D09C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:44:17 +0000 ROA not before: Wed 19 Nov 2025 05:23:04 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150161 IP address blocks: 160.191.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.crl rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912434D, serialNumber=30D719F9C6D37E2AC9F4D6D4B1F7D978EC2A3289 Validity Not Before: Nov 19 05:23:04 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5a241-4b4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:27:58:31:a0:fb:79:80:44:17:ff:20:c0:92: 16:53:d8:56:98:97:7b:96:f1:ea:2e:20:ae:98:81: ff:bb:3d:e5:28:88:9a:41:c8:8c:bd:c6:09:39:48: 83:2b:b7:da:c0:4d:f7:5f:4d:ca:f8:79:88:78:52: c7:14:9b:65:06:94:bd:f1:b6:39:88:6d:77:8e:d5: cb:99:b2:b1:18:51:f3:92:83:ef:8a:15:e1:33:c5: a6:0e:51:53:26:07:01:5c:d5:4d:ef:2c:a0:9e:41: 7c:7b:04:2c:a5:dc:9a:99:b0:20:e5:3c:7f:c4:c0: 93:18:4d:c5:86:c9:ed:7a:f6:87:97:cf:f7:a8:3d: 2b:12:17:a7:59:fc:85:2b:fd:35:0c:c5:6f:cd:8c: 6a:62:16:23:e4:ad:47:b8:3a:12:67:1a:d1:98:e2: 16:b6:52:a4:e6:1a:d6:22:f0:31:95:33:3d:60:aa: ff:e1:85:73:83:dd:33:e4:56:85:95:c8:a4:40:e0: 04:b1:cf:dd:d0:0a:89:b9:78:c7:a7:35:0a:d3:a9: 03:09:ef:be:1c:e7:19:d9:b7:a7:6a:0b:00:fb:86: db:8e:d2:89:a8:fc:c6:9c:ec:24:3e:57:95:5e:ea: 48:d9:48:21:9b:8f:ef:3d:b1:ba:4f:38:89:55:19: 03:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:93:25:49:EF:6C:84:33:F3:94:D5:C1:97:D3:FB:AA:E2:0D:34:93 X509v3 Authority Key Identifier: keyid:30:D7:19:F9:C6:D3:7E:2A:C9:F4:D6:D4:B1:F7:D9:78:EC:2A:32:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/CD9B554E58DF11F0A0F08D09C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.191.24.0/23 Signature Algorithm: sha256WithRSAEncryption 61:52:b3:a3:07:17:f5:87:a3:84:c1:7d:63:f8:0a:4b:b8:12: 90:9a:13:19:3f:f3:ea:d3:81:71:ee:25:d9:aa:d4:68:0c:0b: c4:90:67:9c:cd:d8:e0:17:24:56:f8:15:93:7b:96:4f:c9:4b: 0f:70:dd:77:92:9f:05:b8:3d:34:54:b0:68:2c:33:6b:18:d3: 6c:0e:43:27:9f:68:63:dd:fe:5f:2c:a9:82:52:74:05:a4:77: 4a:dd:7f:10:0d:0c:45:49:70:1c:21:37:56:ac:dd:71:c3:9c: 43:9c:a9:fb:fc:d7:b8:2d:e0:fc:f5:33:4a:21:ad:3a:51:6e: 08:a8:17:91:a6:d8:33:2e:c3:6a:cf:58:af:c6:02:82:cd:28: 2e:17:52:2e:1a:56:22:86:03:6a:45:1d:a0:51:79:fe:7c:5d: d9:b2:2d:a5:04:d4:4e:02:dd:78:45:90:1a:a5:8a:c9:0b:a0: 44:42:75:28:86:05:d7:58:85:35:b6:68:aa:bf:53:c0:b0:7f: da:32:c8:1f:a6:c4:5e:9b:33:bb:99:c7:b6:72:4b:16:c1:7c: 73:2d:9a:60:c2:b9:7b:15:aa:fc:84:31:b0:58:d4:b5:b8:85: 1e:b6:f6:68:00:70:70:a2:11:47:3e:37:a4:45:9b:3f:03:00: f7:f9:44:36 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzNEQxMTAvBgNVBAUTKDMwRDcxOUY5QzZEMzdFMkFDOUY0RDZENEIxRjdEOTc4 RUMyQTMyODkwHhcNMjUxMTE5MDUyMzA0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTI0MS00YjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqidYMaD7eYBEF/8gwJIWU9hWmJd7lvHqLiCumIH/uz3lKIiaQciMvcYJOUiD K7fawE33X03K+HmIeFLHFJtlBpS98bY5iG13jtXLmbKxGFHzkoPvihXhM8WmDlFT JgcBXNVN7yygnkF8ewQspdyambAg5Tx/xMCTGE3FhsntevaHl8/3qD0rEhenWfyF K/01DMVvzYxqYhYj5K1HuDoSZxrRmOIWtlKk5hrWIvAxlTM9YKr/4YVzg90z5FaF lcikQOAEsc/d0AqJuXjHpzUK06kDCe++HOcZ2benagsA+4bbjtKJqPzGnOwkPleV XupI2Ughm4/vPbG6TziJVRkDDwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFN6TJUnv bIQz85TVwZfT+6riDTSTMB8GA1UdIwQYMBaAFDDXGfnG034qyfTW1LH32XjsKjKJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDM0RC9GQzIwOTEzODU4 REQxMUYwOEZBQURFNjZDNEY5QUUwMi9NTmNaLWNiVGZpcko5TmJVc2ZmWmVPd3FN b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01OY1otY2JUZmlySjlOYlVzZmZaZU93cU1vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQzNEQvRkMyMDkxMzg1OEREMTFGMDhGQUFERTY2QzRGOUFFMDIvQ0Q5QjU1NEU1 OERGMTFGMEEwRjA4RDA5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoL8YMA0GCSqGSIb3DQEBCwUAA4IBAQBhUrOjBxf1h6OEwX1j+ApL uBKQmhMZP/Pq04Fx7iXZqtRoDAvEkGeczdjgFyRW+BWTe5ZPyUsPcN13kp8FuD00 VLBoLDNrGNNsDkMnn2hj3f5fLKmCUnQFpHdK3X8QDQxFSXAcITdWrN1xw5xDnKn7 /Ne4LeD89TNKIa06UW4IqBeRptgzLsNqz1ivxgKCzSguF1IuGlYihgNqRR2gUXn+ fF3Zsi2lBNROAt14RZAapYrJC6BEQnUohgXXWIU1tmiqv1PAsH/aMsgfpsRemzO7 mce2cksWwXxzLZpgwrl7Far8hDGwWNS1uIUetvZoAHBwohFHPjekRZs/AwD3+UQ2 -----END CERTIFICATE-----Generated at Wed Mar 4 09:46:31 2026 by rpki-client