$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CC5A2760062711F0B26BB948C4F9AE02.roa File: CC5A2760062711F0B26BB948C4F9AE02.roa (raw, json) Hash identifier: HujmdnPAjfrsovbxGgvVoOZPeIhP8iKcLTwsIcxs6LE= Subject key identifier: B2:74:EC:EB:BE:E4:B6:4D:C0:04:19:EC:0F:CE:F7:05:CA:51:F3:9A Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2164 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CC5A2760062711F0B26BB948C4F9AE02.roa Signing time: Mon 02 Mar 2026 23:22:44 +0000 ROA not before: Thu 28 Aug 2025 14:51:02 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150862 IP address blocks: 157.10.42.0/23 maxlen: 23 157.10.44.0/23 maxlen: 23 157.15.108.0/23 maxlen: 23 157.15.110.0/23 maxlen: 23 160.22.106.0/23 maxlen: 23 160.30.20.0/23 maxlen: 23 160.30.156.0/23 maxlen: 23 160.30.192.0/23 maxlen: 23 160.30.200.0/23 maxlen: 23 160.187.122.0/23 maxlen: 23 160.187.226.0/23 maxlen: 23 160.187.228.0/23 maxlen: 23 160.187.246.0/23 maxlen: 23 160.191.54.0/23 maxlen: 23 160.191.138.0/23 maxlen: 23 160.191.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8548 (0x2164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:02 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61bc4-c3e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:83:e4:23:44:59:8b:fc:20:fb:5f:dc:f5:78: 93:7e:e6:5d:3a:88:8f:e3:ac:fc:7c:42:c0:7a:dc: 39:0e:06:94:82:4f:7c:d6:b1:68:97:48:5d:49:de: 75:12:e4:32:e1:7c:1a:8e:da:84:3d:4b:2e:b7:91: ea:28:d2:b5:19:60:84:25:1e:5f:0b:c2:dc:f5:ca: 73:a2:39:88:b4:e5:11:ff:76:9c:2b:ff:53:8f:4e: 62:0d:e9:81:48:8b:cd:3f:45:b2:cc:b8:d0:33:4b: 00:ba:20:37:36:f0:d9:e3:90:8f:dd:0b:cc:b2:0e: ab:bd:c8:4c:66:df:09:20:d4:b5:c7:18:4c:51:79: b3:98:73:d4:d8:aa:0a:7c:d3:b6:dd:f3:47:a6:48: c9:18:57:73:cf:0d:f2:9b:55:4d:e5:44:e5:8c:34: 46:87:ab:03:c4:2f:68:63:fd:f7:30:42:e0:58:ab: 16:ba:d2:9b:f6:54:14:f2:a8:4b:aa:bd:8c:37:54: da:d1:47:4a:85:62:93:7d:7f:c1:37:11:20:2e:b9: 32:b5:5f:5f:7d:4a:93:04:6b:ed:7a:d4:ca:6e:d1: 9a:6d:8e:c1:d0:ec:a9:cd:bc:0f:24:2c:2b:27:d9: 32:15:ed:bb:3a:53:77:c5:6a:88:4e:91:4e:88:1f: 6c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:74:EC:EB:BE:E4:B6:4D:C0:04:19:EC:0F:CE:F7:05:CA:51:F3:9A X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CC5A2760062711F0B26BB948C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.42.0-157.10.45.255 157.15.108.0/22 160.22.106.0/23 160.30.20.0/23 160.30.156.0/23 