$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/4647BCD66E7F11EF9223EA62C4F9AE02.roa File: 4647BCD66E7F11EF9223EA62C4F9AE02.roa (raw, json) Hash identifier: FxWk3CYoUsmOWP3BThgvkKbLGxzzM1P6yOk19JYKyZQ= Subject key identifier: 34:99:AD:1D:3C:71:B5:39:A0:94:BA:F0:14:4B:97:5C:0B:A1:34:95 Certificate issuer: /CN=A91E57A9/serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Certificate serial: 0151 Authority key identifier: 4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/4647BCD66E7F11EF9223EA62C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:45:57 +0000 ROA not before: Tue 03 Jun 2025 06:05:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 63801 IP address blocks: 160.22.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 04:09:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57A9, serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Validity Not Before: Jun 3 06:05:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a5a2a5-b2a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f7:dc:9a:31:80:36:5b:a2:75:d7:76:77:6f: 17:b4:60:42:8d:95:1b:be:81:b2:62:4a:0e:bf:07: 1e:11:45:29:c9:52:29:1b:07:76:61:5d:86:17:b7: ed:ab:f0:f9:f1:14:4b:67:a9:51:88:00:a1:9a:ac: 1d:ce:d0:70:06:1f:47:b8:21:b7:ab:73:bb:d1:b1: 5a:e6:8c:fe:1f:85:99:1b:2f:be:04:98:00:79:3f: ad:bf:bc:b3:b3:74:28:8c:5b:16:81:cb:cf:04:84: ef:91:d1:0b:d2:25:2f:e4:d1:71:be:0c:c5:ca:f1: 7e:11:c2:a5:d5:c3:96:2e:9b:fe:9b:d5:4d:79:9c: 3f:cd:58:33:10:6a:0b:d5:69:e2:95:d6:0e:71:1b: 51:41:3c:98:a6:9c:b4:1e:ed:aa:90:46:b3:8c:98: ed:a7:ef:99:43:e3:43:d6:66:c7:bb:8b:07:44:e2: ca:27:c1:99:fa:b3:00:a0:1c:de:0f:4b:62:45:71: a8:a4:be:8d:f9:e0:3a:d2:9f:59:8f:db:07:fc:3f: d6:8a:47:a1:ed:12:85:15:5d:69:ca:ff:1a:50:1e: 40:73:0a:fe:f5:b7:de:80:da:2d:a4:aa:13:9d:74: a6:45:2a:3d:87:63:2a:1c:84:50:df:ef:70:6d:65: c7:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:99:AD:1D:3C:71:B5:39:A0:94:BA:F0:14:4B:97:5C:0B:A1:34:95 X509v3 Authority Key Identifier: keyid:4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/4647BCD66E7F11EF9223EA62C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.22.40.0/23 Signature Algorithm: sha256WithRSAEncryption 08:10:ce:0e:da:7f:26:93:34:38:e2:65:1a:4a:09:d7:99:fc: c3:6d:32:cb:11:49:d2:5b:95:a4:2d:81:8f:c7:76:1d:63:3d: 11:19:cc:cc:7e:0e:74:f6:da:23:97:9f:81:6a:00:8b:af:6b: 9b:53:c8:09:e6:79:2e:07:58:9e:13:5e:b8:3b:d8:fd:43:cf: 6c:00:d2:12:c7:8c:06:da:57:49:3e:e8:a6:1e:5a:df:d5:e4: 11:a3:40:08:65:3d:27:05:05:0d:3d:8c:b3:29:ad:3f:75:02: 32:8e:c6:91:02:f5:33:0c:61:08:20:38:80:ae:3c:0f:4b:79: a9:da:6c:4e:66:a0:92:d2:ba:0e:2c:ad:14:b1:8c:92:45:03: 0c:cb:ba:a8:ae:63:68:dd:8f:3c:ff:da:66:5c:bc:1e:57:31: 39:ad:e8:88:88:9d:35:91:ad:18:ec:cb:e8:eb:1a:0b:fb:52: 22:cf:3b:76:ff:9a:db:2d:85:c7:6f:3d:ab:58:ec:1e:ff:ea: 17:8f:bc:01:a4:c8:3b:95:b5:e1:b6:1f:ea:45:03:20:ce:42: a4:b3:93:fc:ed:1f:76:36:ed:c8:95:c0:eb:aa:41:58:e6:c8: 2c:8b:00:9f:e5:ed:51:12:1f:d6:f7:27:87:ab:67:97:01:d2: 70:64:31:97 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3QTkxMTAvBgNVBAUTKDRFMjU5QkE4N0E0MEI2NkQ4NDJBQzhDRTBBRUE3ODRF NEJENzM4MkUwHhcNMjUwNjAzMDYwNTM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTJhNS1iMmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPfcmjGANluiddd2d28XtGBCjZUbvoGyYkoOvwceEUUpyVIpGwd2YV2GF7ft q/D58RRLZ6lRiAChmqwdztBwBh9HuCG3q3O70bFa5oz+H4WZGy++BJgAeT+tv7yz s3QojFsWgcvPBITvkdEL0iUv5NFxvgzFyvF+EcKl1cOWLpv+m9VNeZw/zVgzEGoL 1WnildYOcRtRQTyYppy0Hu2qkEazjJjtp++ZQ+ND1mbHu4sHROLKJ8GZ+rMAoBze D0tiRXGopL6N+eA60p9Zj9sH/D/Wikeh7RKFFV1pyv8aUB5Acwr+9bfegNotpKoT nXSmRSo9h2MqHIRQ3+9wbWXHwQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDSZrR08 cbU5oJS68BRLl1wLoTSVMB8GA1UdIwQYMBaAFE4lm6h6QLZthCrIzgrqeE5L1zgu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdBOS83QkJEMTFBQzFG RjMxMUVGQTNGQjJDODFDNEY5QUUwMi9UaVdicUhwQXRtMkVLc2pPQ3VwNFRrdlhP QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RpV2JxSHBBdG0yRUtzak9DdXA0VGt2WE9DNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3QTkvN0JCRDExQUMxRkYzMTFFRkEzRkIyQzgxQzRGOUFFMDIvNDY0N0JDRDY2 RTdGMTFFRjkyMjNFQTYyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBYoMA0GCSqGSIb3DQEBCwUAA4IBAQAIEM4O2n8mkzQ44mUaSgnX mfzDbTLLEUnSW5WkLYGPx3YdYz0RGczMfg509tojl5+BagCLr2ubU8gJ5nkuB1ie E164O9j9Q89sANISx4wG2ldJPuimHlrf1eQRo0AIZT0nBQUNPYyzKa0/dQIyjsaR AvUzDGEIIDiArjwPS3mp2mxOZqCS0roOLK0UsYySRQMMy7qormNo3Y88/9pmXLwe VzE5reiIiJ01ka0Y7Mvo6xoL+1Iizzt2/5rbLYXHbz2rWOwe/+oXj7wBpMg7lbXh th/qRQMgzkKks5P87R92Nu3IlcDrqkFY5sgsiwCf5e1REh/W9yeHq2eXAdJwZDGX -----END CERTIFICATE-----Generated at Fri Mar 20 09:11:37 2026 by rpki-client