$ rpki-client -vvf rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/A1CF550A912511EF8FF0813AC4F9AE02.roa File: A1CF550A912511EF8FF0813AC4F9AE02.roa (raw, json) Hash identifier: rVa/wWPzr3OwQnrIVB/RLkiVW7fhkqdwgET1KnDvQTI= Subject key identifier: 86:E2:2E:9C:E7:09:63:3E:FF:02:96:76:B8:C6:70:08:00:E2:CE:03 Certificate issuer: /CN=A91396E7/serialNumber=1247081E9BA97C13C7DD3D68E443D1F5479B2AFF Certificate serial: 0107 Authority key identifier: 12:47:08:1E:9B:A9:7C:13:C7:DD:3D:68:E4:43:D1:F5:47:9B:2A:FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EkcIHpupfBPH3T1o5EPR9UebKv8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/A1CF550A912511EF8FF0813AC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:06:07 +0000 ROA not before: Mon 27 Oct 2025 08:19:59 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 132855 IP address blocks: 160.191.58.0/23 maxlen: 23 160.191.58.0/24 maxlen: 24 160.191.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/EkcIHpupfBPH3T1o5EPR9UebKv8.crl rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/EkcIHpupfBPH3T1o5EPR9UebKv8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EkcIHpupfBPH3T1o5EPR9UebKv8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91396E7, serialNumber=1247081E9BA97C13C7DD3D68E443D1F5479B2AFF Validity Not Before: Oct 27 08:19:59 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a58b3e-a941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:5b:bb:0a:86:0b:d3:c5:0f:f8:bb:a5:20:bc: 00:b9:5b:41:b9:03:8f:3b:fd:fe:d4:18:1c:01:d5: d4:9c:b2:f3:64:ad:6a:e1:51:e5:fd:ef:d8:38:42: de:a0:c2:37:d6:e9:94:ee:d8:83:ba:ae:99:42:5e: e5:b2:51:73:f3:8d:13:d2:34:c8:9b:47:66:2a:7e: ea:59:9c:7d:f7:a1:0a:33:fc:c1:56:36:e7:36:7e: 65:8e:37:21:69:4c:5b:a6:36:73:11:34:43:ab:df: df:3b:3e:9a:a4:6f:44:65:d3:b8:e6:cb:f4:37:3d: bb:c3:15:0d:52:c4:b3:28:2b:77:8e:8f:e6:ef:f0: 2c:86:53:68:63:2d:30:fa:53:07:04:76:dd:fd:0b: 28:a6:37:40:d7:e2:6e:e1:87:99:03:7e:bc:de:67: 27:d6:b6:03:42:27:a2:1b:f0:da:da:28:7d:b7:36: 73:1c:90:97:8e:03:82:59:63:92:bd:a8:de:c9:1d: 09:6a:6a:97:45:83:fc:30:c3:8c:8a:12:06:d4:3b: 27:6b:e7:09:70:f6:e5:cd:70:0f:19:30:77:6c:ab: 72:33:cb:3f:1d:6a:47:78:f2:8d:43:f7:0d:99:98: 32:f4:84:d1:a0:19:99:06:f5:54:3a:c8:28:3d:7e: 41:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:E2:2E:9C:E7:09:63:3E:FF:02:96:76:B8:C6:70:08:00:E2:CE:03 X509v3 Authority Key Identifier: keyid:12:47:08:1E:9B:A9:7C:13:C7:DD:3D:68:E4:43:D1:F5:47:9B:2A:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/EkcIHpupfBPH3T1o5EPR9UebKv8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EkcIHpupfBPH3T1o5EPR9UebKv8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/A1CF550A912511EF8FF0813AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.191.58.0/23 