$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/F4B54F3CFD8F11EFB6B55C35C4F9AE02.roa File: F4B54F3CFD8F11EFB6B55C35C4F9AE02.roa (raw, json) Hash identifier: 8m1/ClHrQ8nSNnvoVcWTZohL0EG72hoyme9cV96I2j8= Subject key identifier: 6D:68:B2:03:1C:25:41:82:41:2A:F8:5B:50:04:C5:20:35:EB:39:89 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2139 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/F4B54F3CFD8F11EFB6B55C35C4F9AE02.roa Signing time: Mon 02 Mar 2026 23:22:02 +0000 ROA not before: Thu 28 Aug 2025 14:51:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153433 IP address blocks: 160.250.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8505 (0x2139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61b9a-0eab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4d:9e:b6:81:0b:05:7d:64:8e:6b:0b:e9:60: 19:6f:bb:4f:4c:76:de:34:e4:6f:4f:3f:dc:07:44: df:19:de:15:b5:6c:cb:8b:22:1e:b7:4f:41:24:31: 3c:0a:97:0d:fb:56:af:e0:09:40:a0:0e:c2:f2:38: 94:a5:3e:65:6c:02:a4:73:1e:2f:3a:31:7e:80:5c: cd:e1:c1:34:bc:e3:d2:d1:15:9d:be:3c:d4:88:c9: 80:72:3e:b4:63:c4:58:a6:a4:3c:84:8a:8e:85:9d: 1c:56:98:21:51:8c:22:8c:25:11:24:68:4f:d1:74: 4e:10:88:e4:f4:10:77:b1:34:86:26:22:e8:fe:5c: ac:1a:5e:3d:39:75:70:03:c5:f8:30:ec:e4:66:ed: 46:07:54:d1:db:1f:86:5b:ad:29:bd:40:de:bc:16: ec:76:53:9a:40:a4:41:d7:a0:9a:dd:db:d0:bd:bb: 16:8d:b3:a5:57:d3:da:c4:18:be:02:4c:c6:18:4a: c1:63:4a:af:c5:f6:98:2c:2d:8b:ae:1a:f9:40:e3: 4e:25:c5:cd:18:f1:fb:0d:e8:b4:43:73:c8:67:b8: 00:a7:7e:cc:39:56:3f:a7:67:84:e4:0d:77:27:1a: f7:f7:54:da:da:9f:91:9e:98:55:40:29:10:2c:bf: ca:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:68:B2:03:1C:25:41:82:41:2A:F8:5B:50:04:C5:20:35:EB:39:89 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/F4B54F3CFD8F11EFB6B55C35C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.250.74.0/23 Signature Algorithm: sha256WithRSAEncryption 34:3d:98:51:ca:92:25:af:51:0d:b5:0c:ce:8e:e2:58:35:1c: cc:14:b4:41:df:04:f6:a4:af:13:ee:25:48:2a:fe:73:ad:46: f4:3a:93:83:53:80:2b:d6:7d:f2:f8:61:c5:f1:bb:f0:58:53: e4:e0:ef:01:58:1d:87:3a:b4:d8:a6:c6:87:a0:23:72:2a:5b: 8f:e8:f1:44:b3:d3:63:10:b2:a4:aa:a4:ec:8c:14:03:55:0d: 1e:ba:49:26:67:54:ba:ff:83:96:56:ff:a6:88:51:7d:63:5d: 3e:be:13:35:b6:89:46:9e:e1:50:1f:3b:dd:5c:92:a5:c2:4e: 95:ac:c6:bb:b4:2b:e2:76:cf:d9:ff:83:ee:d6:37:d0:52:15: 70:ef:1a:1d:33:dc:f2:12:a4:40:73:c2:a4:78:0e:52:d0:9e: c3:57:7c:f9:8b:02:fe:1f:69:47:31:e3:cd:36:bd:d8:dc:77: 29:b6:ae:38:a0:75:a0:0b:f9:23:c5:bc:6c:a4:49:f1:6d:59: c5:d7:6d:c8:f6:b4:b4:35:77:90:a3:dc:97:96:bf:cb:05:f4: bf:d7:e8:b3:f9:fe:7a:38:6d:9b:83:db:52:3d:8b:6f:35:71: 85:f8:68:e8:c7:b1:c9:ee:8f:15:36:8e:00:93:b7:b5:4c:e2: 0c:46:6e:a0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICITkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTUxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWI5YS0wZWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsU2etoELBX1kjmsL6WAZb7tPTHbeNORvTz/cB0TfGd4VtWzLiyIet09BJDE8 CpcN+1av4AlAoA7C8jiUpT5lbAKkcx4vOjF+gFzN4cE0vOPS0RWdvjzUiMmAcj60 Y8RYpqQ8hIqOhZ0cVpghUYwijCURJGhP0XROEIjk9BB3sTSGJiLo/lysGl49OXVw A8X4MOzkZu1GB1TR2x+GW60pvUDevBbsdlOaQKRB16Ca3dvQvbsWjbOlV9PaxBi+ AkzGGErBY0qvxfaYLC2Lrhr5QONOJcXNGPH7Dei0Q3PIZ7gAp37MOVY/p2eE5A13 Jxr391Ta2p+RnphVQCkQLL/KhQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFG1osgMc JUGCQSr4W1AExSA16zmJMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRjRCNTRGM0NG RDhGMTFFRkI2QjU1QzM1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoPpKMA0GCSqGSIb3DQEBCwUAA4IBAQA0PZhRypIlr1ENtQzOjuJY NRzMFLRB3wT2pK8T7iVIKv5zrUb0OpODU4Ar1n3y+GHF8bvwWFPk4O8BWB2HOrTY psaHoCNyKluP6PFEs9NjELKkqqTsjBQDVQ0eukkmZ1S6/4OWVv+miFF9Y10+vhM1 tolGnuFQHzvdXJKlwk6VrMa7tCvids/Z/4Pu1jfQUhVw7xodM9zyEqRAc8KkeA5S 0J7DV3z5iwL+H2lHMePNNr3Y3Hcptq44oHWgC/kjxbxspEnxbVnF123I9rS0NXeQ o9yXlr/LBfS/1+iz+f56OG2bg9tSPYtvNXGF+Gjox7HJ7o8VNo4Ak7e1TOIMRm6g -----END CERTIFICATE-----Generated at Sat Mar 7 22:52:30 2026 by rpki-client