$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/50AF1E205CD411EEBADBCF7DC4F9AE02.roa File: 50AF1E205CD411EEBADBCF7DC4F9AE02.roa (raw, json) Hash identifier: lkZf7oa9e6RoptaZUNTOx3Wn1Pri3fsDAvyPlE8Sjbc= Subject key identifier: E0:46:67:30:95:37:F6:46:50:A2:8A:1E:3D:BE:FB:8E:88:E9:6C:36 Certificate issuer: /CN=A91F2B47/serialNumber=17D5FE323EBFD9A8D344E77B73799A8E75624352 Certificate serial: 02E2 Authority key identifier: 17:D5:FE:32:3E:BF:D9:A8:D3:44:E7:7B:73:79:9A:8E:75:62:43:52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F9X-Mj6_2ajTROd7c3majnViQ1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/50AF1E205CD411EEBADBCF7DC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:51:27 +0000 ROA not before: Wed 05 Mar 2025 03:48:08 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 3758 IP address blocks: 166.120.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/F9X-Mj6_2ajTROd7c3majnViQ1I.crl rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/F9X-Mj6_2ajTROd7c3majnViQ1I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F9X-Mj6_2ajTROd7c3majnViQ1I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 01:09:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 738 (0x2e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2B47, serialNumber=17D5FE323EBFD9A8D344E77B73799A8E75624352 Validity Not Before: Mar 5 03:48:08 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a4607f-feea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:21:2d:44:cf:70:48:aa:b8:29:0b:92:0e:cb: 73:ba:69:a8:7f:4d:57:94:54:c6:90:c5:29:81:59: ef:c8:ff:cc:24:fc:88:35:b9:0d:01:0d:25:ee:3d: 70:d4:7a:3b:91:34:26:c8:48:1f:5b:1e:ae:c5:29: 09:74:e5:f4:7c:42:b5:c7:45:5c:7c:26:92:59:79: fa:a2:2f:b9:fd:91:2f:2b:36:3e:c5:00:d8:d8:8c: 04:77:64:3a:2a:21:85:87:3e:1b:9d:96:c7:eb:c5: 98:dc:c9:e0:8f:13:76:d9:0b:2c:4b:6e:93:30:54: b8:28:48:50:29:bd:ea:f1:d6:77:9a:94:52:3d:06: d3:bc:0b:0d:5b:ab:bc:e5:8b:3f:35:d8:bd:51:96: 17:7b:ba:dd:89:ab:c2:b6:49:2c:b4:ab:75:ca:0e: c7:ce:4c:88:e8:c6:89:60:92:51:7d:4c:76:ed:8b: d8:fe:5b:4d:6d:d3:18:6c:8d:36:f3:15:09:ad:9d: a4:e1:a4:c8:f0:fd:71:35:ce:96:6b:2b:5a:90:cd: 6a:e7:69:30:6b:94:16:c6:15:d8:74:21:83:c7:77: 0b:7c:a4:d1:87:bb:8b:52:74:25:94:d9:8a:1e:df: d8:ef:64:a9:99:14:a6:9a:70:2d:44:06:59:c8:10: be:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:46:67:30:95:37:F6:46:50:A2:8A:1E:3D:BE:FB:8E:88:E9:6C:36 X509v3 Authority Key Identifier: keyid:17:D5:FE:32:3E:BF:D9:A8:D3:44:E7:7B:73:79:9A:8E:75:62:43:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/F9X-Mj6_2ajTROd7c3majnViQ1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F9X-Mj6_2ajTROd7c3majnViQ1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/50AF1E205CD411EEBADBCF7DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 166.120.129.