$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/CEB2CA5686E011EF81BE1A7FC4F9AE02.roa File: CEB2CA5686E011EF81BE1A7FC4F9AE02.roa (raw, json) Hash identifier: YmKXPzEd/i2vL9lk0X6JhFLGyxL9//RGwrN43Nv93+M= Subject key identifier: 24:7F:92:43:B3:E6:E0:48:7B:69:54:99:5A:8B:38:F9:66:A4:40:B8 Certificate issuer: /CN=A91C2F8C/serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Certificate serial: 010E Authority key identifier: 01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/CEB2CA5686E011EF81BE1A7FC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:58:18 +0000 ROA not before: Tue 25 Nov 2025 03:51:32 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 153320 IP address blocks: 160.187.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2F8C, serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Validity Not Before: Nov 25 03:51:32 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5896a-dc8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4f:69:fe:09:8f:70:f3:46:e8:29:92:8c:b3: cc:f5:1f:35:9c:86:2b:e7:d4:d0:4b:4e:35:e8:4b: 25:9a:3c:f5:79:6f:75:2d:ad:41:19:6c:50:c4:11: c8:71:14:66:27:18:bf:a7:1d:c6:aa:17:d1:2a:a3: 72:6e:64:de:8a:b2:ef:75:3a:d9:c6:6c:0e:c8:37: e1:2e:ee:0f:8a:ca:c8:28:e7:04:a5:46:7f:0e:27: ea:b0:ff:e3:c8:b2:39:9f:7f:3a:5f:4d:09:38:9c: 91:8a:4b:20:e5:97:2c:16:18:40:00:be:82:98:68: d4:97:df:a1:57:06:40:a2:5a:89:81:49:43:1c:9c: 1f:8b:be:74:61:49:fd:ea:3c:e2:1e:b1:bf:6f:09: 93:d5:2f:ba:95:3f:f2:be:0c:00:11:a4:33:36:33: 02:15:c0:cc:c3:f0:95:b1:d9:c9:33:88:95:49:23: 97:81:d9:39:d3:28:a8:39:05:56:1a:a0:0d:78:76: 37:3b:16:5b:9c:64:64:d8:f7:58:09:a2:a3:0b:e6: 4d:7b:82:b9:14:b0:cd:18:c3:ab:39:d1:5c:80:52: 08:f7:97:33:f8:12:a0:e1:30:77:ee:37:c8:f6:e0: f9:85:dd:c7:c0:dd:7d:14:45:6b:b0:0e:f9:fd:1e: 5c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:7F:92:43:B3:E6:E0:48:7B:69:54:99:5A:8B:38:F9:66:A4:40:B8 X509v3 Authority Key Identifier: keyid:01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/CEB2CA5686E011EF81BE1A7FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.187.170.0/23 Signature Algorithm: sha256WithRSAEncryption 75:59:6a:45:1e:4f:f6:7a:c8:a0:60:68:42:16:36:fd:72:a2: a1:24:7b:41:7a:49:99:b5:69:7a:3b:01:97:97:09:cc:d5:c3: 42:5f:6b:41:c7:27:6b:15:0f:02:ad:6d:25:52:5c:de:69:c1: 9a:30:78:9d:f9:ad:8c:66:92:c3:18:2f:e6:c6:3a:e7:64:5f: 5a:b6:73:1d:fa:1b:b8:84:c5:5a:b3:f6:17:87:66:98:27:06: 96:49:25:78:46:84:a9:9c:51:4d:b8:8e:b8:58:81:4d:6a:37: 49:c9:b1:c8:4b:a0:48:ed:a1:55:14:57:4a:43:ab:61:45:1c: e2:5b:31:83:06:88:59:49:60:d0:80:d5:76:1b:04:3b:a9:bf: b9:64:13:9e:d0:9a:2a:a9:03:b1:8b:3e:2a:48:fd:1c:47:fc: 15:8a:0b:03:00:89:8e:d3:3a:8e:11:2b:eb:bf:3a:e9:3a:08: 11:5a:0f:76:d6:65:fe:d8:00:37:ef:5e:37:1d:a0:7e:1f:3f: 3f:41:b3:2e:75:5d:cf:1d:70:d0:40:75:d7:47:01:2d:4e:5a: ed:ac:09:00:17:61:05:51:cb:5d:5e:20:9e:d6:68:b7:ab:39: 9b:23:dd:1d:ea:1f:e0:ee:b6:06:91:aa:ee:ac:d7:75:39:c1: 71:9c:2a:bd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJGOEMxMTAvBgNVBAUTKDAxN0Q4REI4QTc4ODc0QUIyRjlBRDk3REU1N0FGREUx QkUxNjdENDQwHhcNMjUxMTI1MDM1MTMyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODk2YS1kYzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr09p/gmPcPNG6CmSjLPM9R81nIYr59TQS0416Eslmjz1eW91La1BGWxQxBHI cRRmJxi/px3GqhfRKqNybmTeirLvdTrZxmwOyDfhLu4PisrIKOcEpUZ/DifqsP/j yLI5n386X00JOJyRiksg5ZcsFhhAAL6CmGjUl9+hVwZAolqJgUlDHJwfi750YUn9 6jziHrG/bwmT1S+6lT/yvgwAEaQzNjMCFcDMw/CVsdnJM4iVSSOXgdk50yioOQVW GqANeHY3OxZbnGRk2PdYCaKjC+ZNe4K5FLDNGMOrOdFcgFII95cz+BKg4TB37jfI 9uD5hd3HwN19FEVrsA75/R5c9QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCR/kkOz 5uBIe2lUmVqLOPlmpEC4MB8GA1UdIwQYMBaAFAF9jbiniHSrL5rZfeV6/eG+Fn1E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkY4Qy81NTc5QjlCMDg2 RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9BWDJOdUtlSWRLc3ZtdGw5NVhyOTRiNFdm VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FYMk51S2VJZEtzdm10bDk1WHI5NGI0V2ZVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJGOEMvNTU3OUI5QjA4NkUwMTFFRjlCNkIxNzdFQzRGOUFFMDIvQ0VCMkNBNTY4 NkUwMTFFRjgxQkUxQTdGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoLuqMA0GCSqGSIb3DQEBCwUAA4IBAQB1WWpFHk/2esigYGhCFjb9 cqKhJHtBekmZtWl6OwGXlwnM1cNCX2tBxydrFQ8CrW0lUlzeacGaMHid+a2MZpLD GC/mxjrnZF9atnMd+hu4hMVas/YXh2aYJwaWSSV4RoSpnFFNuI64WIFNajdJybHI S6BI7aFVFFdKQ6thRRziWzGDBohZSWDQgNV2GwQ7qb+5ZBOe0JoqqQOxiz4qSP0c R/wVigsDAImO0zqOESvrvzrpOggRWg921mX+2AA37143HaB+Hz8/QbMudV3PHXDQ QHXXRwEtTlrtrAkAF2EFUctdXiCe1mi3qzmbI90d6h/g7rYGkarurNd1OcFxnCq9 -----END CERTIFICATE-----Generated at Thu Mar 26 16:02:11 2026 by rpki-client