$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/D99266FE4F7911F095AB2D46C4F9AE02.roa File: D99266FE4F7911F095AB2D46C4F9AE02.roa (raw, json) Hash identifier: S7S5igmQvKLW0ck787Ok4dnnBzff6qmeN+pto8WjXmE= Subject key identifier: 45:99:34:2C:33:05:BD:5B:1C:62:D0:87:06:4E:A2:B4:61:AE:47:78 Certificate issuer: /CN=A91CB063/serialNumber=BEDB4D31C801C78B1EFA3487639D0355AC91354B Certificate serial: E9 Authority key identifier: BE:DB:4D:31:C8:01:C7:8B:1E:FA:34:87:63:9D:03:55:AC:91:35:4B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vttNMcgBx4se-jSHY50DVayRNUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/D99266FE4F7911F095AB2D46C4F9AE02.roa Signing time: Mon 09 Mar 2026 05:42:26 +0000 ROA not before: Mon 09 Mar 2026 05:42:26 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 153530 IP address blocks: 161.248.220.0/24 maxlen: 24 161.248.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/vttNMcgBx4se-jSHY50DVayRNUs.crl rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/vttNMcgBx4se-jSHY50DVayRNUs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vttNMcgBx4se-jSHY50DVayRNUs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB063, serialNumber=BEDB4D31C801C78B1EFA3487639D0355AC91354B Validity Not Before: Mar 9 05:42:26 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ae5dc2-a600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:40:29:af:b0:31:98:32:ab:c3:11:79:b3:61: e6:fc:9d:d8:f9:ae:40:83:9e:d6:2f:42:e4:cd:83: c2:de:64:5a:c5:d1:6f:f6:e8:8a:ea:89:fc:32:f8: e2:06:64:ad:d9:15:43:00:19:a7:14:9e:2b:17:4f: 2d:84:09:10:fa:d9:6f:91:e3:22:a5:dc:31:b0:b8: 14:31:22:89:c4:fb:f2:bb:93:f3:16:67:c9:d9:1f: 22:d5:fe:20:6c:f8:5d:64:18:37:1b:93:d2:3b:6f: e9:1f:f0:50:db:85:28:f6:95:aa:85:11:25:2e:6b: 75:06:c1:a6:55:96:97:6c:4f:8d:61:7e:aa:78:93: 84:e7:a5:b4:7f:30:50:48:1f:5f:b8:30:e7:43:96: 01:ba:8e:30:7f:de:93:76:52:b1:87:11:c3:8f:fe: 51:7e:cc:60:3e:39:78:39:f1:a0:0c:ab:2e:3d:54: 22:cf:69:84:52:62:59:1d:f3:67:be:47:76:78:68: 53:99:ba:19:ab:fe:13:51:05:a1:d3:1c:e9:f1:ed: 45:bd:c7:76:7a:7d:79:c0:15:da:2b:45:2f:88:ed: e8:e5:c2:82:7e:6d:ad:b8:59:87:65:8d:41:18:c1: 35:c4:cf:55:ea:d8:7d:f8:c2:be:ee:a2:c4:b1:53: 42:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:99:34:2C:33:05:BD:5B:1C:62:D0:87:06:4E:A2:B4:61:AE:47:78 X509v3 Authority Key Identifier: keyid:BE:DB:4D:31:C8:01:C7:8B:1E:FA:34:87:63:9D:03:55:AC:91:35:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/vttNMcgBx4se-jSHY50DVayRNUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vttNMcgBx4se-jSHY50DVayRNUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/D99266FE4F7911F095AB2D46C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.220.0/23 