$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/A0D49CC89E9E11F090FF0D4FC4F9AE02/A4CC914E9EA011F0A7B92A1EC4F9AE02.roa File: A4CC914E9EA011F0A7B92A1EC4F9AE02.roa (raw, json) Hash identifier: 1qya+xG/bA4oxTX7LKHxwYhVq0xAJJdEgu/OLeybOEk= Subject key identifier: 6B:15:54:ED:5A:FF:D5:76:8B:BA:43:AB:2F:14:85:3A:A4:DB:2A:94 Certificate issuer: /CN=A91E3F3C/serialNumber=09710B5B66749E339D124CDE6D66CE366ACCABB0 Certificate serial: 55 Authority key identifier: 09:71:0B:5B:66:74:9E:33:9D:12:4C:DE:6D:66:CE:36:6A:CC:AB:B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CXELW2Z0njOdEkzebWbONmrMq7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/A0D49CC89E9E11F090FF0D4FC4F9AE02/A4CC914E9EA011F0A7B92A1EC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:21:14 +0000 ROA not before: Wed 01 Oct 2025 08:28:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151660 IP address blocks: 160.222.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/A0D49CC89E9E11F090FF0D4FC4F9AE02/CXELW2Z0njOdEkzebWbONmrMq7A.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/A0D49CC89E9E11F090FF0D4FC4F9AE02/CXELW2Z0njOdEkzebWbONmrMq7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CXELW2Z0njOdEkzebWbONmrMq7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 03:24:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C, serialNumber=09710B5B66749E339D124CDE6D66CE366ACCABB0 Validity Not Before: Oct 1 08:28:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58eca-0724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2e:4a:7a:57:fd:29:dc:f0:bd:63:c0:2f:cb: a0:4e:55:72:7a:4e:58:2f:49:34:89:31:8d:82:56: 50:81:cc:4a:51:6e:e8:f6:6e:60:42:fb:9e:e9:3e: f9:61:dd:23:99:d8:92:d6:ef:ad:9c:d6:8d:90:7a: 97:68:ba:8a:02:cb:e5:a1:d8:52:f6:5c:c4:10:2b: 17:18:0a:6a:ab:f1:7f:01:fc:d7:b4:5a:4b:5d:9b: 65:ce:c8:70:52:28:9f:87:9e:a0:9b:aa:3d:7d:4b: 75:62:aa:72:90:d8:01:71:13:15:a8:89:66:65:ca: ce:30:4d:e9:98:21:a8:72:96:60:72:32:ce:23:62: 3c:c3:c9:c0:52:a8:49:c2:cb:9a:d8:f0:d0:b1:a8: e9:4d:cf:9b:dc:ff:2e:d9:6c:aa:6b:7c:50:cc:b8: 78:98:bb:c0:dc:65:87:5b:cd:d4:4b:b2:dd:05:6a: 84:25:c8:3c:4d:5b:e9:87:ad:23:41:93:57:1f:d9: 13:af:6b:07:49:9d:0e:66:d5:3e:57:ea:a8:5a:f3: cd:4f:15:52:9b:5b:00:4c:49:cd:29:09:7c:41:f5: 39:6a:d1:38:d5:8b:a9:50:dc:26:f2:fe:14:2b:6b: 49:f9:e0:78:55:0e:b3:fd:0c:78:e7:7f:ce:92:d3: 52:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:15:54:ED:5A:FF:D5:76:8B:BA:43:AB:2F:14:85:3A:A4:DB:2A:94 X509v3 Authority Key Identifier: