$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/C4D0CEECACF611F0AC34117FC4F9AE02.roa File: C4D0CEECACF611F0AC34117FC4F9AE02.roa (raw, json) Hash identifier: FiHQ8LCYnnxAYhB+CVfO9AnLMeg+kwDxPRYRsj7xuLE= Subject key identifier: 5A:EE:82:94:43:9C:43:D0:8C:D4:38:05:05:CF:37:A4:37:F3:6B:31 Certificate issuer: /CN=A91A99F8/serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Certificate serial: C1 Authority key identifier: F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/C4D0CEECACF611F0AC34117FC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:32:06 +0000 ROA not before: Sun 19 Oct 2025 14:20:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153712 IP address blocks: 163.223.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 06:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99F8, serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Validity Not Before: Oct 19 14:20:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a59156-00a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:4e:2b:60:26:e8:15:6e:f2:10:1c:a3:62:29: c2:38:51:72:98:ab:59:49:15:b8:50:50:a0:10:f5: 67:0b:02:b5:86:e7:57:36:3f:bb:13:1f:e5:f4:05: 3f:58:54:61:62:ed:f7:fe:b5:27:08:2b:b4:85:79: 61:fc:4e:06:8f:a2:e7:54:79:31:2a:8c:8a:25:a2: 91:f5:9d:50:44:8b:cc:ab:f7:8c:e1:f4:e9:77:7e: 9d:b4:f0:bc:6e:bf:4f:41:0a:03:a7:ae:eb:19:56: 79:63:2a:18:37:43:13:71:f3:17:e3:1d:fe:ec:56: 3e:77:c7:82:7f:43:fa:4a:13:ad:8a:87:45:06:33: 2d:96:e7:0f:5f:5b:cc:27:e8:11:e0:2f:e9:7f:25: da:5a:b3:33:2c:6a:2b:bf:cf:55:28:33:b9:d2:4b: ea:5b:db:c6:44:52:f7:0a:fb:1c:f3:7f:e7:a1:07: 83:ba:df:bd:f0:92:70:b3:d0:e3:4c:eb:3e:67:36: 94:48:89:63:50:85:f2:2b:de:cd:9b:6a:b5:62:55: 36:cc:84:b2:aa:9d:29:e7:8e:a1:6d:3c:3a:3a:81: 25:cb:5a:12:03:5e:6b:20:af:dc:58:5e:cd:e8:54: e1:7c:45:07:5d:8a:35:e6:20:b4:e6:92:2f:27:2a: 1f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:EE:82:94:43:9C:43:D0:8C:D4:38:05:05:CF:37:A4:37:F3:6B:31 X509v3 Authority Key Identifier: keyid:F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/C4D0CEECACF611F0AC34117FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.156.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:c3:b4:4b:04:9b:58:46:59:8f:b8:0e:2c:57:85:aa:97:ac: 93:dc:3a:f4:a6:20:bf:f6:d1:4d:11:03:8b:55:38:7f:b2:04: 6c:0c:de:91:0c:b8:c5:66:ad:af:a5:11:4d:c5:c7:6f:82:80: 3b:0c:67:f5:1d:55:e0:4a:09:9e:4c:fb:7a:ee:de:b6:f4:c8: 41:ee:73:22:cc:1d:17:79:ec:fd:95:d8:d7:84:a4:b2:75:af: 54:6f:f9:cc:57:51:39:b1:60:2f:ad:fc:30:d4:af:e1:6c:34: 5f:d0:3f:6f:37:c1:68:10:a6:c8:23:32:2f:bd:fc:d4:1a:3e: 80:30:01:26:ef:ea:1f:98:94:7d:a6:1c:1d:ec:63:25:86:81: fb:69:2c:4c:1a:c9:7f:20:f5:85:2a:bc:5d:cc:bd:84:40:cd: ea:3f:f2:fd:cc:1b:75:95:72:06:79:eb:c7:21:d8:4c:3d:3a: 25:a3:f4:f5:59:20:76:ef:eb:2e:e0:aa:33:9d:c5:6a:bb:d8: 04:0b:a5:75:d8:83:3d:b1:58:b4:2e:19:e9:70:63:a9:9f:85: 66:a3:27:41:f2:24:6c:f6:59:b8:fb:bd:7f:e1:78:c3:c4:50: a4:09:2c:1d:8c:a9:f7:57:65:99:4f:43:90:5e:df:fc:c5:69: f9:af:e6:a1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk5RjgxMTAvBgNVBAUTKEY5Q0RCMDYxODhENTRGRDEzNzMwMzBCOTIwQzhFNDQ1 REIyRDNENTcwHhcNMjUxMDE5MTQyMDMxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTE1Ni0wMGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6k4rYCboFW7yEByjYinCOFFymKtZSRW4UFCgEPVnCwK1hudXNj+7Ex/l9AU/ WFRhYu33/rUnCCu0hXlh/E4Gj6LnVHkxKoyKJaKR9Z1QRIvMq/eM4fTpd36dtPC8 br9PQQoDp67rGVZ5YyoYN0MTcfMX4x3+7FY+d8eCf0P6ShOtiodFBjMtlucPX1vM J+gR4C/pfyXaWrMzLGorv89VKDO50kvqW9vGRFL3Cvsc83/noQeDut+98JJws9Dj TOs+ZzaUSIljUIXyK97Nm2q1YlU2zISyqp0p546hbTw6OoEly1oSA15rIK/cWF7N 6FThfEUHXYo15iC05pIvJyoftQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFrugpRD nEPQjNQ4BQXPN6Q382sxMB8GA1UdIwQYMBaAFPnNsGGI1U/RNzAwuSDI5EXbLT1X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTlGOC83QTREN0I4ODA0 QTcxMUYwQjRENzM5ODJDNEY5QUUwMi8tYzJ3WVlqVlQ5RTNNREM1SU1qa1Jkc3RQ VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1jMndZWWpWVDlFM01EQzVJTWprUmRzdFBWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTk5RjgvN0E0RDdCODgwNEE3MTFGMEI0RDczOTgyQzRGOUFFMDIvQzREMENFRUNB Q0Y2MTFGMEFDMzQxMTdGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBo9+cMA0GCSqGSIb3DQEBCwUAA4IBAQCNw7RLBJtYRlmPuA4sV4Wq l6yT3Dr0piC/9tFNEQOLVTh/sgRsDN6RDLjFZq2vpRFNxcdvgoA7DGf1HVXgSgme TPt67t629MhB7nMizB0Xeez9ldjXhKSyda9Ub/nMV1E5sWAvrfww1K/hbDRf0D9v N8FoEKbIIzIvvfzUGj6AMAEm7+ofmJR9phwd7GMlhoH7aSxMGsl/IPWFKrxdzL2E QM3qP/L9zBt1lXIGeevHIdhMPTolo/T1WSB27+su4KozncVqu9gEC6V12IM9sVi0 LhnpcGOpn4VmoydB8iRs9lm4+71/4XjDxFCkCSwdjKn3V2WZT0OQXt/8xWn5r+ah -----END CERTIFICATE-----Generated at Sat Mar 28 11:47:44 2026 by rpki-client