$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/B6A31094CD7E11EFBBAE2137C4F9AE02.roa File: B6A31094CD7E11EFBBAE2137C4F9AE02.roa (raw, json) Hash identifier: 7luqkxdAYhFDQ1cLdVYDxi4/1gyDCpg9yV33Rku64hI= Subject key identifier: D4:CB:2B:41:0B:97:12:60:EC:8D:65:9B:FD:13:AC:9D:DC:81:E7:91 Certificate issuer: /CN=A91AAC4B/serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Certificate serial: DC Authority key identifier: E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/B6A31094CD7E11EFBBAE2137C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:14:47 +0000 ROA not before: Wed 31 Dec 2025 05:24:14 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 150339 IP address blocks: 161.248.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 06:11:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Validity Not Before: Dec 31 05:24:14 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a41fa7-dbbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f0:a9:9b:ed:70:68:8b:4e:5c:e6:2c:52:e4: 41:d0:ba:da:c2:ff:63:31:97:b7:83:c1:1b:3d:1e: a5:4b:6d:9a:30:1e:fc:3b:9e:16:00:ba:ab:4c:02: b5:ab:d0:84:15:45:cc:5a:39:9e:e3:e6:4e:cb:23: 01:17:0d:64:01:46:13:2a:a0:63:76:dd:1f:08:35: ab:42:cc:dc:ec:e8:d1:4a:a0:66:84:2d:c5:19:f8: be:c1:ad:69:e8:df:83:1d:bc:98:be:1f:7b:23:3c: 93:fc:2d:f9:38:d8:c1:09:50:c4:72:f6:e1:35:cd: af:fd:ff:6a:59:59:33:18:be:f8:b7:17:a8:12:42: 22:36:cf:45:09:2c:db:46:e2:80:a9:c9:8d:12:ee: 64:ba:80:ef:24:24:b0:73:61:f7:e5:85:54:ad:98: 15:9e:52:ee:11:7e:d8:52:c9:ff:82:80:11:df:55: 0f:62:d0:46:24:fb:d7:c7:6c:95:14:d1:bd:f5:ee: 35:f1:76:6e:e1:93:e8:59:41:79:25:df:d8:22:d0: c4:20:17:a4:c6:f7:e4:f0:3e:a9:91:d1:36:ae:68: 2c:0b:2e:e5:d0:ac:c1:ea:fd:78:ec:a5:5b:67:bf: 63:c0:bd:b9:f3:42:94:7f:f0:03:dd:a3:12:0b:f7: 9d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:CB:2B:41:0B:97:12:60:EC:8D:65:9B:FD:13:AC:9D:DC:81:E7:91 X509v3 Authority Key Identifier: keyid:E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/B6A31094CD7E11EFBBAE2137C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.53.0/24 Signature Algorithm: sha256WithRSAEncryption 61:04:19:3c:8c:16:d9:76:ad:cb:e9:e6:ef:17:7f:b8:75:11: df:96:cb:33:cb:04:d9:1e:58:e0:ad:ca:00:cf:3c:29:12:38: 62:5d:cc:96:10:c1:31:aa:01:f6:15:d3:dc:fb:f1:28:73:45: 86:57:e6:e1:ec:69:1b:42:b4:22:1a:fc:a7:fd:fd:53:1c:aa: 8e:75:97:57:ce:b4:35:a0:ee:ac:5e:a5:50:f3:9f:a9:5f:32: 74:3e:6b:e8:5f:07:e9:af:6a:97:4a:78:55:d3:0c:89:de:8e: 4d:5f:81:81:e3:b5:1c:9a:5d:23:22:39:28:17:46:90:5a:55: bb:ff:ce:01:f6:61:c9:b1:de:ff:9d:be:1b:fc:15:63:80:43: e6:70:3c:05:6a:3b:b3:fe:be:1a:4e:34:b2:85:93:05:f8:c2: 65:71:a5:45:78:d4:d4:4d:1c:16:dc:4b:b3:33:ba:b2:a6:b9: bd:83:32:dd:15:53:3d:f9:5d:31:1e:94:64:77:61:cf:30:cb: a9:f6:f7:7b:9c:25:7a:05:68:2f:3f:2c:83:22:0b:a3:b8:17: aa:a4:47:f1:38:86:b6:9f:15:49:55:4f:fd:18:5b:74:b1:5d: 4b:78:ed:78:76:21:40:36:94:38:83:84:78:67:3e:62:2d:a9: 4c:dc:ac:c5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDNEIxMTAvBgNVBAUTKEUzOEE1RURFMTk2OEM5Mzc1RTUxNTUxRkFFOTg4ODhB MEJCNTQ0OTAwHhcNMjUxMjMxMDUyNDE0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWZhNy1kYmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvCpm+1waItOXOYsUuRB0Lrawv9jMZe3g8EbPR6lS22aMB78O54WALqrTAK1 q9CEFUXMWjme4+ZOyyMBFw1kAUYTKqBjdt0fCDWrQszc7OjRSqBmhC3FGfi+wa1p 6N+DHbyYvh97IzyT/C35ONjBCVDEcvbhNc2v/f9qWVkzGL74txeoEkIiNs9FCSzb RuKAqcmNEu5kuoDvJCSwc2H35YVUrZgVnlLuEX7YUsn/goAR31UPYtBGJPvXx2yV FNG99e418XZu4ZPoWUF5Jd/YItDEIBekxvfk8D6pkdE2rmgsCy7l0KzB6v147KVb Z79jwL2580KUf/AD3aMSC/ed/QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNTLK0EL lxJg7I1lm/0TrJ3cgeeRMB8GA1UdIwQYMBaAFOOKXt4ZaMk3XlFVH66YiIoLtUSQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUM0Qi9ERTNGODg5QUNE N0QxMUVGQUEwNzIzMEFDNEY5QUUwMi80NHBlM2hsb3lUZGVVVlVmcnBpSWlndTFS SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQ0cGUzaGxveVRkZVVWVWZycGlJaWd1MVJKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFDNEIvREUzRjg4OUFDRDdEMTFFRkFBMDcyMzBBQzRGOUFFMDIvQjZBMzEwOTRD RDdFMTFFRkJCQUUyMTM3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAofg1MA0GCSqGSIb3DQEBCwUAA4IBAQBhBBk8jBbZdq3L6ebvF3+4 dRHflsszywTZHljgrcoAzzwpEjhiXcyWEMExqgH2FdPc+/Eoc0WGV+bh7GkbQrQi Gvyn/f1THKqOdZdXzrQ1oO6sXqVQ85+pXzJ0PmvoXwfpr2qXSnhV0wyJ3o5NX4GB 47Ucml0jIjkoF0aQWlW7/84B9mHJsd7/nb4b/BVjgEPmcDwFajuz/r4aTjSyhZMF +MJlcaVFeNTUTRwW3EuzM7qyprm9gzLdFVM9+V0xHpRkd2HPMMup9vd7nCV6BWgv PyyDIgujuBeqpEfxOIa2nxVJVU/9GFt0sV1LeO14diFANpQ4g4R4Zz5iLalM3KzF -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:05 2026 by rpki-client