$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D3204D78E81811EEACBDBB30C4F9AE02.roa File: D3204D78E81811EEACBDBB30C4F9AE02.roa (raw, json) Hash identifier: jZrdVZd/g0RTEWvmpo+PEWPP5GmpmpWC9xvq3xqsQ9A= Subject key identifier: 87:F8:57:94:AE:E6:65:0F:45:BF:F4:28:5B:0E:8F:7F:1B:48:2E:EC Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 209C Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D3204D78E81811EEACBDBB30C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:06:05 +0000 ROA not before: Thu 28 Aug 2025 14:51:11 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151911 IP address blocks: 157.20.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8348 (0x209c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:11 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a609cd-1281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3a:28:6d:75:86:9b:f3:8f:b0:d6:c7:01:b7: f1:f7:6b:fe:98:97:f1:fc:a7:ff:c5:3f:a5:48:c9: 70:14:78:c0:8f:f0:b0:8d:97:b5:fb:1a:e3:7a:c2: b9:89:36:c6:82:b2:60:e8:34:aa:e5:6c:e2:29:ba: b5:45:54:be:d4:34:1d:db:85:ef:b9:3c:36:ce:15: e9:07:85:dd:7e:28:ff:b1:46:5f:82:83:68:8a:28: ba:cc:65:ea:5d:28:7c:03:05:07:d7:17:69:53:ca: 11:ab:3a:71:69:8e:45:19:3d:86:6e:f9:24:1b:ad: c2:e6:4a:95:88:29:55:ef:25:93:75:3c:51:40:3a: 7e:65:52:7d:86:89:34:d2:53:d8:d7:34:a7:8b:63: a0:7e:bf:0b:4c:8f:41:e4:e4:24:f5:ab:96:d6:df: 85:fb:06:d7:57:ed:2d:88:a5:d8:f3:fb:ad:a7:a2: 79:a4:af:fd:e3:e0:8d:2e:93:42:8d:98:05:ee:57: 83:52:30:5a:60:b6:38:0a:53:8e:e3:63:ea:c2:7a: 9f:2f:fe:9c:06:35:ff:7d:ee:17:66:b1:09:b5:e6: c1:0a:d7:16:ae:c7:7c:cd:d0:3c:28:10:09:0d:06: 10:d9:33:a5:a8:20:86:d1:a2:c2:c6:08:a1:14:ef: 31:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:F8:57:94:AE:E6:65:0F:45:BF:F4:28:5B:0E:8F:7F:1B:48:2E:EC X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D3204D78E81811EEACBDBB30C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.200.0/23 Signature Algorithm: sha256WithRSAEncryption 72:cd:72:16:66:cf:c5:80:3b:ab:cd:79:bb:59:12:eb:75:b7: 1c:f7:2e:55:63:9d:c7:69:2a:9e:77:15:2a:af:a8:7c:f7:cc: b0:a1:30:f3:5a:23:46:de:e9:32:ef:22:a6:cf:ee:f8:a9:72: c7:0e:db:5d:98:fa:91:3a:24:ab:54:16:12:ea:b5:10:01:aa: 2f:66:bf:86:04:60:13:b9:78:94:93:21:c8:86:3d:86:81:54: 72:53:4c:53:0c:22:df:3a:2e:1d:25:8f:d9:59:fb:bb:f2:8f: 28:29:87:99:13:91:8d:28:7a:8b:c3:1f:51:2e:e7:6b:65:00: 6c:ab:39:4a:75:7a:bf:8c:32:22:1f:1c:17:13:13:66:0b:c5: e0:08:9e:4b:95:56:c8:7a:20:a5:5c:a4:02:0f:41:ff:5b:1b: 79:f5:02:6c:1f:ae:76:e5:89:6f:90:cb:be:8b:6e:e0:7a:56: d9:6f:e6:0e:3a:60:2c:91:9f:06:c8:d0:3b:53:2f:f8:94:51: 0a:4d:fb:2e:ae:69:bc:38:20:6e:c9:ef:ce:d3:9e:50:2e:5b: c9:cf:42:29:1a:8c:1c:66:76:0f:95:bc:51:b8:14:d2:d8:bc: d5:62:75:e0:89:95:7f:2e:7b:aa:d4:66:6f:a3:80:0c:44:d3: 86:0a:26:03 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICIJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTExWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MDljZC0xMjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DoobXWGm/OPsNbHAbfx92v+mJfx/Kf/xT+lSMlwFHjAj/CwjZe1+xrjesK5 iTbGgrJg6DSq5WziKbq1RVS+1DQd24XvuTw2zhXpB4Xdfij/sUZfgoNoiii6zGXq XSh8AwUH1xdpU8oRqzpxaY5FGT2GbvkkG63C5kqViClV7yWTdTxRQDp+ZVJ9hok0 0lPY1zSni2Ogfr8LTI9B5OQk9auW1t+F+wbXV+0tiKXY8/utp6J5pK/94+CNLpNC jZgF7leDUjBaYLY4ClOO42PqwnqfL/6cBjX/fe4XZrEJtebBCtcWrsd8zdA8KBAJ DQYQ2TOlqCCG0aLCxgihFO8xtQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIf4V5Su 5mUPRb/0KFsOj38bSC7sMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRDMyMDRENzhF ODE4MTFFRUFDQkRCQjMwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRTIMA0GCSqGSIb3DQEBCwUAA4IBAQByzXIWZs/FgDurzXm7WRLr dbcc9y5VY53HaSqedxUqr6h898ywoTDzWiNG3uky7yKmz+74qXLHDttdmPqROiSr VBYS6rUQAaovZr+GBGATuXiUkyHIhj2GgVRyU0xTDCLfOi4dJY/ZWfu78o8oKYeZ E5GNKHqLwx9RLudrZQBsqzlKdXq/jDIiHxwXExNmC8XgCJ5LlVbIeiClXKQCD0H/ Wxt59QJsH6525YlvkMu+i27gelbZb+YOOmAskZ8GyNA7Uy/4lFEKTfsurmm8OCBu ye/O055QLlvJz0IpGowcZnYPlbxRuBTS2LzVYnXgiZV/Lnuq1GZvo4AMRNOGCiYD -----END CERTIFICATE-----Generated at Sat Mar 7 22:52:19 2026 by rpki-client