$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1637570ECDDB11ED90586709C4F9AE02.roa File: 1637570ECDDB11ED90586709C4F9AE02.roa (raw, json) Hash identifier: HaGRU89AGjp3lQL1CY3J/vrJORR0EPyO/rY48pFu7XI= Subject key identifier: 96:2A:5B:72:B4:71:23:2B:48:AE:DA:ED:0D:80:15:4C:32:57:5B:54 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5ED8 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1637570ECDDB11ED90586709C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:19:56 +0000 ROA not before: Thu 28 Aug 2025 14:56:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24085 IP address blocks: 116.193.64.0/20 maxlen: 24 120.72.80.0/21 maxlen: 24 120.72.96.0/19 maxlen: 24 202.78.224.0/21 maxlen: 24 210.2.64.0/18 maxlen: 24 2403:6000::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24280 (0x5ed8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60d0c-9b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c8:da:5b:f1:62:8e:dd:fe:ab:02:c7:7c:6b: 23:50:22:9a:2b:57:57:0a:65:3a:17:ca:0c:3c:42: 49:0c:91:fe:a5:70:05:cf:5c:19:d5:bc:55:fd:f6: a5:be:90:3f:8e:f3:a6:e0:ef:0c:21:28:85:6d:dc: ce:f6:42:3a:f0:23:bf:55:84:eb:80:1c:f2:0e:1a: 0b:39:ab:a0:e6:9e:a3:77:11:95:4e:15:bc:eb:9d: 53:1b:87:6a:3c:ee:6a:80:38:5c:35:5b:8c:da:ea: c0:cc:18:62:ff:21:24:2e:29:c7:c2:e1:e2:13:40: 90:68:1a:b8:5e:bc:83:10:92:90:72:cb:1a:1d:72: ee:6c:9d:ad:22:5c:c1:55:5a:05:ca:e1:ce:98:78: 99:2f:cb:7b:f3:c8:49:22:9b:de:22:76:51:ef:a1: 1d:ea:2d:de:39:cc:70:08:26:f3:b5:dc:d8:10:45: c9:5f:d6:fd:66:7b:d9:f1:aa:4e:34:a2:ec:a0:a8: 06:50:b5:a8:00:a4:47:2a:df:95:07:b9:78:a9:81: f5:21:07:73:09:3f:10:49:c4:3d:f5:50:ae:87:ef: f4:e6:fb:ce:55:ad:1b:51:0f:99:ad:d5:a6:ab:03: e9:cb:47:9d:f4:42:01:53:16:07:e2:69:d1:a4:0f: 26:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:2A:5B:72:B4:71:23:2B:48:AE:DA:ED:0D:80:15:4C:32:57:5B:54 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1637570ECDDB11ED90586709C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.193.64.0/20 120.72.80.0/21 120.72.96.0/19 202.78.224.0/21 210.2.64.0/18 IPv6: 2403:6000::/32 Signature Algorithm: sha256WithRSAEncryption 7b:93:38:6c:de:e8:69:f5:26:20:67:9f:49:dd:bf:cf:ac:c0: 7b:9d:d2:e1:1c:d7:47:2e:d4:af:ed:1d:89:56:ec:6d:49:92: fe:9d:dc:a8:81:c7:e5:c1:70:10:6d:72:86:63:ca:de:bf:c3: 11:75:34:37:27:07:09:44:92:f7:e7:0e:40:a6:6a:61:b1:5d: 26:7c:83:ac:b2:5a:29:d6:c6:2e:76:2c:91:a6:d5:38:ee:49: 9f:46:a5:91:26:74:fe:6e:e0:bc:78:66:1d:f1:c2:54:ea:ed: ba:b9:ea:7a:e8:3f:74:da:79:57:28:6d:db:bf:29:5e:44:f3: ce:96:cd:b3:1a:1b:19:ef:85:16:58:f3:6c:50:93:8b:5c:bc: 0f:68:87:f4:05:82:4f:96:85:00:e1:45:19:11:2a:0b:a8:94: 4a:a7:06:93:5a:10:a3:87:ce:2e:1f:93:dd:f4:df:b7:ed:f2: 6c:af:29:f1:9c:3f:4e:ff:2d:2f:b2:60:c1:d2:f5:4e:83:d8: 49:c1:4c:74:84:ec:ba:b6:ec:41:0c:7e:9b:29:9c:37:af:8c: 69:d1:1f:a0:66:a9:f4:be:1f:b1:0d:05:da:ee:b4:36:89:47: 9b:a4:37:e9:81:39:a2:d0:8c:91:2d:8f:56:8a:2e:61:c0:81: 45:f4:12:6a -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICXtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjUxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGQwYy05YjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8cjaW/Fijt3+qwLHfGsjUCKaK1dXCmU6F8oMPEJJDJH+pXAFz1wZ1bxV/fal vpA/jvOm4O8MISiFbdzO9kI68CO/VYTrgBzyDhoLOaug5p6jdxGVThW8651TG4dq PO5qgDhcNVuM2urAzBhi/yEkLinHwuHiE0CQaBq4XryDEJKQcssaHXLubJ2tIlzB VVoFyuHOmHiZL8t788hJIpveInZR76Ed6i3eOcxwCCbztdzYEEXJX9b9ZnvZ8apO NKLsoKgGULWoAKRHKt+VB7l4qYH1IQdzCT8QScQ99VCuh+/05vvOVa0bUQ+ZrdWm qwPpy0ed9EIBUxYH4mnRpA8mDQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFJYqW3K0 cSMrSK7a7Q2AFUwyV1tUMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMTYzNzU3MEVD RERCMTFFRDkwNTg2NzA5QzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQEdMFAAwQDeEhQAwQFeEhgAwQDyk7gAwQG0gJAMA0EAgACMAcDBQAk A2AAMA0GCSqGSIb3DQEBCwUAA4IBAQB7kzhs3uhp9SYgZ59J3b/PrMB7ndLhHNdH LtSv7R2JVuxtSZL+ndyogcflwXAQbXKGY8rev8MRdTQ3JwcJRJL35w5ApmphsV0m fIOsslop1sYudiyRptU47kmfRqWRJnT+buC8eGYd8cJU6u26uep66D902nlXKG3b vyleRPPOls2zGhsZ74UWWPNsUJOLXLwPaIf0BYJPloUA4UUZESoLqJRKpwaTWhCj h84uH5Pd9N+37fJsrynxnD9O/y0vsmDB0vVOg9hJwUx0hOy6tuxBDH6bKZw3r4xp 0R+gZqn0vh+xDQXa7rQ2iUebpDfpgTmi0IyRLY9Wii5hwIFF9BJq -----END CERTIFICATE-----Generated at Sat Mar 7 22:44:58 2026 by rpki-client