$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/BB0AAA1CAFDB11F0B4868557C4F9AE02.roa File: BB0AAA1CAFDB11F0B4868557C4F9AE02.roa (raw, json) Hash identifier: tx0HTw+gTu/O9tvfQu2aYSIySdBZz0kGdr3mTAkjFsI= Subject key identifier: E3:99:62:D4:0D:5F:B5:1E:9F:22:A7:CC:A1:88:6D:14:FF:42:5C:83 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 084B Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/BB0AAA1CAFDB11F0B4868557C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:15:44 +0000 ROA not before: Thu 23 Oct 2025 06:44:32 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153401 IP address blocks: 160.191.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2123 (0x84b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Oct 23 06:44:32 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4ac80-e9b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:06:c8:99:53:62:0c:08:b7:60:65:d6:94:a8: 9e:8e:54:c6:e3:04:01:29:f7:f8:2e:e0:4c:f7:87: 0b:08:3a:ee:da:2f:3a:5d:9b:b2:4f:3c:5b:3a:62: 2f:5a:a7:fc:7f:76:5f:84:04:6d:39:74:f9:4a:17: c1:0f:5f:bc:fb:44:fa:fb:65:4f:1f:0b:52:9d:14: 1e:5b:08:bb:c1:94:d5:34:37:60:7f:3f:ac:7d:c4: fa:fb:21:4f:90:91:f0:91:5c:1e:2f:ba:b6:e4:b9: dd:2e:20:1d:d7:3b:e4:db:d4:13:44:d3:15:5f:67: 1f:93:53:a5:17:96:e7:2c:a8:56:3b:f9:72:0b:e1: 95:ea:b1:ae:e1:92:e9:5f:d3:0c:5e:4e:47:e1:3f: 52:e3:be:fb:5a:cc:39:3e:e6:36:50:1c:3b:5d:a8: 65:af:56:fd:e6:73:ff:b5:b7:6a:64:cb:74:c7:a4: 0f:fa:04:90:0f:c7:2a:5e:06:dd:27:e2:88:ec:e2: 83:29:32:ae:f8:d0:b9:f4:2d:96:b3:b0:f5:2a:d6: a2:93:36:f8:d5:fa:8e:bc:93:18:39:1e:a7:77:ab: 30:df:06:37:18:8d:89:30:50:47:fa:15:f7:1b:ee: 12:53:3e:aa:9c:c8:bf:d5:3a:4c:a6:70:ac:74:8c: e8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:99:62:D4:0D:5F:B5:1E:9F:22:A7:CC:A1:88:6D:14:FF:42:5C:83 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/BB0AAA1CAFDB11F0B4868557C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.191.161.0/24 Signature Algorithm: sha256WithRSAEncryption 23:fe:fb:56:90:af:87:c7:ce:af:45:be:5f:39:84:41:cd:8f: 38:04:b9:de:ff:bb:70:a7:f2:bf:40:7a:0c:40:3c:37:29:d0: 87:f5:f4:57:fb:60:24:e0:89:3c:e3:f4:6a:1e:0e:c2:68:fa: 75:c0:06:10:e3:e5:1d:3e:d1:09:bc:b8:44:2d:f0:cc:72:5d: 78:bd:a1:a6:45:92:ec:a6:8c:97:20:d0:c1:fa:3d:ae:ae:96: 43:87:5e:43:85:2a:52:0c:bb:2f:29:6d:23:92:ca:b6:8c:6e: 28:d2:7c:64:c0:8f:93:f0:07:f3:71:20:54:33:74:39:a4:3e: 5c:06:b4:35:36:b4:79:77:0d:03:1f:fe:a9:62:43:3b:8a:f9: 6a:64:b7:b5:c5:b3:63:49:c7:29:11:13:66:6f:9a:65:6d:93: 92:3d:51:12:0c:e6:6b:a0:0a:1d:f6:b2:84:fb:ab:49:04:9b: d9:28:8c:11:f7:e7:09:d8:fa:10:b5:bc:cf:d3:a8:14:25:5c: 8b:c7:f0:f2:7c:16:9d:2e:bd:cb:c3:40:1a:bf:11:1f:e1:15: bb:c4:b9:76:df:79:5f:74:1a:f0:7a:7a:3e:e8:8a:6d:86:36: 9c:76:ca:9c:18:7d:0e:27:74:bf:78:7e:f2:c5:45:b7:69:cf: 3d:9d:03:4b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUxMDIzMDY0NDMyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWM4MC1lOWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgbImVNiDAi3YGXWlKiejlTG4wQBKff4LuBM94cLCDru2i86XZuyTzxbOmIv Wqf8f3ZfhARtOXT5ShfBD1+8+0T6+2VPHwtSnRQeWwi7wZTVNDdgfz+sfcT6+yFP kJHwkVweL7q25LndLiAd1zvk29QTRNMVX2cfk1OlF5bnLKhWO/lyC+GV6rGu4ZLp X9MMXk5H4T9S4777Wsw5PuY2UBw7Xahlr1b95nP/tbdqZMt0x6QP+gSQD8cqXgbd J+KI7OKDKTKu+NC59C2Ws7D1Ktaikzb41fqOvJMYOR6nd6sw3wY3GI2JMFBH+hX3 G+4SUz6qnMi/1TpMpnCsdIzoCwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOOZYtQN X7UenyKnzKGIbRT/QlyDMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQkIwQUFBMUNB RkRCMTFGMEI0ODY4NTU3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoL+hMA0GCSqGSIb3DQEBCwUAA4IBAQAj/vtWkK+Hx86vRb5fOYRB zY84BLne/7twp/K/QHoMQDw3KdCH9fRX+2Ak4Ik84/RqHg7CaPp1wAYQ4+UdPtEJ vLhELfDMcl14vaGmRZLspoyXINDB+j2urpZDh15DhSpSDLsvKW0jksq2jG4o0nxk wI+T8AfzcSBUM3Q5pD5cBrQ1NrR5dw0DH/6pYkM7ivlqZLe1xbNjSccpERNmb5pl bZOSPVESDOZroAod9rKE+6tJBJvZKIwR9+cJ2PoQtbzP06gUJVyLx/DyfBadLr3L w0AavxEf4RW7xLl233lfdBrweno+6IpthjacdsqcGH0OJ3S/eH7yxUW3ac89nQNL -----END CERTIFICATE-----Generated at Mon Mar 2 04:34:16 2026 by rpki-client