$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C5EBF14444EB11F088B1CD7BC4F9AE02.roa File: C5EBF14444EB11F088B1CD7BC4F9AE02.roa (raw, json) Hash identifier: dUnpF0AxLUw/+j2gqRe9N9k6Mpz3MpdWWEjx3xJviDM= Subject key identifier: 51:03:FA:DB:75:3F:B9:FA:4D:87:B6:89:95:8A:36:0E:C9:BC:71:E9 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0805 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C5EBF14444EB11F088B1CD7BC4F9AE02.roa Signing time: Sun 01 Mar 2026 21:14:43 +0000 ROA not before: Thu 28 Aug 2025 14:51:09 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151872 IP address blocks: 157.66.198.0/23 maxlen: 23 157.66.220.0/24 maxlen: 24 157.66.221.0/24 maxlen: 24 160.22.74.0/23 maxlen: 24 160.22.80.0/24 maxlen: 24 160.22.81.0/24 maxlen: 24 160.22.118.0/24 maxlen: 24 160.22.119.0/24 maxlen: 24 160.30.10.0/24 maxlen: 24 160.30.11.0/24 maxlen: 24 160.30.22.0/24 maxlen: 24 160.30.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:09 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4ac43-6499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7f:02:c2:bb:12:e3:c3:51:93:a2:fc:e4:ff: 93:4b:ed:1e:50:3b:fb:dc:aa:63:22:4a:de:7e:4e: cd:da:f1:4d:38:26:79:9a:8c:c9:1f:6b:30:76:e5: 80:c4:cf:b3:a0:44:6c:36:c2:c3:7c:dc:62:6e:7d: 6d:f7:99:b2:e0:c8:c5:9a:86:86:e2:cc:cf:75:c6: fb:3d:c6:56:f7:a0:b4:87:ac:bc:94:12:93:98:b3: 3e:b9:b7:e1:b7:0e:4d:23:c1:6f:ea:85:5a:4c:33: ba:f6:69:5d:36:27:15:27:ce:55:31:47:0f:bd:e8: 5e:cb:7d:f3:11:ba:57:44:88:31:f2:37:13:75:4b: 77:fd:5b:5b:d4:a4:47:f4:77:48:b4:a4:93:2b:48: e8:82:a6:8b:33:8d:be:49:13:fb:6a:0b:e4:32:44: 9a:67:c7:59:2f:2e:04:43:d0:ca:d2:32:f8:14:a9: b9:2e:fc:65:75:cd:a7:26:e9:33:05:91:ae:8d:79: 3e:57:08:47:11:7b:80:db:32:a0:86:c3:a4:db:a5: ee:c7:8c:97:3d:94:67:06:84:ee:be:80:b1:8c:3a: 61:87:15:d8:9b:0e:17:a6:5e:88:65:fa:8b:ed:c5: 8b:1a:ef:0e:31:88:cd:9b:8d:fa:f4:34:20:d0:23: 1c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:03:FA:DB:75:3F:B9:FA:4D:87:B6:89:95:8A:36:0E:C9:BC:71:E9 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C5EBF14444EB11F088B1CD7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.66.198.0/23 157.66.220.0/23 160.22.74.0/23 160.22.80.0/23 160.22.118.0/23 160.30.10.0/23 160.30.22.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:12:aa:74:85:53:89:e4:fd:f6:6b:df:0b:a0:b2:aa:59:0c: e7:35:7e:83:69:55:87:2f:89:06:74:12:0a:c8:35:9d:a1:70: fa:ef:36:20:a3:a5:47:f3:0a:a4:46:40:f3:8a:81:a3:8e:98: 54:67:49:43:7a:71:10:3d:67:eb:53:d2:6a:e2:e8:73:5f:09: db:dc:fe:af:72:b6:79:e3:ec:15:4e:26:04:2c:97:29:7d:a8: a4:7b:1d:51:7d:93:60:db:ef:04:c1:bb:4c:d7:87:52:08:e3: 7a:73:31:e1:a5:d5:58:2b:a5:3b:eb:a2:0a:8b:8c:b2:05:e5: 48:7d:07:8e:86:6f:97:b9:98:59:05:a0:1a:2a:23:10:e7:b2: d1:1b:dc:74:60:37:cd:79:f5:05:bc:c3:51:6b:84:83:00:98: 38:39:01:68:11:73:cf:d2:01:5d:98:12:e2:80:e0:1c:35:7a: 2a:dc:a4:92:28:1a:91:06:11:bd:cb:72:a6:25:ce:93:67:0d: 83:7b:3e:d5:df:f3:29:9f:df:4a:33:0b:61:3f:5d:ef:59:ef: 25:be:06:04:19:4c:28:e4:91:a6:3f:d4:04:90:1f:a6:ed:36: 10:47:5e:02:ba:e4:08:c8:54:a3:cd:03:9c:ee:77:12:1a:8b: 3a:2a:88:fa -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTA5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWM0My02NDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArH8CwrsS48NRk6L85P+TS+0eUDv73KpjIkrefk7N2vFNOCZ5mozJH2swduWA xM+zoERsNsLDfNxibn1t95my4MjFmoaG4szPdcb7PcZW96C0h6y8lBKTmLM+ubfh tw5NI8Fv6oVaTDO69mldNicVJ85VMUcPvehey33zEbpXRIgx8jcTdUt3/Vtb1KRH 9HdItKSTK0jogqaLM42+SRP7agvkMkSaZ8dZLy4EQ9DK0jL4FKm5Lvxldc2nJukz BZGujXk+VwhHEXuA2zKghsOk26Xux4yXPZRnBoTuvoCxjDphhxXYmw4Xpl6IZfqL 7cWLGu8OMYjNm4369DQg0CMcTQIDAQABo4IChDCCAoAwHQYDVR0OBBYEFFED+tt1 P7n6TYe2iZWKNg7JvHHpMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQzVFQkYxNDQ0 NEVCMTFGMDg4QjFDRDdCQzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAw BAIAATAqAwQBnULGAwQBnULcAwQBoBZKAwQBoBZQAwQBoBZ2AwQBoB4KAwQBoB4W MA0GCSqGSIb3DQEBCwUAA4IBAQBPEqp0hVOJ5P32a98LoLKqWQznNX6DaVWHL4kG dBIKyDWdoXD67zYgo6VH8wqkRkDzioGjjphUZ0lDenEQPWfrU9Jq4uhzXwnb3P6v crZ54+wVTiYELJcpfaikex1RfZNg2+8EwbtM14dSCON6czHhpdVYK6U766IKi4yy BeVIfQeOhm+XuZhZBaAaKiMQ57LRG9x0YDfNefUFvMNRa4SDAJg4OQFoEXPP0gFd mBLigOAcNXoq3KSSKBqRBhG9y3KmJc6TZw2Dez7V3/Mpn99KMwthP13vWe8lvgYE GUwo5JGmP9QEkB+m7TYQR14CuuQIyFSjzQOc7ncSGos6Koj6 -----END CERTIFICATE-----Generated at Mon Mar 2 03:59:25 2026 by rpki-client