$ rpki-client -vvf rpki.apnic.net/member_repository/A91430D6/17F06A245FE011F0B2FD8F57C4F9AE02/4DB1CEBCF44311F08E818BA85F6F56BC.roa File: 4DB1CEBCF44311F08E818BA85F6F56BC.roa (raw, json) Hash identifier: 28TOJyzIUoQ+gHS12Ia30yDze1P2PrrZaNrtbhDyvQI= Subject key identifier: 3C:3D:AF:67:DB:B6:21:83:FB:07:A2:7C:03:D8:A0:6B:2D:E5:B0:0B Certificate issuer: /CN=A91430D6/serialNumber=AAC39FD963DE1731D0DA3D4141E4A1E469E98523 Certificate serial: 7F Authority key identifier: AA:C3:9F:D9:63:DE:17:31:D0:DA:3D:41:41:E4:A1:E4:69:E9:85:23 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qsOf2WPeFzHQ2j1BQeSh5GnphSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91430D6/17F06A245FE011F0B2FD8F57C4F9AE02/4DB1CEBCF44311F08E818BA85F6F56BC.roa Signing time: Mon 02 Mar 2026 13:23:20 +0000 ROA not before: Sun 18 Jan 2026 07:57:15 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153800 IP address blocks: 165.101.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91430D6/17F06A245FE011F0B2FD8F57C4F9AE02/qsOf2WPeFzHQ2j1BQeSh5GnphSM.crl rsync://rpki.apnic.net/member_repository/A91430D6/17F06A245FE011F0B2FD8F57C4F9AE02/qsOf2WPeFzHQ2j1BQeSh5GnphSM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qsOf2WPeFzHQ2j1BQeSh5GnphSM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:51:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91430D6, serialNumber=AAC39FD963DE1731D0DA3D4141E4A1E469E98523 Validity Not Before: Jan 18 07:57:15 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a58f48-b648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:dd:e6:49:c9:b6:12:3d:fb:9b:4a:cb:0c:51: ac:73:7f:e7:59:a5:33:38:6a:84:59:43:06:eb:94: cd:36:04:a9:f2:64:80:b3:c6:4a:71:aa:ec:5d:7c: 1a:79:02:4b:ee:53:19:35:37:9c:a4:07:4c:99:38: 64:15:9a:0c:58:ad:8b:f9:bd:e8:64:32:4e:2d:c1: e7:9e:b1:d6:81:c1:7b:e2:71:79:1a:0e:a6:00:38: 67:f3:0c:87:dc:7a:9e:8e:a9:78:23:2d:53:61:93: 03:2f:d1:f9:09:fb:11:5d:4d:d3:11:a5:5d:92:3a: 46:e2:4c:be:0d:09:42:43:18:d7:6b:6e:7e:fc:75: 56:3e:db:b2:bc:6f:4a:ef:76:4d:af:bd:07:51:17: 60:a0:b4:fd:b5:8f:1e:d9:9e:e5:68:61:46:c0:2c: 72:03:27:2a:40:01:fe:27:48:ac:83:b7:be:54:19: 73:b6:0f:a6:81:28:86:9c:b3:bb:2b:8e:de:70:9c: 6f:0d:65:ad:0e:7e:83:10:65:f9:9e:0a:e6:27:a1: 4c:79:a7:80:bd:13:cc:e2:b2:17:e6:56:c1:37:25: 1d:55:0f:25:77:75:a0:0f:0b:11:73:59:6f:be:72: 70:3d:06:4e:df:c8:3c:36:f4:96:4b:e1:3a:1b:1e: 4e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:3D:AF:67:DB:B6:21:83:FB:07:A2:7C:03:D8:A0:6B:2D:E5:B0:0B X509v3 Authority Key Identifier: