$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C0944D9067A511F0A26BDB35C4F9AE02.roa File: C0944D9067A511F0A26BDB35C4F9AE02.roa (raw, json) Hash identifier: 4qCAs9vsgBY3UsuBwRJCIMbwtXA5vjpc8pDQP4gcAcY= Subject key identifier: CA:67:A8:32:C4:3E:B4:54:D9:81:8B:E8:6A:63:94:77:5B:9A:9D:AA Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2115 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C0944D9067A511F0A26BDB35C4F9AE02.roa Signing time: Mon 02 Mar 2026 23:21:27 +0000 ROA not before: Fri 30 Jan 2026 09:49:44 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131435 IP address blocks: 148.222.80.0/24 maxlen: 24 148.222.81.0/24 maxlen: 24 148.222.90.0/24 maxlen: 24 148.222.91.0/24 maxlen: 24 148.222.93.0/24 maxlen: 24 148.222.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8469 (0x2115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Jan 30 09:49:44 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61b76-b3db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f2:e2:ef:40:f4:be:fa:22:1f:fd:2d:b9:86: 23:19:2f:f5:ac:6a:b7:8c:02:5d:a9:90:36:89:d0: 19:7f:78:f1:c3:56:b5:91:ad:c1:67:27:81:5a:b0: cd:0b:e2:bd:2b:31:93:57:e0:c1:12:a0:c9:bf:d8: f6:57:c6:a2:15:36:17:4f:5b:0c:f7:9d:16:ff:2a: 64:fb:7f:63:39:f0:c8:20:c3:14:bd:53:d5:92:bb: f9:c2:ae:d1:d9:77:76:55:bf:bb:39:60:b9:a0:93: 7b:a9:ca:87:48:c2:e1:7e:f8:86:5d:c7:02:6f:52: 44:ce:b8:a1:05:e1:47:9b:c0:29:22:b5:6c:0b:3e: 63:4a:a9:b8:52:df:d2:ee:6d:b3:34:8f:ec:99:b4: 48:10:de:23:68:fd:6d:dd:3a:76:46:a0:e7:1d:ef: 16:98:c2:46:79:da:45:07:e7:5b:9f:13:f0:84:40: b1:f8:14:e9:40:48:c1:af:97:3f:96:15:aa:c5:4e: 9b:1e:f1:a7:ff:29:5f:49:75:7d:6b:4d:6f:8d:69: e8:a9:a9:ed:47:35:44:16:54:cf:ae:be:72:9e:68: 17:e1:6a:e8:f3:55:5b:34:d2:3b:09:82:4b:9d:d0: 04:ce:5d:8e:b0:97:c9:d0:77:44:07:f4:bc:2c:ed: 97:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:67:A8:32:C4:3E:B4:54:D9:81:8B:E8:6A:63:94:77:5B:9A:9D:AA X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C0944D9067A511F0A26BDB35C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 148.222.80.0/23 148.222.90.0/23 148.222.93.0/24 148.222.95.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:fc:e9:9c:09:b2:8a:fc:60:15:9b:92:a4:38:8f:a1:86:33: 47:ea:fc:6b:10:7a:c2:06:6f:c0:3d:66:42:2b:f4:75:81:fd: 46:a7:60:08:c6:ac:05:4f:db:ec:b3:41:7e:a7:fc:45:a1:d8: d6:50:89:cb:18:9b:41:f1:5f:90:f2:85:08:9c:90:3f:ea:b1: 72:ad:6f:07:89:18:98:ae:80:91:b8:68:a0:97:26:58:49:ca: 5c:df:d9:c2:0c:0f:ec:4e:c0:67:5b:dc:48:cf:dc:a7:69:32: 2d:10:be:0b:b3:94:70:28:1b:ea:4f:67:18:44:d4:22:c5:ed: e0:83:04:20:f5:c4:3b:94:ae:ca:5c:f7:2c:17:dd:ff:70:79: ad:2d:83:98:82:11:cb:ee:30:49:63:10:f4:d2:77:e7:a9:0c: dd:78:2d:1a:ff:de:c2:46:4b:d1:b0:fa:1d:49:62:c0:8c:b7: 09:c3:42:d3:cc:a4:d9:0d:75:9e:78:56:d4:f6:78:06:7e:89: c6:30:d1:dd:61:a3:4b:57:d0:5c:cf:51:c3:cd:85:bd:b0:a6: eb:46:69:ba:86:51:0f:91:0f:02:34:05:35:7e:9b:54:e9:8e: 3a:c6:d0:80:19:f4:9d:c7:ab:02:50:6d:49:23:21:ef:fa:57: b8:3e:be:64 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICIRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjYwMTMwMDk0OTQ0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWI3Ni1iM2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPLi70D0vvoiH/0tuYYjGS/1rGq3jAJdqZA2idAZf3jxw1a1ka3BZyeBWrDN C+K9KzGTV+DBEqDJv9j2V8aiFTYXT1sM950W/ypk+39jOfDIIMMUvVPVkrv5wq7R 2Xd2Vb+7OWC5oJN7qcqHSMLhfviGXccCb1JEzrihBeFHm8ApIrVsCz5jSqm4Ut/S 7m2zNI/smbRIEN4jaP1t3Tp2RqDnHe8WmMJGedpFB+dbnxPwhECx+BTpQEjBr5c/ lhWqxU6bHvGn/ylfSXV9a01vjWnoqantRzVEFlTPrr5ynmgX4Wro81VbNNI7CYJL ndAEzl2OsJfJ0HdEB/S8LO2XjQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFMpnqDLE PrRU2YGL6GpjlHdbmp2qMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQzA5NDREOTA2 N0E1MTFGMEEyNkJEQjM1QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQBlN5QAwQBlN5aAwQAlN5dAwQAlN5fMA0GCSqGSIb3DQEBCwUAA4IB AQCO/OmcCbKK/GAVm5KkOI+hhjNH6vxrEHrCBm/APWZCK/R1gf1Gp2AIxqwFT9vs s0F+p/xFodjWUInLGJtB8V+Q8oUInJA/6rFyrW8HiRiYroCRuGiglyZYScpc39nC DA/sTsBnW9xIz9ynaTItEL4Ls5RwKBvqT2cYRNQixe3ggwQg9cQ7lK7KXPcsF93/ cHmtLYOYghHL7jBJYxD00nfnqQzdeC0a/97CRkvRsPodSWLAjLcJw0LTzKTZDXWe eFbU9ngGfonGMNHdYaNLV9Bcz1HDzYW9sKbrRmm6hlEPkQ8CNAU1fptU6Y46xtCA GfSdx6sCUG1JIyHv+le4Pr5k -----END CERTIFICATE-----Generated at Sat Mar 7 22:52:30 2026 by rpki-client