$ rpki-client -vvf rpki.apnic.net/member_repository/A91799DA/645E1278638911F193BC26626A47A888/010F5BB8638A11F1A70F2DF16B47A888.roa File: 010F5BB8638A11F1A70F2DF16B47A888.roa (raw, json) Hash identifier: AJA3j4Sapw820tITzgJm8anzppqi5qFKdDdco1bm2o0= Subject key identifier: C1:BE:B7:A1:AD:62:07:96:29:5C:7D:71:ED:04:D4:E1:0C:BA:FD:6D Certificate issuer: /CN=A91799DA/serialNumber=05D5AB531AA116ED52984FF4BD45D0D2D8438B68 Certificate serial: 02 Authority key identifier: 05:D5:AB:53:1A:A1:16:ED:52:98:4F:F4:BD:45:D0:D2:D8:43:8B:68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdWrUxqhFu1SmE_0vUXQ0thDi2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91799DA/645E1278638911F193BC26626A47A888/010F5BB8638A11F1A70F2DF16B47A888.roa Signing time: Mon 08 Jun 2026 22:33:00 +0000 ROA not before: Mon 08 Jun 2026 22:33:00 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 58681 IP address blocks: 166.64.0.0/23 maxlen: 23 166.64.2.0/23 maxlen: 23 166.64.4.0/24 maxlen: 24 166.64.5.0/24 maxlen: 24 166.64.8.0/24 maxlen: 24 166.64.10.0/24 maxlen: 24 166.64.13.0/24 maxlen: 24 166.64.14.0/24 maxlen: 24 166.64.20.0/23 maxlen: 23 166.64.22.0/23 maxlen: 23 166.64.30.0/24 maxlen: 24 166.64.40.0/24 maxlen: 24 166.64.100.0/24 maxlen: 24 166.64.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91799DA/645E1278638911F193BC26626A47A888/BdWrUxqhFu1SmE_0vUXQ0thDi2g.crl rsync://rpki.apnic.net/member_repository/A91799DA/645E1278638911F193BC26626A47A888/BdWrUxqhFu1SmE_0vUXQ0thDi2g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdWrUxqhFu1SmE_0vUXQ0thDi2g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91799DA, serialNumber=05D5AB531AA116ED52984FF4BD45D0D2D8438B68 Validity Not Before: Jun 8 22:33:00 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6a27431c-87c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f7:cd:4b:de:7b:5c:85:61:54:fc:6e:49:77: 61:38:25:ad:53:1a:78:b6:f9:6f:69:73:53:58:65: 22:3c:d7:80:05:a2:01:e3:3d:be:e7:0d:5b:7c:55: 2a:fb:49:f3:af:9b:e5:8d:5e:70:11:57:ce:c8:4b: 4d:84:e1:f0:d5:47:7a:f7:88:6f:bf:91:2a:26:45: da:66:36:a6:04:33:77:7c:b1:9a:6a:5c:33:b8:e5: e6:c3:75:e8:dc:e4:cb:58:c1:1f:76:e6:ec:14:0a: e0:6f:59:f9:d9:b1:65:98:69:1e:38:46:1e:8e:a1: d0:f1:70:09:9c:87:16:f7:3f:66:01:10:8a:ea:78: d4:bd:57:b2:00:4d:f3:4e:0f:07:7a:95:04:9b:44: 46:a5:67:4c:39:8a:c9:68:4a:c7:6a:1b:dd:89:b9: bb:d0:8f:1d:f1:84:02:48:ad:ab:ac:68:2c:b6:ba: d9:d0:17:55:58:f5:7e:2c:fb:a1:5d:b8:a7:95:3a: 0f:e6:59:d5:e1:ff:f4:c7:d7:25:d1:08:54:d4:f7: e0:78:f3:1c:2b:78:3f:e3:35:5b:52:06:84:cf:86: 1e:f4:18:a4:1a:a7:45:4a:de:3f:30:81:36:34:d3: 7a:d6:02:c1:ae:ec:5a:e3:0f:d6:88:86:26:9c:1a: 1d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:BE:B7:A1:AD:62:07:96:29:5C:7D:71:ED:04:D4:E1:0C:BA:FD:6D X509v3 Authority Key Identifier: keyid:05:D5:AB:53:1A:A1:16:ED:52:98:4F:F4:BD:45:D0:D2:D8:43:8B:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91799DA/645E1278638911F193BC26626A47A888/BdWrUxqhFu1SmE_0vUXQ0thDi2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdWrUxqhFu1SmE_0vUXQ0thDi2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91799DA/645E1278638911F193BC26626A47A888/010F5BB8638A11F1A70F2DF16B47A888.roa sbgp-ipAddrBlock: critical IPv4: 166.64.0.0-166.64.5.255 166.64.8.0/24 166.64.10.0/24 166.64.13.0-166.64.14.255 166.64.20.0/22 166.64.30.0/24 166.64.40.0/24 166.64.100.0/24 166.64.112.