keyid:AA:C3:9F:D9:63:DE:17:31:D0:DA:3D:41:41:E4:A1:E4:69:E9:85:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91430D6/17F06A245FE011F0B2FD8F57C4F9AE02/qsOf2WPeFzHQ2j1BQeSh5GnphSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qsOf2WPeFzHQ2j1BQeSh5GnphSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91430D6/17F06A245FE011F0B2FD8F57C4F9AE02/4DB1CEBCF44311F08E818BA85F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 165.101.169.0/24 Signature Algorithm: sha256WithRSAEncryption 30:ed:23:fd:89:65:1e:48:12:22:83:3f:0d:16:5c:41:0a:84: d6:7b:23:1b:c6:d3:49:63:8f:67:b3:ec:dc:30:73:23:43:c7: 74:3b:8d:f9:b6:d8:29:4e:d5:7b:9a:d6:c2:3c:bc:c7:cf:cd: 95:b9:8c:3b:1f:49:60:85:3c:4f:0a:dc:7c:bf:b2:16:33:77: 39:b9:7c:09:cc:24:33:ec:41:83:f3:a3:3a:a0:d5:fa:97:f8: 0d:1e:da:ff:c4:5e:4a:a3:85:1d:0d:8d:d6:57:ed:10:6b:f2: f5:5e:cd:ba:00:9b:52:4d:39:d6:67:8e:45:07:94:29:88:0c: 08:34:59:61:06:da:c7:8c:ce:e9:e0:ec:57:0d:fc:9b:50:66: a1:ab:d2:09:5b:9c:e4:88:e5:21:f8:0f:c8:a1:36:b5:0b:13: 24:6d:e3:79:12:b3:4f:42:d1:00:a3:1d:37:56:6e:5a:c9:11: f2:82:b7:3e:01:4e:45:1e:c2:dd:e0:75:df:8c:1b:2e:e8:4f: 6e:9a:69:99:2c:8e:a7:47:87:bd:b9:50:50:70:57:71:c0:dd: a9:5b:0f:c5:4a:bc:67:72:db:07:df:c7:0d:ae:7a:47:65:5c: 3d:2a:84:4c:62:63:70:6b:98:00:08:2b:06:e1:af:97:3f:3b: bf:ee:07:87 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MzBENjExMC8GA1UEBRMoQUFDMzlGRDk2M0RFMTczMUQwREEzRDQxNDFFNEExRTQ2 OUU5ODUyMzAeFw0yNjAxMTgwNzU3MTVaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4ZjQ4LWI2NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx3eZJybYSPfubSssMUaxzf+dZpTM4aoRZQwbrlM02BKnyZICzxkpxquxdfBp5 AkvuUxk1N5ykB0yZOGQVmgxYrYv5vehkMk4tweeesdaBwXvicXkaDqYAOGfzDIfc ep6OqXgjLVNhkwMv0fkJ+xFdTdMRpV2SOkbiTL4NCUJDGNdrbn78dVY+27K8b0rv dk2vvQdRF2CgtP21jx7ZnuVoYUbALHIDJypAAf4nSKyDt75UGXO2D6aBKIacs7sr jt5wnG8NZa0OfoMQZfmeCuYnoUx5p4C9E8zishfmVsE3JR1VDyV3daAPCxFzWW++ cnA9Bk7fyDw29JZL4TobHk43AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUPD2vZ9u2 IYP7B6J8A9igay3lsAswHwYDVR0jBBgwFoAUqsOf2WPeFzHQ2j1BQeSh5GnphSMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQzMEQ2LzE3RjA2QTI0NUZF MDExRjBCMkZEOEY1N0M0RjlBRTAyL3FzT2YyV1BlRnpIUTJqMUJRZVNoNUducGhT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcXNPZjJXUGVGekhRMmoxQlFlU2g1R25waFNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzBENi8xN0YwNkEyNDVGRTAxMUYwQjJGRDhGNTdDNEY5QUUwMi80REIxQ0VCQ0Y0 NDMxMUYwOEU4MThCQTg1RjZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAClZakwDQYJKoZIhvcNAQELBQADggEBADDtI/2JZR5IEiKDPw0WXEEK hNZ7IxvG00ljj2ez7NwwcyNDx3Q7jfm22ClO1Xua1sI8vMfPzZW5jDsfSWCFPE8K 3Hy/shYzdzm5fAnMJDPsQYPzozqg1fqX+A0e2v/EXkqjhR0NjdZX7RBr8vVezboA m1JNOdZnjkUHlCmIDAg0WWEG2seMzung7FcN/JtQZqGr0glbnOSI5SH4D8ihNrUL EyRt43kSs09C0QCjHTdWblrJEfKCtz4BTkUewt3gdd+MGy7oT26aaZksjqdHh725 UFBwV3HA3albD8VKvGdy2wffxw2uekdlXD0qhExiY3BrmAAIKwbhr5c/O7/uB4c= -----END CERTIFICATE-----Generated at Thu Mar 26 18:45:29 2026 by rpki-client