$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/2B6A4C480CDC11F0BAA65183C4F9AE02.roa File: 2B6A4C480CDC11F0BAA65183C4F9AE02.roa (raw, json) Hash identifier: GqBmWG7cp4InXGzH112fZPiBHKzEQ6yteA8i5t3EwNk= Subject key identifier: 8A:B7:8E:76:AE:FA:1B:00:0F:69:B2:D5:D0:AB:45:FF:E0:FB:11:1D Certificate issuer: /CN=A91E5EEA/serialNumber=D60C30B1A9F59C959AD4967F2F6D572ACB75299C Certificate serial: ED Authority key identifier: D6:0C:30:B1:A9:F5:9C:95:9A:D4:96:7F:2F:6D:57:2A:CB:75:29:9C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/2B6A4C480CDC11F0BAA65183C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:21:41 +0000 ROA not before: Wed 29 Oct 2025 06:21:48 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153340 IP address blocks: 160.187.126.0/23 maxlen: 23 160.187.126.0/24 maxlen: 24 160.187.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:46:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=D60C30B1A9F59C959AD4967F2F6D572ACB75299C Validity Not Before: Oct 29 06:21:48 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a58ee5-546f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:95:ae:24:dc:34:b1:2d:75:5e:da:63:58:2a: cd:be:27:3b:14:ef:ca:51:10:00:2a:6f:93:e4:c0: 81:5f:f5:42:7d:bd:9b:e3:7c:84:e6:f1:2c:bd:30: 6e:65:70:66:a2:37:8c:18:cf:93:34:05:64:34:9b: ca:47:cf:08:6f:f0:0a:7d:b5:68:46:66:6d:30:8c: af:5b:5c:0c:d7:c3:4a:a6:14:a6:ab:34:7c:00:00: b6:c2:52:a4:70:3d:e0:2f:9d:9f:55:71:04:d7:38: 08:9d:e4:d0:f7:dd:6a:ff:4e:04:a2:5b:8f:80:12: 7b:85:24:9c:c3:0a:de:8d:57:2b:4f:42:27:31:e5: 18:1f:77:c8:13:73:12:28:24:fe:4c:e8:34:d7:ee: 09:a3:5e:7e:b0:75:34:50:09:ae:04:bc:44:8f:3c: 91:b3:97:6d:7e:dd:6f:a2:52:37:5e:e6:47:a8:b5: ae:93:de:ab:ce:05:b5:60:12:c6:dd:70:e9:ca:1f: d2:c6:8f:33:7a:4a:2a:49:31:7f:3a:ff:b4:25:2b: ad:f0:a2:56:b8:16:22:f1:59:dc:26:68:3c:de:6b: 32:71:bb:65:44:96:c9:dd:3f:56:55:33:46:f8:2b: 5f:ea:6f:e0:03:05:f5:88:ce:c6:96:55:6d:89:99: 7e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B7:8E:76:AE:FA:1B:00:0F:69:B2:D5:D0:AB:45:FF:E0:FB:11:1D X509v3 Authority Key Identifier: keyid:D6:0C:30:B1:A9:F5:9C:95:9A:D4:96:7F:2F:6D:57:2A:CB:75:29:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/2B6A4C480CDC11F0BAA65183C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.187.126.