$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/4B34CDD888EB11F09EC0EE50C4F9AE02.roa File: 4B34CDD888EB11F09EC0EE50C4F9AE02.roa (raw, json) Hash identifier: J5C/bqR3CsDu49/ZmATSqZGcCpz/obvhBjjk8nLRxPA= Subject key identifier: 6B:0A:53:AA:1B:01:45:CD:10:3F:2A:AE:37:17:53:22:DA:D2:04:81 Certificate issuer: /CN=A91982B6/serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Certificate serial: FD Authority key identifier: 39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/4B34CDD888EB11F09EC0EE50C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:14:37 +0000 ROA not before: Sun 01 Mar 2026 08:26:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142615 IP address blocks: 160.250.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:39:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Validity Not Before: Mar 1 08:26:22 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a41f9d-50ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f3:57:c0:b3:ab:aa:6b:db:7d:cc:09:ba:e2: 0a:fa:a7:76:33:ff:70:9c:bd:d6:73:2a:5f:0e:04: 1c:98:90:fb:50:d0:83:d8:e5:91:b3:22:d5:12:91: d4:7f:d6:b5:52:af:e2:f0:fb:fa:13:aa:d1:35:96: c1:61:22:69:94:42:b8:a4:98:d1:34:dc:fb:6a:2f: c0:b3:7c:15:0f:59:2d:da:5e:12:d0:0e:66:ad:4d: b8:ee:d3:57:c0:e8:13:bd:8e:4f:86:c1:3d:90:20: 36:74:9f:bc:be:a1:34:02:2f:df:c7:2a:6b:fb:d8: 5b:b2:39:6d:ef:38:2c:a9:c8:de:02:9e:05:04:a4: 16:55:8b:fe:44:40:d2:21:7a:fd:53:5a:64:7d:be: c9:b9:6e:3d:7e:e0:38:9a:11:2b:9f:3e:88:ae:5c: f9:60:18:dd:00:b4:5b:02:e6:4f:f3:4f:04:10:05: 9e:e0:85:10:5a:bb:79:6f:73:76:da:38:80:db:a7: 0e:2b:aa:78:5a:99:ed:90:c6:98:f2:53:42:06:6b: 7b:dc:e8:9a:b0:83:8c:5f:1e:89:0e:72:12:40:b6: 49:6b:08:0e:db:d3:c0:c1:49:e8:16:c9:02:bd:59: 34:5a:d6:70:15:88:64:ca:d0:e4:c7:ac:26:86:b2: f1:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:0A:53:AA:1B:01:45:CD:10:3F:2A:AE:37:17:53:22:DA:D2:04:81 X509v3 Authority Key Identifier: keyid:39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/4B34CDD888EB11F09EC0EE50C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.250.240.0/24 Signature Algorithm: sha256WithRSAEncryption 68:b6:e0:0b:68:fa:97:47:aa:77:dd:9e:8b:a6:8c:23:5a:fa: 7a:5e:0d:ab:43:89:a3:84:29:54:41:b9:5e:cd:1d:a9:6a:90: bf:c0:1d:27:ff:f2:90:53:71:35:10:b0:ba:43:4a:d7:60:29: ad:fe:b1:96:b1:1c:ef:25:6c:ce:1d:e7:18:f6:92:d2:de:59: 44:d3:29:4a:69:4c:4b:c5:9b:d4:c7:dc:27:88:6b:a6:63:ad: da:90:51:5e:14:ca:53:9b:ef:16:a6:22:13:fc:a9:b8:d9:c5: 65:8c:f8:fa:ea:e3:b7:f2:40:c9:26:9a:32:32:31:c9:21:01: 3f:22:6a:23:f4:96:56:bd:87:a0:38:28:46:48:be:09:18:d0: 9e:cb:e3:14:37:c3:e0:ee:db:6d:74:5e:cd:94:5c:1f:c2:ca: 14:f4:b5:f2:6f:b8:c8:40:5f:bc:db:6e:8c:7f:2b:31:d0:1e: a9:ed:4f:97:b0:73:08:1b:e3:08:34:86:5b:72:75:73:88:2d: 39:57:ac:e6:46:bf:9c:9c:88:c8:d9:0a:fe:41:ec:25:82:ba: f6:29:36:02:62:1e:d9:8d:6c:ad:6d:fd:cb:49:44:1c:6f:43: 0c:ef:b9:9f:ef:e1:52:26:bf:ce:7b:d0:38:b1:05:71:0e:f8: a9:b9:4a:91 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyQjYxMTAvBgNVBAUTKDM5MEEzODM3QUJBNjkxMkEyQ0YyOUU2MTBEQTQ5NTU1 REYyQzZGQTUwHhcNMjYwMzAxMDgyNjIyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWY5ZC01MGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvNXwLOrqmvbfcwJuuIK+qd2M/9wnL3WcypfDgQcmJD7UNCD2OWRsyLVEpHU f9a1Uq/i8Pv6E6rRNZbBYSJplEK4pJjRNNz7ai/As3wVD1kt2l4S0A5mrU247tNX wOgTvY5PhsE9kCA2dJ+8vqE0Ai/fxypr+9hbsjlt7zgsqcjeAp4FBKQWVYv+REDS IXr9U1pkfb7JuW49fuA4mhErnz6Irlz5YBjdALRbAuZP808EEAWe4IUQWrt5b3N2 2jiA26cOK6p4WpntkMaY8lNCBmt73OiasIOMXx6JDnISQLZJawgO29PAwUnoFskC vVk0WtZwFYhkytDkx6wmhrLxJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGsKU6ob AUXNED8qrjcXUyLa0gSBMB8GA1UdIwQYMBaAFDkKODerppEqLPKeYQ2klVXfLG+l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODJCNi9ERTdFMzIxRUNC NTkxMUVGODY5MTVCNjFDNEY5QUUwMi9PUW80TjZ1bWtTb3M4cDVoRGFTVlZkOHNi NlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09RbzRONnVta1NvczhwNWhEYVNWVmQ4c2I2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTgyQjYvREU3RTMyMUVDQjU5MTFFRjg2OTE1QjYxQzRGOUFFMDIvNEIzNENERDg4 OEVCMTFGMDlFQzBFRTUwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoPrwMA0GCSqGSIb3DQEBCwUAA4IBAQBotuALaPqXR6p33Z6Lpowj Wvp6Xg2rQ4mjhClUQblezR2papC/wB0n//KQU3E1ELC6Q0rXYCmt/rGWsRzvJWzO HecY9pLS3llE0ylKaUxLxZvUx9wniGumY63akFFeFMpTm+8WpiIT/Km42cVljPj6 6uO38kDJJpoyMjHJIQE/Imoj9JZWvYegOChGSL4JGNCey+MUN8Pg7tttdF7NlFwf wsoU9LXyb7jIQF+8226Mfysx0B6p7U+XsHMIG+MINIZbcnVziC05V6zmRr+cnIjI 2Qr+Qewlgrr2KTYCYh7ZjWytbf3LSUQcb0MM77mf7+FSJr/Oe9A4sQVxDvipuUqR -----END CERTIFICATE-----Generated at Thu Mar 26 10:05:44 2026 by rpki-client