$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/A22E9E42CF3D11EFB2075D13C4F9AE02.roa File: A22E9E42CF3D11EFB2075D13C4F9AE02.roa (raw, json) Hash identifier: ss0YI+B1lf1/HyieA54sjFtoYFYl3d3YUcG8i2TmMR4= Subject key identifier: F0:55:A2:B3:A4:B8:B7:1D:B9:0D:64:92:6F:8B:67:EA:6A:AD:D1:25 Certificate issuer: /CN=A91F0578/serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Certificate serial: E4 Authority key identifier: 1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/A22E9E42CF3D11EFB2075D13C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:05:42 +0000 ROA not before: Fri 10 Jan 2025 10:31:46 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153516 IP address blocks: 161.248.154.0/23 maxlen: 23 161.248.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:42:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0578, serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Validity Not Before: Jan 10 10:31:46 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a58b26-f163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:41:92:45:95:a3:23:d7:6e:ea:e9:e9:62:2e: d2:d6:33:a2:3f:f0:dd:05:c3:61:b1:e6:ed:81:50: 3d:11:b6:4e:c4:d6:d3:5a:32:92:94:5b:7c:2d:0a: 44:26:74:d0:97:f0:e1:76:70:70:40:a6:55:3d:7d: 9a:3d:90:98:bb:90:5c:36:ab:33:98:b6:13:f6:40: cb:a6:f8:29:02:47:a0:f8:9a:65:0b:5f:6d:42:2c: 75:6f:13:fe:78:ba:f0:42:9f:fd:53:2a:7a:65:71: 1c:51:8a:09:54:57:09:3e:03:9d:4a:4d:6d:13:b9: 38:52:b0:3c:c9:b7:6f:f8:0f:43:40:90:13:f4:c8: bd:c1:c2:fa:10:2a:f6:f1:1c:a9:88:ab:b0:25:ae: 3f:0c:09:a2:9f:c9:8a:3d:7f:51:ef:a2:0e:4d:c4: ee:1b:14:8d:22:49:06:d5:3a:03:a0:25:b8:34:5f: 3e:69:83:46:57:fc:3e:dc:ab:47:1b:74:d4:d2:e1: f4:97:dd:3a:f7:70:33:41:55:16:57:fa:90:81:8b: be:c3:fb:72:88:ee:63:44:67:9e:04:66:3c:ba:62: 04:cf:f0:5a:70:8a:80:03:3e:49:17:43:56:2f:94: 77:31:1b:c0:88:56:cb:0d:7c:6e:28:b4:7e:70:75: a0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:55:A2:B3:A4:B8:B7:1D:B9:0D:64:92:6F:8B:67:EA:6A:AD:D1:25 X509v3 Authority Key Identifier: keyid:1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/A22E9E42CF3D11EFB2075D13C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.154.0/23 Signature Algorithm: sha256WithRSAEncryption be:b6:ec:03:b9:aa:f9:24:2d:8b:f6:50:57:30:be:86:6f:c9: 65:20:ee:11:fd:20:81:35:7d:ae:1c:8a:fa:ba:d0:64:b1:2a: 84:5a:23:3c:6c:05:07:53:c6:55:7e:b6:cd:e3:f1:9e:2a:28: 44:b0:34:4c:a5:a1:6f:d3:ac:2c:41:cf:8d:03:01:7b:1e:75: a2:23:64:46:03:ac:8f:8c:2e:20:50:7b:0a:89:24:d6:23:95: a0:01:35:41:93:4b:bd:84:b2:d4:8b:e4:52:5d:a8:2a:9c:50: ac:e7:8a:e8:4f:54:7d:3c:40:bc:4c:0b:6c:4b:27:17:91:1f: d4:f6:0b:62:dd:c1:68:77:b0:e2:de:12:c3:e8:3e:aa:90:35: 0f:07:51:24:d3:46:25:59:44:08:6b:6b:d1:5f:a9:8b:99:4d: c8:a7:d7:3c:8d:88:15:1b:31:2b:e5:5b:82:e2:17:59:44:a5: 44:3f:53:46:0d:d9:c4:7e:b4:30:e0:7f:16:10:11:78:2e:f5: d1:49:73:37:a6:01:d7:65:50:12:69:52:65:af:4b:ff:87:45: d6:33:17:93:c7:2c:d5:29:43:df:23:7f:e6:d3:50:f3:94:bf: b7:e9:28:27:c2:6b:18:64:47:e6:09:d0:0c:11:7b:e1:7d:ad: cb:11:35:a1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA1NzgxMTAvBgNVBAUTKDFEM0RBRUY3RDI3ODgzNzNFRERGQ0IxQUQ1QzRDMjM1 NkM1N0FERUQwHhcNMjUwMTEwMTAzMTQ2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGIyNi1mMTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk0GSRZWjI9du6unpYi7S1jOiP/DdBcNhsebtgVA9EbZOxNbTWjKSlFt8LQpE JnTQl/DhdnBwQKZVPX2aPZCYu5BcNqszmLYT9kDLpvgpAkeg+JplC19tQix1bxP+ eLrwQp/9Uyp6ZXEcUYoJVFcJPgOdSk1tE7k4UrA8ybdv+A9DQJAT9Mi9wcL6ECr2 8RypiKuwJa4/DAmin8mKPX9R76IOTcTuGxSNIkkG1ToDoCW4NF8+aYNGV/w+3KtH G3TU0uH0l90693AzQVUWV/qQgYu+w/tyiO5jRGeeBGY8umIEz/BacIqAAz5JF0NW L5R3MRvAiFbLDXxuKLR+cHWguwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPBVorOk uLcduQ1kkm+LZ+pqrdElMB8GA1UdIwQYMBaAFB09rvfSeINz7d/LGtXEwjVsV63t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDU3OC8wMDNBNzlEQUNG M0QxMUVGOTEzODBFMTFDNEY5QUUwMi9IVDJ1OTlKNGczUHQzOHNhMWNUQ05XeFhy ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hUMnU5OUo0ZzNQdDM4c2ExY1RDTld4WHJlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjA1NzgvMDAzQTc5REFDRjNEMTFFRjkxMzgwRTExQzRGOUFFMDIvQTIyRTlFNDJD RjNEMTFFRkIyMDc1RDEzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofiaMA0GCSqGSIb3DQEBCwUAA4IBAQC+tuwDuar5JC2L9lBXML6G b8llIO4R/SCBNX2uHIr6utBksSqEWiM8bAUHU8ZVfrbN4/GeKihEsDRMpaFv06ws Qc+NAwF7HnWiI2RGA6yPjC4gUHsKiSTWI5WgATVBk0u9hLLUi+RSXagqnFCs54ro T1R9PEC8TAtsSycXkR/U9gti3cFod7Di3hLD6D6qkDUPB1Ek00YlWUQIa2vRX6mL mU3Ip9c8jYgVGzEr5VuC4hdZRKVEP1NGDdnEfrQw4H8WEBF4LvXRSXM3pgHXZVAS aVJlr0v/h0XWMxeTxyzVKUPfI3/m01DzlL+36SgnwmsYZEfmCdAMEXvhfa3LETWh -----END CERTIFICATE-----Generated at Fri Mar 27 03:10:42 2026 by rpki-client