$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/624B23BC8C8B11EFBF4E663CC4F9AE02.roa File: 624B23BC8C8B11EFBF4E663CC4F9AE02.roa (raw, json) Hash identifier: Y/I31L3lwF2BixDNzwzgoFBmyVUhTyIFlKP/DAc9+GA= Subject key identifier: 6B:C9:43:7A:DC:03:A1:B0:DC:7D:48:09:1F:B7:89:3D:5A:51:96:44 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 215E Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/624B23BC8C8B11EFBF4E663CC4F9AE02.roa Signing time: Mon 02 Mar 2026 23:22:38 +0000 ROA not before: Thu 28 Aug 2025 14:51:19 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152944 IP address blocks: 160.25.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8542 (0x215e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:19 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61bbe-f9ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fc:c9:7a:a7:11:e2:e8:bc:70:c2:7e:35:2a: 9f:c8:d4:af:1f:a7:a7:7f:ab:ec:3c:d4:5e:34:c3: 5e:4c:ea:4d:9a:97:e6:08:d2:99:7f:42:82:cd:56: ae:e4:cc:dc:5b:28:bf:6d:76:77:a5:72:db:e0:d0: 66:ad:97:84:af:90:f4:3e:ef:0d:e3:f2:c9:db:56: 4b:0b:e0:cd:4c:49:18:65:18:e6:a8:b4:28:22:95: 14:50:da:72:6e:f5:2e:65:e3:99:97:fe:e2:df:bd: d5:ad:15:66:cb:eb:f1:32:41:00:f4:d5:be:c8:45: 33:8e:c9:ca:ac:ef:7e:ea:bb:ed:38:8e:8a:fa:bc: 59:19:5f:fd:9f:2e:63:dd:44:dc:7a:ee:c0:ae:d0: a3:66:43:73:43:28:ce:81:fa:b6:61:b2:38:14:89: 91:74:61:d6:75:ad:da:c3:49:23:2e:f0:48:36:54: 5e:0c:74:49:ed:2c:f2:d0:73:15:f9:f0:b7:e4:a4: 90:30:81:f9:7b:b4:e8:52:83:5d:5a:a5:78:48:c2: 90:10:0b:d1:18:15:b5:6b:b2:3e:08:68:5b:79:47: a0:fb:15:a8:2b:7a:3f:b6:7b:88:5d:3c:da:a3:8e: 45:99:25:e0:fa:0c:a1:b9:0a:42:84:2d:8a:a7:3b: 8e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C9:43:7A:DC:03:A1:B0:DC:7D:48:09:1F:B7:89:3D:5A:51:96:44 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/624B23BC8C8B11EFBF4E663CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.86.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:51:e9:0c:37:80:ef:16:eb:0d:cc:92:de:cf:d7:64:03:76: 53:ca:98:75:77:c2:3f:15:9e:dd:23:f1:74:4e:30:70:d8:65: 2a:5c:e8:f4:b5:2e:b9:6b:a6:8b:23:10:40:c0:ca:ff:ab:3a: e5:99:b0:df:03:a4:81:f1:e0:15:e7:95:61:63:39:7d:35:d9: 0b:52:a8:45:33:13:50:5c:41:c7:75:a9:60:cf:c3:94:60:14: fb:90:5b:a9:ea:20:65:6a:ae:22:8a:3f:4a:ec:1f:23:b3:37: 40:bc:69:06:94:e2:86:2e:00:5a:0d:66:23:b9:f6:c8:29:8c: eb:1b:47:e7:c5:dc:88:d6:a0:c8:10:ed:ee:d1:6a:97:e3:29: 77:c1:99:37:2f:91:1b:68:e7:c1:ff:28:78:79:b3:b5:04:97: 42:fa:c7:fb:9d:8d:4f:5e:b0:11:7d:cd:05:45:89:6c:4a:62: 44:a6:f4:6e:65:02:22:f0:4f:b3:bc:8d:54:aa:32:a5:d7:34: 7e:66:ee:bb:37:69:6f:9e:c8:62:55:69:56:1c:5c:5f:cd:e2: 37:0b:ef:8b:57:a3:ff:12:f0:56:e8:d1:e3:87:f2:f3:00:4a: e3:91:ba:a7:7a:c0:16:d5:45:1a:00:a3:ec:9e:d3:04:f6:18: 91:e4:db:e3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICIV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTE5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWJiZS1mOWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/zJeqcR4ui8cMJ+NSqfyNSvH6enf6vsPNReNMNeTOpNmpfmCNKZf0KCzVau 5MzcWyi/bXZ3pXLb4NBmrZeEr5D0Pu8N4/LJ21ZLC+DNTEkYZRjmqLQoIpUUUNpy bvUuZeOZl/7i373VrRVmy+vxMkEA9NW+yEUzjsnKrO9+6rvtOI6K+rxZGV/9ny5j 3UTceu7ArtCjZkNzQyjOgfq2YbI4FImRdGHWda3aw0kjLvBINlReDHRJ7Szy0HMV +fC35KSQMIH5e7ToUoNdWqV4SMKQEAvRGBW1a7I+CGhbeUeg+xWoK3o/tnuIXTza o45FmSXg+gyhuQpChC2KpzuOmQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGvJQ3rc A6Gw3H1ICR+3iT1aUZZEMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNjI0QjIzQkM4 QzhCMTFFRkJGNEU2NjNDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBlWMA0GCSqGSIb3DQEBCwUAA4IBAQCKUekMN4DvFusNzJLez9dk A3ZTyph1d8I/FZ7dI/F0TjBw2GUqXOj0tS65a6aLIxBAwMr/qzrlmbDfA6SB8eAV 55VhYzl9NdkLUqhFMxNQXEHHdalgz8OUYBT7kFup6iBlaq4iij9K7B8jszdAvGkG lOKGLgBaDWYjufbIKYzrG0fnxdyI1qDIEO3u0WqX4yl3wZk3L5EbaOfB/yh4ebO1 BJdC+sf7nY1PXrARfc0FRYlsSmJEpvRuZQIi8E+zvI1UqjKl1zR+Zu67N2lvnshi VWlWHFxfzeI3C++LV6P/EvBW6NHjh/LzAErjkbqnesAW1UUaAKPsntME9hiR5Nvj -----END CERTIFICATE-----Generated at Sat Mar 7 22:53:21 2026 by rpki-client