$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/40CD7F9A4F4711EFA3EF0919C4F9AE02.roa File: 40CD7F9A4F4711EFA3EF0919C4F9AE02.roa (raw, json) Hash identifier: x3XD/SDWTmlbOZz+YGtA0NBDfb85sUtwWF+NDRtFEJo= Subject key identifier: 71:3E:73:4D:11:43:6E:A3:4D:FB:C7:3E:CF:A2:86:98:BF:66:00:E8 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 07EF Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/40CD7F9A4F4711EFA3EF0919C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:14:24 +0000 ROA not before: Thu 28 Aug 2025 14:50:46 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135912 IP address blocks: 160.19.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2031 (0x7ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:50:46 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4ac30-50e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b0:5b:49:c1:85:48:54:6f:1d:0a:3e:c4:0e: 6a:ce:95:e4:0a:dd:3e:b9:44:94:b5:8e:32:7a:a9: 1a:5f:f5:da:c9:9c:ae:13:55:d6:8c:56:6e:b4:56: 70:e2:be:37:23:42:e2:b6:6a:d9:07:da:b3:5e:34: 51:70:d7:9c:43:c7:bc:d2:4a:75:ae:80:7a:bd:57: ba:9c:fb:3a:06:f4:33:43:7e:46:9d:08:9a:d2:5e: 74:ae:b3:a7:71:23:9b:8a:03:25:a7:fb:e4:6a:2f: dc:fa:bb:03:2a:9f:fa:fa:d2:ce:6d:6f:3f:aa:00: b0:7b:8d:2a:9e:60:e3:21:77:58:c5:70:ee:a9:fc: 7e:56:37:1b:f8:ce:ee:b0:18:b2:21:0a:80:da:11: a5:e4:fa:cc:d1:70:dc:6a:db:0d:46:3d:8c:43:14: d9:6c:65:d6:2a:86:8a:df:38:a7:75:3f:9b:40:34: 10:95:e1:66:ad:30:3f:a6:2c:62:90:74:37:38:98: 83:24:4d:06:bb:5f:d3:7d:cc:ca:15:89:e9:c2:3c: 8a:30:1b:fe:f2:b8:25:11:6f:10:87:29:b1:86:e9: cc:0f:4b:8e:6d:9e:29:77:fa:43:03:3e:b6:46:59: 78:6d:9a:3e:c1:ed:bc:62:86:0d:55:19:0e:99:ef: c4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3E:73:4D:11:43:6E:A3:4D:FB:C7:3E:CF:A2:86:98:BF:66:00:E8 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/40CD7F9A4F4711EFA3EF0919C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.19.159.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:dd:f4:e0:61:5a:2a:d9:19:00:09:3a:76:75:c9:02:25:c6: ef:4e:3c:0a:5a:7f:72:3e:61:b9:02:2f:ec:6e:16:ad:72:dc: a1:8a:0e:5f:13:a0:3e:39:26:ba:8a:9f:5d:e4:63:ec:ba:a4: 0f:2e:95:af:e7:81:c0:ca:f0:37:8f:4a:fa:b2:e6:ca:5b:f8: f6:b1:91:af:1b:6f:c5:df:e4:10:6c:cc:7c:f2:33:7d:de:f6: cf:44:15:83:0a:d6:09:05:8a:3d:77:17:f3:52:27:04:8a:5e: fe:58:44:17:66:34:b7:5a:0a:14:90:d9:43:fd:c2:73:70:c8: 4a:d3:f3:c6:ab:08:3f:e9:ba:f4:9a:12:f8:ad:ca:9d:b7:3e: aa:06:71:b7:7e:e1:62:34:07:43:d7:62:db:72:0d:90:30:fd: 33:5b:cd:4d:38:0f:3a:9a:90:78:0e:80:83:c1:e2:19:4b:68: f1:23:fc:77:72:e7:4e:a9:a6:e6:51:e3:1b:64:44:16:56:ba: 3b:1a:61:34:a3:a0:70:14:51:ae:a3:fc:ce:e7:5c:36:13:63: bb:ff:62:cd:5a:6f:c2:d0:33:8d:75:bd:14:b0:6f:f4:62:29: 09:65:0a:a4:0b:17:bf:2b:2c:69:84:db:99:f9:84:e1:0b:a4: d8:15:43:c9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MDQ2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWMzMC01MGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7BbScGFSFRvHQo+xA5qzpXkCt0+uUSUtY4yeqkaX/XayZyuE1XWjFZutFZw 4r43I0LitmrZB9qzXjRRcNecQ8e80kp1roB6vVe6nPs6BvQzQ35GnQia0l50rrOn cSObigMlp/vkai/c+rsDKp/6+tLObW8/qgCwe40qnmDjIXdYxXDuqfx+Vjcb+M7u sBiyIQqA2hGl5PrM0XDcatsNRj2MQxTZbGXWKoaK3zindT+bQDQQleFmrTA/pixi kHQ3OJiDJE0Gu1/TfczKFYnpwjyKMBv+8rglEW8QhymxhunMD0uObZ4pd/pDAz62 Rll4bZo+we28YoYNVRkOme/EaQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHE+c00R Q26jTfvHPs+ihpi/ZgDoMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNDBDRDdGOUE0 RjQ3MTFFRkEzRUYwOTE5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBOfMA0GCSqGSIb3DQEBCwUAA4IBAQBd3fTgYVoq2RkACTp2dckC JcbvTjwKWn9yPmG5Ai/sbhatctyhig5fE6A+OSa6ip9d5GPsuqQPLpWv54HAyvA3 j0r6subKW/j2sZGvG2/F3+QQbMx88jN93vbPRBWDCtYJBYo9dxfzUicEil7+WEQX ZjS3WgoUkNlD/cJzcMhK0/PGqwg/6br0mhL4rcqdtz6qBnG3fuFiNAdD12Lbcg2Q MP0zW81NOA86mpB4DoCDweIZS2jxI/x3cudOqabmUeMbZEQWVro7GmE0o6BwFFGu o/zO51w2E2O7/2LNWm/C0DONdb0UsG/0YikJZQqkCxe/KyxphNuZ+YThC6TYFUPJ -----END CERTIFICATE-----Generated at Mon Mar 2 04:30:27 2026 by rpki-client