$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D88830EA03DE11F099DD3450C4F9AE02.roa File: D88830EA03DE11F099DD3450C4F9AE02.roa (raw, json) Hash identifier: 2N0afS21Fc1+DVK1PWYWFU/83lZRDUvxh1MbSWI4AKQ= Subject key identifier: 2B:A1:38:FD:2F:B5:62:7B:37:FB:08:B9:D4:23:7F:50:19:13:5D:77 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2137 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D88830EA03DE11F099DD3450C4F9AE02.roa Signing time: Mon 02 Mar 2026 23:22:00 +0000 ROA not before: Thu 28 Aug 2025 14:51:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153499 IP address blocks: 161.248.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8503 (0x2137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61b98-5367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:e2:38:e2:0d:fb:b4:c5:2e:32:88:78:cb:21: e7:84:ed:ab:e6:ab:13:3f:60:c3:16:8c:8b:f9:b1: a0:72:88:59:7b:27:a2:54:e2:51:e1:75:10:2d:04: 76:08:ab:40:5f:68:05:71:9e:13:63:54:0e:5c:00: 92:8c:7d:4d:74:5e:6c:33:31:01:9f:a2:2c:8a:75: ca:9e:f5:97:1f:8b:01:0d:24:07:9c:96:a2:f3:b0: fa:e0:c8:57:2b:38:e6:ff:ad:ff:7d:bf:fe:b8:1a: 21:b8:c2:ec:7b:7c:e8:af:5f:9b:a2:23:71:c5:af: f2:96:be:ed:d8:4b:c4:cc:21:eb:7c:84:9e:cf:96: 34:16:85:92:66:fc:f7:b8:f1:0c:d6:f4:8f:7c:cc: 67:a3:6e:df:07:8c:25:de:92:1a:3a:d6:e5:1d:fc: 84:39:fb:7b:3f:9a:0a:ad:c0:11:f8:6b:57:b8:2b: 72:b6:a1:64:fa:76:de:7a:36:08:fb:96:72:03:24: 00:be:24:50:62:56:5e:ed:c3:ba:ea:52:06:12:26: d2:5b:6d:ac:a1:ac:17:b6:b9:dd:d5:f0:a8:ab:7b: cf:50:4d:95:f7:71:08:e4:ce:5d:85:fb:d8:ab:0a: 3d:d3:85:19:aa:24:07:8e:7c:3a:b7:af:27:83:ba: b8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A1:38:FD:2F:B5:62:7B:37:FB:08:B9:D4:23:7F:50:19:13:5D:77 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D88830EA03DE11F099DD3450C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.60.0/23 Signature Algorithm: sha256WithRSAEncryption 57:12:30:a3:62:0f:0b:1f:ec:55:19:c4:35:8f:9d:e0:44:86: df:81:d1:ff:9d:d8:67:3f:ba:3a:5e:8d:01:0d:ef:a2:6a:a2: f8:79:8b:72:19:45:08:94:be:ce:f4:77:68:db:57:88:47:54: 67:f5:6d:e2:95:50:23:e7:d3:57:f8:70:87:18:bc:f6:c5:10: 32:8a:00:72:2a:97:56:cd:a5:47:e1:ef:b6:1d:f0:d6:79:fe: 7a:87:d9:61:b9:1c:32:4b:0a:35:5a:75:9b:55:96:8e:77:bf: 9d:5b:b3:e4:f5:ab:25:eb:54:ae:50:1c:77:77:5d:ca:4d:43: 00:89:cd:b6:a1:cc:c1:1f:f4:a8:b5:ce:d1:87:53:a8:40:43: d9:bf:75:94:a4:d2:d2:aa:4e:43:b5:bf:2b:7e:86:ec:72:c6: 42:e9:ee:5e:6c:42:64:a9:52:b5:62:4b:cd:c3:90:6d:7c:be: be:ae:88:49:54:9f:06:92:76:f7:2e:9e:0c:0f:51:9c:e2:b9: 07:a5:cb:0b:04:35:c7:1d:ec:ab:9e:f5:e9:eb:fe:e7:04:87: 1c:99:f1:8c:26:b3:ed:37:e1:86:7d:ae:07:ac:65:78:19:32: 64:69:e9:29:cf:7e:6c:e5:56:39:4f:dd:56:bb:77:77:4d:b2: ae:1a:bc:83 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICITcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTUyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWI5OC01MzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlOI44g37tMUuMoh4yyHnhO2r5qsTP2DDFoyL+bGgcohZeyeiVOJR4XUQLQR2 CKtAX2gFcZ4TY1QOXACSjH1NdF5sMzEBn6IsinXKnvWXH4sBDSQHnJai87D64MhX Kzjm/63/fb/+uBohuMLse3zor1+boiNxxa/ylr7t2EvEzCHrfISez5Y0FoWSZvz3 uPEM1vSPfMxno27fB4wl3pIaOtblHfyEOft7P5oKrcAR+GtXuCtytqFk+nbeejYI +5ZyAyQAviRQYlZe7cO66lIGEibSW22soawXtrnd1fCoq3vPUE2V93EI5M5dhfvY qwo904UZqiQHjnw6t68ng7q4gQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCuhOP0v tWJ7N/sIudQjf1AZE113MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRDg4ODMwRUEw M0RFMTFGMDk5REQzNDUwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofg8MA0GCSqGSIb3DQEBCwUAA4IBAQBXEjCjYg8LH+xVGcQ1j53g RIbfgdH/ndhnP7o6Xo0BDe+iaqL4eYtyGUUIlL7O9Hdo21eIR1Rn9W3ilVAj59NX +HCHGLz2xRAyigByKpdWzaVH4e+2HfDWef56h9lhuRwySwo1WnWbVZaOd7+dW7Pk 9asl61SuUBx3d13KTUMAic22oczBH/Sotc7Rh1OoQEPZv3WUpNLSqk5Dtb8rfobs csZC6e5ebEJkqVK1YkvNw5BtfL6+rohJVJ8Gknb3Lp4MD1Gc4rkHpcsLBDXHHeyr nvXp6/7nBIccmfGMJrPtN+GGfa4HrGV4GTJkaekpz35s5VY5T91Wu3d3TbKuGryD -----END CERTIFICATE-----Generated at Sat Mar 7 22:53:54 2026 by rpki-client