$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/8B349526E61B11EFA5CFAA1CC4F9AE02.roa File: 8B349526E61B11EFA5CFAA1CC4F9AE02.roa (raw, json) Hash identifier: F7qe28PpA345V26FD2oUaMsUxza0CcnCGUsZQT4PC2E= Subject key identifier: 13:50:6A:86:9A:45:93:56:C1:B7:85:F8:C2:8A:A4:8E:F3:77:D0:A9 Certificate issuer: /CN=A91F0578/serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Certificate serial: E5 Authority key identifier: 1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/8B349526E61B11EFA5CFAA1CC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:05:43 +0000 ROA not before: Sat 08 Feb 2025 12:52:25 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 150001 IP address blocks: 161.248.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:42:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0578, serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Validity Not Before: Feb 8 12:52:25 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a58b27-a89c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:be:81:f0:f5:5a:da:17:56:37:ca:c0:f9:6d: d6:fd:f0:2d:11:fc:b5:c6:cd:f4:df:99:15:bb:5a: 39:b6:23:70:30:bd:9d:3d:fb:8b:a9:de:9e:3d:3d: 92:b2:75:6f:cb:db:e9:e0:66:74:2a:84:a3:06:37: 45:09:50:1c:67:22:70:55:c0:7a:30:f0:f8:c7:4b: 53:9b:30:1f:c0:55:0c:c3:a3:2a:a9:e0:fa:98:94: 00:6b:3b:c4:e2:d1:f4:98:99:d0:e3:ed:4a:0a:e6: ac:07:60:bb:70:02:3c:ad:8c:2f:39:68:70:42:20: 0c:85:dc:54:e1:31:91:fe:64:7b:67:83:94:7b:9d: 71:6b:81:ec:92:80:d3:d4:06:c2:56:2d:79:19:12: 07:1e:99:7a:4f:13:9e:8f:6f:57:f2:ad:8a:9d:e2: a0:f8:c3:df:6c:c5:15:a1:db:18:20:99:ae:eb:5b: 96:c4:7c:8b:5e:29:c7:16:ae:fe:df:9a:00:29:e7: ca:80:cc:bd:10:45:1b:75:d1:18:f9:be:f2:c3:96: 3b:5c:eb:36:25:56:5f:b0:6b:d8:5c:3d:01:1c:16: 8b:c9:54:99:ac:32:4c:d1:7e:77:5a:44:71:1e:b5: d9:e5:fa:d8:b5:7d:c7:30:05:8c:ab:9e:88:50:f4: 28:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:50:6A:86:9A:45:93:56:C1:B7:85:F8:C2:8A:A4:8E:F3:77:D0:A9 X509v3 Authority Key Identifier: keyid:1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/8B349526E61B11EFA5CFAA1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.155.0/24 Signature Algorithm: sha256WithRSAEncryption 42:53:6e:d6:22:bb:42:4f:5c:8c:5d:f4:bb:50:a9:9d:cb:fc: 7d:52:52:d9:1f:18:cf:42:d7:a7:b1:6e:f0:9a:49:4f:37:06: 84:44:ff:0a:40:0b:cb:c6:74:3e:fb:0a:3c:f2:63:b7:76:2c: ac:3b:9f:34:38:d9:9d:75:89:8a:41:3c:d2:36:fe:d9:d0:71: 08:7f:3c:d0:57:bb:31:81:59:12:8d:16:4b:55:4d:2a:f8:45: 98:e2:37:cb:02:6c:2f:bd:c7:8a:ed:59:9c:a8:b0:a0:65:1f: 2f:72:21:ca:cc:2d:84:e4:ee:58:88:b6:74:33:75:48:40:8a: 59:07:5c:76:9f:d1:3b:c4:8f:4a:6b:b1:70:c8:2a:04:38:49: 0a:da:c9:4f:98:5a:32:94:fa:90:94:69:2c:69:d6:01:f8:0f: 0d:16:7a:a6:fa:e6:98:38:62:bc:06:a1:ef:ec:a2:96:1d:8a: 69:a0:1b:66:5b:33:cb:c2:8e:e3:85:50:14:71:71:1e:08:73: 07:19:65:46:7c:13:36:be:4a:e1:59:9a:ec:ba:8d:8b:61:dc: 48:11:e1:45:65:84:ba:3d:43:7c:17:88:b2:62:f2:1b:4a:cc: 8b:c1:62:cd:37:16:95:8f:6e:b4:1a:ec:d2:de:e6:66:47:5c: 2d:2d:5f:2f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA1NzgxMTAvBgNVBAUTKDFEM0RBRUY3RDI3ODgzNzNFRERGQ0IxQUQ1QzRDMjM1 NkM1N0FERUQwHhcNMjUwMjA4MTI1MjI1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGIyNy1hODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlb6B8PVa2hdWN8rA+W3W/fAtEfy1xs3035kVu1o5tiNwML2dPfuLqd6ePT2S snVvy9vp4GZ0KoSjBjdFCVAcZyJwVcB6MPD4x0tTmzAfwFUMw6MqqeD6mJQAazvE 4tH0mJnQ4+1KCuasB2C7cAI8rYwvOWhwQiAMhdxU4TGR/mR7Z4OUe51xa4HskoDT 1AbCVi15GRIHHpl6TxOej29X8q2KneKg+MPfbMUVodsYIJmu61uWxHyLXinHFq7+ 35oAKefKgMy9EEUbddEY+b7yw5Y7XOs2JVZfsGvYXD0BHBaLyVSZrDJM0X53WkRx HrXZ5frYtX3HMAWMq56IUPQouwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBNQaoaa RZNWwbeF+MKKpI7zd9CpMB8GA1UdIwQYMBaAFB09rvfSeINz7d/LGtXEwjVsV63t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDU3OC8wMDNBNzlEQUNG M0QxMUVGOTEzODBFMTFDNEY5QUUwMi9IVDJ1OTlKNGczUHQzOHNhMWNUQ05XeFhy ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hUMnU5OUo0ZzNQdDM4c2ExY1RDTld4WHJlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjA1NzgvMDAzQTc5REFDRjNEMTFFRjkxMzgwRTExQzRGOUFFMDIvOEIzNDk1MjZF NjFCMTFFRkE1Q0ZBQTFDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAofibMA0GCSqGSIb3DQEBCwUAA4IBAQBCU27WIrtCT1yMXfS7UKmd y/x9UlLZHxjPQtensW7wmklPNwaERP8KQAvLxnQ++wo88mO3diysO580ONmddYmK QTzSNv7Z0HEIfzzQV7sxgVkSjRZLVU0q+EWY4jfLAmwvvceK7VmcqLCgZR8vciHK zC2E5O5YiLZ0M3VIQIpZB1x2n9E7xI9Ka7FwyCoEOEkK2slPmFoylPqQlGksadYB +A8NFnqm+uaYOGK8BqHv7KKWHYppoBtmWzPLwo7jhVAUcXEeCHMHGWVGfBM2vkrh WZrsuo2LYdxIEeFFZYS6PUN8F4iyYvIbSsyLwWLNNxaVj260GuzS3uZmR1wtLV8v -----END CERTIFICATE-----Generated at Fri Mar 27 00:04:43 2026 by rpki-client