$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/BB0AAA1CAFDB11F0B4868557C4F9AE02.roa File: BB0AAA1CAFDB11F0B4868557C4F9AE02.roa (raw, json) Hash identifier: TZhjdr3JUxJBmP6dHxw7OU55aiPuLr5BhPB1Cg7L5WE= Subject key identifier: 16:BD:0D:A9:B8:8F:1B:24:E2:41:51:E9:9B:91:53:13:A9:38:E1:21 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2125 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/BB0AAA1CAFDB11F0B4868557C4F9AE02.roa Signing time: Mon 02 Mar 2026 23:21:43 +0000 ROA not before: Thu 23 Oct 2025 06:44:32 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153401 IP address blocks: 160.191.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8485 (0x2125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Oct 23 06:44:32 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61b87-3e0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a1:ff:91:ef:a5:de:61:1c:5d:d0:34:3e:27: f5:d1:3e:72:d9:4b:46:a0:40:a4:b2:9c:8a:9f:f2: 59:0c:6d:83:72:46:ff:b3:93:b2:96:55:41:ff:f2: 5b:2a:6f:0f:a2:e8:08:2d:27:3f:7f:66:93:aa:92: cd:8f:b5:87:8b:b2:ca:6e:28:8f:53:0d:f2:10:db: d5:72:32:aa:07:6f:20:a9:7b:68:fc:55:85:a2:42: ac:e4:b4:5f:ab:da:41:f5:96:90:5a:35:cf:ce:f2: a9:5a:b0:43:d2:4a:8b:dd:9e:ec:1b:46:40:af:10: b2:97:15:a0:6b:96:52:fe:7a:60:55:8f:d8:be:d8: cd:85:15:83:ea:ef:4a:84:b5:dd:a1:d0:9a:ff:97: b5:3f:bd:bb:e7:ee:28:27:4d:4e:20:a6:e1:0a:0c: f8:05:31:fa:f7:8f:8e:d4:a2:a3:a8:d7:0f:45:f8: 79:b1:a6:ce:17:5a:82:e3:20:7c:b2:db:7c:15:aa: c5:70:cd:15:07:09:bb:a3:f5:f0:ee:6a:e5:46:e7: da:4f:16:45:e8:84:0f:64:72:c6:f7:96:73:e6:28: d9:07:16:eb:cd:c0:bf:e0:2c:49:a1:1a:5d:24:7a: c7:80:4c:37:e0:2d:76:b2:cb:16:97:de:6e:9b:24: 8c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:BD:0D:A9:B8:8F:1B:24:E2:41:51:E9:9B:91:53:13:A9:38:E1:21 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/BB0AAA1CAFDB11F0B4868557C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.191.161.0/24 Signature Algorithm: sha256WithRSAEncryption 27:ee:7a:4c:67:b7:a0:5b:99:21:a8:32:f0:4b:c0:f4:cc:93: 24:87:4c:d0:8b:1f:71:d6:a7:be:b9:2b:ab:9f:4d:61:bc:43: 73:cc:d0:30:b2:28:e0:b8:82:ff:13:45:95:d3:9b:2b:44:4c: 89:5f:77:29:0e:b3:af:f5:b3:b3:9f:19:1e:0a:c3:b8:c2:60: a0:e2:75:32:48:bc:55:36:7f:ac:4c:79:4d:b1:11:96:48:fb: 71:7f:d3:99:e3:68:20:9d:62:3a:92:62:19:f0:d3:b6:70:9f: 84:c7:2d:22:47:05:78:7e:aa:9c:60:ad:40:3a:fe:c2:5b:5f: 66:50:11:dd:9d:32:2f:e8:fe:89:e6:7c:d5:e6:c0:6f:54:f9: 41:30:50:0a:d6:79:73:5f:71:f1:5f:d5:ed:49:eb:39:25:b2: a6:b7:5c:d7:ef:94:ae:6a:65:5c:4d:e8:c1:4c:b1:c3:a7:74: 61:18:86:c5:1d:72:4d:a4:5a:60:44:e4:ff:99:a5:88:4f:cd: 21:9a:58:75:a9:cc:15:5b:02:69:67:89:1d:df:58:e2:25:b9: c5:cc:9f:96:cd:98:89:e0:b7:36:c9:45:8e:c6:07:b6:dc:3e: 50:60:96:ed:0b:a0:db:e8:81:18:1d:cd:67:b8:1d:62:14:f7: f6:6e:e4:2b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICISUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUxMDIzMDY0NDMyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWI4Ny0zZTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KH/ke+l3mEcXdA0Pif10T5y2UtGoECkspyKn/JZDG2Dckb/s5OyllVB//Jb Km8PougILSc/f2aTqpLNj7WHi7LKbiiPUw3yENvVcjKqB28gqXto/FWFokKs5LRf q9pB9ZaQWjXPzvKpWrBD0kqL3Z7sG0ZArxCylxWga5ZS/npgVY/YvtjNhRWD6u9K hLXdodCa/5e1P7275+4oJ01OIKbhCgz4BTH694+O1KKjqNcPRfh5sabOF1qC4yB8 stt8FarFcM0VBwm7o/Xw7mrlRufaTxZF6IQPZHLG95Zz5ijZBxbrzcC/4CxJoRpd JHrHgEw34C12sssWl95umySMuwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBa9Dam4 jxsk4kFR6ZuRUxOpOOEhMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQkIwQUFBMUNB RkRCMTFGMEI0ODY4NTU3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoL+hMA0GCSqGSIb3DQEBCwUAA4IBAQAn7npMZ7egW5khqDLwS8D0 zJMkh0zQix9x1qe+uSurn01hvENzzNAwsijguIL/E0WV05srREyJX3cpDrOv9bOz nxkeCsO4wmCg4nUySLxVNn+sTHlNsRGWSPtxf9OZ42ggnWI6kmIZ8NO2cJ+Exy0i RwV4fqqcYK1AOv7CW19mUBHdnTIv6P6J5nzV5sBvVPlBMFAK1nlzX3HxX9XtSes5 JbKmt1zX75SuamVcTejBTLHDp3RhGIbFHXJNpFpgROT/maWIT80hmlh1qcwVWwJp Z4kd31jiJbnFzJ+WzZiJ4Lc2yUWOxge23D5QYJbtC6Db6IEYHc1nuB1iFPf2buQr -----END CERTIFICATE-----Generated at Sat Mar 7 22:52:35 2026 by rpki-client