$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B57021F4BA6B11EC82BC5B32C4F9AE02.roa File: B57021F4BA6B11EC82BC5B32C4F9AE02.roa (raw, json) Hash identifier: 8BiNmIiQRau096w3443O12TsnENtyGTeg9cdEplvGko= Subject key identifier: DF:24:48:5F:7E:7A:20:8A:BA:41:09:7B:E4:17:EE:9B:D0:45:B2:8E Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5EF1 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B57021F4BA6B11EC82BC5B32C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:20:22 +0000 ROA not before: Thu 28 Aug 2025 14:57:16 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45543 IP address blocks: 27.2.0.0/15 maxlen: 15 27.2.0.0/16 maxlen: 24 27.3.0.0/16 maxlen: 24 112.197.0.0/16 maxlen: 24 2403:e200::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24305 (0x5ef1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:16 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60d26-1176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9a:39:c9:b8:11:a1:50:d0:fe:49:d3:32:0e: fd:42:53:1c:dc:c8:b1:46:a4:28:85:ef:b9:14:dd: af:a9:50:7d:c4:10:1b:e4:22:01:a6:90:ee:25:7d: c8:d7:66:ec:a4:41:b0:84:fa:c8:3d:7d:f7:86:1e: 8b:57:bb:78:5e:22:99:eb:6f:98:4a:36:ee:d0:a4: da:bd:30:e4:c6:3a:2c:d5:b5:67:aa:d5:05:7b:96: e4:fa:8f:59:28:8f:0b:43:1d:7b:77:b3:99:3a:2e: f6:4e:33:58:fc:1b:21:14:39:68:35:20:8e:b4:df: 48:7c:dc:ce:3f:ff:02:36:62:ad:e3:29:af:d8:9c: cf:92:29:7d:10:95:02:63:95:90:0f:84:a7:15:96: 2a:b5:5c:e4:79:b7:4e:67:b6:86:c8:21:09:1c:19: e9:10:f5:80:7e:1e:3a:29:76:ac:42:2e:03:1d:60: 50:61:45:c1:4e:fb:66:2b:fa:af:36:31:34:d2:7b: e1:bc:46:15:47:8b:99:c7:95:8a:5f:1d:cc:04:d0: a0:de:8a:92:69:e7:b0:06:94:11:2b:0e:5e:ec:60: af:e5:47:c3:64:55:56:a9:f1:4f:ad:62:4b:fc:d6: 98:0b:e6:d7:c3:71:98:82:bf:55:c4:b1:09:8b:0a: 68:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:24:48:5F:7E:7A:20:8A:BA:41:09:7B:E4:17:EE:9B:D0:45:B2:8E X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B57021F4BA6B11EC82BC5B32C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.2.0.0/15 112.197.0.0/16 IPv6: 2403:e200::/32 Signature Algorithm: sha256WithRSAEncryption 74:03:aa:f9:5f:46:ba:71:93:c4:4b:bc:9e:e3:22:a5:fd:2c: 79:5a:2f:11:e9:eb:e9:90:d0:b2:f3:f8:40:44:e1:35:fc:9a: a4:31:61:d7:85:bc:69:97:41:f0:0c:89:8d:b3:ce:65:53:55: 19:bf:d3:31:41:cb:f9:5b:f2:e8:00:38:5a:fc:c5:b9:d7:4e: 2e:bd:49:c6:26:fa:a8:91:7c:2b:a4:0e:be:5c:13:95:33:d1: ce:34:fd:2a:08:23:3c:23:77:53:2d:70:ba:aa:d7:9c:bc:3f: dd:bc:33:c3:82:59:af:5b:7a:98:fb:c3:ba:08:74:c2:60:49: 37:12:3a:ee:11:8b:09:01:2e:0b:cf:13:bd:55:97:80:78:1c: b3:6c:a8:ca:ed:1e:53:02:3c:01:9e:9b:ca:ea:9a:0a:24:26: 8a:94:6f:32:23:5b:ec:d5:f4:5a:e6:ee:d3:d3:27:7d:5a:56: 37:3d:79:2f:38:7c:eb:ed:d9:1f:6d:40:34:e2:7f:da:23:40: 8c:6d:20:d1:d5:15:ee:14:43:c6:83:9f:bc:02:0e:49:60:91: cc:40:c1:4a:83:04:63:b5:14:5e:88:08:63:13:38:8a:86:7d: 5a:2d:22:ef:e8:cc:88:e8:c6:31:5c:ae:b0:06:f8:e8:9a:ec: c6:2b:34:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICXvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzE2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGQyNi0xMTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJo5ybgRoVDQ/knTMg79QlMc3MixRqQohe+5FN2vqVB9xBAb5CIBppDuJX3I 12bspEGwhPrIPX33hh6LV7t4XiKZ62+YSjbu0KTavTDkxjos1bVnqtUFe5bk+o9Z KI8LQx17d7OZOi72TjNY/BshFDloNSCOtN9IfNzOP/8CNmKt4ymv2JzPkil9EJUC Y5WQD4SnFZYqtVzkebdOZ7aGyCEJHBnpEPWAfh46KXasQi4DHWBQYUXBTvtmK/qv NjE00nvhvEYVR4uZx5WKXx3MBNCg3oqSaeewBpQRKw5e7GCv5UfDZFVWqfFPrWJL /NaYC+bXw3GYgr9VxLEJiwpoRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN8kSF9+ eiCKukEJe+QX7pvQRbKOMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQjU3MDIxRjRC QTZCMTFFQzgyQkM1QjMyQzRGOUFFMDIucm9hMDIGCCsGAQUFBwEHAQH/BCMwITAQ BAIAATAKAwMBGwIDAwBwxTANBAIAAjAHAwUAJAPiADANBgkqhkiG9w0BAQsFAAOC AQEAdAOq+V9GunGTxEu8nuMipf0seVovEenr6ZDQsvP4QEThNfyapDFh14W8aZdB 8AyJjbPOZVNVGb/TMUHL+Vvy6AA4WvzFuddOLr1Jxib6qJF8K6QOvlwTlTPRzjT9 KggjPCN3Uy1wuqrXnLw/3bwzw4JZr1t6mPvDugh0wmBJNxI67hGLCQEuC88TvVWX gHgcs2yoyu0eUwI8AZ6byuqaCiQmipRvMiNb7NX0Wubu09MnfVpWNz15Lzh86+3Z H21ANOJ/2iNAjG0g0dUV7hRDxoOfvAIOSWCRzEDBSoMEY7UUXogIYxM4ioZ9Wi0i 7+jMiOjGMVyusAb46Jrsxis0bg== -----END CERTIFICATE-----Generated at Sat Mar 7 22:49:19 2026 by rpki-client