$ rpki-client -vvf rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/8B9109C06B8911F0A0F62851C4F9AE02.roa File: 8B9109C06B8911F0A0F62851C4F9AE02.roa (raw, json) Hash identifier: 82nHeS7CHoySaZHAiJzF0tyiNyUQq6elNqL8KAqq8/k= Subject key identifier: D8:58:10:69:87:B2:70:E8:EC:82:3C:7C:A5:39:16:CB:9B:04:A6:97 Certificate issuer: /CN=A91D488C/serialNumber=100B25354664681DAAB905CEFF4A4DA749C4EB8A Certificate serial: 8C Authority key identifier: 10:0B:25:35:46:64:68:1D:AA:B9:05:CE:FF:4A:4D:A7:49:C4:EB:8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EAslNUZkaB2quQXO_0pNp0nE64o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/8B9109C06B8911F0A0F62851C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:53:48 +0000 ROA not before: Tue 25 Nov 2025 05:52:49 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 17539 IP address blocks: 160.250.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/EAslNUZkaB2quQXO_0pNp0nE64o.crl rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/EAslNUZkaB2quQXO_0pNp0nE64o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EAslNUZkaB2quQXO_0pNp0nE64o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 06:44:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D488C, serialNumber=100B25354664681DAAB905CEFF4A4DA749C4EB8A Validity Not Before: Nov 25 05:52:49 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5a47c-1c8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c4:48:91:8b:b9:d5:bd:15:96:dd:5f:fa:20: 48:59:7b:58:ff:32:a0:1a:8e:b9:25:b8:f0:c3:78: 02:da:78:d6:24:96:44:a9:94:5a:ef:9e:28:62:40: 44:01:ba:52:d8:b5:34:fd:ac:14:bf:15:b1:5a:96: e7:ec:9b:1c:91:57:d4:65:b3:4b:d0:1c:bc:b4:0e: a9:7b:33:18:65:9c:53:08:0a:77:8c:c3:f2:30:1f: 8e:84:9f:c0:18:3d:21:a9:e5:fa:e5:7a:d6:c6:3c: 86:10:56:39:56:59:25:d8:74:3d:fb:28:49:03:2e: 56:af:6d:f5:b5:12:6c:0a:2a:dd:22:af:8a:40:ed: cc:b0:3a:ba:d5:73:7d:85:cb:80:17:8a:9d:00:af: b7:89:c2:fd:1b:55:83:7a:b2:95:be:47:0d:3d:ee: e9:56:84:2b:f4:66:e0:ed:9f:1f:0f:b9:2f:0b:c4: 00:92:d5:bb:35:02:b7:fd:7b:e5:75:6b:4e:c8:98: de:55:2e:dd:e4:ba:f0:d0:7f:e6:c2:1f:55:e5:cf: 88:e4:32:f7:e2:96:5d:b5:64:a1:3a:e2:b8:7d:6c: ef:bc:35:25:fd:bc:7d:cf:a9:08:78:b0:b3:3f:c2: 28:59:5f:8d:48:a1:79:96:e7:79:e5:3e:b4:1d:91: 8a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:58:10:69:87:B2:70:E8:EC:82:3C:7C:A5:39:16:CB:9B:04:A6:97 X509v3 Authority Key Identifier: keyid:10:0B:25:35:46:64:68:1D:AA:B9:05:CE:FF:4A:4D:A7:49:C4:EB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/EAslNUZkaB2quQXO_0pNp0nE64o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EAslNUZkaB2quQXO_0pNp0nE64o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/8B9109C06B8911F0A0F62851C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.250.97.0/24 