$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/8C508DC055F711EFA5200828C4F9AE02.roa File: 8C508DC055F711EFA5200828C4F9AE02.roa (raw, json) Hash identifier: BV76gUVkhOloD3R1sKvIborbJ3XwK55pafoYpUB3234= Subject key identifier: BA:4E:3F:E6:21:0F:5C:7A:3A:47:31:2D:37:9C:03:78:23:B3:B7:31 Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 01A1 Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/8C508DC055F711EFA5200828C4F9AE02.roa Signing time: Sat 07 Mar 2026 04:38:40 +0000 ROA not before: Sat 07 Mar 2026 04:38:40 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 140362 IP address blocks: 157.10.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Mar 7 04:38:40 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ababd0-0f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:25:cf:4a:42:57:a9:7f:45:21:f7:88:bd:d4: d5:eb:2f:c0:57:7b:7c:35:cc:66:6f:d2:e9:cc:13: 7e:57:f3:1e:3b:df:18:a6:0b:28:17:90:69:11:42: df:71:68:b7:c5:8b:4c:e7:77:c8:0d:fb:db:84:db: bc:d1:b0:d7:71:c4:91:44:3b:a6:0a:cb:67:14:0e: f0:9c:23:a2:10:71:20:7d:19:2a:60:11:7d:65:27: 4a:e7:a9:ee:94:96:44:6c:fd:6e:de:d2:67:62:2a: e3:1b:80:68:d8:86:6a:0f:49:5c:98:45:bf:6b:d9: d5:39:8b:b9:b5:98:4c:d9:07:74:cf:8b:7c:cb:93: e9:84:64:3e:18:95:4d:2c:cd:87:9a:e8:2f:ec:ed: 53:41:ef:ca:68:71:69:a0:03:19:b0:a8:9b:39:60: ef:24:01:aa:82:cd:48:ee:1d:3d:52:c4:a5:1c:e8: 49:ac:58:cb:92:4b:f2:b3:aa:96:31:c5:fe:40:98: 81:03:c3:80:00:65:41:f0:81:37:76:ce:c0:fc:f1: f9:ae:f2:1d:9e:a8:bd:ff:99:3c:8a:23:5f:ea:29: ed:3c:fa:fa:7b:77:19:1d:38:4b:a0:ab:03:63:4c: 61:98:9a:db:3f:b4:4c:40:ff:df:be:10:03:dd:ec: 7a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4E:3F:E6:21:0F:5C:7A:3A:47:31:2D:37:9C:03:78:23:B3:B7:31 X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/8C508DC055F711EFA5200828C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.251.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:70:0c:23:b4:25:0b:75:64:21:96:01:a1:ae:2d:7f:90:f3: 58:0a:cf:48:ce:be:ea:a2:bb:64:a4:27:78:42:17:73:e3:60: c2:b6:1a:0d:22:46:43:1d:eb:4a:a5:b7:92:5e:0f:87:bb:1c: cd:78:d6:71:1b:1b:c4:fe:1a:d9:9a:a2:c6:0d:50:2d:70:e8: 56:84:5c:6b:05:ea:cb:07:d0:ed:0d:f9:82:6f:42:81:2e:35: 9f:5f:ec:47:24:2f:4e:b8:d8:af:37:08:b9:b0:38:6a:5d:3b: b5:33:97:39:9e:11:92:20:c1:b0:3a:82:4a:fd:cb:98:c9:c3: ee:29:4f:74:00:ec:73:48:3f:1d:fd:79:22:c9:e9:bf:17:10: b3:59:65:80:48:e5:51:b0:40:99:c1:5b:b1:69:7f:48:40:19: 76:f9:1a:62:af:a4:61:23:ca:05:92:36:66:7f:b7:8d:34:18: 7a:d4:45:0b:c4:39:75:64:07:e1:2d:6e:71:1f:5d:92:0c:c3: a0:7c:76:86:50:64:03:03:49:06:76:e1:91:1b:bc:93:1e:81: a9:c2:6c:11:2b:8f:fb:41:ff:a0:ca:cc:12:87:0d:39:98:28: e7:e9:3d:4d:31:d9:fb:e9:bf:52:0c:7f:f9:17:4c:7f:b8:12: 45:03:a7:4e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjYwMzA3MDQzODQwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiYWJkMC0wZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyXPSkJXqX9FIfeIvdTV6y/AV3t8Ncxmb9LpzBN+V/MeO98YpgsoF5BpEULf cWi3xYtM53fIDfvbhNu80bDXccSRRDumCstnFA7wnCOiEHEgfRkqYBF9ZSdK56nu lJZEbP1u3tJnYirjG4Bo2IZqD0lcmEW/a9nVOYu5tZhM2Qd0z4t8y5PphGQ+GJVN LM2Hmugv7O1TQe/KaHFpoAMZsKibOWDvJAGqgs1I7h09UsSlHOhJrFjLkkvys6qW McX+QJiBA8OAAGVB8IE3ds7A/PH5rvIdnqi9/5k8iiNf6intPPr6e3cZHThLoKsD Y0xhmJrbP7RMQP/fvhAD3ex6wwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLpOP+Yh D1x6OkcxLTecA3gjs7cxMB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDYzQUYvNERGRTY4MjRCNkI3MTFFRUE5RDdGQzNBQzRGOUFFMDIvOEM1MDhEQzA1 NUY3MTFFRkE1MjAwODI4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAnQr7MA0GCSqGSIb3DQEBCwUAA4IBAQALcAwjtCULdWQhlgGhri1/ kPNYCs9Izr7qortkpCd4Qhdz42DCthoNIkZDHetKpbeSXg+HuxzNeNZxGxvE/hrZ mqLGDVAtcOhWhFxrBerLB9DtDfmCb0KBLjWfX+xHJC9OuNivNwi5sDhqXTu1M5c5 nhGSIMGwOoJK/cuYycPuKU90AOxzSD8d/Xkiyem/FxCzWWWASOVRsECZwVuxaX9I QBl2+Rpir6RhI8oFkjZmf7eNNBh61EULxDl1ZAfhLW5xH12SDMOgfHaGUGQDA0kG duGRG7yTHoGpwmwRK4/7Qf+gyswShw05mCjn6T1NMdn76b9SDH/5F0x/uBJFA6dO -----END CERTIFICATE-----Generated at Thu Mar 26 23:02:44 2026 by rpki-client