$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/122F982CB92311EE8A5A4670C4F9AE02.roa File: 122F982CB92311EE8A5A4670C4F9AE02.roa (raw, json) Hash identifier: 4jS+QlkhdHtI+n+A/Klu+tS38l+vlOTdggRzv/DJqBg= Subject key identifier: DE:0D:11:14:C2:9D:0B:A2:7F:84:D8:CB:3F:6B:34:A4:86:79:A6:A5 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2176 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/122F982CB92311EE8A5A4670C4F9AE02.roa Signing time: Fri 06 Mar 2026 08:00:55 +0000 ROA not before: Fri 06 Mar 2026 08:00:54 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140766 IP address blocks: 64.239.24.0/22 maxlen: 24 157.10.186.0/23 maxlen: 24 157.10.188.0/23 maxlen: 24 157.66.96.0/23 maxlen: 24 167.254.64.0/20 maxlen: 24 192.223.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8566 (0x2176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Mar 6 08:00:54 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69aa89b6-2707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a5:af:2e:c8:0c:cc:60:0f:04:ff:6b:e6:50: e5:cb:71:67:58:66:67:0a:9d:01:d5:9c:f9:71:bf: 01:18:67:0a:0e:1e:34:fc:f1:ef:fe:d2:ae:e7:61: 5c:96:68:6c:0e:67:ad:b6:d4:93:5a:03:d9:19:94: 03:bf:0b:d7:f9:5e:6f:4b:23:eb:ff:f7:25:7e:2e: 52:fa:fc:ae:cd:46:62:0a:bf:26:0a:d6:43:9d:b8: d7:d5:97:a8:d3:a9:25:fa:e9:da:b4:bd:01:86:a4: f5:df:50:c2:89:9e:42:71:4e:3a:a4:fc:83:23:40: 1f:8b:4b:20:e5:51:6f:d3:95:d2:4f:8d:a8:a4:05: a4:9f:d4:e6:8f:75:f1:0e:49:ad:12:83:0a:17:5e: 3d:c4:7c:82:4c:1b:ff:85:4f:32:2e:c1:47:66:75: 92:a3:75:3f:fb:2a:85:52:f7:5e:ac:40:d3:e7:fe: 59:cc:48:fc:92:34:cb:72:07:13:de:a9:92:f5:55: 94:bf:aa:6d:a4:ec:51:d3:58:01:b7:cf:00:3e:c2: 2d:71:b4:6b:bf:0d:73:b5:d1:08:1c:aa:cd:be:eb: 14:7e:37:58:77:61:c7:79:22:7b:76:d9:50:3b:43: a3:ce:1d:b2:a5:b8:5a:4e:eb:de:34:30:66:c6:bc: e5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:0D:11:14:C2:9D:0B:A2:7F:84:D8:CB:3F:6B:34:A4:86:79:A6:A5 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/122F982CB92311EE8A5A4670C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 64.239.24.0/22 157.10.186.0-157.10.189.255 157.66.96.0/23 167.254.64.0/20 192.223.12.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:d6:24:04:23:61:fa:b3:6d:35:95:6f:af:c1:59:a5:66:31: 13:7b:74:c8:56:48:97:22:a6:50:f4:c9:a0:99:fa:05:7f:1a: 27:61:45:33:4e:c2:02:58:da:04:86:52:34:12:09:58:58:24: e7:0d:99:9f:7e:fb:a6:44:a1:fa:3d:09:f2:c6:e9:33:ce:c2: 18:3e:0c:85:f5:69:5f:2c:66:74:15:1e:a9:5d:89:83:76:48: 3c:cd:c4:76:1d:38:4c:5f:06:62:5a:7a:58:bb:b0:c5:60:9c: 2d:7b:30:38:86:b9:9f:a5:58:a7:f2:73:bc:47:2d:25:ce:d5: 58:bf:0e:c8:a6:d4:1c:76:f2:37:7e:84:b9:7a:df:35:18:50: 9c:5e:6b:7a:5b:e0:ff:1a:50:9c:b8:5c:28:b2:9f:a4:63:75: e8:d6:15:2b:ae:bb:45:4d:cb:a1:d6:a0:7f:25:e0:48:93:cf: 6c:ae:de:fb:33:fb:1c:49:c3:ed:84:ee:71:ee:69:01:c1:da: 0d:d4:bc:35:85:b7:53:3d:05:78:a7:8d:45:31:21:11:ac:1f: f4:2c:82:53:ad:64:f8:5b:cd:51:be:e1:bf:db:2b:73:64:25: 97:69:30:d1:0b:6e:47:53:93:18:b3:8b:0b:4d:51:a9:73:ea: 0b:b8:d8:b9 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICIXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjYwMzA2MDgwMDU0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFhODliNi0yNzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaWvLsgMzGAPBP9r5lDly3FnWGZnCp0B1Zz5cb8BGGcKDh40/PHv/tKu52Fc lmhsDmetttSTWgPZGZQDvwvX+V5vSyPr//clfi5S+vyuzUZiCr8mCtZDnbjX1Zeo 06kl+unatL0BhqT131DCiZ5CcU46pPyDI0Afi0sg5VFv05XST42opAWkn9Tmj3Xx DkmtEoMKF149xHyCTBv/hU8yLsFHZnWSo3U/+yqFUvderEDT5/5ZzEj8kjTLcgcT 3qmS9VWUv6ptpOxR01gBt88APsItcbRrvw1ztdEIHKrNvusUfjdYd2HHeSJ7dtlQ O0Ojzh2ypbhaTuveNDBmxrzl5QIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFN4NERTC nQuif4TYyz9rNKSGeaalMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMTIyRjk4MkNC OTIzMTFFRThBNUE0NjcwQzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAs BAIAATAmAwQCQO8YMAwDBAGdCroDBAGdCrwDBAGdQmADBASn/kADBALA3wwwDQYJ KoZIhvcNAQELBQADggEBAF7WJAQjYfqzbTWVb6/BWaVmMRN7dMhWSJciplD0yaCZ +gV/GidhRTNOwgJY2gSGUjQSCVhYJOcNmZ9++6ZEofo9CfLG6TPOwhg+DIX1aV8s ZnQVHqldiYN2SDzNxHYdOExfBmJaeli7sMVgnC17MDiGuZ+lWKfyc7xHLSXO1Vi/ Dsim1Bx28jd+hLl63zUYUJxea3pb4P8aUJy4XCiyn6RjdejWFSuuu0VNy6HWoH8l 4EiTz2yu3vsz+xxJw+2E7nHuaQHB2g3UvDWFt1M9BXinjUUxIRGsH/QsglOtZPhb zVG+4b/bK3NkJZdpMNELbkdTkxiziwtNUalz6gu42Lk= -----END CERTIFICATE-----Generated at Sat Mar 7 22:53:57 2026 by rpki-client