$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/40F5D9E6354B11F0A873F14DC4F9AE02.roa File: 40F5D9E6354B11F0A873F14DC4F9AE02.roa (raw, json) Hash identifier: stzvaQb1q0aBe4Ji0bjzDRZOM/zXcEzYJI+enj1Jq5g= Subject key identifier: E1:31:3F:3A:50:25:06:FB:C7:83:B2:A8:F3:05:D2:FD:F7:AA:1B:E6 Certificate issuer: /CN=A91AFAAC/serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Certificate serial: 9C Authority key identifier: 4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/40F5D9E6354B11F0A873F14DC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:17:43 +0000 ROA not before: Tue 09 Dec 2025 05:14:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 136769 IP address blocks: 160.250.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFAAC, serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Validity Not Before: Dec 9 05:14:10 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5aa16-f0dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:65:21:21:c0:a8:d2:e7:9e:c5:4a:cc:d8:e0: db:75:b9:39:73:f9:be:eb:c5:ea:e1:1a:bf:b1:42: 22:82:c4:d9:47:40:2b:31:b3:2b:c5:37:ae:14:84: ac:51:5e:bb:16:7f:3a:21:2e:d4:f5:a4:d0:7d:11: db:0c:a0:dc:ab:4c:8f:8b:23:54:c7:3d:39:2a:7b: 53:c1:79:4b:2a:eb:dc:7b:21:e3:f5:ec:27:33:b5: d2:53:86:fa:55:27:17:b5:88:d8:19:aa:3b:8a:b6: fc:b5:bc:82:cf:d1:a3:f5:d8:ac:7b:86:38:5b:07: c9:04:fe:1d:a2:c1:5e:4e:70:fa:c8:64:12:a1:d4: 13:b8:fe:3e:14:5c:fd:17:a0:a9:69:a1:c8:d8:35: 4f:52:75:9d:62:40:4d:84:ec:dc:0f:ea:5b:af:8e: dc:2d:44:43:59:8e:db:91:e1:ad:30:37:d0:e0:d2: 60:18:69:f1:17:36:45:c4:4b:58:72:4d:9d:92:69: 59:8a:ed:8c:b6:9e:35:95:49:55:de:ff:8c:c5:89: 68:25:00:05:75:d9:70:b5:64:ae:e5:e5:ed:14:1b: 22:83:95:73:d5:bd:51:9f:72:7c:a7:80:88:bd:ad: 7e:db:02:44:ac:9f:8a:8a:b3:90:8c:f1:20:bd:5e: 1f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:31:3F:3A:50:25:06:FB:C7:83:B2:A8:F3:05:D2:FD:F7:AA:1B:E6 X509v3 Authority Key Identifier: keyid:4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/40F5D9E6354B11F0A873F14DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.250.24.0/23 Signature Algorithm: sha256WithRSAEncryption 03:3a:b3:3a:9a:20:f9:2b:e5:b2:00:49:e8:cc:77:eb:12:d2: fc:f8:ef:7a:c9:88:22:9e:c8:da:71:65:50:3b:84:45:b1:34: 03:7e:7e:fb:56:51:51:43:7f:a7:16:3a:5b:f6:52:9d:39:5f: 47:b1:3b:80:73:13:2e:bc:d7:51:a8:d2:dd:b3:18:48:78:06: bb:4e:73:4d:1f:b1:8b:a2:a3:14:b5:50:48:88:71:6e:ac:7b: 04:43:c9:92:9d:2d:9b:3e:ba:29:07:fa:31:52:a8:57:a7:79: fb:b1:6e:01:6e:dc:89:f9:08:96:07:30:74:6b:93:bd:4f:36: e7:fc:d3:e4:96:a2:fa:a6:eb:4f:b4:9a:0a:cd:e8:13:01:3f: 7c:93:39:ef:2d:39:cf:ed:21:67:f2:38:a2:6a:86:9b:bd:4f: b8:80:bd:f6:cc:e4:62:18:3c:45:95:d3:46:c9:1b:66:f7:22: ec:73:9f:64:32:d6:04:dd:26:21:23:56:48:86:a0:d6:18:8b: aa:e1:e1:fa:09:da:f2:4e:92:24:96:89:05:03:83:d4:86:23: 8a:7b:e5:7f:45:6c:72:6d:b7:ea:a0:38:77:80:95:f5:23:2d: 8c:b0:71:7b:a5:92:86:4c:fa:77:63:09:18:5f:ce:11:74:09: f5:59:be:cf -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZBQUMxMTAvBgNVBAUTKDREM0ZDNDcwNjRGNEVBMUJEQ0FCMjlCOUU2NUIzMUQ3 NERFMjY0RTAwHhcNMjUxMjA5MDUxNDEwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YWExNi1mMGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmUhIcCo0ueexUrM2ODbdbk5c/m+68Xq4Rq/sUIigsTZR0ArMbMrxTeuFISs UV67Fn86IS7U9aTQfRHbDKDcq0yPiyNUxz05KntTwXlLKuvceyHj9ewnM7XSU4b6 VScXtYjYGao7irb8tbyCz9Gj9dise4Y4WwfJBP4dosFeTnD6yGQSodQTuP4+FFz9 F6CpaaHI2DVPUnWdYkBNhOzcD+pbr47cLURDWY7bkeGtMDfQ4NJgGGnxFzZFxEtY ck2dkmlZiu2Mtp41lUlV3v+MxYloJQAFddlwtWSu5eXtFBsig5Vz1b1Rn3J8p4CI va1+2wJErJ+KirOQjPEgvV4fwwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOExPzpQ JQb7x4OyqPMF0v33qhvmMB8GA1UdIwQYMBaAFE0/xHBk9Oob3KspueZbMddN4mTg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkFBQy80QUYwQzkyQTM1 NEExMUYwQkE3NjZFNENDNEY5QUUwMi9UVF9FY0dUMDZodmNxeW01NWxzeDEwM2la T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RUX0VjR1QwNmh2Y3F5bTU1bHN4MTAzaVpPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUZBQUMvNEFGMEM5MkEzNTRBMTFGMEJBNzY2RTRDQzRGOUFFMDIvNDBGNUQ5RTYz NTRCMTFGMEE4NzNGMTREQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoPoYMA0GCSqGSIb3DQEBCwUAA4IBAQADOrM6miD5K+WyAEnozHfr EtL8+O96yYginsjacWVQO4RFsTQDfn77VlFRQ3+nFjpb9lKdOV9HsTuAcxMuvNdR qNLdsxhIeAa7TnNNH7GLoqMUtVBIiHFurHsEQ8mSnS2bPropB/oxUqhXp3n7sW4B btyJ+QiWBzB0a5O9Tzbn/NPklqL6putPtJoKzegTAT98kznvLTnP7SFn8jiiaoab vU+4gL32zORiGDxFldNGyRtm9yLsc59kMtYE3SYhI1ZIhqDWGIuq4eH6CdryTpIk lokFA4PUhiOKe+V/RWxybbfqoDh3gJX1Iy2MsHF7pZKGTPp3YwkYX84RdAn1Wb7P -----END CERTIFICATE-----Generated at Wed Mar 4 09:47:56 2026 by rpki-client