Signature Algorithm: sha256WithRSAEncryption a9:5b:bc:69:c1:e6:ef:14:c6:da:cd:be:a2:3f:9a:27:0f:78: 32:14:9e:43:37:7f:a4:84:c9:ea:5e:dd:a7:11:fa:b8:44:eb: dd:c8:cd:5b:68:bd:e6:07:92:9b:65:ef:b6:fc:3b:06:86:74: 63:f6:b3:39:10:6c:6e:ac:d0:b3:3d:9e:8d:85:56:6f:45:8d: 3c:51:c6:c4:23:50:df:b1:e5:77:37:45:94:73:f3:ce:a9:63: b8:09:7b:e2:cb:e1:39:69:b9:36:f3:48:57:08:f7:76:6a:83: a2:1a:70:07:40:d8:ca:8d:f0:84:54:74:b4:2a:e9:29:d4:bd: 18:f9:fb:98:8d:9a:79:9f:e5:95:17:73:3f:46:47:bc:61:89: 56:87:fa:d3:23:eb:ad:1d:bf:22:74:04:d8:d8:b8:6f:81:e9: d9:ec:bc:06:1b:14:4e:ad:51:fc:7b:ea:df:9f:ed:9a:b8:73: ef:5f:e3:f8:c5:93:b7:90:44:b1:47:c3:df:1e:20:2c:36:d2: 05:dc:c4:a9:20:0b:1c:96:dc:36:75:12:e1:9d:fe:43:48:11: 5c:65:73:1a:ff:c3:93:71:d0:5d:a7:25:6b:6c:06:c8:03:c1: 33:58:aa:05:67:9e:34:d7:6d:6e:a6:cb:1a:f3:8b:b1:34:74: a0:22:76:af -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IwNjMxMTAvBgNVBAUTKEJFREI0RDMxQzgwMUM3OEIxRUZBMzQ4NzYzOUQwMzU1 QUM5MTM1NEIwHhcNMjYwMzA5MDU0MjI2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFlNWRjMi1hNjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEApr7AxmDKrwxF5s2Hm/J3Y+a5Ag57WL0LkzYPC3mRaxdFv9uiK6on8Mvji BmSt2RVDABmnFJ4rF08thAkQ+tlvkeMipdwxsLgUMSKJxPvyu5PzFmfJ2R8i1f4g bPhdZBg3G5PSO2/pH/BQ24Uo9pWqhRElLmt1BsGmVZaXbE+NYX6qeJOE56W0fzBQ SB9fuDDnQ5YBuo4wf96TdlKxhxHDj/5RfsxgPjl4OfGgDKsuPVQiz2mEUmJZHfNn vkd2eGhTmboZq/4TUQWh0xzp8e1Fvcd2en15wBXaK0UviO3o5cKCfm2tuFmHZY1B GME1xM9V6th9+MK+7qLEsVNC6wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEWZNCwz Bb1bHGLQhwZOorRhrkd4MB8GA1UdIwQYMBaAFL7bTTHIAceLHvo0h2OdA1WskTVL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjA2My82M0I0NzYwMkQ2 RUQxMUVGOUQ5QkYzNkFDNEY5QUUwMi92dHROTWNnQng0c2UtalNIWTUwRFZheVJO VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Z0dE5NY2dCeDRzZS1qU0hZNTBEVmF5Uk5Vcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0IwNjMvNjNCNDc2MDJENkVEMTFFRjlEOUJGMzZBQzRGOUFFMDIvRDk5MjY2RkU0 Rjc5MTFGMDk1QUIyRDQ2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofjcMA0GCSqGSIb3DQEBCwUAA4IBAQCpW7xpwebvFMbazb6iP5on D3gyFJ5DN3+khMnqXt2nEfq4ROvdyM1baL3mB5KbZe+2/DsGhnRj9rM5EGxurNCz PZ6NhVZvRY08UcbEI1DfseV3N0WUc/POqWO4CXviy+E5abk280hXCPd2aoOiGnAH QNjKjfCEVHS0Kukp1L0Y+fuYjZp5n+WVF3M/Rke8YYlWh/rTI+utHb8idATY2Lhv genZ7LwGGxROrVH8e+rfn+2auHPvX+P4xZO3kESxR8PfHiAsNtIF3MSpIAscltw2 dRLhnf5DSBFcZXMa/8OTcdBdpyVrbAbIA8EzWKoFZ540121upssa84uxNHSgInav -----END CERTIFICATE-----Generated at Thu Mar 26 21:15:19 2026 by rpki-client