$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4C9CB832536311F183EAFC2C9E833773.roa File: 4C9CB832536311F183EAFC2C9E833773.roa (raw, json) Hash identifier: m7Zj8Ze2cUyMGY/iiZE3yEBsTlrdQQSqDdzvUh+F5Ag= Subject key identifier: 22:3C:4A:54:4E:83:76:0D:3C:0E:67:7C:02:4A:9A:27:5D:9C:38:3B Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 22BD Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4C9CB832536311F183EAFC2C9E833773.roa Signing time: Tue 19 May 2026 09:15:38 +0000 ROA not before: Tue 19 May 2026 09:15:38 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151872 IP address blocks: 157.66.198.0/23 maxlen: 23 157.66.220.0/24 maxlen: 24 157.66.221.0/24 maxlen: 24 160.22.80.0/24 maxlen: 24 160.22.81.0/24 maxlen: 24 160.22.118.0/24 maxlen: 24 160.22.119.0/24 maxlen: 24 160.30.10.0/24 maxlen: 24 160.30.11.0/24 maxlen: 24 160.30.22.0/24 maxlen: 24 160.30.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 14:33:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8893 (0x22bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: May 19 09:15:38 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6a0c2a3a-561d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2b:c0:c2:1e:ca:c9:74:18:6c:f6:6e:43:4a: f8:cf:36:7d:7c:50:6b:b1:0b:d2:58:31:2f:37:6f: f7:65:9a:36:ae:73:89:a4:f6:c8:63:9f:d9:0e:fa: c1:cb:67:d9:3e:68:f1:98:32:eb:18:81:2b:c5:ac: 51:e5:5e:6b:42:53:4c:4b:83:b6:38:b7:e2:6b:c8: f4:65:0f:c5:53:51:00:69:df:52:4d:8d:e9:f7:f1: 50:20:2b:25:94:cc:64:16:af:21:29:e6:3c:7c:9a: 35:dd:d9:b1:10:ee:12:54:fc:e1:4b:f0:b4:ac:9b: 03:5e:ba:03:9c:9e:87:26:97:af:96:98:fe:de:28: f3:75:9b:98:6a:e2:b4:f6:86:28:5a:c1:40:07:e5: 21:cb:8d:a8:b9:b4:fa:ed:5f:29:fc:cf:da:08:b6: 88:94:0a:2f:3c:60:1e:30:95:5c:c9:bd:a0:11:75: fc:e5:a2:fc:c9:bc:42:e7:6e:bb:29:ba:f6:57:d6: 70:a8:01:b2:ff:2a:09:29:f6:b9:b9:1b:61:99:d1: 16:54:c7:1d:4c:b2:cb:87:8a:78:24:ab:2f:81:4a: 38:4d:50:97:68:3a:91:63:b6:2d:85:39:9c:b2:5d: 7c:79:b4:07:fc:eb:d0:5a:fe:9e:f6:9e:93:cb:38: 09:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:3C:4A:54:4E:83:76:0D:3C:0E:67:7C:02:4A:9A:27:5D:9C:38:3B X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4C9CB832536311F183EAFC2C9E833773.roa sbgp-ipAddrBlock: critical IPv4: 157.66.198.0/23 157.66.220.0/23 160.22.80.0/23 160.22.118.0/23 160.30.10.0/23 160.30.22.0/23 Signature Algorithm: sha256WithRSAEncryption a5:bd:ef:7c:1f:7f:58:7e:4b:25:80:2e:c5:8a:39:d9:b9:a8: 17:b2:e5:0c:a9:10:b8:91:fb:f2:92:bd:f1:ce:84:fe:fd:6c: 0c:f1:1a:26:ac:8b:ea:6a:3d:77:de:ab:0f:47:8b:a1:db:ba: 04:ca:1f:22:b9:37:bb:29:79:b2:98:10:58:8d:80:ff:f7:87: af:02:fa:6f:97:96:db:f1:81:17:e9:fc:95:bc:b8:d1:4e:40: 96:a5:16:7b:78:2a:98:42:e5:88:83:cd:bc:2b:24:4d:89:df: a7:96:0f:66:04:22:20:60:f9:a9:4a:e8:d3:51:37:f4:a5:35: 3b:b0:95:52:c5:b3:46:75:ae:15:91:15:91:a3:39:81:2f:bf: ad:8b:42:d1:26:3b:bc:13:08:b7:0f:d9:9b:fb:ae:0a:a5:3a: 73:97:f6:1d:46:41:3f:9e:8f:3f:9f:27:bf:0f:25:6a:61:24: 43:7e:84:fe:e5:2a:16:90:97:af:5d:64:24:c7:a9:f0:bb:ce: a1:e6:96:2d:83:da:c9:1d:8b:6a:1a:32:49:0e:d6:39:a7:b4: 77:85:46:9f:a5:01:94:85:d6:b9:41:3b:6b:46:39:cd:db:f9: 88:45:23:92:68:27:ac:3f:2e:24:b3:7a:ef:64:e7:c7:99:0d: 23:5d:19:23 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICIr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjYwNTE5MDkxNTM4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBjMmEzYS01NjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCvAwh7KyXQYbPZuQ0r4zzZ9fFBrsQvSWDEvN2/3ZZo2rnOJpPbIY5/ZDvrB y2fZPmjxmDLrGIErxaxR5V5rQlNMS4O2OLfia8j0ZQ/FU1EAad9STY3p9/FQICsl lMxkFq8hKeY8fJo13dmxEO4SVPzhS/C0rJsDXroDnJ6HJpevlpj+3ijzdZuYauK0 9oYoWsFAB+Uhy42oubT67V8p/M/aCLaIlAovPGAeMJVcyb2gEXX85aL8ybxC5267 Kbr2V9ZwqAGy/yoJKfa5uRthmdEWVMcdTLLLh4p4JKsvgUo4TVCXaDqRY7YthTmc sl18ebQH/OvQWv6e9p6TyzgJwQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFCI8SlRO g3YNPA5nfAJKmiddnDg7MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNEM5Q0I4MzI1 MzYzMTFGMTgzRUFGQzJDOUU4MzM3NzMucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAq BAIAATAkAwQBnULGAwQBnULcAwQBoBZQAwQBoBZ2AwQBoB4KAwQBoB4WMA0GCSqG SIb3DQEBCwUAA4IBAQClve98H39YfkslgC7FijnZuagXsuUMqRC4kfvykr3xzoT+ /WwM8RomrIvqaj133qsPR4uh27oEyh8iuTe7KXmymBBYjYD/94evAvpvl5bb8YEX 6fyVvLjRTkCWpRZ7eCqYQuWIg828KyRNid+nlg9mBCIgYPmpSujTUTf0pTU7sJVS xbNGda4VkRWRozmBL7+ti0LRJju8Ewi3D9mb+64KpTpzl/YdRkE/no8/nye/DyVq YSRDfoT+5SoWkJevXWQkx6nwu86h5pYtg9rJHYtqGjJJDtY5p7R3hUafpQGUhda5 QTtrRjnN2/mIRSOSaCesPy4ks3rvZOfHmQ0jXRkj -----END CERTIFICATE-----Generated at Sat Jun 6 14:38:53 2026 by rpki-client