$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/42230DF42DE211F0A991F83DC4F9AE02.roa File: 42230DF42DE211F0A991F83DC4F9AE02.roa (raw, json) Hash identifier: yYz8vPsSQcwgOuF6A+VEinnO0ZhPnyp/BhHCVoBW8aw= Subject key identifier: D2:A2:F3:DE:7D:CB:0F:DB:8C:23:F5:46:4E:4D:10:88:C5:FD:BE:C4 Certificate issuer: /CN=A91F7537/serialNumber=DF5FE21B7C955215934471794D8B070663D2B34E Certificate serial: 011A Authority key identifier: DF:5F:E2:1B:7C:95:52:15:93:44:71:79:4D:8B:07:06:63:D2:B3:4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/31_iG3yVUhWTRHF5TYsHBmPSs04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/42230DF42DE211F0A991F83DC4F9AE02.roa Signing time: Wed 01 Apr 2026 09:16:12 +0000 ROA not before: Wed 01 Apr 2026 09:16:12 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137868 IP address blocks: 160.250.8.0/24 maxlen: 24 160.250.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.crl rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/31_iG3yVUhWTRHF5TYsHBmPSs04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7537, serialNumber=DF5FE21B7C955215934471794D8B070663D2B34E Validity Not Before: Apr 1 09:16:12 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69cce25b-e917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:30:19:20:61:68:0b:5f:59:4c:09:d6:da:cf: f9:df:2c:de:b2:08:96:13:71:ff:10:fa:3e:96:cb: 8f:64:a9:76:0f:1e:43:dc:3b:80:3b:9a:38:d2:2d: ff:97:f8:4e:9e:db:1e:dd:d7:34:27:eb:a1:d3:38: 67:f1:09:39:80:3a:c5:c2:1f:c7:67:5e:80:2a:11: 16:34:49:3e:0b:88:54:ef:c3:76:36:dc:8a:9c:b4: 63:96:35:85:e9:bc:56:be:4d:6e:72:83:48:ac:6b: 39:0e:b6:08:79:0e:b4:63:f2:88:7a:b1:44:dd:dc: 56:0e:e8:02:09:de:f0:88:e1:56:00:d9:c8:58:9e: 2d:2f:39:df:1a:25:fd:a1:7b:5b:4f:c4:5f:0d:9c: d6:2c:a0:0b:96:43:94:8b:4d:c5:3d:9f:da:f2:e9: bd:29:47:37:18:cf:79:70:52:b0:90:b3:98:a8:70: 4f:b2:fc:a5:4a:d6:17:53:5e:51:64:37:e1:1d:f3: 99:df:4a:e9:e2:f0:42:aa:1e:e4:d1:a7:53:3f:e0: 25:b7:6e:de:dc:a0:78:4b:43:15:4a:9f:21:f5:22: e9:c2:ae:2d:78:5c:09:92:a6:8c:a8:10:95:6e:6c: cd:35:fb:a7:0a:fe:65:81:7e:66:90:db:e7:59:b7: 12:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A2:F3:DE:7D:CB:0F:DB:8C:23:F5:46:4E:4D:10:88:C5:FD:BE:C4 X509v3 Authority Key Identifier: keyid:DF:5F:E2:1B:7C:95:52:15:93:44:71:79:4D:8B:07:06:63:D2:B3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/31_iG3yVUhWTRHF5TYsHBmPSs04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/42230DF42DE211F0A991F83DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.250.8.0/23 