$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/EC545C28A72B11EDAC3DA56CC4F9AE02.roa File: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (raw, json) Hash identifier: GZPk+z2xKk+h7BjajU40ooW3BALI+9amXS7D2eVeUI4= Subject key identifier: 88:4E:73:55:DF:C3:E9:A9:63:05:89:12:36:35:4D:B0:10:29:D9:17 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 074D Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/EC545C28A72B11EDAC3DA56CC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:09:22 +0000 ROA not before: Wed 08 Oct 2025 22:24:19 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 140220 IP address blocks: 161.29.208.0/20 maxlen: 24 161.65.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1869 (0x74d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 8 22:24:19 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a480d2-7cd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:aa:3f:6c:96:68:0d:fd:68:86:06:71:cb:3e: fe:55:77:70:67:b9:25:3b:10:fc:0a:cf:4e:c9:50: 53:1a:3c:65:73:76:7b:2c:19:cb:b5:51:53:1f:6b: cb:9f:85:a0:7c:90:28:35:d2:9f:d8:64:65:f6:1d: 87:b9:ba:bb:1c:59:77:94:89:52:cf:f0:3c:ae:ea: 1e:d5:84:0e:dc:ef:26:eb:c7:61:86:a1:b8:70:eb: 95:29:72:bb:36:5d:da:59:5f:a1:44:9d:b8:d3:9e: 7b:d3:5a:f4:de:7a:47:5c:e7:f0:a2:b4:fa:f6:03: a2:0a:15:5e:33:a6:a0:1a:08:31:6b:6f:92:97:1c: dc:92:7f:78:6b:3d:fc:2b:64:3a:18:a0:7a:ff:f7: 94:3a:c4:79:1a:5a:7f:f4:e8:fb:35:b1:67:ec:83: b0:25:6b:3b:77:ed:93:2a:2b:ee:07:4f:ae:5a:50: 94:dc:eb:ce:24:58:29:cf:e8:7a:49:35:f8:0b:67: df:06:9f:2e:fa:5e:21:8c:3f:76:b1:4e:81:01:86: 4f:1c:88:60:3f:37:31:18:c4:b6:f9:15:ff:0f:b0: 61:b1:1f:4d:a8:a5:13:f7:ca:a7:c7:0f:ce:05:0f: 94:be:95:40:39:24:fd:6c:65:6e:b3:d5:15:e5:be: 44:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:4E:73:55:DF:C3:E9:A9:63:05:89:12:36:35:4D:B0:10:29:D9:17 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/EC545C28A72B11EDAC3DA56CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.29.208.0/20 161.65.208.0/20 Signature Algorithm: sha256WithRSAEncryption 88:40:53:60:56:d4:b0:e7:46:fc:d4:a6:75:1c:e9:af:da:52: 30:c6:78:35:4f:ce:d9:40:aa:b2:5f:ec:8c:79:1f:13:c1:21: c8:e8:bf:12:1b:62:3a:ea:93:bd:81:73:86:a6:33:e0:56:84: da:c9:d8:6e:24:30:f3:f2:f9:66:9a:a1:42:75:c9:e0:57:28: fd:3f:09:9f:bc:81:bf:f2:76:f9:37:07:c0:36:a4:23:5d:65: 19:3c:d0:d2:ac:c3:26:5f:5a:31:59:2b:77:c3:29:47:a4:4f: f9:0a:01:27:c3:bc:fe:7e:fc:6a:20:35:3f:79:90:d3:32:46: 62:3d:5e:3f:d6:be:01:a3:09:6a:7e:2e:75:c7:6d:1c:c3:c4: 4d:06:a8:39:9f:4a:5f:b3:67:0a:2a:7f:70:b1:c5:e2:23:d3: a3:e0:14:20:59:f5:13:20:69:af:e1:78:7e:87:74:9c:f3:ce: d5:f9:65:f3:73:66:a6:ce:e5:fb:64:4f:7e:52:b7:a9:3c:7a: 35:36:5d:03:7b:90:e8:22:eb:13:1d:d0:e5:97:cd:71:29:ad: e2:e3:37:22:73:03:d6:4c:c3:3c:7d:e0:9e:9b:39:b0:e1:ae: 96:07:a8:de:84:08:44:99:69:9b:20:68:68:d1:6b:a5:cf:8c: 80:c7:af:a4 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICB00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUxMDA4MjIyNDE5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODBkMi03Y2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmqo/bJZoDf1ohgZxyz7+VXdwZ7klOxD8Cs9OyVBTGjxlc3Z7LBnLtVFTH2vL n4WgfJAoNdKf2GRl9h2Hubq7HFl3lIlSz/A8ruoe1YQO3O8m68dhhqG4cOuVKXK7 Nl3aWV+hRJ24055701r03npHXOfworT69gOiChVeM6agGggxa2+Slxzckn94az38 K2Q6GKB6//eUOsR5Glp/9Oj7NbFn7IOwJWs7d+2TKivuB0+uWlCU3OvOJFgpz+h6 STX4C2ffBp8u+l4hjD92sU6BAYZPHIhgPzcxGMS2+RX/D7BhsR9NqKUT98qnxw/O BQ+UvpVAOST9bGVus9UV5b5EhwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIhOc1Xf w+mpYwWJEjY1TbAQKdkXMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvRUM1NDVDMjhB NzJCMTFFREFDM0RBNTZDQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQEoR3QAwQEoUHQMA0GCSqGSIb3DQEBCwUAA4IBAQCIQFNgVtSw50b8 1KZ1HOmv2lIwxng1T87ZQKqyX+yMeR8TwSHI6L8SG2I66pO9gXOGpjPgVoTaydhu JDDz8vlmmqFCdcngVyj9PwmfvIG/8nb5NwfANqQjXWUZPNDSrMMmX1oxWSt3wylH pE/5CgEnw7z+fvxqIDU/eZDTMkZiPV4/1r4Bowlqfi51x20cw8RNBqg5n0pfs2cK Kn9wscXiI9Oj4BQgWfUTIGmv4Xh+h3Sc887V+WXzc2amzuX7ZE9+UrepPHo1Nl0D e5DoIusTHdDll81xKa3i4zcicwPWTMM8feCemzmw4a6WB6jehAhEmWmbIGho0Wul z4yAx6+k -----END CERTIFICATE-----Generated at Thu Mar 26 12:36:46 2026 by rpki-client