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:29:6d:34:ee:53:27:ca:f9:29:fc:07:7c:54:ef:17:b6:bd: 17:af:f2:f6:57:1d:f8:63:6d:03:2b:ad:92:69:c1:42:a0:20: 72:74:c5:c2:9b:26:f2:22:cc:63:d7:b6:3d:3f:1f:08:41:72: 3a:ce:09:65:dd:9d:af:e3:92:90:f7:a2:18:2f:f5:8b:1e:57: 5e:9b:b4:11:a1:f0:3c:5b:a0:f3:36:cb:16:13:57:35:a6:5f: 41:0d:70:0f:d1:fc:cf:fe:4e:d5:50:d2:24:73:0b:84:a2:3d: e1:81:b9:7a:80:0b:3b:2b:17:83:1f:c1:05:b9:e9:db:59:0a: d0:dd:be:20:91:e2:5b:a8:66:69:c0:1a:48:f1:b5:69:29:19: 5f:b9:06:ca:df:90:3a:56:22:51:28:6e:e9:92:2b:be:06:e4: 34:02:0a:3a:eb:5d:89:8b:8b:6c:2c:c1:ba:37:32:5b:e1:97: 38:5a:a5:bb:88:54:6d:48:45:46:2b:8f:3c:3c:1d:de:33:1f: 60:a6:3a:f0:0b:ac:a1:49:02:06:88:f7:5b:97:dc:1a:27:34: 61:11:b6:b2:93:31:78:83:84:2d:04:9d:28:4f:e0:98:c5:91: 9e:c6:20:89:1d:e5:5a:9c:46:89:12:76:27:da:8a:96:8d:71: 1d:e7:59:85 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCNDcxMTAvBgNVBAUTKDE3RDVGRTMyM0VCRkQ5QThEMzQ0RTc3QjczNzk5QThF NzU2MjQzNTIwHhcNMjUwMzA1MDM0ODA4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjA3Zi1mZWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8CEtRM9wSKq4KQuSDstzummof01XlFTGkMUpgVnvyP/MJPyINbkNAQ0l7j1w 1Ho7kTQmyEgfWx6uxSkJdOX0fEK1x0VcfCaSWXn6oi+5/ZEvKzY+xQDY2IwEd2Q6 KiGFhz4bnZbH68WY3MngjxN22QssS26TMFS4KEhQKb3q8dZ3mpRSPQbTvAsNW6u8 5Ys/Ndi9UZYXe7rdiavCtkkstKt1yg7HzkyI6MaJYJJRfUx27YvY/ltNbdMYbI02 8xUJrZ2k4aTI8P1xNc6WaytakM1q52kwa5QWxhXYdCGDx3cLfKTRh7uLUnQllNmK Ht/Y72SpmRSmmnAtRAZZyBC+qQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOBGZzCV N/ZGUKKKHj2++46I6Ww2MB8GA1UdIwQYMBaAFBfV/jI+v9mo00Tne3N5mo51YkNS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkI0Ny9FODhFOUM3RTMz QUYxMUVEQjYxMDc0MzRDNEY5QUUwMi9GOVgtTWo2XzJhalRST2Q3YzNtYWpuVmlR MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Y5WC1NajZfMmFqVFJPZDdjM21ham5WaVExSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJCNDcvRTg4RTlDN0UzM0FGMTFFREI2MTA3NDM0QzRGOUFFMDIvNTBBRjFFMjA1 Q0Q0MTFFRUJBREJDRjdEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQApniBMA0GCSqGSIb3DQEBCwUAA4IBAQB7KW007lMnyvkp/Ad8VO8X tr0Xr/L2Vx34Y20DK62SacFCoCBydMXCmybyIsxj17Y9Px8IQXI6zgll3Z2v45KQ 96IYL/WLHldem7QRofA8W6DzNssWE1c1pl9BDXAP0fzP/k7VUNIkcwuEoj3hgbl6 gAs7KxeDH8EFuenbWQrQ3b4gkeJbqGZpwBpI8bVpKRlfuQbK35A6ViJRKG7pkiu+ BuQ0Ago6612Ji4tsLMG6NzJb4Zc4WqW7iFRtSEVGK488PB3eMx9gpjrwC6yhSQIG iPdbl9waJzRhEbaykzF4g4QtBJ0oT+CYxZGexiCJHeVanEaJEnYn2oqWjXEd51mF -----END CERTIFICATE-----Generated at Sat Mar 7 16:43:19 2026 by rpki-client