keyid:09:71:0B:5B:66:74:9E:33:9D:12:4C:DE:6D:66:CE:36:6A:CC:AB:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/A0D49CC89E9E11F090FF0D4FC4F9AE02/CXELW2Z0njOdEkzebWbONmrMq7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CXELW2Z0njOdEkzebWbONmrMq7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/A0D49CC89E9E11F090FF0D4FC4F9AE02/A4CC914E9EA011F0A7B92A1EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.222.152.0/21 Signature Algorithm: sha256WithRSAEncryption c4:16:b4:75:00:8e:4d:ab:99:cd:3f:a2:aa:2d:8d:b1:1f:48: 36:40:92:0f:bd:ac:88:74:f6:77:26:01:9d:c1:ce:d7:1b:2b: cc:10:eb:4b:e9:a5:59:6b:ba:b5:d2:28:a2:a0:34:87:97:12: 43:b7:5b:26:fe:79:7e:70:dd:1c:e3:bb:58:6d:32:6c:4c:7d: 52:0a:e5:0b:c8:ad:c6:af:11:1e:18:d0:d9:cb:6f:b6:7b:8a: 5e:37:ec:f8:e9:e2:ff:2d:64:ff:e2:0c:d1:2b:64:eb:cf:92: 30:3c:38:42:8e:10:56:e7:42:e9:67:41:15:df:51:a6:60:b9: d6:91:9f:2a:a1:f1:b4:bb:71:f9:31:98:fc:ba:e0:0b:c2:32: a3:96:1a:bd:de:57:d0:79:fb:31:cf:f6:68:81:1d:5c:17:a0: 51:8f:7c:a8:f3:d6:d2:a7:86:8a:f8:83:74:a0:1d:55:c9:8c: 0c:2a:30:d8:e8:ff:d0:b2:31:78:97:ef:fb:03:f6:9b:9f:b5: 92:a4:58:a0:6b:2d:ec:91:5a:e0:a9:44:9e:36:d0:5c:68:e1: 2c:8c:b9:dd:a9:1b:74:d5:8f:e4:6e:43:d3:2b:21:51:51:c8: 2a:f4:70:c3:7a:d9:79:34:eb:64:e9:c6:d0:cd:8c:ec:95:5f: 0d:6f:a7:cb -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0YzQzExMC8GA1UEBRMoMDk3MTBCNUI2Njc0OUUzMzlEMTI0Q0RFNkQ2NkNFMzY2 QUNDQUJCMDAeFw0yNTEwMDEwODI4NDVaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4ZWNhLTA3MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmLkp6V/0p3PC9Y8Avy6BOVXJ6TlgvSTSJMY2CVlCBzEpRbuj2bmBC+57pPvlh 3SOZ2JLW762c1o2QepdouooCy+Wh2FL2XMQQKxcYCmqr8X8B/Ne0Wktdm2XOyHBS KJ+HnqCbqj19S3ViqnKQ2AFxExWoiWZlys4wTemYIahylmByMs4jYjzDycBSqEnC y5rY8NCxqOlNz5vc/y7ZbKprfFDMuHiYu8DcZYdbzdRLst0FaoQlyDxNW+mHrSNB k1cf2ROvawdJnQ5m1T5X6qha881PFVKbWwBMSc0pCXxB9Tlq0TjVi6lQ3Cby/hQr a0n54HhVDrP9DHjnf86S01JTAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUaxVU7Vr/ 1XaLukOrLxSFOqTbKpQwHwYDVR0jBBgwFoAUCXELW2Z0njOdEkzebWbONmrMq7Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRjNDL0EwRDQ5Q0M4OUU5 RTExRjA5MEZGMEQ0RkM0RjlBRTAyL0NYRUxXMlowbmpPZEVremViV2JPTm1yTXE3 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ1hFTFcyWjBuak9kRWt6ZWJXYk9ObXJNcTdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0YzQy9BMEQ0OUNDODlFOUUxMUYwOTBGRjBENEZDNEY5QUUwMi9BNENDOTE0RTlF QTAxMUYwQTdCOTJBMUVDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAOg3pgwDQYJKoZIhvcNAQELBQADggEBAMQWtHUAjk2rmc0/oqotjbEf SDZAkg+9rIh09ncmAZ3BztcbK8wQ60vppVlrurXSKKKgNIeXEkO3Wyb+eX5w3Rzj u1htMmxMfVIK5QvIrcavER4Y0NnLb7Z7il437Pjp4v8tZP/iDNErZOvPkjA8OEKO EFbnQulnQRXfUaZgudaRnyqh8bS7cfkxmPy64AvCMqOWGr3eV9B5+zHP9miBHVwX oFGPfKjz1tKnhor4g3SgHVXJjAwqMNjo/9CyMXiX7/sD9puftZKkWKBrLeyRWuCp RJ420Fxo4SyMud2pG3TVj+RuQ9MrIVFRyCr0cMN62Xk062TpxtDNjOyVXw1vp8s= -----END CERTIFICATE-----Generated at Wed Mar 4 09:48:03 2026 by rpki-client