$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/00313C328AAD11EFBEF9166AC4F9AE02/52D518588AAF11EF9F5A6313C4F9AE02.roa File: 52D518588AAF11EF9F5A6313C4F9AE02.roa (raw, json) Hash identifier: A7rSSZVeM5zH7Lu6nq0wtI2MJAwPFWQR7zTSTecfo9k= Subject key identifier: 9C:5B:BE:FD:B1:47:8A:8D:23:2A:47:8B:92:D6:EA:CF:13:62:69:26 Certificate issuer: /CN=A91CCAF1/serialNumber=66941DA7EAF30E9344E0321F0B754E7AEFFC3529 Certificate serial: 0115 Authority key identifier: 66:94:1D:A7:EA:F3:0E:93:44:E0:32:1F:0B:75:4E:7A:EF:FC:35:29 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZpQdp-rzDpNE4DIfC3VOeu_8NSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/00313C328AAD11EFBEF9166AC4F9AE02/52D518588AAF11EF9F5A6313C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:07:25 +0000 ROA not before: Fri 03 Oct 2025 06:33:28 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153363 IP address blocks: 160.187.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/00313C328AAD11EFBEF9166AC4F9AE02/ZpQdp-rzDpNE4DIfC3VOeu_8NSk.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/00313C328AAD11EFBEF9166AC4F9AE02/ZpQdp-rzDpNE4DIfC3VOeu_8NSk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZpQdp-rzDpNE4DIfC3VOeu_8NSk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=66941DA7EAF30E9344E0321F0B754E7AEFFC3529 Validity Not Before: Oct 3 06:33:28 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a5999d-87d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:c1:63:c1:69:ce:5c:f4:6c:79:bf:8a:d3:ef: 35:a8:5d:c6:b1:26:9b:c6:e0:68:e4:08:3c:1d:5c: 6a:20:fa:a7:10:37:ea:01:48:ed:ef:2e:a1:92:cb: 85:bc:6a:a8:83:08:3e:c0:72:9a:15:61:0d:07:2c: 42:3e:07:b8:5f:85:29:55:7f:a4:37:a2:63:66:a7: 2a:7a:57:d7:b3:93:08:e8:e6:89:07:ad:95:d5:8b: 30:de:01:7b:23:eb:66:ad:e2:96:86:a6:86:28:6c: 16:d1:8e:b9:c3:22:e8:43:1a:1e:61:30:a9:ad:64: f1:96:1f:48:1b:2c:1c:62:c0:c9:1e:a1:b0:72:ba: 9e:df:69:9e:08:a7:75:c3:3c:1b:48:1f:04:36:87: 53:5f:af:22:b4:42:d7:10:6c:79:8f:88:24:7c:d7: b3:67:ce:ff:c7:f1:a3:55:10:8d:9e:fb:01:ab:80: f4:8a:f9:2a:04:46:55:c1:53:2a:4a:94:32:a7:69: 52:96:b4:ec:70:31:13:74:d2:4f:03:3a:0d:e9:8f: 0d:2e:e1:26:a1:51:43:3d:6b:82:24:99:2f:51:c9: 67:cf:82:44:a4:93:05:2a:74:8d:83:e1:30:75:d1: c4:0f:3c:05:1c:ef:d7:67:6b:fb:8d:27:6b:28:ff: 1e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:5B:BE:FD:B1:47:8A:8D:23:2A:47:8B:92:D6:EA:CF:13:62:69:26 X509v3 Authority Key Identifier: keyid:66:94:1D:A7:EA:F3:0E:93:44:E0:32:1F:0B:75:4E:7A:EF:FC:35:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/00313C328AAD11EFBEF9166AC4F9AE02/ZpQdp-rzDpNE4DIfC3VOeu_8NSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZpQdp-rzDpNE4DIfC3VOeu_8NSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/00313C328AAD11EFBEF9166AC4F9AE02/52D518588AAF11EF9F5A6313C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.187.249.0/24 