$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/2171B7C0B7A111EF88C1E184C4F9AE02.roa File: 2171B7C0B7A111EF88C1E184C4F9AE02.roa (raw, json) Hash identifier: 1kBQaTygqU7VvnUMybWoUd0glGZTL2bboKnwLS59Rfs= Subject key identifier: 27:0A:D1:EC:DD:48:A8:6C:36:24:88:03:31:3E:DB:B2:F2:63:96:77 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2138 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/2171B7C0B7A111EF88C1E184C4F9AE02.roa Signing time: Mon 02 Mar 2026 23:22:01 +0000 ROA not before: Thu 28 Aug 2025 14:51:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153435 IP address blocks: 160.250.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8504 (0x2138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61b99-4500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0e:78:75:1d:5e:3c:ad:ce:c0:dd:48:93:29: af:03:b0:1e:01:79:f7:1f:2d:83:ac:ab:78:e2:14: 56:d0:36:ca:be:37:cb:4d:da:5a:a9:0f:80:95:21: 84:8d:b7:1b:20:cf:71:84:58:0b:ce:a3:c6:65:c8: 0c:40:b1:4d:c0:2b:f5:61:99:47:5d:4e:5f:a5:cd: 89:9d:6c:35:5e:8e:a9:84:80:9a:d8:99:c9:9b:95: 3f:98:43:e7:fd:47:b2:1e:8f:c9:87:8e:38:ed:75: 03:0b:36:f2:7a:3b:7e:03:97:a2:14:db:00:41:14: 9e:73:97:87:63:5f:f8:35:91:c0:33:0a:6c:74:82: 00:fb:2d:85:c6:25:be:25:d2:fa:91:df:3b:61:ff: f7:29:1e:12:44:a1:f9:c9:c0:86:7e:50:18:e0:7d: 52:1f:98:fc:fe:ce:32:fe:2c:05:a8:65:9d:2e:60: be:b9:ba:c4:c4:d0:37:49:b4:a3:43:8c:fc:81:8c: 6f:6a:41:63:34:88:49:bd:53:bc:07:8e:dd:5b:58: 3c:c9:37:a6:b4:9c:7a:e7:18:8d:a5:01:7c:1b:d7: 8a:f3:3a:9a:17:e9:d4:86:7b:7f:fc:35:d5:62:10: ad:c2:d3:aa:48:61:8e:27:a8:4c:e5:22:7a:91:df: c3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:0A:D1:EC:DD:48:A8:6C:36:24:88:03:31:3E:DB:B2:F2:63:96:77 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/2171B7C0B7A111EF88C1E184C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.250.124.0/23 Signature Algorithm: sha256WithRSAEncryption b1:14:23:38:75:53:a5:d9:32:86:c6:53:24:02:e0:d3:84:3d: 77:4e:38:2a:54:a0:e3:0d:6e:d7:b5:70:a5:85:ea:0b:e7:b8: 97:49:55:19:64:b7:68:1f:fa:f7:73:24:bb:97:ef:b7:3a:c0: 59:c8:b6:eb:0f:30:1f:6f:d9:f0:6b:00:c0:44:b6:65:51:ab: 28:0d:8d:b1:c1:81:4e:70:02:13:d3:fc:47:3c:9b:0c:62:8f: 4c:2b:d5:52:cf:d0:43:f2:a4:9e:52:28:7f:f2:d7:37:c0:96: c9:37:55:0b:a3:42:4a:31:65:1d:08:14:2f:ac:cb:9c:90:33: d9:53:f4:54:8e:4e:0f:b0:23:2f:db:0c:92:20:be:aa:b3:f0: a3:c2:cc:94:08:2d:eb:71:bd:96:a0:e4:4a:5f:45:86:9c:d0: 4c:c7:10:77:26:94:3e:cf:95:88:d4:32:f3:42:5e:46:26:cf: 8c:5e:67:09:ae:e1:fd:0e:b8:5a:ec:bf:cf:c7:98:5f:42:10: 37:62:e1:5c:12:89:86:b8:84:e7:a6:ab:f4:34:88:d2:4f:01: 44:bd:9e:7d:f1:89:16:08:93:0e:85:a5:b3:80:c6:78:25:bf: dc:d2:a7:09:e3:ca:0a:e7:b2:4c:f2:c2:3c:7b:a0:57:9a:66: e7:01:e1:24 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICITgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTUxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWI5OS00NTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtA54dR1ePK3OwN1IkymvA7AeAXn3Hy2DrKt44hRW0DbKvjfLTdpaqQ+AlSGE jbcbIM9xhFgLzqPGZcgMQLFNwCv1YZlHXU5fpc2JnWw1Xo6phICa2JnJm5U/mEPn /UeyHo/Jh4447XUDCzbyejt+A5eiFNsAQRSec5eHY1/4NZHAMwpsdIIA+y2FxiW+ JdL6kd87Yf/3KR4SRKH5ycCGflAY4H1SH5j8/s4y/iwFqGWdLmC+ubrExNA3SbSj Q4z8gYxvakFjNIhJvVO8B47dW1g8yTemtJx65xiNpQF8G9eK8zqaF+nUhnt//DXV YhCtwtOqSGGOJ6hM5SJ6kd/DrQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCcK0ezd SKhsNiSIAzE+27LyY5Z3MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMjE3MUI3QzBC N0ExMTFFRjg4QzFFMTg0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoPp8MA0GCSqGSIb3DQEBCwUAA4IBAQCxFCM4dVOl2TKGxlMkAuDT hD13TjgqVKDjDW7XtXClheoL57iXSVUZZLdoH/r3cyS7l++3OsBZyLbrDzAfb9nw awDARLZlUasoDY2xwYFOcAIT0/xHPJsMYo9MK9VSz9BD8qSeUih/8tc3wJbJN1UL o0JKMWUdCBQvrMuckDPZU/RUjk4PsCMv2wySIL6qs/CjwsyUCC3rcb2WoORKX0WG nNBMxxB3JpQ+z5WI1DLzQl5GJs+MXmcJruH9Drha7L/Px5hfQhA3YuFcEomGuITn pqv0NIjSTwFEvZ598YkWCJMOhaWzgMZ4Jb/c0qcJ48oK57JM8sI8e6BXmmbnAeEk -----END CERTIFICATE-----Generated at Sat Mar 7 22:53:54 2026 by rpki-client