$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4780B0E87FC411EFB3C21C26C4F9AE02.roa File: 4780B0E87FC411EFB3C21C26C4F9AE02.roa (raw, json) Hash identifier: Lnz1uBUouhrTuyu/nKfN14NtgjZ8yr70/TSrEqfP8uM= Subject key identifier: E8:6D:A9:1A:B8:3F:3A:B8:4D:FA:93:89:2D:E8:AD:56:5D:20:91:D1 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2165 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4780B0E87FC411EFB3C21C26C4F9AE02.roa Signing time: Mon 02 Mar 2026 23:22:45 +0000 ROA not before: Thu 28 Aug 2025 14:51:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150859 IP address blocks: 157.66.12.0/24 maxlen: 24 157.66.98.0/23 maxlen: 24 157.66.160.0/23 maxlen: 23 157.66.220.0/24 maxlen: 24 157.66.221.0/24 maxlen: 24 160.22.118.0/24 maxlen: 24 160.22.119.0/24 maxlen: 24 160.30.22.0/24 maxlen: 24 160.30.23.0/24 maxlen: 24 160.187.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8549 (0x2165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61bc5-9ca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c3:48:99:b7:31:3c:81:c5:68:8a:9e:b7:86: 07:c6:de:08:12:04:07:9d:8c:61:0f:0a:07:c9:79: 1a:1a:b4:f1:22:ea:c9:30:3c:5f:04:43:f4:ec:41: 24:45:39:1f:02:91:b2:76:c6:24:4b:de:f8:56:bb: ed:f5:b4:7d:50:38:53:95:bd:c7:b3:3c:81:0c:7b: 90:a8:ed:30:c1:68:11:c0:f9:29:3f:4c:d5:90:11: de:c8:29:b6:29:d5:dc:34:e4:bd:51:e3:27:f1:6b: 89:93:c5:19:38:c3:f0:f6:8f:21:89:80:73:25:3a: a7:3e:e7:14:6c:5a:5b:e1:b4:6d:78:c1:0b:be:4b: ca:01:46:be:2e:a0:2f:6c:53:c7:46:40:f2:b9:13: 07:9e:f0:63:02:2e:00:6b:47:9e:a9:53:74:f6:d9: ed:a2:06:a2:0b:85:aa:f4:63:73:51:25:8b:76:1c: 93:95:12:d4:ff:a1:83:13:c8:ab:60:7c:8c:cf:8c: f2:41:2d:4d:41:0f:fb:a6:64:40:f8:02:64:f8:1e: 66:56:be:09:aa:38:a6:c0:cc:97:73:f3:89:79:03: 3f:30:9f:65:4b:72:4a:1d:01:ae:92:cb:08:71:ec: a6:72:67:12:ad:65:d9:d5:54:b1:79:e0:44:67:4a: 21:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:6D:A9:1A:B8:3F:3A:B8:4D:FA:93:89:2D:E8:AD:56:5D:20:91:D1 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4780B0E87FC411EFB3C21C26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.66.12.0/24 157.66.98.0/23 157.66.160.0/23 157.66.220.0/23 160.22.118.0/23 160.30.22.0/23 160.187.74.0/23 Signature Algorithm: sha256WithRSAEncryption ae:6a:b6:12:57:f5:df:bb:ba:3b:a2:62:95:4a:a8:a4:3e:ab: fd:00:6d:c9:65:a1:f1:5b:63:64:51:a9:72:39:c7:21:9b:b8: 34:3c:ff:c6:f4:d1:d2:6f:e0:c1:c7:86:57:43:77:5a:2e:00: 6f:a5:ce:cc:d3:bd:dd:9b:66:69:50:3c:26:2a:f3:94:51:79: 8d:ee:28:ad:df:d2:bd:24:5c:46:63:05:68:0c:13:81:ed:62: 95:0e:99:96:3a:af:51:cc:a3:2a:34:3f:01:46:9e:b1:18:81: 29:e6:e3:0b:2e:cd:65:c5:97:0d:e3:b5:c5:8d:84:c3:e6:19: 4f:9a:60:ef:9e:71:01:c3:f3:09:4f:de:31:a1:07:6f:40:dc: fc:ae:4f:f4:8b:25:3b:ab:97:15:96:7a:62:d6:a2:81:fe:31: 26:ec:d6:4e:d1:1a:fe:e9:de:70:47:e9:64:d5:92:f3:50:50: 82:78:6c:23:42:75:62:56:8c:c5:b6:79:22:2c:85:fd:f6:52: 22:0f:2b:37:98:d5:e9:aa:0e:74:f0:b8:1f:b5:72:b4:bd:9f: 51:e1:f2:5b:0e:15:66:fa:ec:15:6a:31:ed:c6:ea:dd:82:9f: 3c:ac:65:3f:1d:82:76:69:45:f4:42:eb:b5:cb:49:89:0f:4b: fa:fe:90:de -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICIWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWJjNS05Y2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcNImbcxPIHFaIqet4YHxt4IEgQHnYxhDwoHyXkaGrTxIurJMDxfBEP07EEk RTkfApGydsYkS974Vrvt9bR9UDhTlb3HszyBDHuQqO0wwWgRwPkpP0zVkBHeyCm2 KdXcNOS9UeMn8WuJk8UZOMPw9o8hiYBzJTqnPucUbFpb4bRteMELvkvKAUa+LqAv bFPHRkDyuRMHnvBjAi4Aa0eeqVN09tntogaiC4Wq9GNzUSWLdhyTlRLU/6GDE8ir YHyMz4zyQS1NQQ/7pmRA+AJk+B5mVr4JqjimwMyXc/OJeQM/MJ9lS3JKHQGukssI ceymcmcSrWXZ1VSxeeBEZ0ohVwIDAQABo4IChDCCAoAwHQYDVR0OBBYEFOhtqRq4 Pzq4TfqTiS3orVZdIJHRMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNDc4MEIwRTg3 RkM0MTFFRkIzQzIxQzI2QzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAw BAIAATAqAwQAnUIMAwQBnUJiAwQBnUKgAwQBnULcAwQBoBZ2AwQBoB4WAwQBoLtK MA0GCSqGSIb3DQEBCwUAA4IBAQCuarYSV/Xfu7o7omKVSqikPqv9AG3JZaHxW2Nk UalyOcchm7g0PP/G9NHSb+DBx4ZXQ3daLgBvpc7M073dm2ZpUDwmKvOUUXmN7iit 39K9JFxGYwVoDBOB7WKVDpmWOq9RzKMqND8BRp6xGIEp5uMLLs1lxZcN47XFjYTD 5hlPmmDvnnEBw/MJT94xoQdvQNz8rk/0iyU7q5cVlnpi1qKB/jEm7NZO0Rr+6d5w R+lk1ZLzUFCCeGwjQnViVozFtnkiLIX99lIiDys3mNXpqg508LgftXK0vZ9R4fJb DhVm+uwVajHtxurdgp88rGU/HYJ2aUX0Quu1y0mJD0v6/pDe -----END CERTIFICATE-----Generated at Sat Mar 7 22:58:15 2026 by rpki-client