$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1046CB98D28311EDB1655152C4F9AE02.roa File: 1046CB98D28311EDB1655152C4F9AE02.roa (raw, json) Hash identifier: JNyU8R5c8QL0IEETvSkoNrLyRGc2x887+ZYrTw2mI3Q= Subject key identifier: DC:92:BE:5F:70:A9:8F:AB:B3:C5:1B:B0:6D:48:92:28:21:78:C1:70 Certificate issuer: /CN=A91FDD4D/serialNumber=D50C2957DFA840A9430FB9EE25D4DCFA17129C18 Certificate serial: 0238 Authority key identifier: D5:0C:29:57:DF:A8:40:A9:43:0F:B9:EE:25:D4:DC:FA:17:12:9C:18 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1046CB98D28311EDB1655152C4F9AE02.roa Signing time: Wed 04 Mar 2026 16:19:46 +0000 ROA not before: Wed 04 Mar 2026 16:19:46 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 137549 IP address blocks: 80.249.0.0/20 maxlen: 22 80.249.11.0/24 maxlen: 24 80.249.12.0/23 maxlen: 24 80.249.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=D50C2957DFA840A9430FB9EE25D4DCFA17129C18 Validity Not Before: Mar 4 16:19:46 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a85ba2-5bcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6d:f4:0d:17:71:c2:bb:2b:a6:7d:c4:3a:ec: f6:4c:06:70:57:a1:f7:df:5a:7f:a5:14:5b:aa:9e: f3:e9:af:de:02:b5:dc:cd:a0:fd:b7:f9:69:6a:91: 85:c8:90:d9:7a:8b:51:f0:58:9e:89:b9:6d:a8:19: 1c:e3:67:c3:8e:4d:8c:61:6d:77:71:a8:7f:78:0c: cc:97:26:95:45:ba:33:10:89:25:34:80:21:4a:11: 42:de:6f:06:39:9e:82:7a:db:68:05:07:3f:f8:72: 58:c2:60:6d:20:cc:a0:73:83:75:8c:28:7c:db:56: 0d:49:ad:15:9e:3d:a3:c5:3c:76:93:83:1d:bd:07: f9:0c:b0:d2:7c:24:67:77:0a:05:28:54:ca:19:f1: 90:36:42:bd:29:0e:6c:45:ad:5b:9c:3c:6e:3a:a3: 03:48:30:fa:8e:67:9c:e8:81:74:e2:85:7b:f0:38: 2f:33:ca:11:68:fd:ad:ca:25:85:80:72:3a:37:ae: c8:12:9f:af:9a:61:cd:b2:0e:5f:43:3d:8c:4a:bc: c5:92:f2:32:81:6c:9e:3a:7f:d4:93:71:5e:9b:43: b4:94:ab:22:35:ea:1f:15:82:3c:e8:d5:69:30:0e: ba:67:7b:6a:95:b7:79:07:c5:b0:64:b4:92:38:48: 4b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:92:BE:5F:70:A9:8F:AB:B3:C5:1B:B0:6D:48:92:28:21:78:C1:70 X509v3 Authority Key Identifier: keyid:D5:0C:29:57:DF:A8:40:A9:43:0F:B9:EE:25:D4:DC:FA:17:12:9C:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1046CB98D28311EDB1655152C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 80.249.0.0/20 Signature Algorithm: sha256WithRSAEncryption 57:58:c1:76:9c:92:87:1f:27:d4:8a:77:02:3b:20:a3:85:42: 80:d4:a5:c0:64:28:ed:98:85:f2:56:ca:17:49:38:f4:65:ef: 29:94:04:c5:f5:f9:4e:0f:43:b7:e3:46:84:ee:8c:52:d4:d1: ab:ca:2e:c0:78:34:1a:96:f2:7b:83:93:db:4b:0e:c9:1b:ab: 60:1e:24:e4:27:4b:90:ef:5c:ba:1b:db:6d:47:90:b5:91:25: 22:f4:8b:fd:63:9b:80:6e:0c:3e:78:db:70:e6:9f:8a:44:92: a6:ea:17:f2:63:a6:71:8a:52:d9:bc:87:c5:1f:55:e7:66:1f: b9:29:ce:15:9a:59:4d:e1:33:91:d7:16:68:76:f2:39:aa:1e: 03:35:18:38:d4:07:e4:aa:48:15:ab:cf:0d:a4:cd:ef:8f:1f: 11:bf:ae:c8:0f:ce:0d:ce:1b:05:28:d2:f6:47:b8:27:57:1c: 23:30:f8:21:a4:9b:87:25:16:e2:08:14:27:c2:cb:7a:23:8e: 4c:d0:e3:63:5e:35:0d:eb:84:8e:28:4e:b9:87:46:2f:b5:ed: e2:b8:7f:86:5b:02:e4:d2:2d:b2:54:52:59:ed:68:d4:b8:38: ac:87:55:fd:99:c7:49:3e:b0:6a:7f:fd:75:80:96:eb:0c:b9: d7:aa:7b:76 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKEQ1MEMyOTU3REZBODQwQTk0MzBGQjlFRTI1RDREQ0ZB MTcxMjlDMTgwHhcNMjYwMzA0MTYxOTQ2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4NWJhMi01YmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxG30DRdxwrsrpn3EOuz2TAZwV6H331p/pRRbqp7z6a/eArXczaD9t/lpapGF yJDZeotR8FieibltqBkc42fDjk2MYW13cah/eAzMlyaVRbozEIklNIAhShFC3m8G OZ6CettoBQc/+HJYwmBtIMygc4N1jCh821YNSa0Vnj2jxTx2k4MdvQf5DLDSfCRn dwoFKFTKGfGQNkK9KQ5sRa1bnDxuOqMDSDD6jmec6IF04oV78DgvM8oRaP2tyiWF gHI6N67IEp+vmmHNsg5fQz2MSrzFkvIygWyeOn/Uk3Fem0O0lKsiNeofFYI86NVp MA66Z3tqlbd5B8WwZLSSOEhLzwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNySvl9w qY+rs8UbsG1IkigheMFwMB8GA1UdIwQYMBaAFNUMKVffqECpQw+57iXU3PoXEpwY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC82NjBFMDU4OEQy N0QxMUVEOEU5QTI1ODBDNEY5QUUwMi8xUXdwVjktb1FLbEREN251SmRUYy1oY1Nu QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzFRd3BWOS1vUUtsREQ3bnVKZFRjLWhjU25CZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRENEQvNjYwRTA1ODhEMjdEMTFFRDhFOUEyNTgwQzRGOUFFMDIvMTA0NkNCOThE MjgzMTFFREIxNjU1MTUyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEUPkAMA0GCSqGSIb3DQEBCwUAA4IBAQBXWMF2nJKHHyfUincCOyCj hUKA1KXAZCjtmIXyVsoXSTj0Ze8plATF9flOD0O340aE7oxS1NGryi7AeDQalvJ7 g5PbSw7JG6tgHiTkJ0uQ71y6G9ttR5C1kSUi9Iv9Y5uAbgw+eNtw5p+KRJKm6hfy Y6ZxilLZvIfFH1XnZh+5Kc4VmllN4TOR1xZodvI5qh4DNRg41AfkqkgVq88NpM3v jx8Rv67ID84NzhsFKNL2R7gnVxwjMPghpJuHJRbiCBQnwst6I45M0ONjXjUN64SO KE65h0Yvte3iuH+GWwLk0i2yVFJZ7WjUuDish1X9mcdJPrBqf/11gJbrDLnXqnt2 -----END CERTIFICATE-----Generated at Thu Mar 26 05:35:27 2026 by rpki-client