$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D5CBAE82014011EF9545275FC4F9AE02.roa File: D5CBAE82014011EF9545275FC4F9AE02.roa (raw, json) Hash identifier: p4Jb0snTCYKJiA7FOx2dNte1wJDGPFpZA9fKp9m/xgE= Subject key identifier: 1F:8C:B6:8E:BE:16:61:10:4A:0F:C0:F9:43:53:C5:1A:32:98:D3:5B Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 20A0 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D5CBAE82014011EF9545275FC4F9AE02.roa Signing time: Mon 02 Mar 2026 22:06:09 +0000 ROA not before: Thu 28 Aug 2025 14:51:15 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151923 IP address blocks: 157.66.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8352 (0x20a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:15 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a609d1-6156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ff:42:91:48:18:56:a6:63:9e:c6:bb:f1:25: 05:37:be:4c:e2:ea:1b:b3:3d:97:f7:8f:7c:ff:14: 4c:04:43:b7:62:1a:3e:c4:f9:84:af:5d:ae:52:ae: d6:28:4e:de:58:f2:1c:00:c5:07:6e:c4:2d:34:5f: 54:60:de:75:e2:cb:ab:75:fc:ea:58:ff:56:58:29: 20:c0:6e:b8:e0:d5:52:26:39:7b:c2:04:7b:d2:84: a4:cd:86:4a:87:89:3f:8c:f4:3a:be:a0:2e:cf:c2: 16:0a:f4:e4:38:26:af:f5:20:65:9d:b3:a9:b9:4f: 43:24:dd:09:bf:ba:05:37:02:fc:20:e3:f0:64:7a: c6:50:5b:5d:fd:71:95:cf:e9:21:1c:71:39:bf:1e: b6:6a:a1:36:38:71:66:95:1c:bd:21:a7:93:c9:21: dd:84:81:fc:99:b9:50:a1:7d:4d:8d:14:17:49:73: 5b:41:dd:13:2a:fb:ec:05:65:56:b5:c0:3c:5a:ff: 5b:c1:f3:91:0c:82:44:e3:44:34:b5:72:c0:72:5f: 4e:90:92:c6:9b:49:c8:0f:4b:60:14:7e:42:8b:26: 77:6b:12:f5:fa:07:0e:5c:57:8b:f5:9a:a9:41:13: 33:03:38:94:f2:81:81:9d:0e:2b:39:f8:44:40:57: 38:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:8C:B6:8E:BE:16:61:10:4A:0F:C0:F9:43:53:C5:1A:32:98:D3:5B X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D5CBAE82014011EF9545275FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.66.134.0/23 Signature Algorithm: sha256WithRSAEncryption b7:fb:1b:b6:6f:90:15:32:de:5f:3c:0f:8c:cd:55:1f:b9:9b: 7f:66:9e:df:f2:92:b9:64:45:e9:32:b8:c6:90:56:8c:ae:46: 60:db:2b:77:f1:f4:70:d4:f5:09:49:67:cd:3a:99:a3:dc:6d: 98:61:44:95:6c:e5:26:78:a7:06:0d:40:4e:89:b9:0d:02:78: fd:91:11:ad:c1:8a:d8:b1:b8:bb:bb:b4:ce:f8:d2:c3:db:b7: 42:73:1c:87:bb:05:28:8e:d7:82:aa:69:84:f8:9e:88:a0:9b: e8:c4:8b:80:6f:df:c2:d3:8e:28:9c:e8:c9:76:72:86:04:da: fa:ea:37:94:44:15:27:b2:da:27:ae:1f:b0:b2:43:91:c5:6b: 14:58:1a:7c:a6:fd:f7:ac:4c:8b:f2:25:33:b9:e7:bf:79:ed: 50:af:18:83:e6:ea:ae:6d:17:1c:d1:3c:ee:a1:c5:84:d2:49: dc:b5:8a:6b:e4:c6:03:d4:93:87:bc:39:f7:56:6c:e7:69:e3: 86:81:65:76:8b:dd:51:f0:34:ac:05:c1:50:c0:c2:66:a6:ef: 1d:81:c3:1c:ab:e4:7e:dc:b1:13:e1:16:d7:ff:5c:ba:1b:db: d1:eb:74:2f:61:ac:04:1b:73:50:e5:68:7d:1d:ba:0b:8c:f4: e2:51:1f:70 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICIKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTE1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MDlkMS02MTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/9CkUgYVqZjnsa78SUFN75M4uobsz2X9498/xRMBEO3Yho+xPmEr12uUq7W KE7eWPIcAMUHbsQtNF9UYN514surdfzqWP9WWCkgwG644NVSJjl7wgR70oSkzYZK h4k/jPQ6vqAuz8IWCvTkOCav9SBlnbOpuU9DJN0Jv7oFNwL8IOPwZHrGUFtd/XGV z+khHHE5vx62aqE2OHFmlRy9IaeTySHdhIH8mblQoX1NjRQXSXNbQd0TKvvsBWVW tcA8Wv9bwfORDIJE40Q0tXLAcl9OkJLGm0nID0tgFH5CiyZ3axL1+gcOXFeL9Zqp QRMzAziU8oGBnQ4rOfhEQFc4PQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFB+Mto6+ FmEQSg/A+UNTxRoymNNbMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRDVDQkFFODIw MTQwMTFFRjk1NDUyNzVGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnUKGMA0GCSqGSIb3DQEBCwUAA4IBAQC3+xu2b5AVMt5fPA+MzVUf uZt/Zp7f8pK5ZEXpMrjGkFaMrkZg2yt38fRw1PUJSWfNOpmj3G2YYUSVbOUmeKcG DUBOibkNAnj9kRGtwYrYsbi7u7TO+NLD27dCcxyHuwUojteCqmmE+J6IoJvoxIuA b9/C044onOjJdnKGBNr66jeURBUnstonrh+wskORxWsUWBp8pv33rEyL8iUzuee/ ee1QrxiD5uqubRcc0TzuocWE0knctYpr5MYD1JOHvDn3VmznaeOGgWV2i91R8DSs BcFQwMJmpu8dgcMcq+R+3LET4RbX/1y6G9vR63QvYawEG3NQ5Wh9HboLjPTiUR9w -----END CERTIFICATE-----Generated at Sat Mar 7 22:53:58 2026 by rpki-client