$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/4A4E595AC91C11EFB0DEB92DC4F9AE02.roa File: 4A4E595AC91C11EFB0DEB92DC4F9AE02.roa (raw, json) Hash identifier: bSkYTFB0UsXdnNdZTRnK8kVgujK8Jo5X2o57i26bETE= Subject key identifier: 0D:9B:4A:CA:D5:D2:B5:D6:3C:89:FB:E9:1E:7C:F1:95:95:1A:2D:CF Certificate issuer: /CN=A91F08A5/serialNumber=85E8EE9A8D30528599062D08CB9CB9D513DF6BD7 Certificate serial: F1 Authority key identifier: 85:E8:EE:9A:8D:30:52:85:99:06:2D:08:CB:9C:B9:D5:13:DF:6B:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/4A4E595AC91C11EFB0DEB92DC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:54:33 +0000 ROA not before: Thu 27 Mar 2025 07:13:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152678 IP address blocks: 119.160.214.0/24 maxlen: 24 119.160.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.crl rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:38:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F08A5, serialNumber=85E8EE9A8D30528599062D08CB9CB9D513DF6BD7 Validity Not Before: Mar 27 07:13:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a59699-78e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f9:41:a4:15:ad:70:16:3d:3e:48:1c:14:3c: 51:9f:f5:64:14:92:23:13:94:c8:25:98:45:98:09: d3:58:f6:40:21:66:7e:02:d6:d3:9d:a1:96:a7:0f: 77:60:b3:02:bf:ac:55:01:05:93:30:cb:a1:ec:70: eb:61:69:cb:e7:66:73:a5:5f:b6:6a:58:1f:ed:24: 7a:f2:77:af:02:37:04:bc:a9:60:b6:d8:40:c8:7d: 35:be:2b:c1:5e:07:95:f0:5c:89:18:d2:f1:91:74: 90:54:fd:dc:ff:b5:87:fb:8c:6e:81:84:f1:b9:0e: 28:6f:9e:0a:bf:fd:12:bc:d1:ff:1b:e1:77:db:2c: e9:32:52:82:25:a9:f9:9f:4d:bd:78:87:1a:b2:96: c2:31:52:f7:32:c0:77:d9:6a:9b:54:c6:ba:3a:ae: 71:12:a1:8b:34:82:09:bb:1b:6e:5f:9f:38:ad:7f: 8a:57:90:e3:d7:1b:f6:f9:7c:84:77:8f:4a:9e:19: 5c:45:14:e3:ce:db:ff:14:af:2f:c4:21:54:11:b0: 19:71:d1:6e:cf:a9:39:0b:27:d7:cf:44:95:4a:3b: 39:5b:81:72:59:1a:d8:df:7f:54:3a:b2:67:55:df: 51:2a:3e:d4:d8:18:d9:bf:e6:f7:4f:10:b7:9a:1d: 5e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:9B:4A:CA:D5:D2:B5:D6:3C:89:FB:E9:1E:7C:F1:95:95:1A:2D:CF X509v3 Authority Key Identifier: keyid:85:E8:EE:9A:8D:30:52:85:99:06:2D:08:CB:9C:B9:D5:13:DF:6B:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/4A4E595AC91C11EFB0DEB92DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 119.160.214.0/23 Signature Algorithm: sha256WithRSAEncryption