$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/90CF95CE66DD11F09FD37312C4F9AE02.roa File: 90CF95CE66DD11F09FD37312C4F9AE02.roa (raw, json) Hash identifier: 61YOBpN768smaHlb7VNUU/OIP9xDMKXDWqFb5RlTs1U= Subject key identifier: 85:19:53:09:2E:65:04:FF:98:4B:79:AC:A0:80:E6:6E:87:D9:E8:32 Certificate issuer: /CN=A91AC5BC/serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Certificate serial: CB Authority key identifier: A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/90CF95CE66DD11F09FD37312C4F9AE02.roa Signing time: Fri 15 May 2026 16:52:21 +0000 ROA not before: Fri 15 May 2026 16:52:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 149513 IP address blocks: 163.223.72.0/23 maxlen: 24 2402:1920::/32 maxlen: 32 2402:1920::/40 maxlen: 40 2402:1920:f400::/38 maxlen: 40 2402:1920:fc00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 May 2026 07:05:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC5BC, serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Validity Not Before: May 15 16:52:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a074f45-41cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:92:45:35:10:27:0c:11:24:f6:78:16:26:24: 19:b3:c9:a0:c2:2f:6b:8f:98:22:9a:04:1a:55:86: f6:8c:b4:3d:7b:fc:1b:52:bf:49:0a:ac:79:c0:2e: c3:fa:f9:69:3a:fd:e1:98:c1:7c:01:3d:73:86:79: 79:22:30:01:1e:e3:1a:6f:4b:fd:45:7c:73:aa:15: 71:c7:2a:5b:01:b6:3b:ca:5d:05:60:75:5d:be:c2: d2:7f:ac:72:fc:bd:17:39:66:11:da:0f:4e:88:c4: 70:27:31:df:32:fe:2f:8e:33:e0:3e:f8:01:b3:41: 7f:99:e8:d2:ed:cc:62:4e:3f:ed:2d:72:63:cc:2e: 37:91:52:9b:75:7a:1a:b9:24:13:7f:31:7a:d1:e2: 4d:7f:99:44:17:5c:0e:d4:fc:49:6d:bf:1f:88:9d: aa:7e:78:99:b7:56:43:7d:c9:2c:14:f7:35:fd:04: 87:3e:1d:d1:5b:91:ec:c9:d7:80:9f:93:2d:d3:f5: fd:7b:0a:a4:7d:2e:94:e3:24:18:a9:27:1e:bf:89: 94:85:fa:52:6b:fd:72:8a:bf:44:3b:ed:c1:cf:1c: 75:b1:cd:ca:75:95:1f:95:50:f9:eb:5b:84:15:ff: 67:cd:02:72:c8:4c:be:cc:c7:d5:fa:0f:6f:d6:77: d9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:19:53:09:2E:65:04:FF:98:4B:79:AC:A0:80:E6:6E:87:D9:E8:32 X509v3 Authority Key Identifier: keyid:A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/90CF95CE66DD11F09FD37312C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.72.0/23 IPv6: 2402:1920::/32 Signature Algorithm: sha256WithRSAEncryption a7:9d:00:da:0c:47:bd:ed:df:21:7a:f2:d4:52:ee:f6:bc:85: 8f:58:87:74:b3:40:fb:89:22:34:5e:88:a4:bc:94:ba:d5:9a: 82:f8:49:74:fc:8e:ab:12:89:1d:90:45:b9:63:c1:fc:7f:4d: 8c:45:9b:53:50:1a:68:73:8d:2e:ff:dc:34:09:e9:a0:4c:99: ab:87:3a:7d:1f:bd:5e:44:8e:10:24:6c:73:c1:29:85:79:81: f6:84:43:bd:d6:01:f8:31:b5:cd:d5:4e:77:ce:69:60:27:b9: 32:f6:cd:ff:d6:6b:21:53:65:b8:62:4a:c8:50:23:c1:55:64: 2d:ab:76:de:32:57:5d:29:52:a0:22:2b:56:75:fb:9d:95:98: 77:b4:fa:62:1c:87:46:e3:64:1c:04:d3:70:79:05:43:4a:9d: 03:f5:c5:1b:fd:23:66:b4:f4:f8:62:25:96:f3:ce:59:40:93: 62:5f:7d:dd:d7:cd:a6:14:33:05:e2:49:30:0c:22:72:39:39: 1d:0d:28:0e:f7:33:55:cd:4d:2e:2e:5d:54:af:ac:9d:0e:f4: ae:d2:07:73:6e:58:e2:81:98:00:ae:c8:6a:9e:a6:ac:de:1b: 30:97:74:74:e3:ae:22:a0:eb:10:e1:f2:ad:0d:bb:75:a1:76: e9:90:5c:db -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM1QkMxMTAvBgNVBAUTKEExNDUyNDFEOTgzMEFGMjRBNzE1NjczNTEyNTVFQzhF N0VENTNFRkUwHhcNMjYwNTE1MTY1MjIxWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTA3NGY0NS00MWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pJFNRAnDBEk9ngWJiQZs8mgwi9rj5gimgQaVYb2jLQ9e/wbUr9JCqx5wC7D +vlpOv3hmMF8AT1zhnl5IjABHuMab0v9RXxzqhVxxypbAbY7yl0FYHVdvsLSf6xy /L0XOWYR2g9OiMRwJzHfMv4vjjPgPvgBs0F/mejS7cxiTj/tLXJjzC43kVKbdXoa uSQTfzF60eJNf5lEF1wO1PxJbb8fiJ2qfniZt1ZDfcksFPc1/QSHPh3RW5HsydeA n5Mt0/X9ewqkfS6U4yQYqScev4mUhfpSa/1yir9EO+3Bzxx1sc3KdZUflVD561uE Ff9nzQJyyEy+zMfV+g9v1nfZ3QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFIUZUwku ZQT/mEt5rKCA5m6H2egyMB8GA1UdIwQYMBaAFKFFJB2YMK8kpxVnNRJV7I5+1T7+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzVCQy83MUU1RDhCRTU5 RjIxMUYwQjRGQUU5NUZDNEY5QUUwMi9vVVVrSFpnd3J5U25GV2MxRWxYc2puN1ZQ djQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29VVWtIWmd3cnlTbkZXYzFFbFhzam43VlB2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUM1QkMvNzFFNUQ4QkU1OUYyMTFGMEI0RkFFOTVGQzRGOUFFMDIvOTBDRjk1Q0U2 NkREMTFGMDlGRDM3MzEyQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBo99IMA0EAgACMAcDBQAkAhkgMA0GCSqGSIb3DQEBCwUAA4IBAQCn nQDaDEe97d8hevLUUu72vIWPWId0s0D7iSI0XoikvJS61ZqC+El0/I6rEokdkEW5 Y8H8f02MRZtTUBpoc40u/9w0CemgTJmrhzp9H71eRI4QJGxzwSmFeYH2hEO91gH4 MbXN1U53zmlgJ7ky9s3/1mshU2W4YkrIUCPBVWQtq3beMlddKVKgIitWdfudlZh3 tPpiHIdG42QcBNNweQVDSp0D9cUb/SNmtPT4YiWW885ZQJNiX33d182mFDMF4kkw DCJyOTkdDSgO9zNVzU0uLl1Ur6ydDvSu0gdzbljigZgArshqnqas3hswl3R0464i oOsQ4fKtDbt1oXbpkFzb -----END CERTIFICATE-----Generated at Tue May 19 09:30:08 2026 by rpki-client