$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/2DFD4A1E740C11EFB881CE37C4F9AE02.roa File: 2DFD4A1E740C11EFB881CE37C4F9AE02.roa (raw, json) Hash identifier: IInDuG92MgBM/R/1sWNASwByUg/xqTFX5MGgVtF2hko= Subject key identifier: DB:11:45:21:FC:25:C1:68:EA:E5:6D:E5:D5:A2:4B:41:B9:B1:3E:F4 Certificate issuer: /CN=A91EE92F/serialNumber=457DB766E1B0D6A4DCC7F9AECD287D4DC3E70C9E Certificate serial: 011C Authority key identifier: 45:7D:B7:66:E1:B0:D6:A4:DC:C7:F9:AE:CD:28:7D:4D:C3:E7:0C:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RX23ZuGw1qTcx_muzSh9TcPnDJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/2DFD4A1E740C11EFB881CE37C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:17:52 +0000 ROA not before: Mon 03 Nov 2025 05:51:04 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153329 IP address blocks: 160.187.56.0/23 maxlen: 23 160.187.56.0/24 maxlen: 24 160.187.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/RX23ZuGw1qTcx_muzSh9TcPnDJ4.crl rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/RX23ZuGw1qTcx_muzSh9TcPnDJ4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RX23ZuGw1qTcx_muzSh9TcPnDJ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE92F, serialNumber=457DB766E1B0D6A4DCC7F9AECD287D4DC3E70C9E Validity Not Before: Nov 3 05:51:04 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a58e00-b70c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:38:9f:78:2d:75:a3:27:0b:9e:d5:25:ea:3a: cd:cc:77:6f:89:c0:1a:13:62:93:f9:22:b2:ec:c6: 7b:7d:f8:33:75:23:21:e4:e8:b3:25:36:33:9a:e7: bc:fb:c9:a9:42:5a:27:8c:58:19:3d:ec:27:08:8f: 86:9f:3d:4f:68:36:f9:6e:c4:32:0a:5b:f4:60:09: 4b:de:f9:17:44:00:f5:ec:a5:87:b7:66:64:5c:fd: 4d:8a:2e:bc:93:1c:5e:c7:83:3e:91:91:9a:ce:5d: b0:6e:58:ee:77:dc:cb:cf:7c:21:7a:4f:00:88:70: 47:0a:de:ff:b4:29:1b:7c:74:41:53:46:1f:4e:0e: 53:87:82:c3:04:68:2d:ae:b8:d1:f1:8e:7f:07:3e: 3f:71:80:3f:7f:91:e0:9a:9c:54:b4:c9:fa:5b:e7: c3:09:d1:44:a1:b9:64:05:e5:4d:94:8c:1e:17:af: ac:e8:93:69:a1:b0:dd:88:47:ad:dd:80:81:40:00: 20:6b:c7:b0:09:0e:45:26:03:00:e9:5e:b3:c2:6a: fa:87:db:8c:e1:6d:fb:f9:65:30:18:16:f5:fb:77: c9:bd:b1:2f:14:b3:7d:ac:3a:12:6d:3a:90:17:0a: 14:e3:a3:0d:56:82:1b:5a:9e:b7:4e:dd:bc:ff:3b: fb:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:11:45:21:FC:25:C1:68:EA:E5:6D:E5:D5:A2:4B:41:B9:B1:3E:F4 X509v3 Authority Key Identifier: keyid:45:7D:B7:66:E1:B0:D6:A4:DC:C7:F9:AE:CD:28:7D:4D:C3:E7:0C:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/RX23ZuGw1qTcx_muzSh9TcPnDJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RX23ZuGw1qTcx_muzSh9TcPnDJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/2DFD4A1E740C11EFB881CE37C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.187.56.0/23 