Signature Algorithm: sha256WithRSAEncryption 60:ed:9d:7c:2e:eb:39:07:b2:33:1a:45:fd:4e:5c:bd:63:f1: 3b:d9:a8:91:c1:37:d6:11:ae:2d:5d:97:27:9a:c7:04:7b:a0: 29:c6:59:c9:a7:fa:6e:58:6f:82:5b:75:cc:0a:3c:8b:12:6c: 4a:35:f9:a8:59:22:fe:3f:81:7a:63:c5:cc:e8:84:51:cc:e8: 97:4c:be:1f:76:cb:42:81:39:cb:e6:32:99:13:5a:82:53:e5: e9:0b:6b:4b:71:65:52:f8:67:c5:08:53:85:8e:9c:db:bc:1f: 86:c7:b3:d0:93:ee:2e:1f:51:36:cf:40:9f:88:3d:b4:cf:07: d2:4a:a0:b5:01:60:e2:05:f6:89:d7:76:85:e2:9d:67:c9:02: ff:80:14:e9:4f:3d:35:7a:61:2a:7c:3b:de:16:fa:5f:03:f7: 21:37:14:a6:03:f6:cd:a1:72:ff:a8:aa:8b:af:55:b1:16:e1: 4f:47:85:23:38:59:6d:49:96:f9:f7:1e:49:18:61:af:09:a7: 9c:e6:15:82:6a:85:40:bb:f0:b3:bf:1d:25:16:9b:58:ec:cc: 67:e2:aa:29:33:0f:ad:10:11:7a:4a:bc:55:66:38:1b:be:f5: c2:d1:2b:9f:72:67:f1:ae:1c:22:e0:9a:7e:03:14:d1:4f:ac: 88:4a:98:96 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4OEMxMTAvBgNVBAUTKDEwMEIyNTM1NDY2NDY4MURBQUI5MDVDRUZGNEE0REE3 NDlDNEVCOEEwHhcNMjUxMTI1MDU1MjQ5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTQ3Yy0xYzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycRIkYu51b0Vlt1f+iBIWXtY/zKgGo65Jbjww3gC2njWJJZEqZRa754oYkBE AbpS2LU0/awUvxWxWpbn7JsckVfUZbNL0By8tA6pezMYZZxTCAp3jMPyMB+OhJ/A GD0hqeX65XrWxjyGEFY5Vlkl2HQ9+yhJAy5Wr231tRJsCirdIq+KQO3MsDq61XN9 hcuAF4qdAK+3icL9G1WDerKVvkcNPe7pVoQr9Gbg7Z8fD7kvC8QAktW7NQK3/Xvl dWtOyJjeVS7d5Lrw0H/mwh9V5c+I5DL34pZdtWShOuK4fWzvvDUl/bx9z6kIeLCz P8IoWV+NSKF5lud55T60HZGKBQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNhYEGmH snDo7II8fKU5FsubBKaXMB8GA1UdIwQYMBaAFBALJTVGZGgdqrkFzv9KTadJxOuK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDg4Qy80NkIwMDUwNDZC ODkxMUYwOTVGMTEwMkJDNEY5QUUwMi9FQXNsTlVaa2FCMnF1UVhPXzBwTnAwbkU2 NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VBc2xOVVprYUIycXVRWE9fMHBOcDBuRTY0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQ4OEMvNDZCMDA1MDQ2Qjg5MTFGMDk1RjExMDJCQzRGOUFFMDIvOEI5MTA5QzA2 Qjg5MTFGMEEwRjYyODUxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoPphMA0GCSqGSIb3DQEBCwUAA4IBAQBg7Z18Lus5B7IzGkX9Tly9 Y/E72aiRwTfWEa4tXZcnmscEe6ApxlnJp/puWG+CW3XMCjyLEmxKNfmoWSL+P4F6 Y8XM6IRRzOiXTL4fdstCgTnL5jKZE1qCU+XpC2tLcWVS+GfFCFOFjpzbvB+Gx7PQ k+4uH1E2z0CfiD20zwfSSqC1AWDiBfaJ13aF4p1nyQL/gBTpTz01emEqfDveFvpf A/chNxSmA/bNoXL/qKqLr1WxFuFPR4UjOFltSZb59x5JGGGvCaec5hWCaoVAu/Cz vx0lFptY7Mxn4qopMw+tEBF6SrxVZjgbvvXC0Sufcmfxrhwi4Jp+AxTRT6yISpiW -----END CERTIFICATE-----Generated at Fri Mar 13 22:47:03 2026 by rpki-client