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:eb:e9:d9:1d:6a:e7:50:95:8f:27:ac:0e:fb:72:1d:c7:df: ec:d5:df:c6:f3:24:88:69:74:3a:2d:73:03:10:38:73:09:1e: 55:40:e9:58:13:0b:8e:09:7b:ac:f4:fd:5b:1f:ca:9e:80:11: 8c:75:86:20:51:13:b1:27:3a:60:e6:16:cb:7a:d6:91:d6:97: 3b:e2:7e:3c:7d:62:17:fd:f5:8d:92:0c:f6:6d:f4:fd:e2:50: 6b:84:7e:90:ad:90:29:af:e3:62:9e:9b:f0:43:af:7e:ca:af: 56:1f:14:c8:f9:49:05:28:ce:2d:db:aa:d2:7d:78:f7:97:c6: bd:f0:6c:f1:09:db:c5:97:2d:e3:5f:4f:cf:74:82:43:27:a7: cc:1b:21:ac:61:90:65:80:2e:af:d8:46:82:93:2e:a7:84:b7: 89:ca:df:ec:12:e8:d7:9d:48:b9:4f:b3:b3:56:8f:d0:2f:b0: 6e:da:da:b9:5a:c0:48:a6:81:79:f1:87:58:b4:9a:99:f6:cd: eb:55:3e:87:06:aa:50:5b:ae:6f:97:a6:c9:2f:e9:1f:ea:b7: fb:4a:9a:45:e4:9e:93:d9:80:ec:2a:51:89:9c:0e:4d:9e:d9: ec:b5:ec:64:25:bd:fc:8c:50:63:82:68:b7:9d:12:19:33:ee: 73:04:a8:db -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OTlEQTExMC8GA1UEBRMoMDVENUFCNTMxQUExMTZFRDUyOTg0RkY0QkQ0NUQwRDJE ODQzOEI2ODAeFw0yNjA2MDgyMjMzMDBaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMjc0MzFjLTg3YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDC981L3ntchWFU/G5Jd2E4Ja1TGni2+W9pc1NYZSI814AFogHjPb7nDVt8VSr7 SfOvm+WNXnARV87IS02E4fDVR3r3iG+/kSomRdpmNqYEM3d8sZpqXDO45ebDdejc 5MtYwR925uwUCuBvWfnZsWWYaR44Rh6OodDxcAmchxb3P2YBEIrqeNS9V7IATfNO Dwd6lQSbREalZ0w5isloSsdqG92JubvQjx3xhAJIrausaCy2utnQF1VY9X4s+6Fd uKeVOg/mWdXh//TH1yXRCFTU9+B48xwreD/jNVtSBoTPhh70GKQap0VK3j8wgTY0 03rWAsGu7FrjD9aIhiacGh37AgMBAAGjggKfMIICmzAdBgNVHQ4EFgQUwb63oa1i B5YpXH1x7QTU4Qy6/W0wHwYDVR0jBBgwFoAUBdWrUxqhFu1SmE/0vUXQ0thDi2gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5OURBLzY0NUUxMjc4NjM4 OTExRjE5M0JDMjY2MjZBNDdBODg4L0JkV3JVeHFoRnUxU21FXzB2VVhRMHRoRGky Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQmRXclV4cWhGdTFTbUVfMHZVWFEwdGhEaTJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTlEQS82NDVFMTI3ODYzODkxMUYxOTNCQzI2NjI2QTQ3QTg4OC8wMTBGNUJCODYz OEExMUYxQTcwRjJERjE2QjQ3QTg4OC5yb2EwXgYIKwYBBQUHAQcBAf8ETzBNMEsE AgABMEUwCwMDBqZAAwQBpkAEAwQApkAIAwQApkAKMAwDBACmQA0DBACmQA4DBAKm QBQDBACmQB4DBACmQCgDBACmQGQDBACmQHAwDQYJKoZIhvcNAQELBQADggEBAGzr 6dkdaudQlY8nrA77ch3H3+zV38bzJIhpdDotcwMQOHMJHlVA6VgTC44Je6z0/Vsf yp6AEYx1hiBRE7EnOmDmFst61pHWlzvifjx9Yhf99Y2SDPZt9P3iUGuEfpCtkCmv 42Kem/BDr37Kr1YfFMj5SQUozi3bqtJ9ePeXxr3wbPEJ28WXLeNfT890gkMnp8wb IaxhkGWALq/YRoKTLqeEt4nK3+wS6NedSLlPs7NWj9AvsG7a2rlawEimgXnxh1i0 mpn2zetVPocGqlBbrm+Xpskv6R/qt/tKmkXknpPZgOwqUYmcDk2e2ey17GQlvfyM UGOCaLedEhkz7nMEqNs= -----END CERTIFICATE-----Generated at Mon Jun 15 15:18:22 2026 by rpki-client