$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C4A5964644EB11F088B1CD7BC4F9AE02.roa File: C4A5964644EB11F088B1CD7BC4F9AE02.roa (raw, json) Hash identifier: yOGxiFDMS+PJ/VNnD3FLfSzjuHJT2s1T0luC7eOFfEg= Subject key identifier: 0B:B2:36:9C:B0:EA:FF:37:01:E0:43:48:A8:4B:CB:C2:1A:B7:DF:FB Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 080F Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C4A5964644EB11F088B1CD7BC4F9AE02.roa Signing time: Sun 01 Mar 2026 21:14:51 +0000 ROA not before: Thu 28 Aug 2025 14:51:17 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152934 IP address blocks: 160.22.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2063 (0x80f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:17 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4ac4b-1a31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f3:8f:da:a8:ad:5f:7f:b6:94:20:4f:12:f1: 9d:a9:95:4c:3b:26:dd:b8:b8:24:ea:45:56:22:87: be:55:2a:ce:5d:d6:63:4a:63:ec:ca:a8:63:e8:90: 76:e6:a6:50:9a:85:00:36:5a:3d:db:f4:6b:32:c3: 3d:72:1f:84:da:00:5a:97:aa:bc:80:e4:0d:e0:68: 2b:5d:b7:3c:29:8c:24:5f:b8:20:9f:6c:4f:c7:5f: 4c:b6:09:3a:13:e5:77:38:0b:54:10:fb:9f:52:f1: 78:64:4e:a6:35:c2:7a:03:0a:b1:79:c8:ef:07:f5: e6:79:a4:a7:49:4c:22:bc:13:6b:b3:36:80:b3:01: 2e:42:38:97:8f:4d:18:ca:e6:77:6b:9b:06:19:ae: 9e:89:bd:75:a6:6a:b2:d3:7f:77:82:be:da:3f:54: 0a:9d:20:53:bf:e7:25:7f:c7:de:ac:01:7b:4f:e4: af:76:7e:15:92:60:6a:c5:8f:71:9c:5f:a3:f0:1d: a9:38:34:c2:3a:f6:f4:7b:5c:2c:c3:80:e9:c8:2f: a0:da:d6:98:e8:b4:8c:26:52:4a:8a:51:4c:62:ad: 81:c1:ae:df:0b:05:f2:a3:76:aa:1e:33:8d:18:a0: 69:24:e9:e7:44:71:de:57:cf:69:71:7a:f6:a4:6e: 5a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:B2:36:9C:B0:EA:FF:37:01:E0:43:48:A8:4B:CB:C2:1A:B7:DF:FB X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C4A5964644EB11F088B1CD7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.22.170.0/23 Signature Algorithm: sha256WithRSAEncryption 99:dc:c0:d6:ec:40:e3:14:4b:4f:05:ec:5a:d7:94:2b:6f:59: 0d:ef:5c:c0:45:4f:ae:36:5d:ca:85:ff:3c:a5:40:92:2d:4f: 4c:45:33:34:59:9d:27:87:3d:c9:61:8c:05:36:82:58:3d:f3: e3:9f:72:d2:ae:4d:22:14:b2:f1:74:fe:05:9d:34:2d:02:17: b4:3e:04:14:a1:28:0b:a0:95:67:fb:8b:3f:f9:69:f6:f0:d6: 9c:0a:25:19:d3:db:9b:2f:fd:42:66:1e:20:c9:97:fc:64:c8: 7a:9e:e7:dd:53:85:0a:9e:3c:3a:3c:77:32:b5:21:fa:5d:29: 2f:4b:b1:50:bc:2e:4a:89:67:c6:16:36:64:92:d5:38:2a:fc: 47:0e:67:83:16:11:24:19:f0:ad:f4:df:ae:4e:2e:4b:7f:8f: 44:4f:b3:a2:dc:5d:db:09:0d:4b:58:5a:63:94:3d:3e:ee:c9: fb:45:f9:92:7f:35:81:9b:49:93:4a:65:89:dc:ba:67:3c:71: ec:a6:77:44:78:b3:40:2d:8d:9d:2d:75:9e:72:02:05:f4:94: 10:40:1c:fd:47:51:7c:49:09:32:bc:78:14:64:b2:40:c8:6a: 2a:ff:16:3c:9a:ce:6c:f1:7b:c0:23:07:c4:ab:fe:a9:76:2a: f9:66:86:63 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTE3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWM0Yi0xYTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/OP2qitX3+2lCBPEvGdqZVMOybduLgk6kVWIoe+VSrOXdZjSmPsyqhj6JB2 5qZQmoUANlo92/RrMsM9ch+E2gBal6q8gOQN4GgrXbc8KYwkX7ggn2xPx19Mtgk6 E+V3OAtUEPufUvF4ZE6mNcJ6AwqxecjvB/XmeaSnSUwivBNrszaAswEuQjiXj00Y yuZ3a5sGGa6eib11pmqy0393gr7aP1QKnSBTv+clf8ferAF7T+Svdn4VkmBqxY9x nF+j8B2pODTCOvb0e1wsw4DpyC+g2taY6LSMJlJKilFMYq2Bwa7fCwXyo3aqHjON GKBpJOnnRHHeV89pcXr2pG5adwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAuyNpyw 6v83AeBDSKhLy8Iat9/7MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQzRBNTk2NDY0 NEVCMTFGMDg4QjFDRDdCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBaqMA0GCSqGSIb3DQEBCwUAA4IBAQCZ3MDW7EDjFEtPBexa15Qr b1kN71zARU+uNl3Khf88pUCSLU9MRTM0WZ0nhz3JYYwFNoJYPfPjn3LSrk0iFLLx dP4FnTQtAhe0PgQUoSgLoJVn+4s/+Wn28NacCiUZ09ubL/1CZh4gyZf8ZMh6nufd U4UKnjw6PHcytSH6XSkvS7FQvC5KiWfGFjZkktU4KvxHDmeDFhEkGfCt9N+uTi5L f49ET7Oi3F3bCQ1LWFpjlD0+7sn7RfmSfzWBm0mTSmWJ3LpnPHHspndEeLNALY2d LXWecgIF9JQQQBz9R1F8SQkyvHgUZLJAyGoq/xY8ms5s8XvAIwfEq/6pdir5ZoZj -----END CERTIFICATE-----Generated at Mon Mar 2 04:30:36 2026 by rpki-client