$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/0ECA9B023D9F11EC9EC18739C4F9AE02.roa File: 0ECA9B023D9F11EC9EC18739C4F9AE02.roa (raw, json) Hash identifier: SB23MH7egYKIQ17nCj+xHe+4JVPIgfw/s/SRgDFUT6Q= Subject key identifier: 91:59:90:A1:7C:7E:8E:D9:66:39:42:16:D3:FC:64:03:63:7B:B0:D1 Certificate issuer: /CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Certificate serial: 05FA Authority key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/0ECA9B023D9F11EC9EC18739C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:21:34 +0000 ROA not before: Mon 22 Sep 2025 16:35:20 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134433 IP address blocks: 213.170.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 16:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1530 (0x5fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09, serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Validity Not Before: Sep 22 16:35:20 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a51e5e-c7a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c9:cb:8c:1b:63:53:ee:73:9b:4c:d8:60:8c: 21:ac:f1:2c:01:c5:b4:e8:59:b4:cd:26:aa:ed:b0: 43:6c:c5:e0:c7:91:78:c9:53:09:0f:20:29:78:2a: e2:26:15:53:82:ff:88:08:35:89:ee:37:4a:47:89: 73:00:00:22:de:7b:78:57:24:18:50:80:e5:7b:75: a1:c3:3d:d4:13:a4:db:5f:cf:12:df:c8:e8:0f:8f: ab:68:a6:03:c2:9b:13:fd:cc:43:67:9c:fc:3d:ad: c8:b9:7c:9d:01:79:c3:81:96:56:ae:c4:b6:17:72: e6:27:c5:39:b7:0a:c3:cf:ae:3e:b1:31:c3:70:00: 36:3b:c5:45:34:8b:72:d5:2a:29:07:da:df:58:c1: 3d:58:cc:9c:91:35:f0:70:bf:d4:32:c4:c3:f2:f3: 5c:5b:a9:4f:f6:99:34:84:26:54:dc:20:3b:0d:44: ef:b6:34:43:66:51:9a:dd:e0:a4:4c:71:43:8e:ff: aa:8f:ae:c4:b0:89:b1:ac:47:7a:d2:2e:72:1c:c2: 10:b5:53:45:db:18:d9:e7:d7:1d:6e:ba:b8:83:af: 9e:fa:e4:b0:e6:3d:6f:38:de:a0:e5:e2:88:16:40: cf:80:ae:3c:8e:70:97:4f:51:25:dd:ab:ac:13:4c: c4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:59:90:A1:7C:7E:8E:D9:66:39:42:16:D3:FC:64:03:63:7B:B0:D1 X509v3 Authority Key Identifier: keyid:AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/0ECA9B023D9F11EC9EC18739C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 213.170.156.0/22 Signature Algorithm: sha256WithRSAEncryption 11:4c:27:5b:79:8c:03:66:ff:1b:64:96:04:30:f6:13:fb:4c: 05:d1:41:54:0c:5f:15:6c:38:25:b8:d7:14:27:a8:e3:80:ef: 69:ee:98:1a:40:7b:64:35:9b:f8:7a:55:14:e8:8a:cc:13:23: 5e:bc:c7:22:5a:cc:1a:f6:a2:d5:ed:f5:db:83:63:76:5e:51: 45:77:32:80:d5:a8:9c:f8:b8:2c:d8:25:79:5f:ac:a7:1c:2d: 53:99:92:04:30:d9:7a:30:44:17:da:f7:e0:d1:01:d4:8a:0e: 6b:50:44:6f:e0:62:46:e1:20:6c:f7:85:0b:11:8a:3b:a2:dc: e7:3f:7d:9a:b9:a4:c8:1b:8a:0e:60:cd:b7:3f:cc:87:c7:cf: 09:3c:1e:c9:c2:fc:38:f2:9d:c9:ca:25:6a:49:1c:ba:04:1f: 13:dd:c7:58:e7:43:96:d2:a3:ec:d5:48:7e:c5:00:56:52:cb: cd:0a:34:ae:9e:7a:30:09:11:e3:d3:62:fa:d3:92:dd:37:22: fe:b4:51:c1:05:47:3d:c8:dd:a8:50:f5:55:1c:ac:1a:aa:93: 4b:d2:fb:0b:27:6e:65:92:53:0b:6e:fc:d6:63:b1:55:40:e6: dc:96:9e:59:e0:0e:3a:92:e5:da:62:fb:ae:aa:b4:9d:f7:48: 10:eb:83:79 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKEFEQjk4OTc4RkQ3NTFGOTlEOUE4RUIyQUU3MkQzQzBD NTUwNDUzQTQwHhcNMjUwOTIyMTYzNTIwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWU1ZS1jN2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMnLjBtjU+5zm0zYYIwhrPEsAcW06Fm0zSaq7bBDbMXgx5F4yVMJDyApeCri JhVTgv+ICDWJ7jdKR4lzAAAi3nt4VyQYUIDle3Whwz3UE6TbX88S38joD4+raKYD wpsT/cxDZ5z8Pa3IuXydAXnDgZZWrsS2F3LmJ8U5twrDz64+sTHDcAA2O8VFNIty 1SopB9rfWME9WMyckTXwcL/UMsTD8vNcW6lP9pk0hCZU3CA7DUTvtjRDZlGa3eCk THFDjv+qj67EsImxrEd60i5yHMIQtVNF2xjZ59cdbrq4g6+e+uSw5j1vON6g5eKI FkDPgK48jnCXT1El3ausE0zEhwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJFZkKF8 fo7ZZjlCFtP8ZANje7DRMB8GA1UdIwQYMBaAFK25iXj9dR+Z2ajrKuctPAxVBFOk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS9FQUM3RUVBMDEx MkQxMUVDOEQ4NzA1N0RDNEY5QUUwMi9yYm1KZVAxMUg1blpxT3NxNXkwOERGVUVV NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JibUplUDExSDVuWnFPc3E1eTA4REZVRVU2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvRUFDN0VFQTAxMTJEMTFFQzhEODcwNTdEQzRGOUFFMDIvMEVDQTlCMDIz RDlGMTFFQzlFQzE4NzM5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQC1aqcMA0GCSqGSIb3DQEBCwUAA4IBAQARTCdbeYwDZv8bZJYEMPYT +0wF0UFUDF8VbDgluNcUJ6jjgO9p7pgaQHtkNZv4elUU6IrMEyNevMciWswa9qLV 7fXbg2N2XlFFdzKA1aic+Lgs2CV5X6ynHC1TmZIEMNl6MEQX2vfg0QHUig5rUERv 4GJG4SBs94ULEYo7otznP32auaTIG4oOYM23P8yHx88JPB7Jwvw48p3JyiVqSRy6 BB8T3cdY50OW0qPs1Uh+xQBWUsvNCjSunnowCRHj02L605LdNyL+tFHBBUc9yN2o UPVVHKwaqpNL0vsLJ25lklMLbvzWY7FVQObclp5Z4A46kuXaYvuuqrSd90gQ64N5 -----END CERTIFICATE-----Generated at Sat Mar 7 16:12:05 2026 by rpki-client