$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09BC/CB882E7EA70711EF99A57741C4F9AE02/3BC1B1C2FF2E11F088116B6D89EE528E.roa File: 3BC1B1C2FF2E11F088116B6D89EE528E.roa (raw, json) Hash identifier: KHWI7lVjUVcxQwA/GQr69DR7zxd1Vz+nYIgppYx+odQ= Subject key identifier: 10:20:2B:30:AB:80:84:54:30:30:ED:18:06:11:B2:F6:49:AB:5A:6C Certificate issuer: /CN=A91D09BC/serialNumber=F15D11790B0E75357406611DC57058F69DC578A0 Certificate serial: 0107 Authority key identifier: F1:5D:11:79:0B:0E:75:35:74:06:61:1D:C5:70:58:F6:9D:C5:78:A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8V0ReQsOdTV0BmEdxXBY9p3FeKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09BC/CB882E7EA70711EF99A57741C4F9AE02/3BC1B1C2FF2E11F088116B6D89EE528E.roa Signing time: Sun 01 Mar 2026 16:56:53 +0000 ROA not before: Tue 03 Feb 2026 05:25:37 +0000 ROA not after: Tue 02 Jun 2026 00:00:00 +0000 asID: 138026 IP address blocks: 160.250.36.0/23 maxlen: 23 160.250.36.0/24 maxlen: 24 160.250.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09BC/CB882E7EA70711EF99A57741C4F9AE02/8V0ReQsOdTV0BmEdxXBY9p3FeKA.crl rsync://rpki.apnic.net/member_repository/A91D09BC/CB882E7EA70711EF99A57741C4F9AE02/8V0ReQsOdTV0BmEdxXBY9p3FeKA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8V0ReQsOdTV0BmEdxXBY9p3FeKA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:23:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09BC, serialNumber=F15D11790B0E75357406611DC57058F69DC578A0 Validity Not Before: Feb 3 05:25:37 2026 GMT Not After : Jun 2 00:00:00 2026 GMT Subject: CN=69a46fd5-c197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:9b:a3:d0:b4:c4:a5:63:f9:00:27:41:c1:f6: 43:89:76:05:50:e2:56:99:7e:8c:a5:60:e6:96:47: 3e:bd:50:7c:3d:96:c8:7c:a4:bf:2c:59:4d:3d:74: 70:62:82:02:6b:9e:c2:9a:9d:8d:97:56:83:b4:c1: 1a:97:d3:03:cd:25:1e:bf:20:a1:85:b0:9c:e3:be: c0:a6:89:92:8d:50:32:ac:fd:eb:0f:dd:af:fe:f2: d9:57:6c:a7:b8:c5:5c:8c:13:30:41:34:b3:0f:20: 90:20:eb:2c:44:bf:b3:57:88:b2:cf:45:1c:fc:53: 54:79:45:36:4a:bf:74:0c:bb:7e:59:5c:b8:09:a7: b2:72:d3:56:80:56:ab:55:af:21:13:2f:41:8c:62: 22:60:a9:2c:17:73:21:f5:45:ef:83:8e:63:90:0b: 55:ba:b6:41:2f:00:dd:20:71:db:13:b8:ba:56:98: ca:19:d9:0d:85:77:b0:e1:ae:a1:24:92:ff:fa:e1: df:a5:cc:31:9f:2f:8d:5f:40:78:17:33:24:23:81: c5:4d:fc:60:84:f3:2e:4b:50:f5:7c:b1:8b:15:fd: c1:a9:75:0f:6f:0f:18:0f:4a:da:91:31:80:55:8a: df:f0:4f:a8:f2:b1:d8:de:fb:1d:73:6c:6e:6a:ed: fa:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:20:2B:30:AB:80:84:54:30:30:ED:18:06:11:B2:F6:49:AB:5A:6C X509v3 Authority Key Identifier: keyid:F1:5D:11:79:0B:0E:75:35:74:06:61:1D:C5:70:58:F6:9D:C5:78:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09BC/CB882E7EA70711EF99A57741C4F9AE02/8V0ReQsOdTV0BmEdxXBY9p3FeKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8V0ReQsOdTV0BmEdxXBY9p3FeKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09BC/CB882E7EA70711EF99A57741C4F9AE02/3BC1B1C2FF2E11F088116B6D89EE528E.roa sbgp-ipAddrBlock: critical IPv4: 160.250.36.