Signature Algorithm: sha256WithRSAEncryption df:0a:91:39:62:88:36:e6:46:d2:ed:44:56:1b:09:89:35:21: 2f:12:57:d5:94:d0:c3:af:83:65:64:94:59:65:5e:c4:5d:59: 35:68:08:4f:68:40:d8:28:81:bc:8e:da:05:80:69:59:15:c3: f9:de:58:d0:e2:76:9b:87:71:56:22:86:60:2e:48:a1:69:53: 23:9c:64:28:fe:c4:c7:b8:7c:12:ab:de:b3:0a:13:3d:4d:05: 65:31:c9:38:a7:6c:99:2d:fd:c3:05:57:66:4f:06:ef:f8:be: 3c:0d:db:e5:78:3d:46:ad:58:a2:2f:b7:a6:27:a8:0b:c2:4a: a9:c9:af:91:3b:76:54:5b:91:c7:dc:68:7b:78:2e:b1:69:25: cb:cf:29:1b:68:5e:ad:f9:85:c3:88:56:2d:9e:30:e5:d0:47: 52:3f:6b:6c:6d:bb:44:26:c0:c1:ea:f3:90:18:74:51:21:a1: e2:38:0d:fa:8a:df:22:7d:0f:a1:23:39:11:1e:88:9a:ef:be: 95:7b:92:2e:50:d2:9f:c1:7e:2a:7c:5b:e1:df:f9:7c:30:03: e7:46:48:70:70:be:fe:72:ad:0d:b4:16:24:76:d4:93:ab:23: e5:b6:45:47:a0:27:eb:fc:20:0a:35:7b:82:e8:93:90:31:4c: ce:e1:b4:bc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk2RTcxMTAvBgNVBAUTKDEyNDcwODFFOUJBOTdDMTNDN0REM0Q2OEU0NDNEMUY1 NDc5QjJBRkYwHhcNMjUxMDI3MDgxOTU5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGIzZS1hOTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7lu7CoYL08UP+LulILwAuVtBuQOPO/3+1BgcAdXUnLLzZK1q4VHl/e/YOELe oMI31umU7tiDuq6ZQl7lslFz840T0jTIm0dmKn7qWZx996EKM/zBVjbnNn5ljjch aUxbpjZzETRDq9/fOz6apG9EZdO45sv0Nz27wxUNUsSzKCt3jo/m7/AshlNoYy0w +lMHBHbd/QsopjdA1+Ju4YeZA3683mcn1rYDQieiG/Da2ih9tzZzHJCXjgOCWWOS vajeyR0JamqXRYP8MMOMihIG1Dsna+cJcPblzXAPGTB3bKtyM8s/HWpHePKNQ/cN mZgy9ITRoBmZBvVUOsgoPX5BQQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIbiLpzn CWM+/wKWdrjGcAgA4s4DMB8GA1UdIwQYMBaAFBJHCB6bqXwTx909aORD0fVHmyr/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTZFNy8wNjc5QUNGNDkx MjUxMUVGOTQyQTJCMjhDNEY5QUUwMi9Fa2NJSHB1cGZCUEgzVDFvNUVQUjlVZWJL djguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VrY0lIcHVwZkJQSDNUMW81RVBSOVVlYkt2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk2RTcvMDY3OUFDRjQ5MTI1MTFFRjk0MkEyQjI4QzRGOUFFMDIvQTFDRjU1MEE5 MTI1MTFFRjhGRjA4MTNBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoL86MA0GCSqGSIb3DQEBCwUAA4IBAQDfCpE5Yog25kbS7URWGwmJ NSEvElfVlNDDr4NlZJRZZV7EXVk1aAhPaEDYKIG8jtoFgGlZFcP53ljQ4nabh3FW IoZgLkihaVMjnGQo/sTHuHwSq96zChM9TQVlMck4p2yZLf3DBVdmTwbv+L48Ddvl eD1GrViiL7emJ6gLwkqpya+RO3ZUW5HH3Gh7eC6xaSXLzykbaF6t+YXDiFYtnjDl 0EdSP2tsbbtEJsDB6vOQGHRRIaHiOA36it8ifQ+hIzkRHoia776Ve5IuUNKfwX4q fFvh3/l8MAPnRkhwcL7+cq0NtBYkdtSTqyPltkVHoCfr/CAKNXuC6JOQMUzO4bS8 -----END CERTIFICATE-----Generated at Wed Mar 4 10:08:43 2026 by rpki-client