$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/79E40530CB5A11EFA1C64B62C4F9AE02.roa File: 79E40530CB5A11EFA1C64B62C4F9AE02.roa (raw, json) Hash identifier: HG74SSnFpVc9cW3sd7L9piB9ZAlq596CN6u14507KWg= Subject key identifier: 5A:34:49:3B:F2:20:6E:C6:04:D8:0A:8A:92:50:E0:FB:5D:6A:24:E3 Certificate issuer: /CN=A91476E2/serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Certificate serial: EB Authority key identifier: 6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/79E40530CB5A11EFA1C64B62C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:28:30 +0000 ROA not before: Wed 05 Nov 2025 06:50:37 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 140937 IP address blocks: 160.187.212.0/23 maxlen: 23 160.187.212.0/24 maxlen: 24 160.187.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2, serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Validity Not Before: Nov 5 06:50:37 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5826e-10d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:3c:5e:70:e8:9c:10:6c:89:86:b0:6e:8b:8c: 0f:c4:37:37:c6:7f:0a:30:7a:e0:94:d2:c0:aa:67: 28:ef:c3:48:05:3d:1c:07:cc:54:0d:3c:35:60:c0: 9a:90:71:72:79:13:df:b8:f3:2b:15:7c:28:23:74: 0b:c6:a8:ac:67:9c:d6:eb:e5:b7:47:92:0b:2a:c7: 39:4f:27:6a:5e:90:36:ad:fc:84:91:47:45:22:9b: 5b:ca:f3:08:8a:31:ac:f0:c7:61:e8:0b:5e:aa:19: 32:79:38:61:d4:81:c1:07:15:a0:c6:22:6e:aa:8e: 0b:8f:18:a3:e7:a3:4f:b4:8b:68:0d:de:4c:05:fb: dc:8f:7c:10:24:7d:3a:8b:d6:25:f0:58:50:2b:71: 2c:20:b8:6e:ad:62:2c:01:e4:3e:e8:e1:c5:59:ec: bd:d7:d7:72:14:bd:4f:47:dc:3d:86:a3:5f:06:fb: eb:58:fd:54:0d:d1:50:9f:ec:d7:d7:c8:14:f1:c3: 01:1a:6b:b0:52:e7:70:20:dd:f8:11:00:34:27:73: 31:65:8f:94:fd:90:7b:14:3c:0e:ec:11:90:a2:6b: 4d:48:be:69:d2:4d:8b:c9:5a:17:e7:06:53:e6:06: 62:12:2c:1c:eb:20:3b:75:4d:37:92:a5:66:71:57: b1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:34:49:3B:F2:20:6E:C6:04:D8:0A:8A:92:50:E0:FB:5D:6A:24:E3 X509v3 Authority Key Identifier: keyid:6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/79E40530CB5A11EFA1C64B62C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.187.212.0/23 Signature Algorithm: sha256WithRSAEncryption 52:38:3d:08:c0:d8:10:91:b2:92:58:57:61:a7:fa:43:c1:0f: d6:45:e8:74:db:92:7e:c3:41:e5:d4:f3:49:c0:b0:21:9e:30: dd:4a:01:a3:2c:03:31:8a:6a:23:4c:91:28:0f:84:3c:c3:34: de:35:41:34:81:3f:9f:e0:af:e1:40:7f:eb:81:f1:d1:b5:07: f1:a9:59:9b:45:15:18:2b:2d:12:f8:b5:e7:8f:e7:07:f9:dc: 19:7d:2c:f1:2e:05:86:36:82:aa:c2:0f:d0:10:cc:90:4f:13: e5:43:d8:ec:f3:f9:86:90:7e:24:a3:ca:3e:ea:6a:71:cf:09: a7:d8:32:b2:64:65:97:52:f3:6c:b1:65:38:57:1d:bb:7e:ca: 75:16:47:e5:bd:7d:f0:55:ca:2e:97:d4:14:ff:94:a9:57:16: b7:60:75:8f:20:af:53:13:81:9a:ad:e6:20:3f:db:07:12:dd: 06:8b:80:dc:c9:75:ec:fc:ab:c3:7f:1f:78:69:c0:83:4b:fa: 7d:c1:d3:9b:9a:88:f0:c3:b3:b3:2c:ea:1f:bd:c5:8f:11:91: a7:01:14:dc:f8:55:60:c5:b1:1d:93:14:38:57:1c:8d:04:fa: f2:82:3f:5d:89:83:21:89:00:a0:26:13:56:22:ee:e7:4e:8d: d6:a8:42:f4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc2RTIxMTAvBgNVBAUTKDZBQUYzRDlCQzNERkEzQTEyNTA4Mjk2NUQ4RkYzM0I4 MTI4RjI5MUYwHhcNMjUxMTA1MDY1MDM3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODI2ZS0xMGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiTxecOicEGyJhrBui4wPxDc3xn8KMHrglNLAqmco78NIBT0cB8xUDTw1YMCa kHFyeRPfuPMrFXwoI3QLxqisZ5zW6+W3R5ILKsc5TydqXpA2rfyEkUdFIptbyvMI ijGs8Mdh6AteqhkyeThh1IHBBxWgxiJuqo4Ljxij56NPtItoDd5MBfvcj3wQJH06 i9Yl8FhQK3EsILhurWIsAeQ+6OHFWey919dyFL1PR9w9hqNfBvvrWP1UDdFQn+zX 18gU8cMBGmuwUudwIN34EQA0J3MxZY+U/ZB7FDwO7BGQomtNSL5p0k2LyVoX5wZT 5gZiEiwc6yA7dU03kqVmcVexRwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFo0STvy IG7GBNgKipJQ4PtdaiTjMB8GA1UdIwQYMBaAFGqvPZvD36OhJQgpZdj/M7gSjykf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzZFMi8zQjU0MUYyMENC M0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82RWxDQ2xsMlA4enVCS1BL UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FxODltOFBmbzZFbENDbGwyUDh6dUJLUEtSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc2RTIvM0I1NDFGMjBDQjNEMTFFRjg3MDNGNzVBQzRGOUFFMDIvNzlFNDA1MzBD QjVBMTFFRkExQzY0QjYyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoLvUMA0GCSqGSIb3DQEBCwUAA4IBAQBSOD0IwNgQkbKSWFdhp/pD wQ/WReh025J+w0Hl1PNJwLAhnjDdSgGjLAMximojTJEoD4Q8wzTeNUE0gT+f4K/h QH/rgfHRtQfxqVmbRRUYKy0S+LXnj+cH+dwZfSzxLgWGNoKqwg/QEMyQTxPlQ9js 8/mGkH4ko8o+6mpxzwmn2DKyZGWXUvNssWU4Vx27fsp1FkflvX3wVcoul9QU/5Sp Vxa3YHWPIK9TE4GareYgP9sHEt0Gi4DcyXXs/KvDfx94acCDS/p9wdObmojww7Oz LOofvcWPEZGnARTc+FVgxbEdkxQ4VxyNBPrygj9diYMhiQCgJhNWIu7nTo3WqEL0 -----END CERTIFICATE-----Generated at Thu Mar 26 19:14:21 2026 by rpki-client