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:d9:3f:6e:20:6f:00:6a:8d:3f:5d:be:dc:49:18:1c:0f:58: 22:23:4c:d9:45:07:e5:a1:d3:ee:0c:c2:87:22:b7:68:e4:d7: 4c:36:26:07:14:47:c5:d0:68:cd:7e:01:6e:23:c3:b3:ec:06: af:4a:28:a1:3b:d7:06:1e:b3:0c:31:a5:f3:97:ea:c9:cb:6f: c6:9c:dc:ec:5e:7c:98:b5:c9:95:21:2f:d7:51:cb:f1:76:f7: 0a:22:ae:85:0e:22:36:05:03:ce:c6:61:b0:50:76:55:dc:70: f0:ed:e5:88:80:2e:6c:6a:b2:5a:f7:c8:75:34:07:c2:33:52: 83:2e:10:9c:06:a7:ec:f6:a4:68:ab:6c:7d:c5:e4:1a:2a:7d: 81:d7:fe:0b:3d:86:53:67:10:81:2e:a7:22:ff:64:12:f0:c0: 83:49:1b:b8:6f:5b:90:75:47:86:25:a9:f5:31:ca:de:aa:40: 2a:b8:42:a4:59:32:6b:aa:34:3a:5b:b4:48:0c:46:62:fe:c1: 11:fe:85:30:a6:2a:d1:be:14:98:64:03:17:18:05:cb:1e:1f: 40:30:74:53:c5:75:2f:d1:40:40:77:73:1a:c4:29:1c:21:8f: 31:fb:86:db:f0:6b:06:ab:8f:f5:19:e2:f9:bf:8a:5b:14:07: 98:1c:29:b8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QkMxMTAvBgNVBAUTKEYxNUQxMTc5MEIwRTc1MzU3NDA2NjExREM1NzA1OEY2 OURDNTc4QTAwHhcNMjYwMjAzMDUyNTM3WhcNMjYwNjAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmZkNS1jMTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA95uj0LTEpWP5ACdBwfZDiXYFUOJWmX6MpWDmlkc+vVB8PZbIfKS/LFlNPXRw YoICa57Cmp2Nl1aDtMEal9MDzSUevyChhbCc477ApomSjVAyrP3rD92v/vLZV2yn uMVcjBMwQTSzDyCQIOssRL+zV4iyz0Uc/FNUeUU2Sr90DLt+WVy4CaeyctNWgFar Va8hEy9BjGIiYKksF3Mh9UXvg45jkAtVurZBLwDdIHHbE7i6VpjKGdkNhXew4a6h JJL/+uHfpcwxny+NX0B4FzMkI4HFTfxghPMuS1D1fLGLFf3BqXUPbw8YD0rakTGA VYrf8E+o8rHY3vsdc2xuau36kwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBAgKzCr gIRUMDDtGAYRsvZJq1psMB8GA1UdIwQYMBaAFPFdEXkLDnU1dAZhHcVwWPadxXig MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlCQy9DQjg4MkU3RUE3 MDcxMUVGOTlBNTc3NDFDNEY5QUUwMi84VjBSZVFzT2RUVjBCbUVkeFhCWTlwM0Zl S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhWMFJlUXNPZFRWMEJtRWR4WEJZOXAzRmVLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDA5QkMvQ0I4ODJFN0VBNzA3MTFFRjk5QTU3NzQxQzRGOUFFMDIvM0JDMUIxQzJG RjJFMTFGMDg4MTE2QjZEODlFRTUyOEUucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoPokMA0GCSqGSIb3DQEBCwUAA4IBAQAr2T9uIG8Aao0/Xb7cSRgc D1giI0zZRQflodPuDMKHIrdo5NdMNiYHFEfF0GjNfgFuI8Oz7AavSiihO9cGHrMM MaXzl+rJy2/GnNzsXnyYtcmVIS/XUcvxdvcKIq6FDiI2BQPOxmGwUHZV3HDw7eWI gC5sarJa98h1NAfCM1KDLhCcBqfs9qRoq2x9xeQaKn2B1/4LPYZTZxCBLqci/2QS 8MCDSRu4b1uQdUeGJan1McreqkAquEKkWTJrqjQ6W7RIDEZi/sER/oUwpirRvhSY ZAMXGAXLHh9AMHRTxXUv0UBAd3MaxCkcIY8x+4bb8GsGq4/1GeL5v4pbFAeYHCm4 -----END CERTIFICATE-----Generated at Thu Mar 26 21:31:30 2026 by rpki-client