$ rpki-client -vvf rpki.apnic.net/member_repository/A912F281/12DE8A5EC66E11EFA787F865C4F9AE02/89EA22F0C67011EFAE929D0DC4F9AE02.roa File: 89EA22F0C67011EFAE929D0DC4F9AE02.roa (raw, json) Hash identifier: QoSObG+7a268+sX8T2Z5nD2wpsEf/h3WqHnAbvclosE= Subject key identifier: 2C:9A:E5:D0:D8:C2:E0:7D:E8:BF:9F:5B:A6:70:C7:6E:9A:D3:16:34 Certificate issuer: /CN=A912F281/serialNumber=BCD5ABD9C91CA1E7F2C4555705B29404F505BDC5 Certificate serial: EB Authority key identifier: BC:D5:AB:D9:C9:1C:A1:E7:F2:C4:55:57:05:B2:94:04:F5:05:BD:C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vNWr2ckcoefyxFVXBbKUBPUFvcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F281/12DE8A5EC66E11EFA787F865C4F9AE02/89EA22F0C67011EFAE929D0DC4F9AE02.roa Signing time: Thu 19 Mar 2026 05:43:36 +0000 ROA not before: Thu 19 Mar 2026 05:43:36 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 135609 IP address blocks: 161.248.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F281/12DE8A5EC66E11EFA787F865C4F9AE02/vNWr2ckcoefyxFVXBbKUBPUFvcU.crl rsync://rpki.apnic.net/member_repository/A912F281/12DE8A5EC66E11EFA787F865C4F9AE02/vNWr2ckcoefyxFVXBbKUBPUFvcU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vNWr2ckcoefyxFVXBbKUBPUFvcU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F281, serialNumber=BCD5ABD9C91CA1E7F2C4555705B29404F505BDC5 Validity Not Before: Mar 19 05:43:36 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69bb8d08-244a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3f:52:a7:c8:74:82:e7:4e:bd:26:23:a5:ea: 0a:89:c9:81:d1:5a:b0:fa:9d:5c:b7:29:5a:8b:ed: 10:09:be:7a:f2:07:e6:5f:1d:d1:a5:fc:a3:a3:3d: 9e:b9:67:c9:cf:d9:2c:60:63:5c:4c:3b:54:9d:04: 05:a3:fc:a8:47:4b:ba:c8:49:2e:87:5a:ae:53:81: 6e:77:e8:b6:89:94:8d:5c:0c:85:34:0a:86:5e:4b: d6:c5:58:9c:d1:d5:6e:15:b9:9a:8a:b4:22:f8:9e: 42:ed:cb:f8:66:08:04:4d:7c:d6:33:4e:ba:7b:65: 90:7b:44:d7:b9:e1:01:af:74:18:7b:cd:0f:2b:70: 80:4c:3d:39:e1:3a:ae:00:9f:4b:42:8e:db:38:ae: 46:97:c4:04:75:70:f6:89:7e:5c:a3:f6:d1:3c:a5: 30:ef:3b:61:21:d3:64:63:7f:37:c7:22:80:d8:1d: 5c:0c:5c:fc:22:99:45:73:e1:e8:bd:79:6f:cd:df: a7:14:38:f1:a3:e6:2e:10:53:a7:59:eb:e3:bf:5c: c5:17:42:d7:dc:39:c3:90:67:a7:2b:1d:6f:68:68: f5:29:8b:77:bb:74:e8:6e:78:9f:69:15:7f:e2:45: e5:40:96:51:eb:8e:56:9d:bc:bf:cf:1b:dc:c2:27: 82:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:9A:E5:D0:D8:C2:E0:7D:E8:BF:9F:5B:A6:70:C7:6E:9A:D3:16:34 X509v3 Authority Key Identifier: keyid:BC:D5:AB:D9:C9:1C:A1:E7:F2:C4:55:57:05:B2:94:04:F5:05:BD:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F281/12DE8A5EC66E11EFA787F865C4F9AE02/vNWr2ckcoefyxFVXBbKUBPUFvcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vNWr2ckcoefyxFVXBbKUBPUFvcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F281/12DE8A5EC66E11EFA787F865C4F9AE02/89EA22F0C67011EFAE929D0DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.8.0/24 