d3:13:1a:77:d7:93:ce:02:49:d3:ee:cd:6a:99:10:95:bf:f5: a8:1d:74:23:3e:37:19:4b:4c:a6:19:82:9e:e8:f2:cf:3d:43: 24:16:7f:99:ce:02:da:64:c9:85:32:9c:76:d6:4f:59:3a:04: 8d:e1:bb:be:2f:59:c4:bb:a6:7d:6d:1c:e7:ce:b3:4e:ff:28: 2e:49:e9:41:b3:fc:5d:ca:ba:42:67:51:52:6c:22:33:30:53: 03:e3:27:75:99:42:d7:fc:0d:1c:6a:7c:51:71:f6:bd:9c:09: 4e:c6:e4:d6:32:ce:20:02:64:cf:65:ed:09:e7:e9:18:ba:9c: 4b:f4:71:ac:64:8d:9d:cc:0b:2a:79:4e:f8:af:be:44:56:ea: 6a:77:f5:94:0e:1a:85:e1:f1:d2:6f:39:0c:5c:fc:d7:f4:fc: 2e:d8:7c:38:9f:54:39:80:5e:3c:3d:92:0c:34:f5:d3:a8:9b: 7c:34:38:87:07:d4:60:84:f0:f9:fa:fa:b5:06:a8:fe:b0:29: 23:20:7f:a1:b1:f4:5f:fa:91:91:23:bf:7d:b8:32:1a:51:8a: 4d:6c:a0:35:b7:ae:88:2f:f5:4a:3c:f7:01:8a:a7:25:44:4d: f4:e2:b5:69:5b:50:0a:bc:91:a0:aa:32:35:41:d3:30:13:01: 33:d7:c6:f6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA4QTUxMTAvBgNVBAUTKDg1RThFRTlBOEQzMDUyODU5OTA2MkQwOENCOUNCOUQ1 MTNERjZCRDcwHhcNMjUwMzI3MDcxMzMxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTY5OS03OGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxflBpBWtcBY9PkgcFDxRn/VkFJIjE5TIJZhFmAnTWPZAIWZ+AtbTnaGWpw93 YLMCv6xVAQWTMMuh7HDrYWnL52ZzpV+2algf7SR68nevAjcEvKlgtthAyH01vivB XgeV8FyJGNLxkXSQVP3c/7WH+4xugYTxuQ4ob54Kv/0SvNH/G+F32yzpMlKCJan5 n029eIcaspbCMVL3MsB32WqbVMa6Oq5xEqGLNIIJuxtuX584rX+KV5Dj1xv2+XyE d49KnhlcRRTjztv/FK8vxCFUEbAZcdFuz6k5CyfXz0SVSjs5W4FyWRrY339UOrJn Vd9RKj7U2BjZv+b3TxC3mh1ehwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA2bSsrV 0rXWPIn76R588ZWVGi3PMB8GA1UdIwQYMBaAFIXo7pqNMFKFmQYtCMucudUT32vX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDhBNS9EMTUwMzEzNkM5 MUIxMUVGODg3RDZGMkNDNEY5QUUwMi9oZWp1bW8wd1VvV1pCaTBJeTV5NTFSUGZh OWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlanVtbzB3VW9XWkJpMEl5NXk1MVJQZmE5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjA4QTUvRDE1MDMxMzZDOTFCMTFFRjg4N0Q2RjJDQzRGOUFFMDIvNEE0RTU5NUFD OTFDMTFFRkIwREVCOTJEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBd6DWMA0GCSqGSIb3DQEBCwUAA4IBAQDTExp315POAknT7s1qmRCV v/WoHXQjPjcZS0ymGYKe6PLPPUMkFn+ZzgLaZMmFMpx21k9ZOgSN4bu+L1nEu6Z9 bRznzrNO/yguSelBs/xdyrpCZ1FSbCIzMFMD4yd1mULX/A0canxRcfa9nAlOxuTW Ms4gAmTPZe0J5+kYupxL9HGsZI2dzAsqeU74r75EVupqd/WUDhqF4fHSbzkMXPzX 9Pwu2Hw4n1Q5gF48PZIMNPXTqJt8NDiHB9RghPD5+vq1Bqj+sCkjIH+hsfRf+pGR I799uDIaUYpNbKA1t66IL/VKPPcBiqclRE304rVpW1AKvJGgqjI1QdMwEwEz18b2 -----END CERTIFICATE-----Generated at Thu Mar 26 07:25:40 2026 by rpki-client