$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/129AD14466B311EF8C2A846AC4F9AE02.roa File: 129AD14466B311EF8C2A846AC4F9AE02.roa (raw, json) Hash identifier: RAs2W3/481pH2j3PeaGAIKDWK/7eTQ9UKk87lEJUlkg= Subject key identifier: F2:64:48:89:09:62:49:0F:B2:73:E8:A5:A8:DB:AE:4F:B8:FA:65:92 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2168 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/129AD14466B311EF8C2A846AC4F9AE02.roa Signing time: Mon 02 Mar 2026 23:22:47 +0000 ROA not before: Thu 28 Aug 2025 14:50:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149147 IP address blocks: 160.25.146.0/23 maxlen: 23 160.191.250.0/23 maxlen: 23 161.248.32.0/23 maxlen: 23 161.248.94.0/23 maxlen: 23 161.248.96.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8552 (0x2168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:50:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61bc7-2900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:da:e9:b8:5d:59:d7:c6:3d:48:92:11:62:0d: 1f:6c:df:e8:33:26:cc:d3:56:9b:ef:6c:dc:4a:cc: 03:a2:ca:22:66:68:a5:fa:94:a9:66:f6:a0:ee:5a: 37:b6:f5:a6:c3:92:9e:95:7e:14:65:59:52:1f:81: d6:e2:8c:7d:84:dc:a8:c4:e0:0a:8b:bf:03:d0:16: 40:63:b6:4d:eb:48:87:b4:5f:87:50:fa:27:9d:46: 91:37:77:13:6d:d4:6d:08:b0:66:a0:ff:d7:3e:a5: a6:97:6c:13:22:70:60:a1:e4:0f:fe:b6:b6:1c:37: 93:c5:62:18:3d:ee:48:8e:02:11:93:b1:92:e4:53: ea:62:ed:6d:49:c0:8c:88:93:93:7c:c9:59:07:a7: 1e:5f:36:58:e5:90:1b:b1:54:07:c6:36:96:80:f0: 4d:5b:41:01:f2:bd:28:ca:86:1f:62:70:cd:89:01: 16:40:ee:5e:05:03:f6:c3:8c:20:3c:72:31:a9:47: 73:c2:d0:c2:7c:f5:74:55:18:4d:b8:0e:58:b5:15: 92:86:66:b7:6f:ad:98:7e:c5:a5:be:3b:09:17:d0: 4b:5b:8c:45:fa:d2:04:2e:5c:ba:b6:57:d8:de:2d: b2:2e:4e:2a:e6:10:c5:aa:a1:9d:9c:38:c5:a6:da: be:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:64:48:89:09:62:49:0F:B2:73:E8:A5:A8:DB:AE:4F:B8:FA:65:92 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/129AD14466B311EF8C2A846AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.146.0/23 160.191.250.0/23 161.248.32.0/23 161.248.94.0-161.248.97.255 Signature Algorithm: sha256WithRSAEncryption 6d:b8:fa:c6:26:3f:c9:e1:3c:07:b1:f3:9f:53:10:42:ad:8f: c0:17:b6:d5:49:f6:9c:3f:7a:ca:27:c5:f9:63:f9:cb:92:49: dc:09:ee:5e:9f:e5:7f:95:f0:96:58:be:28:7e:83:f1:a3:fd: 06:b7:98:30:92:ea:52:a9:fd:cd:86:4f:da:21:88:17:9c:c0: a3:48:2f:87:9b:95:e7:f4:a5:37:74:c5:78:4d:e5:3b:03:c5: ec:b5:41:d8:20:6b:10:35:25:51:aa:02:12:da:22:fd:d5:0f: 64:a7:6c:e4:2b:d6:a2:7c:4c:6b:95:10:83:f4:8e:84:18:08: 4f:c3:9d:d2:1a:5c:96:bc:88:60:f9:f1:41:4f:39:ae:26:28: 69:5e:23:b9:20:c9:a7:25:96:25:10:be:cd:4a:0d:c0:9a:f8: cf:67:51:be:89:8b:72:04:02:0f:2f:fa:6e:99:33:38:90:b5: d9:8e:b9:91:fc:f8:fa:93:f4:70:69:aa:81:b4:f3:76:bc:dd: c7:3f:88:7f:4d:dd:d6:72:58:6a:58:53:25:58:4b:71:ad:af: e0:e8:cc:48:24:15:68:d5:0e:9f:85:4c:8a:e5:ff:bb:c5:cd: 88:c0:54:33:8d:98:53:a5:98:03:27:cf:99:98:57:47:b8:bb: c2:b8:46:45 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICIWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MDU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWJjNy0yOTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdrpuF1Z18Y9SJIRYg0fbN/oMybM01ab72zcSswDosoiZmil+pSpZvag7lo3 tvWmw5KelX4UZVlSH4HW4ox9hNyoxOAKi78D0BZAY7ZN60iHtF+HUPonnUaRN3cT bdRtCLBmoP/XPqWml2wTInBgoeQP/ra2HDeTxWIYPe5IjgIRk7GS5FPqYu1tScCM iJOTfMlZB6ceXzZY5ZAbsVQHxjaWgPBNW0EB8r0oyoYfYnDNiQEWQO5eBQP2w4wg PHIxqUdzwtDCfPV0VRhNuA5YtRWShma3b62YfsWlvjsJF9BLW4xF+tIELly6tlfY 3i2yLk4q5hDFqqGdnDjFptq+MwIDAQABo4ICejCCAnYwHQYDVR0OBBYEFPJkSIkJ YkkPsnPopajbrk+4+mWSMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMTI5QUQxNDQ2 NkIzMTFFRjhDMkE4NDZBQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAm BAIAATAgAwQBoBmSAwQBoL/6AwQBofggMAwDBAGh+F4DBAGh+GAwDQYJKoZIhvcN AQELBQADggEBAG24+sYmP8nhPAex859TEEKtj8AXttVJ9pw/esonxflj+cuSSdwJ 7l6f5X+V8JZYvih+g/Gj/Qa3mDCS6lKp/c2GT9ohiBecwKNIL4eblef0pTd0xXhN 5TsDxey1QdggaxA1JVGqAhLaIv3VD2SnbOQr1qJ8TGuVEIP0joQYCE/DndIaXJa8 iGD58UFPOa4mKGleI7kgyaclliUQvs1KDcCa+M9nUb6Ji3IEAg8v+m6ZMziQtdmO uZH8+PqT9HBpqoG083a83cc/iH9N3dZyWGpYUyVYS3Gtr+DozEgkFWjVDp+FTIrl /7vFzYjAVDONmFOlmAMnz5mYV0e4u8K4RkU= -----END CERTIFICATE-----Generated at Sat Mar 7 22:53:22 2026 by rpki-client