Signature Algorithm: sha256WithRSAEncryption 31:3b:d7:15:f5:84:7a:18:b3:9d:aa:33:f4:87:a6:94:66:06: ca:8c:5e:c0:db:85:c2:fd:cc:28:6d:5b:bd:99:7f:45:a1:29: ab:78:be:71:64:34:35:a5:a7:50:43:dc:ca:49:53:9b:6d:c0: 7e:bc:95:15:9d:b4:fe:83:96:23:13:ab:9c:5b:64:fb:59:82: c1:65:02:ad:c6:6a:df:70:cf:67:3a:04:76:44:b0:49:a5:71: 7a:bd:68:38:9d:83:be:93:89:7b:04:4b:ad:49:48:a2:f8:a1: 32:c0:28:7a:b8:55:af:86:ab:e6:c0:8e:16:59:cc:e1:93:06: 48:72:67:3f:bd:16:82:2c:75:e2:8f:94:58:53:cd:7c:f1:5c: d1:a7:76:e4:ee:75:63:51:b1:46:32:1b:e7:75:b0:fd:78:1a: 4d:fb:7a:09:70:fb:c5:7d:73:97:2d:ee:f0:33:e7:ce:74:4e: ca:e9:b5:39:2b:36:a3:d4:46:42:97:5b:5d:21:8c:32:13:13: 8f:f4:91:60:7f:a0:4c:aa:27:01:01:3d:49:68:15:aa:10:c2: 2e:b1:ef:de:98:7a:3c:9f:18:d8:d7:48:dd:6f:85:69:25:15: eb:a9:dd:b4:01:af:70:87:47:bc:9c:f6:64:58:7d:14:ee:64: f2:43:50:a1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU5MkYxMTAvBgNVBAUTKDQ1N0RCNzY2RTFCMEQ2QTREQ0M3RjlBRUNEMjg3RDRE QzNFNzBDOUUwHhcNMjUxMTAzMDU1MTA0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGUwMC1iNzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnjifeC11oycLntUl6jrNzHdvicAaE2KT+SKy7MZ7ffgzdSMh5OizJTYzmue8 +8mpQlonjFgZPewnCI+Gnz1PaDb5bsQyClv0YAlL3vkXRAD17KWHt2ZkXP1Nii68 kxxex4M+kZGazl2wbljud9zLz3whek8AiHBHCt7/tCkbfHRBU0YfTg5Th4LDBGgt rrjR8Y5/Bz4/cYA/f5HgmpxUtMn6W+fDCdFEoblkBeVNlIweF6+s6JNpobDdiEet 3YCBQAAga8ewCQ5FJgMA6V6zwmr6h9uM4W37+WUwGBb1+3fJvbEvFLN9rDoSbTqQ FwoU46MNVoIbWp63Tt28/zv7kwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNsRRSH8 JcFo6uVt5dWiS0G5sT70MB8GA1UdIwQYMBaAFEV9t2bhsNak3Mf5rs0ofU3D5wye MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTkyRi8xMjA4NUQxODc0 MEIxMUVGOUU5QzAzMzZDNEY5QUUwMi9SWDIzWnVHdzFxVGN4X211elNoOVRjUG5E SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JYMjNadUd3MXFUY3hfbXV6U2g5VGNQbkRKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUU5MkYvMTIwODVEMTg3NDBCMTFFRjlFOUMwMzM2QzRGOUFFMDIvMkRGRDRBMUU3 NDBDMTFFRkI4ODFDRTM3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoLs4MA0GCSqGSIb3DQEBCwUAA4IBAQAxO9cV9YR6GLOdqjP0h6aU ZgbKjF7A24XC/cwobVu9mX9FoSmreL5xZDQ1padQQ9zKSVObbcB+vJUVnbT+g5Yj E6ucW2T7WYLBZQKtxmrfcM9nOgR2RLBJpXF6vWg4nYO+k4l7BEutSUii+KEywCh6 uFWvhqvmwI4WWczhkwZIcmc/vRaCLHXij5RYU8188VzRp3bk7nVjUbFGMhvndbD9 eBpN+3oJcPvFfXOXLe7wM+fOdE7K6bU5Kzaj1EZCl1tdIYwyExOP9JFgf6BMqicB AT1JaBWqEMIuse/emHo8nxjY10jdb4VpJRXrqd20Aa9wh0e8nPZkWH0U7mTyQ1Ch -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:04 2026 by rpki-client