160.30.192.0/23 160.30.200.0/23 160.187.122.0/23 160.187.226.0-160.187.229.255 160.187.246.0/23 160.191.54.0/23 160.191.138.0/23 160.191.174.0/23 Signature Algorithm: sha256WithRSAEncryption 57:de:58:d8:51:6c:a4:01:53:cf:bb:f7:64:45:ee:1a:32:00: c8:80:ad:a9:55:82:39:0d:4c:54:c1:46:f2:5e:82:2c:1c:94: 94:9d:a7:31:49:fc:b4:5e:2a:a2:38:7c:64:22:84:a9:8c:ef: 13:0d:25:bf:f2:80:fc:2a:a3:2b:51:1c:5e:df:02:f9:7b:1e: c8:3b:e0:c2:39:e8:e2:55:8e:89:24:35:39:03:7f:33:9c:d6: b7:d5:cb:ca:89:db:25:06:3e:2d:92:3d:4d:73:cb:5f:ea:8f: de:b6:dd:fb:96:db:f4:39:04:c6:ba:9a:d6:48:8d:92:06:a9: 5a:14:85:2c:48:bf:ad:d0:5f:09:ca:d3:ac:07:6e:8d:5c:62: 46:7a:7f:df:2d:ba:df:ff:ce:66:87:5c:40:96:bc:37:82:38: d7:87:01:c1:83:7e:fa:c6:e4:73:4f:b1:c5:be:fe:6c:ba:3b: 13:85:f6:49:18:f1:a1:2e:4f:28:c2:74:61:01:16:7b:4d:9d: ea:e9:d3:00:f7:b2:be:c6:b0:ee:96:69:1c:03:70:d9:ac:c3: cb:1e:1e:93:9c:be:8a:5a:88:ad:b5:55:63:ba:e3:79:a4:1d: a7:a3:47:56:2d:9e:b0:87:5d:90:3b:e6:31:c0:eb:3c:94:94: 6f:20:31:06 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICIWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTAyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWJjNC1jM2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoPkI0RZi/wg+1/c9XiTfuZdOoiP46z8fELAetw5DgaUgk981rFol0hdSd51 EuQy4XwajtqEPUsut5HqKNK1GWCEJR5fC8Lc9cpzojmItOUR/3acK/9Tj05iDemB SIvNP0WyzLjQM0sAuiA3NvDZ45CP3QvMsg6rvchMZt8JINS1xxhMUXmzmHPU2KoK fNO23fNHpkjJGFdzzw3ym1VN5UTljDRGh6sDxC9oY/33MELgWKsWutKb9lQU8qhL qr2MN1Ta0UdKhWKTfX/BNxEgLrkytV9ffUqTBGvtetTKbtGabY7B0OypzbwPJCwr J9kyFe27OlN3xWqITpFOiB9sDQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFLJ07Ou+ 5LZNwAQZ7A/O9wXKUfOaMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQ0M1QTI3NjAw NjI3MTFGMEIyNkJCOTQ4QzRGOUFFMDIucm9hMHcGCCsGAQUFBwEHAQH/BGgwZjBk BAIAATBeMAwDBAGdCioDBAGdCiwDBAKdD2wDBAGgFmoDBAGgHhQDBAGgHpwDBAGg HsADBAGgHsgDBAGgu3owDAMEAaC74gMEAaC75AMEAaC79gMEAaC/NgMEAaC/igME AaC/rjANBgkqhkiG9w0BAQsFAAOCAQEAV95Y2FFspAFTz7v3ZEXuGjIAyICtqVWC OQ1MVMFG8l6CLByUlJ2nMUn8tF4qojh8ZCKEqYzvEw0lv/KA/CqjK1EcXt8C+Xse yDvgwjno4lWOiSQ1OQN/M5zWt9XLyonbJQY+LZI9TXPLX+qP3rbd+5bb9DkExrqa 1kiNkgapWhSFLEi/rdBfCcrTrAdujVxiRnp/3y263//OZodcQJa8N4I414cBwYN+ +sbkc0+xxb7+bLo7E4X2SRjxoS5PKMJ0YQEWe02d6unTAPeyvsaw7pZpHANw2azD yx4ek5y+ilqIrbVVY7rjeaQdp6NHVi2esIddkDvmMcDrPJSUbyAxBg== -----END CERTIFICATE-----Generated at Sat Mar 7 22:58:14 2026 by rpki-client