$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6A04/30D77996C9AE11F0BA222745C4F9AE02/CC22B2AA26A411F18AD5785BC0833773.roa File: CC22B2AA26A411F18AD5785BC0833773.roa (raw, json) Hash identifier: ONSQA97L2ArdKzlTZtF0u83bufLlLinNTHkHJvb1UuM= Subject key identifier: 14:70:2F:D6:86:9B:94:44:A5:12:8C:0D:66:74:F9:32:FB:2B:E2:1D Certificate issuer: /CN=A91B6A04/serialNumber=41568E80093BF4D105E9324D5F82124531AC413F Certificate serial: 42 Authority key identifier: 41:56:8E:80:09:3B:F4:D1:05:E9:32:4D:5F:82:12:45:31:AC:41:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVaOgAk79NEF6TJNX4ISRTGsQT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6A04/30D77996C9AE11F0BA222745C4F9AE02/CC22B2AA26A411F18AD5785BC0833773.roa Signing time: Mon 23 Mar 2026 10:41:07 +0000 ROA not before: Mon 23 Mar 2026 10:41:07 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 133694 IP address blocks: 163.128.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6A04/30D77996C9AE11F0BA222745C4F9AE02/QVaOgAk79NEF6TJNX4ISRTGsQT8.crl rsync://rpki.apnic.net/member_repository/A91B6A04/30D77996C9AE11F0BA222745C4F9AE02/QVaOgAk79NEF6TJNX4ISRTGsQT8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVaOgAk79NEF6TJNX4ISRTGsQT8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:38:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6A04, serialNumber=41568E80093BF4D105E9324D5F82124531AC413F Validity Not Before: Mar 23 10:41:07 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69c118c3-bd73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:3e:fe:62:5d:eb:11:49:cc:6f:ea:79:00:96: d8:ec:67:99:17:99:55:4d:96:37:9a:76:4c:57:d8: 27:9d:97:33:05:e7:b7:20:6a:22:91:36:3c:54:99: 71:3d:de:bb:d6:4c:d8:3d:9f:fd:a6:86:00:e9:76: 66:f2:d6:9d:3d:09:32:76:08:83:5e:70:d8:3d:d5: d8:7b:5b:85:ff:99:7f:44:60:ba:8d:c3:ea:d6:56: ec:58:ee:17:1b:30:4d:67:23:02:a3:35:a1:a2:58: 84:3c:cb:69:49:88:7d:e0:3b:25:f0:61:cd:a1:ed: 18:6f:a4:01:40:50:6b:6d:6d:9c:4c:a9:0b:c4:38: d2:d5:f1:41:d4:52:5c:1d:1e:a0:87:4d:08:75:13: 8c:d0:e0:57:30:9e:b5:69:18:9d:b2:cc:a9:47:78: 2f:93:4f:59:64:db:07:9a:bf:ae:56:f1:e4:af:aa: d1:d2:7a:ce:88:e2:2b:df:4a:05:92:8a:98:31:15: ab:d0:dc:4a:e6:cd:cc:29:61:36:8e:4e:06:86:74: 67:20:33:8a:86:32:a0:6d:03:0c:bc:87:bf:6d:29: e3:a7:1b:e6:da:75:6e:91:1b:62:1c:f9:86:62:df: f0:c0:eb:20:63:49:1d:f2:48:75:86:b4:48:d7:0c: 34:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:70:2F:D6:86:9B:94:44:A5:12:8C:0D:66:74:F9:32:FB:2B:E2:1D X509v3 Authority Key Identifier: keyid:41:56:8E:80:09:3B:F4:D1:05:E9:32:4D:5F:82:12:45:31:AC:41:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6A04/30D77996C9AE11F0BA222745C4F9AE02/QVaOgAk79NEF6TJNX4ISRTGsQT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVaOgAk79NEF6TJNX4ISRTGsQT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6A04/30D77996C9AE11F0BA222745C4F9AE02/CC22B2AA26A411F18AD5785BC0833773.roa sbgp-ipAddrBlock: critical IPv4: 163.128.34.