$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4780B0E87FC411EFB3C21C26C4F9AE02.roa File: 4780B0E87FC411EFB3C21C26C4F9AE02.roa (raw, json) Hash identifier: 8ZId9NGkbTY5uwVIwd77nVDH5AKfdm3DcyI+qan9KMU= Subject key identifier: 21:BF:D3:E2:E8:05:C5:39:D3:59:45:81:C7:2A:05:7A:6D:F9:5A:0D Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 1456 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4780B0E87FC411EFB3C21C26C4F9AE02.roa Signing time: Mon 02 Mar 2026 21:13:52 +0000 ROA not before: Thu 28 Aug 2025 14:51:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150859 IP address blocks: 157.66.12.0/24 maxlen: 24 157.66.98.0/23 maxlen: 24 157.66.160.0/23 maxlen: 23 157.66.220.0/24 maxlen: 24 157.66.221.0/24 maxlen: 24 160.22.118.0/24 maxlen: 24 160.22.119.0/24 maxlen: 24 160.30.22.0/24 maxlen: 24 160.30.23.0/24 maxlen: 24 160.187.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Apr 2026 00:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5206 (0x1456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5fd90-d0dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2f:5f:92:3a:59:22:ee:03:77:84:47:41:25: 34:9e:b5:fa:9a:1e:60:fe:d0:64:57:00:4d:6a:54: 82:bf:70:e2:3e:5c:1d:31:ab:2b:6f:c4:c2:c2:14: 87:94:6d:e3:80:1d:a0:49:c0:5b:a3:22:b7:b0:ce: 1b:f0:44:61:79:e7:4e:40:6e:78:4d:c9:65:b1:d1: 02:03:5e:46:6c:2b:47:cd:e4:db:32:bd:94:b9:5f: b7:e3:4f:54:17:48:47:38:10:30:bf:0c:97:40:82: ac:c1:6c:e7:35:63:da:f2:94:55:cd:fa:4c:8a:1a: d6:2e:a9:8f:e0:0e:98:b8:d3:0b:54:6f:e0:af:7f: 28:a0:f7:b7:50:e9:e0:50:29:9a:cf:27:28:ba:b2: a4:43:1b:91:1b:04:77:69:b4:98:98:41:f5:9e:d1: 21:03:e8:e8:ab:7f:2d:ec:63:6b:5f:23:6d:e2:a8: d7:ab:07:88:76:25:3f:54:5c:01:74:5a:ee:90:95: 7b:e6:2c:33:50:47:0f:60:33:91:ce:c0:4f:45:a0: 0d:aa:87:33:73:a8:aa:e3:d6:b9:d4:f3:64:c3:b0: 37:43:9c:2b:13:c4:82:22:bb:dc:b3:45:24:81:71: 26:6c:31:9d:2d:32:c6:76:fa:62:00:a1:92:f3:d5: de:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:BF:D3:E2:E8:05:C5:39:D3:59:45:81:C7:2A:05:7A:6D:F9:5A:0D X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4780B0E87FC411EFB3C21C26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.66.12.0/24 157.66.98.0/23 157.66.160.0/23 157.66.220.0/23 160.22.118.0/23 160.30.22.0/23 160.187.74.0/23 Signature Algorithm: sha256WithRSAEncryption 85:eb:91:f4:32:fc:24:96:80:22:03:1b:76:24:b5:b8:cc:aa: 3a:ed:66:3e:b8:4f:b4:11:bc:5d:33:c4:bf:ee:a5:ff:a8:5e: 0f:67:4c:7f:6a:92:79:0f:85:f7:13:96:75:33:ec:5c:3b:af: bd:73:d4:93:10:90:d0:1e:fe:77:9a:76:dc:44:94:d6:0b:0d: 21:b7:b4:88:fa:88:71:31:b5:4d:66:32:3e:bf:54:07:95:86: 37:52:eb:67:32:ad:e3:10:d5:ed:13:9e:93:70:fc:cb:41:3f: 29:e5:c7:18:e9:8e:62:17:0e:dc:8f:48:da:80:2d:c6:19:74: 69:db:49:34:4a:b5:db:e5:fe:9d:82:42:3f:68:54:89:6a:09: ae:94:04:8b:a3:91:19:f6:46:fc:c8:01:c1:be:3d:15:b9:0a: 91:f1:7b:23:e8:45:78:27:0c:b0:18:46:73:45:9e:68:0a:18: 90:ae:e1:ae:85:95:8a:f6:f8:11:e1:fe:04:8e:ab:f2:26:a7: 91:7c:e8:81:83:da:c0:0d:ee:41:ec:42:22:f4:ac:39:8f:35: ac:40:04:b3:99:aa:a3:e9:d7:ed:ff:95:f7:47:c2:4f:a6:45: 50:f1:47:1c:60:ee:cb:77:36:be:1f:20:e0:a7:c2:39:7f:80: 92:3a:74:dd -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICFFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ZmQ5MC1kMGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyi9fkjpZIu4Dd4RHQSU0nrX6mh5g/tBkVwBNalSCv3DiPlwdMasrb8TCwhSH lG3jgB2gScBboyK3sM4b8ERheedOQG54TcllsdECA15GbCtHzeTbMr2UuV+3409U F0hHOBAwvwyXQIKswWznNWPa8pRVzfpMihrWLqmP4A6YuNMLVG/gr38ooPe3UOng UCmazycourKkQxuRGwR3abSYmEH1ntEhA+joq38t7GNrXyNt4qjXqweIdiU/VFwB dFrukJV75iwzUEcPYDORzsBPRaANqoczc6iq49a51PNkw7A3Q5wrE8SCIrvcs0Uk gXEmbDGdLTLGdvpiAKGS89XeRwIDAQABo4IChDCCAoAwHQYDVR0OBBYEFCG/0+Lo BcU501lFgccqBXpt+VoNMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNDc4MEIwRTg3 RkM0MTFFRkIzQzIxQzI2QzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAw BAIAATAqAwQAnUIMAwQBnUJiAwQBnUKgAwQBnULcAwQBoBZ2AwQBoB4WAwQBoLtK MA0GCSqGSIb3DQEBCwUAA4IBAQCF65H0MvwkloAiAxt2JLW4zKo67WY+uE+0Ebxd M8S/7qX/qF4PZ0x/apJ5D4X3E5Z1M+xcO6+9c9STEJDQHv53mnbcRJTWCw0ht7SI +ohxMbVNZjI+v1QHlYY3UutnMq3jENXtE56TcPzLQT8p5ccY6Y5iFw7cj0jagC3G GXRp20k0SrXb5f6dgkI/aFSJagmulASLo5EZ9kb8yAHBvj0VuQqR8Xsj6EV4Jwyw GEZzRZ5oChiQruGuhZWK9vgR4f4EjqvyJqeRfOiBg9rADe5B7EIi9Kw5jzWsQASz maqj6dft/5X3R8JPpkVQ8UccYO7Ldza+HyDgp8I5f4CSOnTd -----END CERTIFICATE-----Generated at Wed Apr 22 03:35:22 2026 by rpki-client