$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/04BAA614A98C11EF9350FB63C4F9AE02/8D6B6D86A98C11EFAAC0F364C4F9AE02.roa File: 8D6B6D86A98C11EFAAC0F364C4F9AE02.roa (raw, json) Hash identifier: hAmO+Dq9vGZAILDadtbesaeJmrxEB8UrXmpWc1/KCyg= Subject key identifier: 12:F1:53:28:C9:8A:D0:DA:6E:55:03:63:B6:FB:16:34:0D:EB:50:F4 Certificate issuer: /CN=A91D2C38/serialNumber=AA35E2F977B55E72F91635BF7D53BCEB5347983B Certificate serial: F7 Authority key identifier: AA:35:E2:F9:77:B5:5E:72:F9:16:35:BF:7D:53:BC:EB:53:47:98:3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjXi-Xe1XnL5FjW_fVO861NHmDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2C38/04BAA614A98C11EF9350FB63C4F9AE02/8D6B6D86A98C11EFAAC0F364C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:27:29 +0000 ROA not before: Sat 29 Nov 2025 04:03:06 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137037 IP address blocks: 160.191.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2C38/04BAA614A98C11EF9350FB63C4F9AE02/qjXi-Xe1XnL5FjW_fVO861NHmDs.crl rsync://rpki.apnic.net/member_repository/A91D2C38/04BAA614A98C11EF9350FB63C4F9AE02/qjXi-Xe1XnL5FjW_fVO861NHmDs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjXi-Xe1XnL5FjW_fVO861NHmDs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2C38, serialNumber=AA35E2F977B55E72F91635BF7D53BCEB5347983B Validity Not Before: Nov 29 04:03:06 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a59e51-9c14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:19:c6:4c:8a:5a:6b:42:f9:89:9b:a9:98:39: 4d:f1:ac:8f:c8:88:f6:d1:1c:38:d5:df:11:a7:9d: 4b:e3:99:4c:a9:2b:ce:52:1f:74:b1:dd:55:6e:48: 5f:d5:a6:0e:e2:d7:8b:fa:e9:59:ab:f4:a3:bb:e0: 44:ea:22:b8:f5:2b:7c:89:6b:65:a8:79:9d:1e:c2: f4:7d:5b:59:32:1b:d3:a2:82:0b:ef:1f:e3:2b:ec: bf:13:fd:e1:2c:c7:0c:ec:07:81:ef:99:29:84:d1: f9:63:98:40:a2:ce:85:48:50:c3:8e:bb:37:ae:31: 3c:19:e9:f3:d5:9f:68:2d:90:3d:e9:77:22:ec:8d: 55:77:9b:6a:86:09:8f:25:e7:f3:d8:fd:db:94:30: 8d:ef:89:7d:f1:3b:c2:47:ad:d2:6c:37:6d:95:5b: 49:fe:5f:8a:68:05:9b:7e:b0:60:0f:33:32:42:97: e3:84:5a:47:0c:81:7a:9f:a0:50:1e:e1:ca:69:1c: df:86:96:ef:a7:d4:b7:71:67:2d:e4:a5:86:a4:84: 9c:c4:17:54:0c:a5:22:8a:9f:8a:8e:24:44:cd:33: 86:d3:33:99:a4:4f:cc:29:a4:66:fd:48:c8:a1:27: 3d:4a:85:61:71:26:44:58:7e:9f:0c:3e:25:87:e6: 53:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F1:53:28:C9:8A:D0:DA:6E:55:03:63:B6:FB:16:34:0D:EB:50:F4 X509v3 Authority Key Identifier: keyid:AA:35:E2:F9:77:B5:5E:72:F9:16:35:BF:7D:53:BC:EB:53:47:98:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2C38/04BAA614A98C11EF9350FB63C4F9AE02/qjXi-Xe1XnL5FjW_fVO861NHmDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjXi-Xe1XnL5FjW_fVO861NHmDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/04BAA614A98C11EF9350FB63C4F9AE02/8D6B6D86A98C11EFAAC0F364C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.191.224.