$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/CCFF219C6C1811EFA5619D0FC4F9AE02.roa File: CCFF219C6C1811EFA5619D0FC4F9AE02.roa (raw, json) Hash identifier: UeyiJlQNs/MTLZbMqwrMTFTZWRhPtIvg9OJqOsVib0o= Subject key identifier: BA:34:71:0E:F8:92:24:31:D4:6A:CD:F0:4E:21:E9:3B:E9:56:12:0F Certificate issuer: /CN=A91E9B89/serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Certificate serial: 0122 Authority key identifier: 22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/CCFF219C6C1811EFA5619D0FC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:51:31 +0000 ROA not before: Sun 19 Oct 2025 09:12:20 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153320 IP address blocks: 160.187.10.0/24 maxlen: 24 160.187.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Validity Not Before: Oct 19 09:12:20 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a5a3f3-5e4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8e:f4:56:3d:15:97:73:3f:9a:a1:d8:23:ca: 0b:6c:04:b3:e2:d2:07:a6:ef:34:72:23:a5:47:60: 21:ee:86:bd:de:a6:60:ea:2d:a2:32:8e:51:c7:83: 2b:80:cc:58:54:b7:fb:24:c7:d0:0e:2c:60:84:70: 16:97:41:ff:a8:0e:4c:4f:93:a0:82:04:00:92:0b: 25:40:0c:a6:3a:ef:05:0d:41:0b:66:8a:14:be:80: fb:9b:c6:a9:f0:0f:d1:89:6d:6d:68:57:16:5c:73: 14:58:b0:b0:c8:57:7f:39:25:28:97:3e:77:70:5c: 8e:a0:60:b9:e2:b7:d8:ee:1c:25:ac:f5:28:6c:1a: 30:a8:9e:14:d7:51:a7:70:45:57:7c:88:72:89:66: 94:30:c8:33:cb:b9:55:16:33:89:b5:7d:11:f5:34: fc:eb:00:3f:25:13:4b:06:2c:c7:b6:dc:1f:26:bf: ce:5e:fa:17:68:05:15:ff:b8:27:98:e3:a8:53:21: a2:88:1e:98:50:f9:80:e0:e2:f5:e4:7f:16:bc:ac: 34:0f:b2:7f:84:fa:c0:60:57:02:56:28:85:30:49: 76:a1:d3:a8:54:82:5e:f1:ba:13:7e:6a:dc:0d:df: a7:fa:5d:d2:a1:3f:dd:ea:e1:33:ad:8a:87:e8:61: 8a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:34:71:0E:F8:92:24:31:D4:6A:CD:F0:4E:21:E9:3B:E9:56:12:0F X509v3 Authority Key Identifier: keyid:22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/CCFF219C6C1811EFA5619D0FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.187.10.0/23 Signature Algorithm: sha256WithRSAEncryption 49:54:95:fb:4f:5f:1d:52:29:0f:90:f8:f7:e1:2a:57:f4:90: 34:75:89:ef:3d:f2:b3:dd:b2:9f:f0:e9:05:e3:7c:2c:b8:e1: 80:1d:4a:12:ed:f2:dd:56:30:15:bc:df:16:77:04:89:a6:f3: 1a:a2:51:1d:98:b2:50:99:a6:92:fe:1f:0c:9c:be:cd:b0:72: 04:17:ba:48:33:35:5d:ee:9a:e7:4b:1b:82:05:bd:07:c3:3e: bf:e9:a5:42:39:16:78:b6:2e:ad:7e:75:7a:ec:ef:64:d3:3b: 6c:be:c6:2a:28:be:b2:91:c2:68:94:e8:51:d5:bc:07:1e:8d: 33:6a:6c:2d:ff:c0:0c:82:63:c0:a8:40:b1:3a:af:18:4f:d2: 69:56:b3:39:2d:99:7b:34:00:9a:4b:84:9a:d0:d4:28:8a:f5: 22:b1:25:e5:bf:18:f6:30:1b:a9:e2:7a:bb:4e:8c:50:9f:49: df:db:35:78:0f:cd:d5:8f:03:16:1f:ac:e8:d1:76:3a:54:a1: cc:f0:38:00:39:99:3a:c3:15:d4:6d:40:1d:00:c8:e0:65:60: 1f:de:2f:03:19:19:20:e7:02:cc:de:05:d1:d2:4f:15:9c:d6: 30:f8:66:f5:bb:62:7c:96:ea:e4:79:d0:8d:a8:5f:96:80:20: be:14:94:2c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDIyNTlGODcwOTZFNDBBREIzQzg0MTgwRTI4QjU2QzNF ODgyMkY2NTEwHhcNMjUxMDE5MDkxMjIwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTNmMy01ZTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0470Vj0Vl3M/mqHYI8oLbASz4tIHpu80ciOlR2Ah7oa93qZg6i2iMo5Rx4Mr gMxYVLf7JMfQDixghHAWl0H/qA5MT5OgggQAkgslQAymOu8FDUELZooUvoD7m8ap 8A/RiW1taFcWXHMUWLCwyFd/OSUolz53cFyOoGC54rfY7hwlrPUobBowqJ4U11Gn cEVXfIhyiWaUMMgzy7lVFjOJtX0R9TT86wA/JRNLBizHttwfJr/OXvoXaAUV/7gn mOOoUyGiiB6YUPmA4OL15H8WvKw0D7J/hPrAYFcCViiFMEl2odOoVIJe8boTfmrc Dd+n+l3SoT/d6uEzrYqH6GGKJwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLo0cQ74 kiQx1GrN8E4h6TvpVhIPMB8GA1UdIwQYMBaAFCJZ+HCW5ArbPIQYDii1bD6IIvZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS8zQTlDOEE1NjZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9JbG40Y0pia0N0czhoQmdPS0xWc1BvZ2k5 bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lsbjRjSmJrQ3RzOGhCZ09LTFZzUG9naTlsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlCODkvM0E5QzhBNTY2QzE4MTFFRkFCNkI2OTBDQzRGOUFFMDIvQ0NGRjIxOUM2 QzE4MTFFRkE1NjE5RDBGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoLsKMA0GCSqGSIb3DQEBCwUAA4IBAQBJVJX7T18dUikPkPj34SpX 9JA0dYnvPfKz3bKf8OkF43wsuOGAHUoS7fLdVjAVvN8WdwSJpvMaolEdmLJQmaaS /h8MnL7NsHIEF7pIMzVd7prnSxuCBb0Hwz6/6aVCORZ4ti6tfnV67O9k0ztsvsYq KL6ykcJolOhR1bwHHo0zamwt/8AMgmPAqECxOq8YT9JpVrM5LZl7NACaS4Sa0NQo ivUisSXlvxj2MBup4nq7ToxQn0nf2zV4D83VjwMWH6zo0XY6VKHM8DgAOZk6wxXU bUAdAMjgZWAf3i8DGRkg5wLM3gXR0k8VnNYw+Gb1u2J8lurkedCNqF+WgCC+FJQs -----END CERTIFICATE-----Generated at Wed Mar 4 10:08:55 2026 by rpki-client