Signature Algorithm: sha256WithRSAEncryption 78:d4:6e:40:d1:32:31:10:c9:a7:d3:e1:62:bb:fc:4d:2e:71: 74:f2:02:23:4d:a0:e5:75:5e:01:b3:5e:ef:6e:cd:f5:f6:05: 0c:72:7d:2c:17:d2:d9:6a:0b:a5:21:cb:aa:3d:e1:fb:ed:cf: 9d:ee:bf:a8:d9:06:bd:ed:ca:f4:ea:f3:57:58:fc:c6:ba:0d: 5f:50:64:aa:ac:b6:1b:13:bc:9a:38:2c:87:5b:e4:87:d8:a9: 6f:a3:4e:96:bb:aa:2c:c3:c2:3b:e6:09:5a:d3:d6:69:75:65: 25:af:d0:f5:24:92:5b:98:84:26:3e:bc:58:6d:25:51:b6:b4: d4:1a:bc:4f:e4:72:a5:dc:36:03:95:22:fb:09:f1:ca:ab:e8: 10:3f:47:03:97:46:ac:e3:f6:09:d5:ae:78:a8:12:b4:2a:bb: c2:2a:10:d0:b4:2c:ee:b7:c6:e6:94:ca:45:90:46:36:1e:91: 3e:1d:67:cb:2c:53:24:a4:a3:5c:bf:03:ef:70:46:1b:e5:e9: 95:da:42:fc:70:ad:07:30:fc:5c:25:39:51:a6:84:62:d5:4e: 15:48:16:e7:b8:b1:36:7d:5c:b5:d9:c4:76:96:31:e2:be:d3: 36:51:f2:df:ee:51:62:3c:b5:a1:94:ac:73:c5:de:c4:43:a3: e0:4b:3b:2e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc1MzcxMTAvBgNVBAUTKERGNUZFMjFCN0M5NTUyMTU5MzQ0NzE3OTREOEIwNzA2 NjNEMkIzNEUwHhcNMjYwNDAxMDkxNjEyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNjZTI1Yi1lOTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlTAZIGFoC19ZTAnW2s/53yzesgiWE3H/EPo+lsuPZKl2Dx5D3DuAO5o40i3/ l/hOntse3dc0J+uh0zhn8Qk5gDrFwh/HZ16AKhEWNEk+C4hU78N2NtyKnLRjljWF 6bxWvk1ucoNIrGs5DrYIeQ60Y/KIerFE3dxWDugCCd7wiOFWANnIWJ4tLznfGiX9 oXtbT8RfDZzWLKALlkOUi03FPZ/a8um9KUc3GM95cFKwkLOYqHBPsvylStYXU15R ZDfhHfOZ30rp4vBCqh7k0adTP+Alt27e3KB4S0MVSp8h9SLpwq4teFwJkqaMqBCV bmzNNfunCv5lgX5mkNvnWbcS1wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNKi8959 yw/bjCP1Rk5NEIjF/b7EMB8GA1UdIwQYMBaAFN9f4ht8lVIVk0RxeU2LBwZj0rNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzUzNy84MDJBRTY0NkEy NzExMUVGQTM5MkYwNzlDNEY5QUUwMi8zMV9pRzN5VlVoV1RSSEY1VFlzSEJtUFNz MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzMxX2lHM3lWVWhXVFJIRjVUWXNIQm1QU3MwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjc1MzcvODAyQUU2NDZBMjcxMTFFRkEzOTJGMDc5QzRGOUFFMDIvNDIyMzBERjQy REUyMTFGMEE5OTFGODNEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoPoIMA0GCSqGSIb3DQEBCwUAA4IBAQB41G5A0TIxEMmn0+Fiu/xN LnF08gIjTaDldV4Bs17vbs319gUMcn0sF9LZagulIcuqPeH77c+d7r+o2Qa97cr0 6vNXWPzGug1fUGSqrLYbE7yaOCyHW+SH2Klvo06Wu6osw8I75gla09ZpdWUlr9D1 JJJbmIQmPrxYbSVRtrTUGrxP5HKl3DYDlSL7CfHKq+gQP0cDl0as4/YJ1a54qBK0 KrvCKhDQtCzut8bmlMpFkEY2HpE+HWfLLFMkpKNcvwPvcEYb5emV2kL8cK0HMPxc JTlRpoRi1U4VSBbnuLE2fVy12cR2ljHivtM2UfLf7lFiPLWhlKxzxd7EQ6PgSzsu -----END CERTIFICATE-----Generated at Mon Apr 6 16:35:46 2026 by rpki-client