Signature Algorithm: sha256WithRSAEncryption 83:1b:0c:27:ea:6a:18:61:a5:8a:f8:55:79:fc:d6:51:49:3c: 67:4f:8d:c2:8b:79:11:85:e4:83:15:a6:45:d9:ef:02:f5:98: 67:76:11:5a:73:d6:e3:d6:cf:d6:bf:8a:f4:b6:4f:7b:9b:a6: 31:24:76:46:c9:cc:d2:46:ae:aa:ed:ed:94:d4:b5:87:09:9a: 44:e1:ce:41:0e:42:de:f8:24:84:84:8c:af:57:15:ac:f0:5e: 4b:73:ff:6d:90:b3:52:95:87:06:37:40:45:5e:d9:3a:f7:b0: c6:97:e3:45:8a:93:65:69:8b:1a:a7:3b:7c:89:ed:dd:15:9a: 98:8f:92:68:0b:8b:ec:da:a9:ea:57:05:23:74:fa:6a:ae:04: 27:98:83:af:aa:6f:66:7c:73:52:51:5a:cc:77:61:17:11:52: 27:02:cb:9f:94:e4:d8:aa:e0:e1:30:63:6d:3f:e8:5c:1f:21: 28:22:a7:b6:b1:25:5d:c4:35:e2:32:e3:0f:c3:a9:a5:78:e0: d5:d3:ed:f5:ad:1d:0a:4a:04:ea:5c:ee:59:d8:6a:a0:a2:c2: 80:10:27:91:5d:68:03:6c:63:37:3e:2c:d9:86:7c:20:dc:be: 7d:88:c9:7a:be:ce:f6:9c:69:05:33:db:7d:87:e1:64:85:d3: d7:d9:ba:ad -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDY2OTQxREE3RUFGMzBFOTM0NEUwMzIxRjBCNzU0RTdB RUZGQzM1MjkwHhcNMjUxMDAzMDYzMzI4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTk5ZC04N2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjsFjwWnOXPRseb+K0+81qF3GsSabxuBo5Ag8HVxqIPqnEDfqAUjt7y6hksuF vGqogwg+wHKaFWENByxCPge4X4UpVX+kN6JjZqcqelfXs5MI6OaJB62V1Ysw3gF7 I+tmreKWhqaGKGwW0Y65wyLoQxoeYTCprWTxlh9IGywcYsDJHqGwcrqe32meCKd1 wzwbSB8ENodTX68itELXEGx5j4gkfNezZ87/x/GjVRCNnvsBq4D0ivkqBEZVwVMq SpQyp2lSlrTscDETdNJPAzoN6Y8NLuEmoVFDPWuCJJkvUclnz4JEpJMFKnSNg+Ew ddHEDzwFHO/XZ2v7jSdrKP8eBwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJxbvv2x R4qNIypHi5LW6s8TYmkmMB8GA1UdIwQYMBaAFGaUHafq8w6TROAyHwt1Tnrv/DUp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wMDMxM0MzMjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9acFFkcC1yekRwTkU0RElmQzNWT2V1XzhO U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pwUWRwLXJ6RHBORTRESWZDM1ZPZXVfOE5Tay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0NBRjEvMDAzMTNDMzI4QUFEMTFFRkJFRjkxNjZBQzRGOUFFMDIvNTJENTE4NTg4 QUFGMTFFRjlGNUE2MzEzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoLv5MA0GCSqGSIb3DQEBCwUAA4IBAQCDGwwn6moYYaWK+FV5/NZR STxnT43Ci3kRheSDFaZF2e8C9ZhndhFac9bj1s/Wv4r0tk97m6YxJHZGyczSRq6q 7e2U1LWHCZpE4c5BDkLe+CSEhIyvVxWs8F5Lc/9tkLNSlYcGN0BFXtk697DGl+NF ipNlaYsapzt8ie3dFZqYj5JoC4vs2qnqVwUjdPpqrgQnmIOvqm9mfHNSUVrMd2EX EVInAsuflOTYquDhMGNtP+hcHyEoIqe2sSVdxDXiMuMPw6mleODV0+31rR0KSgTq XO5Z2GqgosKAECeRXWgDbGM3PizZhnwg3L59iMl6vs72nGkFM9t9h+FkhdPX2bqt -----END CERTIFICATE-----Generated at Sun Mar 15 08:47:22 2026 by rpki-client