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:f2:72:03:90:58:96:5a:f6:48:17:38:d9:3e:b0:29:8e:4f: 59:64:5b:15:cf:35:db:91:32:cd:b4:e4:95:b8:5e:69:ef:e5: 24:eb:31:05:c1:1c:35:15:1f:0e:8a:84:3e:b1:0f:f9:5f:c5: 87:8f:ac:fd:9c:14:e5:69:8f:35:2d:98:81:9f:70:50:ee:f6: 5c:88:8a:5f:ab:2f:89:7a:62:dd:5f:89:c1:49:69:6e:6e:ae: ed:d9:3c:1c:87:61:50:82:4b:e2:12:49:37:af:4c:64:5d:7e: c6:0f:42:b2:96:49:dc:29:a5:28:ed:61:67:b3:58:ab:1c:36: b1:a1:d7:8e:06:11:34:f0:d1:fb:2b:64:4e:a3:2e:3e:69:98: c9:08:83:f8:a9:f7:b7:c8:2a:6e:cc:45:da:47:52:93:69:dc: 8b:05:df:d7:4f:7d:57:e7:4d:97:7e:27:2b:41:7f:0a:e9:14: 71:9c:7a:29:96:ad:d5:4e:77:f8:8d:03:f5:95:86:26:14:ea: 3f:0c:c5:c2:4f:fa:1e:85:11:8e:e1:4e:4e:09:b4:0c:c1:1d: 21:d4:a8:f9:ec:ac:17:b9:7c:c7:ed:cd:e1:5f:32:c9:d8:69: 91:99:4b:f2:0e:04:14:90:a2:0a:a8:a1:79:dd:00:ff:2f:6e: 5c:41:3d:0a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVFRUExMTAvBgNVBAUTKEQ2MEMzMEIxQTlGNTlDOTU5QUQ0OTY3RjJGNkQ1NzJB Q0I3NTI5OUMwHhcNMjUxMDI5MDYyMTQ4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGVlNS01NDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpWuJNw0sS11XtpjWCrNvic7FO/KURAAKm+T5MCBX/VCfb2b43yE5vEsvTBu ZXBmojeMGM+TNAVkNJvKR88Ib/AKfbVoRmZtMIyvW1wM18NKphSmqzR8AAC2wlKk cD3gL52fVXEE1zgIneTQ991q/04EoluPgBJ7hSScwwrejVcrT0InMeUYH3fIE3MS KCT+TOg01+4Jo15+sHU0UAmuBLxEjzyRs5dtft1volI3XuZHqLWuk96rzgW1YBLG 3XDpyh/Sxo8zekoqSTF/Ov+0JSut8KJWuBYi8VncJmg83msycbtlRJbJ3T9WVTNG +Ctf6m/gAwX1iM7GllVtiZl+LQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIq3jnau +hsAD2my1dCrRf/g+xEdMB8GA1UdIwQYMBaAFNYMMLGp9ZyVmtSWfy9tVyrLdSmc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUVFQS9FM0ZDRDE0NEQ0 Q0YxMUVGOThERjk4MkJDNEY5QUUwMi8xZ3d3c2FuMW5KV2ExSlpfTDIxWEtzdDFL WncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFnd3dzYW4xbkpXYTFKWl9MMjFYS3N0MUtady5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTVFRUEvRTNGQ0QxNDRENENGMTFFRjk4REY5ODJCQzRGOUFFMDIvMkI2QTRDNDgw Q0RDMTFGMEJBQTY1MTgzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoLt+MA0GCSqGSIb3DQEBCwUAA4IBAQAK8nIDkFiWWvZIFzjZPrAp jk9ZZFsVzzXbkTLNtOSVuF5p7+Uk6zEFwRw1FR8OioQ+sQ/5X8WHj6z9nBTlaY81 LZiBn3BQ7vZciIpfqy+JemLdX4nBSWlubq7t2Twch2FQgkviEkk3r0xkXX7GD0Ky lkncKaUo7WFns1irHDaxodeOBhE08NH7K2ROoy4+aZjJCIP4qfe3yCpuzEXaR1KT adyLBd/XT31X502XficrQX8K6RRxnHoplq3VTnf4jQP1lYYmFOo/DMXCT/oehRGO 4U5OCbQMwR0h1Kj57KwXuXzH7c3hXzLJ2GmRmUvyDgQUkKIKqKF53QD/L25cQT0K -----END CERTIFICATE-----Generated at Thu Mar 26 19:39:08 2026 by rpki-client