$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C5EBF14444EB11F088B1CD7BC4F9AE02.roa File: C5EBF14444EB11F088B1CD7BC4F9AE02.roa (raw, json) Hash identifier: 9zCk8oz3CpbYHEAEDHExx8HGM+SYj6P2+ikgVnU3fz0= Subject key identifier: E3:AA:37:4A:5A:F1:01:79:BC:90:5C:F2:B8:8C:19:2C:0D:37:CF:9B Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2162 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C5EBF14444EB11F088B1CD7BC4F9AE02.roa Signing time: Mon 02 Mar 2026 23:22:41 +0000 ROA not before: Thu 28 Aug 2025 14:51:09 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151872 IP address blocks: 157.66.198.0/23 maxlen: 23 157.66.220.0/24 maxlen: 24 157.66.221.0/24 maxlen: 24 160.22.74.0/23 maxlen: 24 160.22.80.0/24 maxlen: 24 160.22.81.0/24 maxlen: 24 160.22.118.0/24 maxlen: 24 160.22.119.0/24 maxlen: 24 160.30.10.0/24 maxlen: 24 160.30.11.0/24 maxlen: 24 160.30.22.0/24 maxlen: 24 160.30.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Mar 2026 14:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8546 (0x2162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:09 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61bc1-6e1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e8:00:57:fa:2b:e4:fc:6f:e7:c3:c1:51:2c: 84:bc:ba:80:c5:d4:23:5b:55:3d:40:cf:b4:6d:c2: 08:63:bb:3c:14:48:99:63:c0:3e:1c:08:28:7f:9f: 1f:71:60:36:bc:bf:c0:3b:a4:a8:e9:49:7b:39:3b: 19:e6:93:f6:de:73:fe:84:45:6b:7b:5d:4e:ef:7f: 57:52:76:ec:34:3c:34:70:58:2a:6b:f8:61:74:a1: 2a:85:37:5a:23:31:ee:eb:74:be:0b:3f:9c:ad:82: dd:53:58:10:29:ed:af:79:86:19:33:1c:69:6a:d9: a3:7d:1b:2c:54:01:94:87:2d:c9:5a:b3:b4:31:28: d8:0e:58:d1:7f:9a:a0:16:bf:0e:a3:d5:13:b3:b2: ba:b3:04:d7:78:02:95:4a:e4:0d:11:2f:d0:cb:d4: 81:e8:6d:85:58:e4:a4:e2:ac:48:a8:fc:a5:27:03: 6b:ee:8d:d0:28:4b:7c:c4:fe:07:f3:9e:60:8b:7f: 53:f7:1e:23:17:37:d2:1a:ff:83:ef:5b:99:c7:38: f3:04:82:7c:fd:87:b1:0b:32:75:58:07:35:62:c5: 16:48:84:41:67:c5:28:3f:1b:26:b9:10:bd:78:94: 7c:ed:6c:6c:e7:7d:f1:25:7c:81:d0:3a:96:5b:3f: e7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:AA:37:4A:5A:F1:01:79:BC:90:5C:F2:B8:8C:19:2C:0D:37:CF:9B X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C5EBF14444EB11F088B1CD7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.66.198.0/23 157.66.220.0/23 160.22.74.0/23 160.22.80.0/23 160.22.118.0/23 160.30.10.0/23 160.30.22.0/23 Signature Algorithm: sha256WithRSAEncryption b1:5d:53:90:e7:2b:3b:d7:0b:57:61:e9:a8:38:c5:e4:89:7b: 5f:92:90:ac:a5:4d:06:93:da:c3:84:cc:73:b7:d1:59:0b:b0: 19:ae:76:f0:ca:44:0c:cc:19:52:9d:c1:0f:03:0d:78:25:90: 35:91:e6:36:88:77:5d:08:f5:54:ca:6c:61:8c:72:47:d5:7c: cd:9e:50:d5:2e:64:a9:33:23:17:06:63:33:b5:fd:4a:a0:9f: 1b:ae:ea:58:da:69:31:b5:3e:09:36:4f:bc:c2:de:85:45:4c: 22:f2:65:1a:8e:14:66:21:40:01:94:81:ab:33:11:5c:68:e9: 78:05:cb:5f:9c:47:66:68:c4:85:76:e2:7f:89:5b:d0:46:d5: 39:9d:0f:5f:60:c2:c2:75:b0:13:88:60:23:35:9a:e5:4e:d3: 1f:86:a2:1b:e5:a1:26:66:5f:70:fb:61:57:77:5f:5e:b9:4a: 89:7b:9a:16:24:7b:3a:98:77:3e:d1:78:04:75:0d:f8:4c:e8: 79:b0:1a:47:0e:0e:80:aa:5e:12:9c:b3:f5:b2:74:0d:31:a0: d7:da:6d:a1:cd:90:0b:b8:1a:af:b5:69:e6:65:46:a5:cd:be: 8a:66:e0:e6:91:aa:64:84:c4:00:b5:8f:51:c6:e2:15:4e:a5: cd:5a:7b:4a -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICIWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTA5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWJjMS02ZTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk+gAV/or5Pxv58PBUSyEvLqAxdQjW1U9QM+0bcIIY7s8FEiZY8A+HAgof58f cWA2vL/AO6So6Ul7OTsZ5pP23nP+hEVre11O739XUnbsNDw0cFgqa/hhdKEqhTda IzHu63S+Cz+crYLdU1gQKe2veYYZMxxpatmjfRssVAGUhy3JWrO0MSjYDljRf5qg Fr8Oo9UTs7K6swTXeAKVSuQNES/Qy9SB6G2FWOSk4qxIqPylJwNr7o3QKEt8xP4H 855gi39T9x4jFzfSGv+D71uZxzjzBIJ8/YexCzJ1WAc1YsUWSIRBZ8UoPxsmuRC9 eJR87Wxs533xJXyB0DqWWz/nvQIDAQABo4IChDCCAoAwHQYDVR0OBBYEFOOqN0pa 8QF5vJBc8riMGSwNN8+bMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQzVFQkYxNDQ0 NEVCMTFGMDg4QjFDRDdCQzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAw BAIAATAqAwQBnULGAwQBnULcAwQBoBZKAwQBoBZQAwQBoBZ2AwQBoB4KAwQBoB4W MA0GCSqGSIb3DQEBCwUAA4IBAQCxXVOQ5ys71wtXYemoOMXkiXtfkpCspU0Gk9rD hMxzt9FZC7AZrnbwykQMzBlSncEPAw14JZA1keY2iHddCPVUymxhjHJH1XzNnlDV LmSpMyMXBmMztf1KoJ8brupY2mkxtT4JNk+8wt6FRUwi8mUajhRmIUABlIGrMxFc aOl4BctfnEdmaMSFduJ/iVvQRtU5nQ9fYMLCdbATiGAjNZrlTtMfhqIb5aEmZl9w +2FXd19euUqJe5oWJHs6mHc+0XgEdQ34TOh5sBpHDg6Aql4SnLP1snQNMaDX2m2h zZALuBqvtWnmZUalzb6KZuDmkapkhMQAtY9RxuIVTqXNWntK -----END CERTIFICATE-----Generated at Wed Mar 18 00:36:36 2026 by rpki-client