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:9e:44:75:51:b8:34:12:0b:56:a6:00:6e:e5:e6:94:6e:2c: a0:e1:d1:42:15:47:2d:79:bb:c2:4a:2b:8e:11:fe:c9:23:51: 7c:8e:45:4a:3f:64:00:9d:aa:27:5e:90:3a:4f:31:af:92:7d: ba:2a:c1:30:ee:19:dd:db:0a:b2:0f:41:dd:f3:3b:14:2f:25: c8:f4:9c:83:a0:b7:33:58:86:62:92:ac:26:c4:16:ae:13:ff: b3:13:bf:f7:e8:92:e6:db:d7:61:cb:ce:ee:78:38:ed:e2:50: 41:01:73:76:70:ea:b7:3e:28:19:6c:bb:fa:08:1a:98:fd:23: ac:91:76:4f:d9:cd:f6:1c:a7:4c:9e:8a:02:bd:fe:3a:77:25: 68:bc:7e:03:45:3b:3f:6b:24:8d:fc:48:80:07:fc:d1:c2:1b: 6d:60:57:4d:28:59:48:22:f1:5c:bc:73:f9:43:a1:ee:5a:dd: f8:7c:d6:2a:87:6c:27:e6:01:fb:fc:42:f6:52:a2:eb:4d:7a: 88:ba:68:a7:1d:41:65:2c:fb:3c:99:e3:b0:ad:80:bf:b0:30: cc:76:61:e4:7d:81:6d:17:d9:32:20:91:a5:a7:7b:3f:ca:a2: 8e:90:d6:79:e1:c0:3c:f5:28:74:ea:c6:f4:be:e1:0b:62:3b: 93:50:ce:b0 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkEwNDExMC8GA1UEBRMoNDE1NjhFODAwOTNCRjREMTA1RTkzMjRENUY4MjEyNDUz MUFDNDEzRjAeFw0yNjAzMjMxMDQxMDdaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YzExOGMzLWJkNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCFPv5iXesRScxv6nkAltjsZ5kXmVVNljeadkxX2CedlzMF57cgaiKRNjxUmXE9 3rvWTNg9n/2mhgDpdmby1p09CTJ2CINecNg91dh7W4X/mX9EYLqNw+rWVuxY7hcb ME1nIwKjNaGiWIQ8y2lJiH3gOyXwYc2h7RhvpAFAUGttbZxMqQvEONLV8UHUUlwd HqCHTQh1E4zQ4FcwnrVpGJ2yzKlHeC+TT1lk2weav65W8eSvqtHSes6I4ivfSgWS ipgxFavQ3ErmzcwpYTaOTgaGdGcgM4qGMqBtAwy8h79tKeOnG+badW6RG2Ic+YZi 3/DA6yBjSR3ySHWGtEjXDDQpAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUFHAv1oab lESlEowNZnT5Mvsr4h0wHwYDVR0jBBgwFoAUQVaOgAk79NEF6TJNX4ISRTGsQT8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2QTA0LzMwRDc3OTk2QzlB RTExRjBCQTIyMjc0NUM0RjlBRTAyL1FWYU9nQWs3OU5FRjZUSk5YNElTUlRHc1FU OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUVZhT2dBazc5TkVGNlRKTlg0SVNSVEdzUVQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkEwNC8zMEQ3Nzk5NkM5QUUxMUYwQkEyMjI3NDVDNEY5QUUwMi9DQzIyQjJBQTI2 QTQxMUYxOEFENTc4NUJDMDgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACjgCIwDQYJKoZIhvcNAQELBQADggEBAA2eRHVRuDQSC1amAG7l5pRu LKDh0UIVRy15u8JKK44R/skjUXyORUo/ZACdqidekDpPMa+SfboqwTDuGd3bCrIP Qd3zOxQvJcj0nIOgtzNYhmKSrCbEFq4T/7MTv/fokubb12HLzu54OO3iUEEBc3Zw 6rc+KBlsu/oIGpj9I6yRdk/ZzfYcp0yeigK9/jp3JWi8fgNFOz9rJI38SIAH/NHC G21gV00oWUgi8Vy8c/lDoe5a3fh81iqHbCfmAfv8QvZSoutNeoi6aKcdQWUs+zyZ 47CtgL+wMMx2YeR9gW0X2TIgkaWnez/Koo6Q1nnhwDz1KHTqxvS+4QtiO5NQzrA= -----END CERTIFICATE-----Generated at Thu Mar 26 15:34:04 2026 by rpki-client