$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/CF49BBDAD33811EDAAE97C1BC4F9AE02.roa File: CF49BBDAD33811EDAAE97C1BC4F9AE02.roa (raw, json) Hash identifier: CFOJdfAQAwrs7SLJek/PgQnllBP7mK7ufRDP4foqiCw= Subject key identifier: F1:99:B2:0C:E1:55:10:E8:96:9D:50:AE:D7:FF:9D:09:5E:5C:09:72 Certificate issuer: /CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Certificate serial: 05FE Authority key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/CF49BBDAD33811EDAAE97C1BC4F9AE02.roa Signing time: Mon 02 Mar 2026 05:21:38 +0000 ROA not before: Mon 22 Sep 2025 16:35:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 8987 IP address blocks: 213.170.156.0/24 maxlen: 24 213.170.157.0/24 maxlen: 24 213.170.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 16:13:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1534 (0x5fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09, serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Validity Not Before: Sep 22 16:35:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a51e62-1936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a1:c9:17:21:46:bc:53:40:07:8f:6a:4d:ef: 49:d8:83:59:67:e3:37:42:e2:3c:e6:c7:9a:1d:60: 7c:0e:2e:c7:c4:61:4f:39:1d:f5:a0:74:aa:30:c6: 78:8d:f3:c6:56:af:83:5a:84:58:70:e8:b2:91:ee: 54:65:23:9f:75:17:ef:16:1b:78:d1:b6:df:10:e1: 0a:b5:c7:ed:3c:7b:1f:65:6a:26:b5:bc:ac:6f:8d: 61:25:2f:09:b6:b7:ed:62:aa:13:dc:2b:00:56:f2: e7:f7:bb:5f:60:b5:7d:df:7d:e9:e9:84:c8:47:13: d5:8d:da:df:af:4b:a5:24:e1:04:48:b3:ef:36:11: 37:56:60:c8:e8:1d:c8:ce:7a:de:25:57:3c:66:85: d7:36:67:4a:7a:84:52:03:97:3e:da:60:04:77:67: 1a:18:3f:53:39:25:4e:71:ce:f6:71:f7:f6:b8:b7: 8a:57:7c:47:5d:28:fb:7d:cc:cf:64:f9:34:3a:e0: 84:5b:fe:f3:e4:97:45:d7:13:f0:95:ba:cc:f1:f2: d6:23:cd:c8:d1:36:e2:8d:d4:f7:72:14:73:5a:5d: c9:e3:fb:d8:25:95:3c:e5:6a:ac:da:53:5d:6a:32: f0:81:8a:40:4b:ac:8f:d4:cc:93:85:c8:88:7f:58: cf:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:99:B2:0C:E1:55:10:E8:96:9D:50:AE:D7:FF:9D:09:5E:5C:09:72 X509v3 Authority Key Identifier: keyid:AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/CF49BBDAD33811EDAAE97C1BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 213.170.156.0-213.170.158.255 Signature Algorithm: sha256WithRSAEncryption 3e:a3:be:6e:ae:c2:3f:29:30:0c:b9:63:a8:7b:ec:1e:3b:10: 62:f3:e4:ba:f0:68:df:fc:91:16:b8:89:88:0c:48:fd:9f:7b: cd:97:d3:ba:69:84:4b:b8:97:6b:64:59:e0:34:4d:ab:ab:0a: cf:cb:20:78:34:87:07:5a:64:e1:f9:3c:8a:7f:da:9f:bb:14: 50:73:91:c7:fa:aa:e0:69:36:b6:f2:c3:9f:a4:c2:45:2b:6e: 8e:1b:44:15:b8:b1:8a:1b:3c:bd:db:f4:e3:1f:bc:24:86:fd: 1a:f4:07:85:91:f2:62:9a:30:83:16:d7:1a:77:55:89:31:6d: 38:97:c8:a7:31:03:f2:af:1d:5f:4e:53:84:6e:79:c5:ff:ad: c2:50:11:17:f8:a4:1e:72:24:36:12:85:53:13:c8:ea:da:50: 43:d8:7c:eb:cd:88:be:c2:51:a5:ef:51:3e:f6:84:8c:ed:3b: 0f:7c:c1:44:ff:4b:d1:3b:31:e4:cc:65:ba:d2:09:99:7d:80: 7d:7f:3b:98:03:0a:5e:80:a9:e7:c5:47:aa:8f:1d:76:a6:37: 63:19:d0:df:91:5d:57:3d:66:13:4f:7d:fc:d8:a5:5a:9b:00: 34:49:9c:30:1c:8f:82:22:f2:2e:a1:1f:96:ce:60:67:51:e9: 53:31:f0:dd -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICBf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKEFEQjk4OTc4RkQ3NTFGOTlEOUE4RUIyQUU3MkQzQzBD NTUwNDUzQTQwHhcNMjUwOTIyMTYzNTIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWU2Mi0xOTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqHJFyFGvFNAB49qTe9J2INZZ+M3QuI85seaHWB8Di7HxGFPOR31oHSqMMZ4 jfPGVq+DWoRYcOiyke5UZSOfdRfvFht40bbfEOEKtcftPHsfZWomtbysb41hJS8J trftYqoT3CsAVvLn97tfYLV9333p6YTIRxPVjdrfr0ulJOEESLPvNhE3VmDI6B3I znreJVc8ZoXXNmdKeoRSA5c+2mAEd2caGD9TOSVOcc72cff2uLeKV3xHXSj7fczP ZPk0OuCEW/7z5JdF1xPwlbrM8fLWI83I0TbijdT3chRzWl3J4/vYJZU85Wqs2lNd ajLwgYpAS6yP1MyThciIf1jP+wIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFPGZsgzh VRDolp1Qrtf/nQleXAlyMB8GA1UdIwQYMBaAFK25iXj9dR+Z2ajrKuctPAxVBFOk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS9FQUM3RUVBMDEx MkQxMUVDOEQ4NzA1N0RDNEY5QUUwMi9yYm1KZVAxMUg1blpxT3NxNXkwOERGVUVV NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JibUplUDExSDVuWnFPc3E1eTA4REZVRVU2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvRUFDN0VFQTAxMTJEMTFFQzhEODcwNTdEQzRGOUFFMDIvQ0Y0OUJCREFE MzM4MTFFREFBRTk3QzFCQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBALVqpwDBADVqp4wDQYJKoZIhvcNAQELBQADggEBAD6jvm6uwj8p MAy5Y6h77B47EGLz5LrwaN/8kRa4iYgMSP2fe82X07pphEu4l2tkWeA0TaurCs/L IHg0hwdaZOH5PIp/2p+7FFBzkcf6quBpNrbyw5+kwkUrbo4bRBW4sYobPL3b9OMf vCSG/Rr0B4WR8mKaMIMW1xp3VYkxbTiXyKcxA/KvHV9OU4RuecX/rcJQERf4pB5y JDYShVMTyOraUEPYfOvNiL7CUaXvUT72hIztOw98wUT/S9E7MeTMZbrSCZl9gH1/ O5gDCl6AqefFR6qPHXamN2MZ0N+RXVc9ZhNPffzYpVqbADRJnDAcj4Ii8i6hH5bO YGdR6VMx8N0= -----END CERTIFICATE-----Generated at Thu Mar 5 14:57:48 2026 by rpki-client