$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/40F5D9E6354B11F0A873F14DC4F9AE02.roa File: 40F5D9E6354B11F0A873F14DC4F9AE02.roa (raw, json) Hash identifier: A51WAFZICOqaHWPYKHK1gS3hIBrXwfplrOAwkWglh6M= Subject key identifier: B9:AB:9C:36:65:0B:BE:69:14:B1:A0:FC:E2:02:E9:6D:A4:4F:07:F8 Certificate issuer: /CN=A91AFAAC/serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Certificate serial: D5 Authority key identifier: 4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/40F5D9E6354B11F0A873F14DC4F9AE02.roa Signing time: Mon 15 Jun 2026 08:52:33 +0000 ROA not before: Mon 15 Jun 2026 08:52:33 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 136769 IP address blocks: 160.250.24.0/23 maxlen: 23 160.250.24.0/24 maxlen: 24 160.250.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 07:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFAAC, serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Validity Not Before: Jun 15 08:52:33 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6a2fbd51-14c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:b0:40:e2:18:2b:14:8b:38:ff:66:fc:03:bc: 52:2d:b3:2e:7a:3f:24:9b:76:8e:01:f0:1f:38:e8: a5:a6:fa:22:42:79:49:3a:79:f5:5c:9a:53:66:f3: 43:6d:03:45:32:f4:91:ea:f5:b9:4f:6a:bf:00:93: 67:bb:50:ab:2c:28:73:1f:53:52:d7:e5:5e:43:32: da:a0:93:4d:22:ac:6a:78:8d:f4:fc:dc:da:6b:ec: a1:25:63:e2:27:9a:0c:4a:d6:d1:83:73:58:14:cc: 15:40:46:a7:83:13:23:2f:10:d7:ae:f8:64:dc:1b: 88:48:7b:bb:4d:5c:b1:2d:f6:78:04:e0:8d:ef:17: eb:98:2b:b2:ad:0a:db:80:36:10:bd:02:a3:ea:b0: 61:13:89:2a:4a:b6:69:e4:77:d6:01:c5:7d:42:f0: c4:60:69:8a:56:12:82:75:49:11:aa:80:43:53:4c: 7b:21:63:f5:b0:5e:e9:11:d7:df:2f:17:df:41:93: 65:f7:91:ab:37:5c:0c:af:21:9d:f7:cf:4e:e0:5a: 11:8e:3d:66:ed:7c:b7:78:61:d0:27:3e:e4:84:c7: 2b:31:31:05:57:16:f1:6d:1f:ad:27:57:32:dc:8d: 93:19:d1:0f:17:29:e0:6d:a7:aa:c8:a1:87:e9:56: 64:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:AB:9C:36:65:0B:BE:69:14:B1:A0:FC:E2:02:E9:6D:A4:4F:07:F8 X509v3 Authority Key Identifier: keyid:4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/40F5D9E6354B11F0A873F14DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.250.24.0/23 Signature Algorithm: sha256WithRSAEncryption 49:2f:3b:d7:ff:f5:9e:64:62:25:78:37:83:db:e4:eb:2a:a4: 39:b9:1d:b4:c3:3a:fb:56:6a:76:8b:18:49:6c:b4:70:92:56: a1:6d:fc:38:83:27:2a:af:01:a5:91:fd:a7:48:0e:cb:68:93: e1:25:0b:85:ef:31:ad:fa:16:27:14:d2:be:09:48:05:94:f6: 06:6a:e8:a5:d6:2a:77:92:28:f7:db:4d:4b:a4:56:14:80:1a: a9:3f:bc:cb:44:1d:8d:ac:cf:06:70:6e:cd:e9:b4:0f:a0:70: 17:2a:3d:6a:b3:fe:cf:30:7f:44:52:ee:d7:2f:7a:4f:3a:c8: 2d:f7:24:36:a5:ee:91:b0:a5:fe:ac:9e:0b:a6:9d:a4:f6:c3: 56:56:b4:8f:00:49:21:f0:0b:a1:c8:4e:a6:dc:e1:0f:47:7d: 58:7e:45:b9:66:c0:4d:56:d0:b3:0a:f8:74:ce:35:a7:37:e0: b1:9a:9b:9e:74:1c:6d:21:c9:8e:c6:03:f6:3c:da:51:ff:7d: 99:60:46:b1:f5:25:19:55:40:18:f7:6a:e6:87:01:5e:f6:c9: 3f:9b:a6:d6:7d:2e:e9:2a:4f:1f:3d:ca:92:0d:82:db:92:f3: ff:3d:99:06:df:e9:b4:58:83:f7:8a:d6:48:0c:8a:e7:0e:5c: 87:46:ee:9a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZBQUMxMTAvBgNVBAUTKDREM0ZDNDcwNjRGNEVBMUJEQ0FCMjlCOUU2NUIzMUQ3 NERFMjY0RTAwHhcNMjYwNjE1MDg1MjMzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTJmYmQ1MS0xNGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj7BA4hgrFIs4/2b8A7xSLbMuej8km3aOAfAfOOilpvoiQnlJOnn1XJpTZvND bQNFMvSR6vW5T2q/AJNnu1CrLChzH1NS1+VeQzLaoJNNIqxqeI30/Nzaa+yhJWPi J5oMStbRg3NYFMwVQEangxMjLxDXrvhk3BuISHu7TVyxLfZ4BOCN7xfrmCuyrQrb gDYQvQKj6rBhE4kqSrZp5HfWAcV9QvDEYGmKVhKCdUkRqoBDU0x7IWP1sF7pEdff LxffQZNl95GrN1wMryGd989O4FoRjj1m7Xy3eGHQJz7khMcrMTEFVxbxbR+tJ1cy 3I2TGdEPFyngbaeqyKGH6VZkOwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLmrnDZl C75pFLGg/OIC6W2kTwf4MB8GA1UdIwQYMBaAFE0/xHBk9Oob3KspueZbMddN4mTg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkFBQy80QUYwQzkyQTM1 NEExMUYwQkE3NjZFNENDNEY5QUUwMi9UVF9FY0dUMDZodmNxeW01NWxzeDEwM2la T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RUX0VjR1QwNmh2Y3F5bTU1bHN4MTAzaVpPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUZBQUMvNEFGMEM5MkEzNTRBMTFGMEJBNzY2RTRDQzRGOUFFMDIvNDBGNUQ5RTYz NTRCMTFGMEE4NzNGMTREQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoPoYMA0GCSqGSIb3DQEBCwUAA4IBAQBJLzvX//WeZGIleDeD2+Tr KqQ5uR20wzr7Vmp2ixhJbLRwklahbfw4gycqrwGlkf2nSA7LaJPhJQuF7zGt+hYn FNK+CUgFlPYGauil1ip3kij3201LpFYUgBqpP7zLRB2NrM8GcG7N6bQPoHAXKj1q s/7PMH9EUu7XL3pPOsgt9yQ2pe6RsKX+rJ4Lpp2k9sNWVrSPAEkh8AuhyE6m3OEP R31YfkW5ZsBNVtCzCvh0zjWnN+CxmpuedBxtIcmOxgP2PNpR/32ZYEax9SUZVUAY 92rmhwFe9sk/m6bWfS7pKk8fPcqSDYLbkvP/PZkG3+m0WIP3itZIDIrnDlyHRu6a -----END CERTIFICATE-----Generated at Wed Jun 24 14:32:04 2026 by rpki-client