$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CE76D260A87511EF9905FE0AC4F9AE02.roa File: CE76D260A87511EF9905FE0AC4F9AE02.roa (raw, json) Hash identifier: JY95jcOVl07iYnFdan2S926rOLf16E1tPCjfnmmPmXc= Subject key identifier: BC:63:88:EB:D5:9F:DC:D0:F2:E6:C8:9A:0C:60:42:20:30:8A:37:43 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2167 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CE76D260A87511EF9905FE0AC4F9AE02.roa Signing time: Mon 02 Mar 2026 23:22:46 +0000 ROA not before: Thu 28 Aug 2025 14:51:00 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150820 IP address blocks: 157.15.38.0/23 maxlen: 23 157.20.62.0/23 maxlen: 23 157.66.252.0/23 maxlen: 23 160.22.172.0/23 maxlen: 23 160.22.174.0/23 maxlen: 23 160.30.190.0/23 maxlen: 23 160.187.120.0/23 maxlen: 23 160.191.176.0/23 maxlen: 23 160.191.240.0/23 maxlen: 23 160.250.46.0/23 maxlen: 23 161.248.208.0/23 maxlen: 23 165.99.14.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8551 (0x2167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:00 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61bc6-7c92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5c:ff:47:0f:fd:8a:a1:02:87:5e:ee:2f:d2: 44:89:b9:66:74:f2:7d:85:a6:bb:50:94:c6:05:3e: 34:30:03:7a:8f:6c:3d:17:5d:93:90:46:66:ea:84: 39:4f:aa:88:3e:35:e9:d6:64:90:ba:2e:60:24:36: 5d:9b:48:a6:e3:67:54:16:9e:c1:35:61:fd:b8:5d: 16:61:1b:6e:cb:01:d7:2d:d8:70:8b:ca:b3:ff:65: cf:d3:05:67:ed:a3:1b:46:b2:47:83:ce:aa:6d:8c: cf:a0:ac:5f:5d:7c:70:b3:b2:43:a1:23:e3:dc:43: c8:26:4e:69:ac:89:2d:2c:0c:76:67:9a:b5:f8:94: eb:a1:98:e5:04:a7:6c:ef:46:b5:24:73:6f:f9:0c: 62:6c:44:67:a7:99:23:8a:22:39:35:08:6a:74:bb: 32:e2:83:91:2c:39:d3:77:56:bf:43:a3:b9:ce:bc: a0:90:25:b6:ea:1c:cd:ec:46:1b:f7:a2:85:61:76: 21:61:db:51:c1:a9:8d:4e:96:71:dc:8f:90:5c:54: 66:63:5d:7e:6b:d9:f5:a7:7e:9e:35:c4:da:5c:df: 89:ee:8d:bd:0e:e4:84:6d:29:e4:54:5d:9e:ce:20: b4:c8:17:71:25:06:b6:d9:03:01:d5:0a:3e:12:bb: fc:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:63:88:EB:D5:9F:DC:D0:F2:E6:C8:9A:0C:60:42:20:30:8A:37:43 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CE76D260A87511EF9905FE0AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.15.38.0/23 157.20.62.0/23 157.66.252.0/23 160.22.172.0/22 160.30.190.0/23 160.187.120.0/23 160.191.176.0/23 160.191.240.0/23 160.250.46.0/23 161.248.208.0/23 165.99.14.0/23 Signature Algorithm: sha256WithRSAEncryption a9:6a:c2:68:71:6b:1e:2d:67:5f:91:c4:7e:15:2c:17:2e:e6: 0b:25:dd:ae:de:15:89:7f:fb:e1:bf:c0:4b:24:9b:58:37:be: ef:a0:59:89:20:0f:36:39:3b:6b:f1:f6:62:5b:cc:e3:d9:6e: 81:4a:5f:5c:5f:9a:87:0e:ee:82:77:b7:ca:b5:6d:85:d7:f2: 19:1f:14:9f:d3:7b:36:4a:7c:e8:e1:f8:e0:86:b3:bd:ff:ba: c9:7c:5a:9f:9e:fe:f3:69:14:1e:ca:5b:19:d3:aa:88:6e:a3: d3:67:3a:99:b0:6e:cb:9e:74:81:83:4b:04:92:37:a7:f5:e0: 2c:c2:11:09:6b:7a:0f:be:07:91:b3:15:11:82:ad:e4:50:d2: 1f:b5:a0:48:90:cc:93:09:3d:33:87:5e:8e:fa:36:1c:6a:51: d8:2b:3d:2b:e0:e9:16:90:3c:f8:d1:d4:e8:01:92:eb:58:83: 77:af:2f:c0:1f:90:01:78:84:b6:79:23:c3:31:04:fd:87:4d: f6:88:af:ee:d9:54:c3:62:52:50:a4:7e:e4:c1:bf:08:78:51: 90:3f:24:43:2b:1a:1b:25:3b:f0:57:5e:cc:85:75:f8:38:4e: e1:c8:3f:1b:4f:a5:49:c7:c1:cd:91:27:07:d7:f5:c4:1d:db: 06:37:60:ed -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICIWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTAwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWJjNi03YzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVz/Rw/9iqECh17uL9JEiblmdPJ9haa7UJTGBT40MAN6j2w9F12TkEZm6oQ5 T6qIPjXp1mSQui5gJDZdm0im42dUFp7BNWH9uF0WYRtuywHXLdhwi8qz/2XP0wVn 7aMbRrJHg86qbYzPoKxfXXxws7JDoSPj3EPIJk5prIktLAx2Z5q1+JTroZjlBKds 70a1JHNv+QxibERnp5kjiiI5NQhqdLsy4oORLDnTd1a/Q6O5zrygkCW26hzN7EYb 96KFYXYhYdtRwamNTpZx3I+QXFRmY11+a9n1p36eNcTaXN+J7o29DuSEbSnkVF2e ziC0yBdxJQa22QMB1Qo+Erv8DwIDAQABo4ICnDCCApgwHQYDVR0OBBYEFLxjiOvV n9zQ8ubImgxgQiAwijdDMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQ0U3NkQyNjBB ODc1MTFFRjk5MDVGRTBBQzRGOUFFMDIucm9hMFsGCCsGAQUFBwEHAQH/BEwwSjBI BAIAATBCAwQBnQ8mAwQBnRQ+AwQBnUL8AwQCoBasAwQBoB6+AwQBoLt4AwQBoL+w AwQBoL/wAwQBoPouAwQBofjQAwQBpWMOMA0GCSqGSIb3DQEBCwUAA4IBAQCpasJo cWseLWdfkcR+FSwXLuYLJd2u3hWJf/vhv8BLJJtYN77voFmJIA82OTtr8fZiW8zj 2W6BSl9cX5qHDu6Cd7fKtW2F1/IZHxSf03s2Snzo4fjghrO9/7rJfFqfnv7zaRQe ylsZ06qIbqPTZzqZsG7LnnSBg0sEkjen9eAswhEJa3oPvgeRsxURgq3kUNIftaBI kMyTCT0zh16O+jYcalHYKz0r4OkWkDz40dToAZLrWIN3ry/AH5ABeIS2eSPDMQT9 h032iK/u2VTDYlJQpH7kwb8IeFGQPyRDKxobJTvwV17MhXX4OE7hyD8bT6VJx8HN kScH1/XEHdsGN2Dt -----END CERTIFICATE-----Generated at Sat Mar 7 22:52:35 2026 by rpki-client