$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/8C508DC055F711EFA5200828C4F9AE02.roa File: 8C508DC055F711EFA5200828C4F9AE02.roa (raw, json) Hash identifier: a4yOG+a8yVbuby/rNhuqmA50P6M9ozdYqvjv6CBNZgE= Subject key identifier: C4:F4:84:AA:63:6D:DF:0C:B6:65:3A:C6:CC:F9:35:74:40:F4:85:85 Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 019A Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/8C508DC055F711EFA5200828C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:08:55 +0000 ROA not before: Thu 13 Feb 2025 07:08:08 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 140362 IP address blocks: 157.10.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Feb 13 07:08:08 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a599f7-aade Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:4c:0b:d1:ee:f0:1e:a5:1e:3f:68:cd:85:b4: 7a:b3:d8:cc:3f:6d:34:3d:9c:b4:0d:5f:06:ac:42: 38:0e:0f:27:5a:ca:4e:11:f7:fd:f9:91:41:9b:5c: f0:38:c6:ac:40:77:0e:f9:b4:a9:93:ae:18:c4:93: 4d:af:b7:93:ea:20:c2:a9:75:38:ff:38:9f:55:76: 05:80:14:c2:4c:96:20:e1:73:a2:a4:ae:c3:a9:17: e5:4a:19:8e:4e:85:e8:fe:ce:2e:6d:4f:85:f8:ea: 0f:45:fc:42:f5:1c:f6:23:09:97:14:37:a5:c2:0e: a9:d3:fa:44:02:d5:4a:d2:71:04:c8:e8:8e:5a:0f: d6:ec:90:d8:69:dd:e0:c2:61:60:c6:0e:01:90:a7: 88:e8:aa:bc:4d:b7:d1:0a:78:f4:53:ab:e4:58:e1: 64:41:be:90:f7:2a:63:59:4f:07:f2:29:4c:b3:24: 71:ad:3e:d8:cf:89:de:3b:2d:bb:96:72:25:8a:e4: 1e:5e:27:dc:a3:2a:17:08:33:1b:36:de:a1:06:49: e7:de:ad:84:44:c7:8d:36:ab:cd:56:80:12:5a:12: 92:61:8d:e5:e4:54:0d:e3:f7:9d:42:1b:2d:14:62: f8:b6:95:1c:02:43:c0:06:a3:2b:85:c9:1b:a2:f5: c9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F4:84:AA:63:6D:DF:0C:B6:65:3A:C6:CC:F9:35:74:40:F4:85:85 X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/8C508DC055F711EFA5200828C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.251.0/24 Signature Algorithm: sha256WithRSAEncryption 59:56:b1:f0:e3:e0:50:00:88:5b:9c:e9:af:29:1e:20:be:bc: d4:d7:79:8d:28:f5:6f:f6:cc:b9:43:30:58:68:c9:1b:6f:d5: 9b:97:97:c3:54:70:35:b3:06:a8:69:a9:c5:6e:db:2f:1b:ac: 01:ed:e2:59:bb:4b:46:a8:69:89:da:91:23:a0:fb:df:94:e4: b9:48:29:63:47:a1:e1:5c:da:8f:68:3b:57:2f:4e:d9:6d:e8: 3a:c1:83:3a:ee:63:fc:fc:76:75:48:f0:b8:ea:2a:3f:41:a5: 07:c8:3a:6a:5c:08:6d:f9:47:ca:10:c1:21:a4:08:77:cb:05: 75:15:da:4b:77:3b:29:84:09:dc:d6:30:8f:12:5e:2b:4f:26: 5c:e1:a3:85:b1:01:bc:84:60:37:08:1b:49:46:a3:72:38:61: 8c:f3:e6:6a:b5:34:75:a9:3c:ab:00:b6:38:5a:39:fa:a3:f3: c5:15:e1:59:1d:61:5d:40:4e:de:a6:73:72:4c:bd:aa:43:4e: 57:ea:3a:eb:96:20:05:a9:db:e0:87:dc:b9:5a:90:67:26:6e: 5b:9f:29:63:1a:5a:0c:2d:e3:db:02:9d:70:4d:ce:67:3d:81: 5d:36:23:ae:b5:ff:4b:9c:eb:47:81:7a:03:f7:16:e3:8f:32: 16:31:c3:6b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjUwMjEzMDcwODA4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTlmNy1hYWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj0wL0e7wHqUeP2jNhbR6s9jMP200PZy0DV8GrEI4Dg8nWspOEff9+ZFBm1zw OMasQHcO+bSpk64YxJNNr7eT6iDCqXU4/zifVXYFgBTCTJYg4XOipK7DqRflShmO ToXo/s4ubU+F+OoPRfxC9Rz2IwmXFDelwg6p0/pEAtVK0nEEyOiOWg/W7JDYad3g wmFgxg4BkKeI6Kq8TbfRCnj0U6vkWOFkQb6Q9ypjWU8H8ilMsyRxrT7Yz4neOy27 lnIliuQeXifcoyoXCDMbNt6hBknn3q2ERMeNNqvNVoASWhKSYY3l5FQN4/edQhst FGL4tpUcAkPABqMrhckbovXJDwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMT0hKpj bd8MtmU6xsz5NXRA9IWFMB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDYzQUYvNERGRTY4MjRCNkI3MTFFRUE5RDdGQzNBQzRGOUFFMDIvOEM1MDhEQzA1 NUY3MTFFRkE1MjAwODI4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAnQr7MA0GCSqGSIb3DQEBCwUAA4IBAQBZVrHw4+BQAIhbnOmvKR4g vrzU13mNKPVv9sy5QzBYaMkbb9Wbl5fDVHA1swaoaanFbtsvG6wB7eJZu0tGqGmJ 2pEjoPvflOS5SCljR6HhXNqPaDtXL07Zbeg6wYM67mP8/HZ1SPC46io/QaUHyDpq XAht+UfKEMEhpAh3ywV1FdpLdzsphAnc1jCPEl4rTyZc4aOFsQG8hGA3CBtJRqNy OGGM8+ZqtTR1qTyrALY4Wjn6o/PFFeFZHWFdQE7epnNyTL2qQ05X6jrrliAFqdvg h9y5WpBnJm5bnyljGloMLePbAp1wTc5nPYFdNiOutf9LnOtHgXoD9xbjjzIWMcNr -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:13 2026 by rpki-client