$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/1ED36EFC590C11F0913BCB35C4F9AE02.roa File: 1ED36EFC590C11F0913BCB35C4F9AE02.roa (raw, json) Hash identifier: 1wBdfmz9ZOlgXA8cUT97W+oxh2g0aMueEhoUhmPC3Ic= Subject key identifier: 8C:61:CD:F3:80:73:AA:6D:A0:FD:2F:AD:1B:27:74:ED:D4:F2:7D:47 Certificate issuer: /CN=A91FF1CC/serialNumber=446FAF923BEBAF96357287FE250991C75491454D Certificate serial: DD Authority key identifier: 44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/1ED36EFC590C11F0913BCB35C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:30:38 +0000 ROA not before: Tue 13 Jan 2026 05:24:49 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150372 IP address blocks: 161.248.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF1CC, serialNumber=446FAF923BEBAF96357287FE250991C75491454D Validity Not Before: Jan 13 05:24:49 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a59f0e-250a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:dc:c5:3c:97:53:8e:97:3a:db:88:e5:47:35: 23:35:8e:b6:c2:3b:35:a8:0a:9c:62:ce:ca:bc:d5: 1e:0c:6f:32:ae:e1:ed:f5:d9:51:e2:6d:aa:b7:a7: 9f:b0:20:dd:54:74:40:3a:37:48:f5:b0:d9:b0:87: 2b:ed:16:3e:53:6a:dd:9f:6f:01:9d:32:ff:d8:b4: 13:dc:5b:d4:57:9b:85:a8:52:18:73:51:39:b4:cd: e6:a6:08:93:cb:bc:22:2a:cc:3b:f9:10:d1:49:21: 4e:e6:2a:a1:85:e8:3c:4b:7b:a3:e6:48:28:35:9e: e4:3a:78:21:30:c4:99:66:f0:99:d0:6d:d3:fa:7d: 53:c3:86:e6:c2:3c:39:54:b4:a2:d6:0c:82:ed:12: 41:cc:11:fb:00:4c:93:66:7f:38:9c:b4:e7:e8:6a: ce:29:c7:07:5f:eb:d9:9e:fb:86:f2:a9:13:86:99: 72:d2:e7:f4:1e:ea:41:d3:88:a8:98:d5:9c:d9:ce: 91:b9:89:b8:8e:bf:a6:45:e2:bf:c3:75:5a:f6:a0: 68:82:91:09:16:e8:10:7d:50:65:76:c2:2d:3e:39: 65:5e:81:e7:a2:83:13:91:93:35:93:ad:57:c4:58: aa:8b:10:f6:41:08:ba:7c:42:7b:c8:e1:ec:2e:8e: 3e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:61:CD:F3:80:73:AA:6D:A0:FD:2F:AD:1B:27:74:ED:D4:F2:7D:47 X509v3 Authority Key Identifier: keyid:44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/1ED36EFC590C11F0913BCB35C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.57.0/24 Signature Algorithm: sha256WithRSAEncryption 65:23:c9:39:96:08:c1:e9:be:28:4b:70:33:c5:e8:60:3f:36: 40:1a:ab:49:df:04:b7:30:53:07:4e:66:5e:52:31:29:5e:7a: af:e4:bf:ee:73:51:2f:28:f5:7d:d7:c1:7f:67:bd:1e:f3:28: 19:69:7b:67:b6:08:7c:e0:db:e9:04:83:c6:68:2c:4c:b5:1f: 1d:bf:51:4e:7c:2b:3c:38:de:a8:b5:b2:ce:e9:3c:dd:87:f7: b8:7d:7b:99:83:fb:3c:95:a0:80:d9:9e:76:c9:11:6c:9b:36: 32:c5:58:9c:c4:ca:5f:69:94:9b:87:fb:c6:e2:04:06:35:f4: e7:66:35:bf:a4:c7:26:f9:85:2a:73:46:75:88:6a:eb:47:0e: cb:63:47:a4:df:46:68:68:8b:82:b6:30:16:bb:11:ae:c6:5b: 97:b3:b4:a4:88:ba:cc:3d:72:a9:0a:ee:f1:15:b4:99:23:ea: d2:f1:2e:f3:42:95:1c:b2:59:88:14:9a:ab:8c:88:a5:30:86: 0b:89:2b:a5:f2:16:37:28:5e:a8:8d:83:9a:d6:41:19:92:82: 06:27:91:c2:69:8a:6d:e6:b0:c9:b0:15:05:74:a9:32:19:79: 72:ec:3a:ed:16:bf:47:33:8a:b4:0f:87:be:8a:5e:b8:9f:48: b1:60:13:fb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYxQ0MxMTAvBgNVBAUTKDQ0NkZBRjkyM0JFQkFGOTYzNTcyODdGRTI1MDk5MUM3 NTQ5MTQ1NEQwHhcNMjYwMTEzMDUyNDQ5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWYwZS0yNTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh9zFPJdTjpc624jlRzUjNY62wjs1qAqcYs7KvNUeDG8yruHt9dlR4m2qt6ef sCDdVHRAOjdI9bDZsIcr7RY+U2rdn28BnTL/2LQT3FvUV5uFqFIYc1E5tM3mpgiT y7wiKsw7+RDRSSFO5iqhheg8S3uj5kgoNZ7kOnghMMSZZvCZ0G3T+n1Tw4bmwjw5 VLSi1gyC7RJBzBH7AEyTZn84nLTn6GrOKccHX+vZnvuG8qkThply0uf0HupB04io mNWc2c6RuYm4jr+mReK/w3Va9qBogpEJFugQfVBldsItPjllXoHnooMTkZM1k61X xFiqixD2QQi6fEJ7yOHsLo4+iwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIxhzfOA c6ptoP0vrRsndO3U8n1HMB8GA1UdIwQYMBaAFERvr5I766+WNXKH/iUJkcdUkUVN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjFDQy8zQUZDMzNFMkVG NjMxMUVGQkY2NEFCNkFDNEY5QUUwMi9SRy12a2p2cnI1WTFjb2YtSlFtUngxU1JS VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JHLXZranZycjVZMWNvZi1KUW1SeDFTUlJVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkYxQ0MvM0FGQzMzRTJFRjYzMTFFRkJGNjRBQjZBQzRGOUFFMDIvMUVEMzZFRkM1 OTBDMTFGMDkxM0JDQjM1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAofg5MA0GCSqGSIb3DQEBCwUAA4IBAQBlI8k5lgjB6b4oS3Azxehg PzZAGqtJ3wS3MFMHTmZeUjEpXnqv5L/uc1EvKPV918F/Z70e8ygZaXtntgh84Nvp BIPGaCxMtR8dv1FOfCs8ON6otbLO6Tzdh/e4fXuZg/s8laCA2Z52yRFsmzYyxVic xMpfaZSbh/vG4gQGNfTnZjW/pMcm+YUqc0Z1iGrrRw7LY0ek30ZoaIuCtjAWuxGu xluXs7SkiLrMPXKpCu7xFbSZI+rS8S7zQpUcslmIFJqrjIilMIYLiSul8hY3KF6o jYOa1kEZkoIGJ5HCaYpt5rDJsBUFdKkyGXly7DrtFr9HM4q0D4e+il64n0ixYBP7 -----END CERTIFICATE-----Generated at Fri Mar 27 01:07:16 2026 by rpki-client