$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/DB8B5E7AAB0A11EFA1D4470FC4F9AE02.roa File: DB8B5E7AAB0A11EFA1D4470FC4F9AE02.roa (raw, json) Hash identifier: CP65eJXAPwHCsf0lGsjosYIafix6APAJHVDCM0uZQ6k= Subject key identifier: 15:14:BC:FA:E8:2F:B4:C2:D1:9D:BB:83:81:2F:7F:B4:82:B4:B5:1A Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0832 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/DB8B5E7AAB0A11EFA1D4470FC4F9AE02.roa Signing time: Sun 01 Mar 2026 21:15:22 +0000 ROA not before: Thu 28 Aug 2025 14:51:46 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153407 IP address blocks: 160.191.220.0/23 maxlen: 23 160.191.220.0/24 maxlen: 24 160.191.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2098 (0x832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:46 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4ac6a-dae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:3c:14:10:35:76:31:97:ed:bd:87:b9:59:e7: 43:72:c9:27:36:07:90:74:0b:d7:09:fb:dc:84:38: 99:f0:32:15:90:80:e3:bc:26:e8:ff:d7:a2:b0:5f: 8c:d0:ed:a9:3d:cc:6a:80:84:5f:e2:60:f6:0f:80: 26:c4:80:a2:0c:c7:68:dc:42:c1:ca:76:00:78:81: 20:b2:86:3d:0a:da:56:c2:40:68:c2:1f:2a:01:d3: f7:5f:60:77:19:4f:2b:4e:d2:0a:7f:6c:04:f6:ba: d8:5a:1b:46:c0:f6:15:53:53:51:27:cb:9d:5c:00: 31:ec:de:10:cd:3b:ef:e7:8f:ec:f4:c1:58:77:b0: 6e:65:0f:9e:a5:28:17:7c:1b:2b:6e:79:d1:50:be: bd:0c:d5:9e:e5:cd:20:a2:a7:b9:9a:46:8f:1c:94: 68:57:68:3d:f9:11:65:07:27:bf:6f:6c:6b:18:16: 69:31:89:20:af:91:67:6b:35:74:0c:03:f8:d5:7f: ad:a6:58:42:7f:37:bd:f1:e8:a9:7e:e1:36:b4:b1: 9d:9e:69:b7:bc:b5:b5:17:df:60:f3:ee:f7:6c:88: 88:0c:ba:20:72:53:53:c7:e2:0b:d6:b4:15:8e:ff: b1:b9:27:4e:3f:f4:3d:af:07:c3:d0:e9:99:a9:8b: f5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:14:BC:FA:E8:2F:B4:C2:D1:9D:BB:83:81:2F:7F:B4:82:B4:B5:1A X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/DB8B5E7AAB0A11EFA1D4470FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.191.220.0/23 Signature Algorithm: sha256WithRSAEncryption 82:ae:69:36:f0:d3:45:97:a5:6b:60:e3:ad:55:d7:0b:35:0e: 18:e7:c9:f0:66:84:75:b4:4d:05:df:bb:ea:1f:b9:67:c0:ad: db:36:37:6e:5d:2c:f0:89:42:bd:0a:c6:ed:ff:bb:d7:f1:b8: e1:91:25:55:b1:aa:02:82:16:2e:df:3f:4b:22:2b:82:0e:fb: 13:7e:13:f4:a4:3b:d0:c4:4d:85:71:39:e6:45:44:d0:2c:72: 12:f5:a9:2c:3b:64:a7:18:d7:52:a9:59:45:8a:d3:9f:68:fc: 37:e7:9b:af:8d:7f:40:ce:eb:66:4d:da:c1:3f:4f:15:e5:e0: 2c:97:b1:1a:b1:36:31:bc:22:f6:be:95:ea:76:30:a6:63:f5: f3:18:7a:e5:fb:71:ea:98:b6:c5:02:69:18:57:81:2e:a6:5b: 33:e8:fc:96:a6:8b:61:a3:44:6a:79:b4:5e:c6:c6:3d:1d:3b: ad:0a:d9:2b:2f:1f:55:c5:ac:e9:1e:10:4c:33:55:c6:85:6c: 57:62:a8:72:bf:21:f7:d1:3e:55:de:3b:13:98:1a:50:f0:c6: 21:c3:8e:32:7e:6a:45:35:7f:e5:64:bc:a6:ed:fd:1e:ad:4c: 76:95:51:23:9f:d6:00:98:72:1a:9f:63:81:ef:07:a2:8c:6f: 1a:43:f9:ca -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTQ2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWM2YS1kYWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6zwUEDV2MZftvYe5WedDcsknNgeQdAvXCfvchDiZ8DIVkIDjvCbo/9eisF+M 0O2pPcxqgIRf4mD2D4AmxICiDMdo3ELBynYAeIEgsoY9CtpWwkBowh8qAdP3X2B3 GU8rTtIKf2wE9rrYWhtGwPYVU1NRJ8udXAAx7N4QzTvv54/s9MFYd7BuZQ+epSgX fBsrbnnRUL69DNWe5c0goqe5mkaPHJRoV2g9+RFlBye/b2xrGBZpMYkgr5FnazV0 DAP41X+tplhCfze98eipfuE2tLGdnmm3vLW1F99g8+73bIiIDLogclNTx+IL1rQV jv+xuSdOP/Q9rwfD0OmZqYv1uQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBUUvPro L7TC0Z27g4Evf7SCtLUaMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvREI4QjVFN0FB QjBBMTFFRkExRDQ0NzBGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoL/cMA0GCSqGSIb3DQEBCwUAA4IBAQCCrmk28NNFl6VrYOOtVdcL NQ4Y58nwZoR1tE0F37vqH7lnwK3bNjduXSzwiUK9Csbt/7vX8bjhkSVVsaoCghYu 3z9LIiuCDvsTfhP0pDvQxE2FcTnmRUTQLHIS9aksO2SnGNdSqVlFitOfaPw355uv jX9AzutmTdrBP08V5eAsl7EasTYxvCL2vpXqdjCmY/XzGHrl+3HqmLbFAmkYV4Eu plsz6PyWpotho0RqebRexsY9HTutCtkrLx9VxazpHhBMM1XGhWxXYqhyvyH30T5V 3jsTmBpQ8MYhw44yfmpFNX/lZLym7f0erUx2lVEjn9YAmHIan2OB7weijG8aQ/nK -----END CERTIFICATE-----Generated at Mon Mar 2 04:34:02 2026 by rpki-client