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:e1:fb:96:ad:84:42:9b:21:9a:b2:27:94:ac:63:c5:36:a1: 51:3f:d7:9a:04:5f:87:db:5d:6b:65:ed:ae:cb:b9:fe:3e:73: fc:04:a5:ea:79:74:43:5a:66:1c:1a:11:61:41:40:c2:b9:e9: 0f:28:b8:83:54:b0:4b:c4:19:30:89:1e:f8:b2:04:e2:63:8c: 3e:2d:9f:0b:f6:d0:25:75:45:ef:bc:cd:cb:c9:48:2b:ec:eb: c1:f8:47:4c:ba:6f:c0:43:43:43:d5:c5:02:af:7e:2c:fc:c8: 0c:80:f0:08:82:93:7a:27:37:fa:ff:d5:e1:3f:22:cc:6e:05: 67:79:19:0d:d4:f6:2d:77:e5:68:d2:86:5f:01:77:67:14:79: b5:f8:a4:9e:44:d1:24:e9:26:6c:47:3b:bb:f3:16:80:b9:58: 4a:ff:39:09:e3:37:fb:fe:48:62:56:5c:df:06:84:79:4a:91: 56:a1:a2:aa:84:c3:90:c9:da:5e:55:29:10:da:ff:0c:77:eb: df:22:39:fc:78:a9:00:98:61:a1:c9:5b:16:74:24:5f:30:a3: a4:fe:6b:38:06:65:9e:65:97:de:19:7f:9f:cb:b0:1a:f4:63: d3:2e:b1:1f:f4:b3:a9:c5:ab:1a:d1:54:a3:29:cc:7e:4d:4b: ee:1e:19:f8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDMzgxMTAvBgNVBAUTKEFBMzVFMkY5NzdCNTVFNzJGOTE2MzVCRjdENTNCQ0VC NTM0Nzk4M0IwHhcNMjUxMTI5MDQwMzA2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWU1MS05YzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxnGTIpaa0L5iZupmDlN8ayPyIj20Rw41d8Rp51L45lMqSvOUh90sd1Vbkhf 1aYO4teL+ulZq/Sju+BE6iK49St8iWtlqHmdHsL0fVtZMhvTooIL7x/jK+y/E/3h LMcM7AeB75kphNH5Y5hAos6FSFDDjrs3rjE8Genz1Z9oLZA96Xci7I1Vd5tqhgmP Jefz2P3blDCN74l98TvCR63SbDdtlVtJ/l+KaAWbfrBgDzMyQpfjhFpHDIF6n6BQ HuHKaRzfhpbvp9S3cWct5KWGpIScxBdUDKUiip+KjiREzTOG0zOZpE/MKaRm/UjI oSc9SoVhcSZEWH6fDD4lh+ZT+wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBLxUyjJ itDablUDY7b7FjQN61D0MB8GA1UdIwQYMBaAFKo14vl3tV5y+RY1v31TvOtTR5g7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkMzOC8wNEJBQTYxNEE5 OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9xalhpLVhlMVhuTDVGaldfZlZPODYxTkht RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FqWGktWGUxWG5MNUZqV19mVk84NjFOSG1Ecy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDJDMzgvMDRCQUE2MTRBOThDMTFFRjkzNTBGQjYzQzRGOUFFMDIvOEQ2QjZEODZB OThDMTFFRkFBQzBGMzY0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoL/gMA0GCSqGSIb3DQEBCwUAA4IBAQBq4fuWrYRCmyGasieUrGPF NqFRP9eaBF+H211rZe2uy7n+PnP8BKXqeXRDWmYcGhFhQUDCuekPKLiDVLBLxBkw iR74sgTiY4w+LZ8L9tAldUXvvM3LyUgr7OvB+EdMum/AQ0ND1cUCr34s/MgMgPAI gpN6Jzf6/9XhPyLMbgVneRkN1PYtd+Vo0oZfAXdnFHm1+KSeRNEk6SZsRzu78xaA uVhK/zkJ4zf7/khiVlzfBoR5SpFWoaKqhMOQydpeVSkQ2v8Md+vfIjn8eKkAmGGh yVsWdCRfMKOk/ms4BmWeZZfeGX+fy7Aa9GPTLrEf9LOpxasa0VSjKcx+TUvuHhn4 -----END CERTIFICATE-----Generated at Wed Mar 4 09:49:44 2026 by rpki-client