$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/D2D7B762995611EFADA5D754C4F9AE02.roa File: D2D7B762995611EFADA5D754C4F9AE02.roa (raw, json) Hash identifier: uC7UgU3WUyp6lo8+x5BnzjYje46EFX3E65V33NxoTHM= Subject key identifier: 25:99:BF:F4:68:C0:18:24:AE:F0:57:F2:01:70:26:95:09:65:15:26 Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: 0119 Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/D2D7B762995611EFADA5D754C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:41:53 +0000 ROA not before: Fri 05 Dec 2025 03:43:54 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 136574 IP address blocks: 160.191.154.0/23 maxlen: 23 160.191.154.0/24 maxlen: 24 160.191.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Dec 5 03:43:54 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a593a1-41b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:60:70:12:3e:da:ad:84:ff:b2:12:79:7a:4a: 05:af:aa:17:4f:6f:94:3f:a5:d4:13:05:e8:5d:b6: 88:f7:b7:4e:97:36:fc:7c:73:b7:dc:4a:ff:62:26: b9:7e:f2:ea:5a:9a:d6:97:cb:42:c8:cd:39:07:fb: 7a:bd:f1:03:6a:42:e3:d9:ca:6a:5b:59:42:64:46: d0:fe:f8:e9:f0:bd:42:12:04:a4:6b:11:ac:0c:61: 2c:bb:a2:07:4f:e1:4a:2a:04:7d:85:57:ad:51:84: 1c:d7:f4:c4:fc:f8:8e:3f:78:d6:3f:99:e2:9d:c5: 35:72:65:ac:23:62:91:8e:ab:2a:90:3c:02:34:72: a4:2c:e7:64:7a:87:be:bf:f3:bf:19:60:fa:bc:21: 2a:c2:16:12:91:60:cd:b5:18:02:9c:e1:ba:8b:c2: 2e:96:41:d7:90:86:82:4c:4c:2e:0e:1d:ca:bf:df: ed:db:a7:b7:6c:75:84:3e:66:64:47:76:2a:7e:68: f3:8f:cc:b5:eb:cb:9f:a3:69:68:57:d2:a7:5a:3b: f9:3e:a0:5f:a7:37:37:21:43:da:83:dd:95:34:7c: 23:6b:54:4f:6b:7b:78:e8:89:d2:e3:6a:d1:53:37: 63:50:f2:b7:17:71:95:41:4f:a3:23:54:1c:90:d6: 51:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:99:BF:F4:68:C0:18:24:AE:F0:57:F2:01:70:26:95:09:65:15:26 X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/D2D7B762995611EFADA5D754C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.191.154.0/23 Signature Algorithm: sha256WithRSAEncryption 71:ca:2c:6d:4c:3b:a6:d7:79:5b:6f:09:ca:15:8f:73:db:0f: 58:0f:1f:18:10:b8:58:d5:c2:45:13:f8:06:1e:0a:a5:98:53: 79:ce:f0:b1:ad:74:7e:79:7a:9d:20:fc:5d:df:af:a5:e0:3d: ee:a8:bc:6a:74:bc:78:fb:5a:77:0b:75:51:b1:c8:73:45:bb: 22:cf:6d:82:a7:ac:63:16:0a:98:7c:39:b4:5a:2f:bd:53:ff: 44:47:1d:11:d7:82:42:33:91:7c:e9:c4:8f:6d:de:c4:3d:6c: fc:b5:71:26:e7:9f:62:8f:da:46:0e:de:1a:52:07:9f:1d:c7: a1:99:e9:62:f9:98:37:4e:f5:c8:69:4e:47:0f:0f:1f:cd:14: 91:6d:6b:d6:aa:d3:9b:ab:b4:43:6b:07:d4:68:50:fe:60:fe: 75:b8:97:4d:64:c7:e5:c3:9d:65:b4:b5:fe:10:20:2d:35:27: 0d:4d:17:3a:b4:b5:7d:cb:b4:37:30:50:13:c9:95:5c:5e:5f: 24:90:17:aa:ff:81:fb:5b:b4:57:91:47:fc:6f:8d:cd:47:82: 74:ab:cf:d4:b9:f7:69:ef:4c:a1:60:4b:d6:6b:d9:a1:56:64: 68:c4:c5:60:02:66:48:39:52:20:be:6d:1e:34:25:ab:af:c2: 93:37:12:af -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjUxMjA1MDM0MzU0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTNhMS00MWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6WBwEj7arYT/shJ5ekoFr6oXT2+UP6XUEwXoXbaI97dOlzb8fHO33Er/Yia5 fvLqWprWl8tCyM05B/t6vfEDakLj2cpqW1lCZEbQ/vjp8L1CEgSkaxGsDGEsu6IH T+FKKgR9hVetUYQc1/TE/PiOP3jWP5nincU1cmWsI2KRjqsqkDwCNHKkLOdkeoe+ v/O/GWD6vCEqwhYSkWDNtRgCnOG6i8IulkHXkIaCTEwuDh3Kv9/t26e3bHWEPmZk R3Yqfmjzj8y168ufo2loV9KnWjv5PqBfpzc3IUPag92VNHwja1RPa3t46InS42rR UzdjUPK3F3GVQU+jI1QckNZRGwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCWZv/Ro wBgkrvBX8gFwJpUJZRUmMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcyREYvMjdFM0VEQTQ5ODMzMTFFRjgzMTg5QTU3QzRGOUFFMDIvRDJEN0I3NjI5 OTU2MTFFRkFEQTVENzU0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoL+aMA0GCSqGSIb3DQEBCwUAA4IBAQBxyixtTDum13lbbwnKFY9z 2w9YDx8YELhY1cJFE/gGHgqlmFN5zvCxrXR+eXqdIPxd36+l4D3uqLxqdLx4+1p3 C3VRschzRbsiz22Cp6xjFgqYfDm0Wi+9U/9ERx0R14JCM5F86cSPbd7EPWz8tXEm 559ij9pGDt4aUgefHcehmeli+Zg3TvXIaU5HDw8fzRSRbWvWqtObq7RDawfUaFD+ YP51uJdNZMflw51ltLX+ECAtNScNTRc6tLV9y7Q3MFATyZVcXl8kkBeq/4H7W7RX kUf8b43NR4J0q8/Uufdp70yhYEvWa9mhVmRoxMVgAmZIOVIgvm0eNCWrr8KTNxKv -----END CERTIFICATE-----Generated at Thu Mar 26 12:55:00 2026 by rpki-client