$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/1FC3B0DE1E6F11EFB392D937C4F9AE02.roa File: 1FC3B0DE1E6F11EFB392D937C4F9AE02.roa (raw, json) Hash identifier: l3+VnONZP7m8JwaUiP43A2WyQeN+GHf1Ta3Z96yt358= Subject key identifier: B0:CC:82:27:BC:7C:17:45:B6:50:25:EE:49:4B:17:A2:44:B6:36:CD Certificate issuer: /CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Certificate serial: 0157 Authority key identifier: 4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/1FC3B0DE1E6F11EFB392D937C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:58:34 +0000 ROA not before: Thu 21 Aug 2025 05:43:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152886 IP address blocks: 160.22.18.0/23 maxlen: 23 160.22.18.0/24 maxlen: 24 160.22.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31B7, serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Validity Not Before: Aug 21 05:43:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a5897a-68b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a6:ca:69:9a:3d:f2:56:e4:53:32:74:fd:ec: 1e:86:28:ca:3c:a8:1e:fb:18:08:df:93:ba:ff:3b: 9c:ea:e8:4d:c4:bf:14:4b:56:f8:74:3f:84:e5:ac: 18:da:e5:28:25:f2:cc:fe:94:de:bb:6d:e7:3a:4b: ce:b2:aa:43:0c:f7:a0:4b:20:9e:e4:af:83:26:2e: 28:0a:7d:5e:76:e4:41:4b:50:2e:bf:49:60:48:1d: b2:77:70:27:05:fe:3d:a3:d1:d2:7c:eb:27:81:99: 30:0c:95:1a:36:17:44:65:d5:ae:b2:ad:b0:d9:5f: 77:7b:df:59:0e:49:c1:90:0e:61:08:11:7f:1d:2b: 61:4f:5f:97:e1:a8:df:0d:4f:2a:58:59:5c:b7:78: af:03:06:32:fb:43:05:4d:1a:26:11:e8:8c:94:66: 28:a4:ed:7b:5b:3c:17:04:9e:80:2e:16:0f:84:16: 5c:ca:4a:c3:9a:fb:4a:86:b5:51:6f:78:6c:66:9e: 86:72:ee:08:03:40:7a:9f:72:eb:00:f1:1d:b4:26: 54:0c:59:8f:dc:c3:a4:85:d9:69:0f:24:a1:ec:71: dd:fd:52:87:be:10:c4:a4:fa:c5:b9:d6:7e:98:1b: 88:ad:f7:e5:b4:06:d9:26:c5:1f:81:8d:45:6c:b4: 92:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CC:82:27:BC:7C:17:45:B6:50:25:EE:49:4B:17:A2:44:B6:36:CD X509v3 Authority Key Identifier: keyid:4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/1FC3B0DE1E6F11EFB392D937C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.22.18.0/23 Signature Algorithm: sha256WithRSAEncryption a0:04:db:0e:03:a1:a6:47:c5:d1:85:20:1b:92:09:e0:63:9d: 63:28:2f:3c:40:88:53:5f:6a:3c:b3:a7:74:5a:05:10:04:88: 48:a8:52:17:b0:0f:ee:44:99:9e:6a:42:3a:13:8d:96:fb:ba: 3e:ef:5c:c3:b0:e9:f4:e5:77:ae:96:7f:c1:7f:fc:78:01:90: 7b:f3:73:70:13:0c:05:4b:4d:49:5e:c1:05:51:59:50:12:53: 0a:22:21:4d:35:83:94:9f:21:f6:9b:bd:89:a3:91:d3:eb:e0: be:ca:dd:7c:6f:58:a8:4d:47:03:e4:d1:c6:3b:e8:ce:37:42: 4d:c6:4b:57:1e:b8:52:08:ac:b2:91:b8:a0:fb:ff:35:f8:46: e3:03:d6:d1:f2:7c:2c:71:ea:5a:13:5a:40:93:16:41:2b:76: 4b:a8:42:b0:fa:9e:a2:d4:78:6c:e6:e3:5d:bb:20:25:e1:da: c2:87:76:d1:ff:24:d9:ea:2c:21:f4:ba:55:12:72:6a:4f:76: 0e:6e:c0:4a:4c:3c:e8:0d:a2:3f:0b:e0:9d:e1:35:5b:39:93: ac:73:85:5d:c4:f3:3a:b7:4e:cb:58:e0:cc:04:19:f0:4a:b2: f7:aa:fc:ce:4e:e1:d9:32:1f:07:37:7a:ee:d6:02:0a:f1:91: fb:96:6a:c9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQjcxMTAvBgNVBAUTKDRDMzM5Q0FCRkM4MEE1RjQxOURGMzNERkIwNjg4NUMx QzM0ODhCMkQwHhcNMjUwODIxMDU0MzU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODk3YS02OGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qbKaZo98lbkUzJ0/ewehijKPKge+xgI35O6/zuc6uhNxL8US1b4dD+E5awY 2uUoJfLM/pTeu23nOkvOsqpDDPegSyCe5K+DJi4oCn1eduRBS1Auv0lgSB2yd3An Bf49o9HSfOsngZkwDJUaNhdEZdWusq2w2V93e99ZDknBkA5hCBF/HSthT1+X4ajf DU8qWFlct3ivAwYy+0MFTRomEeiMlGYopO17WzwXBJ6ALhYPhBZcykrDmvtKhrVR b3hsZp6Gcu4IA0B6n3LrAPEdtCZUDFmP3MOkhdlpDySh7HHd/VKHvhDEpPrFudZ+ mBuIrffltAbZJsUfgY1FbLSSVwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLDMgie8 fBdFtlAl7klLF6JEtjbNMB8GA1UdIwQYMBaAFEwznKv8gKX0Gd8z37BohcHDSIst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFCNy9GMkE1NzMyRTFF NkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBmUVozelBmc0dpRndjTklp eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RET2NxX3lBcGZRWjN6UGZzR2lGd2NOSWl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMxQjcvRjJBNTczMkUxRTZCMTFFRkFDMEU5MTRFQzRGOUFFMDIvMUZDM0IwREUx RTZGMTFFRkIzOTJEOTM3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBYSMA0GCSqGSIb3DQEBCwUAA4IBAQCgBNsOA6GmR8XRhSAbkgng Y51jKC88QIhTX2o8s6d0WgUQBIhIqFIXsA/uRJmeakI6E42W+7o+71zDsOn05Xeu ln/Bf/x4AZB783NwEwwFS01JXsEFUVlQElMKIiFNNYOUnyH2m72Jo5HT6+C+yt18 b1ioTUcD5NHGO+jON0JNxktXHrhSCKyykbig+/81+EbjA9bR8nwscepaE1pAkxZB K3ZLqEKw+p6i1Hhs5uNduyAl4drCh3bR/yTZ6iwh9LpVEnJqT3YObsBKTDzoDaI/ C+Cd4TVbOZOsc4VdxPM6t07LWODMBBnwSrL3qvzOTuHZMh8HN3ru1gIK8ZH7lmrJ -----END CERTIFICATE-----Generated at Wed Mar 4 10:08:54 2026 by rpki-client