Signature Algorithm: sha256WithRSAEncryption 92:1a:a8:9b:88:66:e0:09:8f:28:14:09:fb:aa:54:21:70:82: 71:bd:bb:e1:2d:9c:68:a2:f9:68:21:f1:6d:d4:4a:2e:f7:a6: c4:c5:75:ae:82:82:9d:d5:c0:fc:61:a2:33:5a:ac:20:a7:b1: a9:17:e1:ba:e1:d9:82:b6:5f:43:50:93:e4:37:a4:57:6e:0c: 2e:e9:5e:a4:ea:43:72:e6:8b:0b:df:db:d7:bb:53:45:86:54: 11:68:f8:4a:41:fb:98:fd:32:5b:4b:ad:12:df:e2:a1:18:2d: 43:51:4a:9a:ad:f5:c2:ee:25:95:eb:41:1a:de:47:fc:b5:e1: 1d:ea:a7:04:4c:98:18:ea:89:ba:fa:a8:4c:ff:7f:95:42:57: 17:82:02:15:04:dd:77:db:2a:98:53:b0:c8:da:0b:1a:5d:a4: 55:c6:a5:a7:6a:dc:9a:0f:cb:a1:6f:1d:5f:d2:eb:03:01:f0: c8:23:8b:d2:9d:c8:e3:b8:3c:61:6a:93:8d:42:b2:3d:23:9e: 93:0e:95:ac:12:4a:7f:9d:36:42:11:ff:b9:c9:6e:b6:c6:be: 5e:6c:49:8e:0f:9f:a5:e0:d8:93:e1:f0:c3:50:c3:a0:d2:9d: c9:be:d3:60:01:42:65:17:e9:00:7c:69:2b:ab:26:a2:87:24: 23:d7:93:7f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYyODExMTAvBgNVBAUTKEJDRDVBQkQ5QzkxQ0ExRTdGMkM0NTU1NzA1QjI5NDA0 RjUwNUJEQzUwHhcNMjYwMzE5MDU0MzM2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWJiOGQwOC0yNDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyj9Sp8h0gudOvSYjpeoKicmB0Vqw+p1ctylai+0QCb568gfmXx3Rpfyjoz2e uWfJz9ksYGNcTDtUnQQFo/yoR0u6yEkuh1quU4Fud+i2iZSNXAyFNAqGXkvWxVic 0dVuFbmairQi+J5C7cv4ZggETXzWM066e2WQe0TXueEBr3QYe80PK3CATD054Tqu AJ9LQo7bOK5Gl8QEdXD2iX5co/bRPKUw7zthIdNkY383xyKA2B1cDFz8IplFc+Ho vXlvzd+nFDjxo+YuEFOnWevjv1zFF0LX3DnDkGenKx1vaGj1KYt3u3TobnifaRV/ 4kXlQJZR645Wnby/zxvcwieCdwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCya5dDY wuB96L+fW6Zwx26a0xY0MB8GA1UdIwQYMBaAFLzVq9nJHKHn8sRVVwWylAT1Bb3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjI4MS8xMkRFOEE1RUM2 NkUxMUVGQTc4N0Y4NjVDNEY5QUUwMi92TldyMmNrY29lZnl4RlZYQmJLVUJQVUZ2 Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZOV3IyY2tjb2VmeXhGVlhCYktVQlBVRnZjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkYyODEvMTJERThBNUVDNjZFMTFFRkE3ODdGODY1QzRGOUFFMDIvODlFQTIyRjBD NjcwMTFFRkFFOTI5RDBEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAofgIMA0GCSqGSIb3DQEBCwUAA4IBAQCSGqibiGbgCY8oFAn7qlQh cIJxvbvhLZxoovloIfFt1Eou96bExXWugoKd1cD8YaIzWqwgp7GpF+G64dmCtl9D UJPkN6RXbgwu6V6k6kNy5osL39vXu1NFhlQRaPhKQfuY/TJbS60S3+KhGC1DUUqa rfXC7iWV60Ea3kf8teEd6qcETJgY6om6+qhM/3+VQlcXggIVBN132yqYU7DI2gsa XaRVxqWnatyaD8uhbx1f0usDAfDII4vSncjjuDxhapONQrI9I56TDpWsEkp/nTZC Ef+5yW62xr5ebEmOD5+l4NiT4fDDUMOg0p3JvtNgAUJlF+kAfGkrqyaihyQj15N/ -----END CERTIFICATE-----Generated at Thu Mar 26 12:42:56 2026 by rpki-client