$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/CE99A9F2D33811EDAAE97C1BC4F9AE02.roa File: CE99A9F2D33811EDAAE97C1BC4F9AE02.roa (raw, json) Hash identifier: 4cXqlRer52ZWlIOSKIID7G64udphrDhp88IgkcR8MHE= Subject key identifier: 5E:A2:49:E2:AE:C8:17:F2:F8:C7:E1:6B:B3:06:9A:C9:A1:B5:22:9D Certificate issuer: /CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Certificate serial: 05FB Authority key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/CE99A9F2D33811EDAAE97C1BC4F9AE02.roa Signing time: Mon 02 Mar 2026 05:21:35 +0000 ROA not before: Mon 22 Sep 2025 16:35:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 14618 IP address blocks: 213.170.156.0/24 maxlen: 24 213.170.157.0/24 maxlen: 24 213.170.158.0/24 maxlen: 24 213.170.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 16:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1531 (0x5fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09, serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Validity Not Before: Sep 22 16:35:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a51e5f-0ff3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:94:57:93:c1:af:46:05:2c:d4:8d:cc:a3:43: ce:cc:25:03:0b:e1:17:aa:55:e6:46:3b:e5:53:81: 6f:fb:9e:30:2e:ee:d5:f1:a3:9d:04:3c:b9:86:59: f9:71:c2:22:7b:b5:5e:18:e8:3a:ca:1c:fa:00:52: 32:e4:95:b2:18:3e:fe:68:ea:eb:cc:c7:74:c3:ac: ed:c9:d3:58:3b:c3:bc:2b:1f:92:d7:3c:2b:df:42: 75:65:fb:6d:e9:a5:25:f0:55:e9:40:cb:84:48:2a: bc:9a:cb:54:d1:b6:18:e5:35:48:34:57:9c:fd:fd: 77:49:c4:dc:de:ca:fc:f8:d1:bb:ab:98:f2:62:0a: 80:35:01:a5:58:a0:7b:ac:45:41:f7:12:fe:86:76: 3d:86:cc:8a:18:9e:06:b5:2f:33:98:e0:a7:b9:c9: 81:61:1f:e5:ec:9d:ac:4c:f9:7c:70:4c:de:47:88: 42:e1:b6:69:63:f5:18:89:f9:28:1a:f5:58:84:00: fe:d8:42:99:92:18:84:29:b8:b0:c6:11:b6:38:df: 15:93:37:db:7e:d2:41:f7:8a:54:28:87:ad:ff:cc: 8a:a2:9b:36:27:d9:05:c0:15:d4:17:94:8c:b0:79: a7:75:81:2e:d6:97:98:81:8e:73:94:32:df:ae:8d: 66:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A2:49:E2:AE:C8:17:F2:F8:C7:E1:6B:B3:06:9A:C9:A1:B5:22:9D X509v3 Authority Key Identifier: keyid:AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/CE99A9F2D33811EDAAE97C1BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 213.170.156.0/22 Signature Algorithm: sha256WithRSAEncryption b3:bc:f8:db:79:70:21:d4:cf:19:dd:70:8a:20:6c:86:86:b1: fa:aa:bd:3c:d6:b3:4b:f0:cf:f8:76:df:91:90:99:9a:f0:5d: 03:fc:3c:ec:07:cb:52:c2:03:fa:6b:47:52:75:23:c9:15:0b: 36:52:17:e3:d4:44:60:5e:c3:88:d8:f5:ba:13:0a:8a:ae:62: f2:93:15:ee:c4:5e:7b:ab:ab:f6:b3:3e:60:95:8a:1c:94:c2: 16:bc:eb:6b:9d:5f:fd:db:d9:5a:55:21:aa:70:e9:ed:3b:68: 8b:09:d4:78:b3:40:10:c6:2b:d5:b1:eb:a0:51:0a:4b:a7:69: df:bf:29:f1:db:9d:06:7a:6a:df:13:3e:32:9b:26:64:7f:05: 4f:75:fa:07:ee:74:8c:db:08:41:8e:80:82:27:cf:09:e0:07: 1c:ca:0c:b4:30:46:be:11:ee:42:c3:00:96:56:b6:04:70:de: 67:8c:8d:ef:e6:4a:ea:b0:21:9c:c7:1e:79:10:b4:aa:f6:05: b7:e7:78:18:3b:a8:04:5c:f9:4d:5d:3c:80:d2:d9:0a:4a:0a: 8a:5c:ff:94:8f:c2:cd:c9:5d:94:f4:cd:b8:48:96:7f:41:e0: 8a:19:99:23:c0:f3:53:75:f4:3f:6d:a4:13:39:d3:21:d4:a6: 38:c3:49:b0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKEFEQjk4OTc4RkQ3NTFGOTlEOUE4RUIyQUU3MkQzQzBD NTUwNDUzQTQwHhcNMjUwOTIyMTYzNTIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWU1Zi0wZmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJRXk8GvRgUs1I3Mo0POzCUDC+EXqlXmRjvlU4Fv+54wLu7V8aOdBDy5hln5 ccIie7VeGOg6yhz6AFIy5JWyGD7+aOrrzMd0w6ztydNYO8O8Kx+S1zwr30J1Zftt 6aUl8FXpQMuESCq8mstU0bYY5TVINFec/f13ScTc3sr8+NG7q5jyYgqANQGlWKB7 rEVB9xL+hnY9hsyKGJ4GtS8zmOCnucmBYR/l7J2sTPl8cEzeR4hC4bZpY/UYifko GvVYhAD+2EKZkhiEKbiwxhG2ON8VkzfbftJB94pUKIet/8yKops2J9kFwBXUF5SM sHmndYEu1peYgY5zlDLfro1m2wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFF6iSeKu yBfy+Mfha7MGmsmhtSKdMB8GA1UdIwQYMBaAFK25iXj9dR+Z2ajrKuctPAxVBFOk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS9FQUM3RUVBMDEx MkQxMUVDOEQ4NzA1N0RDNEY5QUUwMi9yYm1KZVAxMUg1blpxT3NxNXkwOERGVUVV NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JibUplUDExSDVuWnFPc3E1eTA4REZVRVU2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvRUFDN0VFQTAxMTJEMTFFQzhEODcwNTdEQzRGOUFFMDIvQ0U5OUE5RjJE MzM4MTFFREFBRTk3QzFCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQC1aqcMA0GCSqGSIb3DQEBCwUAA4IBAQCzvPjbeXAh1M8Z3XCKIGyG hrH6qr081rNL8M/4dt+RkJma8F0D/DzsB8tSwgP6a0dSdSPJFQs2Uhfj1ERgXsOI 2PW6EwqKrmLykxXuxF57q6v2sz5glYoclMIWvOtrnV/929laVSGqcOntO2iLCdR4 s0AQxivVseugUQpLp2nfvynx250GemrfEz4ymyZkfwVPdfoH7nSM2whBjoCCJ88J 4Accygy0MEa+Ee5CwwCWVrYEcN5njI3v5krqsCGcxx55ELSq9gW353gYO6gEXPlN XTyA0tkKSgqKXP+Uj8LNyV2U9M24SJZ/QeCKGZkjwPNTdfQ/baQTOdMh1KY4w0mw -----END CERTIFICATE-----Generated at Sat Mar 7 16:12:06 2026 by rpki-client