$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/E9A9DFEAEB7F11EEB477F078C4F9AE02.roa File: E9A9DFEAEB7F11EEB477F078C4F9AE02.roa (raw, json) Hash identifier: Cmf0D5DfvMiL91DgjL4xlhetz339Pbasj2RPZjVAQPU= Subject key identifier: 59:E8:18:77:A5:F2:9A:C8:2A:CC:5C:F9:E9:3E:AB:B7:B6:82:ED:2E Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0803 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/E9A9DFEAEB7F11EEB477F078C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:14:42 +0000 ROA not before: Thu 28 Aug 2025 14:51:07 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151863 IP address blocks: 157.20.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2051 (0x803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:07 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4ac41-27c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:fa:ef:ac:24:3b:2a:49:72:f9:03:d0:25:7f: d2:22:a0:3c:33:21:78:da:fb:ba:8b:5a:34:13:e8: 88:05:c8:c3:54:ac:5f:27:0f:e1:7c:43:4c:8e:13: 3a:f8:f2:60:63:a8:e1:ee:6c:d1:94:c8:16:93:a8: ef:08:7f:a3:1c:24:82:84:60:c8:8c:fa:ee:fa:8c: 67:de:b9:10:80:49:1a:7c:27:76:ac:20:bc:ea:e4: a4:34:1f:1b:94:7d:a5:b6:23:83:67:f6:d9:f4:e8: 3f:da:4f:08:07:3e:ad:33:09:55:0c:eb:6b:ae:41: b4:93:28:44:ce:af:2c:59:c0:35:ab:96:7a:05:3f: 2b:7c:c7:91:88:72:b3:10:52:f4:57:8d:fb:c2:d3: 60:9f:35:ad:ae:75:74:85:20:4d:74:ed:09:77:96: b2:47:50:f8:53:07:fb:bf:a3:4f:43:bf:c8:b0:26: 01:f9:36:e1:0f:27:8a:78:02:a8:21:83:67:c2:3d: 51:27:79:b5:a9:bf:4c:5f:de:98:96:e2:01:b0:27: f6:08:0d:4d:7b:67:9b:5a:95:66:71:aa:80:be:80: f2:f4:96:4b:2a:50:c1:06:d4:83:25:ae:f6:ef:b8: be:4e:82:6d:08:1f:99:3b:fb:21:ec:29:89:51:3f: 66:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E8:18:77:A5:F2:9A:C8:2A:CC:5C:F9:E9:3E:AB:B7:B6:82:ED:2E X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/E9A9DFEAEB7F11EEB477F078C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.58.0/23 Signature Algorithm: sha256WithRSAEncryption 66:76:86:01:03:f5:da:f9:fb:66:48:ff:6f:3d:8a:4c:ed:fa: ac:94:23:ce:45:c7:01:9e:64:a7:c8:e2:b5:7d:73:4e:58:29: 12:1c:fc:4f:4c:87:87:f2:ac:a5:59:a1:36:77:93:45:10:00: 3b:c5:df:f6:d2:b3:af:19:f9:ba:d6:24:67:85:82:58:38:e1: 1e:6f:68:a6:a9:b4:9f:bc:aa:28:10:cf:04:82:ff:4d:7d:4b: ad:87:14:06:72:20:da:ec:c4:9c:21:69:92:ff:8a:25:49:c4: 9c:f1:bf:0f:06:2a:0e:96:9b:4e:15:bc:d8:00:d5:aa:26:91: 7b:68:0c:6c:5c:92:b8:13:11:10:ac:5b:5a:3a:94:d1:c3:e1: 16:56:f7:97:c9:47:af:67:f9:57:36:27:dd:34:3c:d2:2f:53: b2:8c:f2:da:82:3a:5b:b2:27:3a:a6:5b:25:b6:b1:7f:90:a3: 0a:93:29:84:6c:b5:09:6d:c7:ae:fd:79:46:ec:d8:6b:8a:7f: d7:74:57:2f:e6:68:2a:b9:bc:3b:ce:44:d1:73:f3:05:2a:09: 80:6a:0e:e5:53:55:a0:4a:2c:a7:09:1d:4d:35:96:b1:33:e7: d1:85:b1:c8:61:cf:04:1a:c2:8a:85:89:30:b3:82:77:2f:98: 82:0f:7e:cb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTA3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWM0MS0yN2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovrvrCQ7Kkly+QPQJX/SIqA8MyF42vu6i1o0E+iIBcjDVKxfJw/hfENMjhM6 +PJgY6jh7mzRlMgWk6jvCH+jHCSChGDIjPru+oxn3rkQgEkafCd2rCC86uSkNB8b lH2ltiODZ/bZ9Og/2k8IBz6tMwlVDOtrrkG0kyhEzq8sWcA1q5Z6BT8rfMeRiHKz EFL0V437wtNgnzWtrnV0hSBNdO0Jd5ayR1D4Uwf7v6NPQ7/IsCYB+TbhDyeKeAKo IYNnwj1RJ3m1qb9MX96YluIBsCf2CA1Ne2ebWpVmcaqAvoDy9JZLKlDBBtSDJa72 77i+ToJtCB+ZO/sh7CmJUT9mPwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFnoGHel 8prIKsxc+ek+q7e2gu0uMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRTlBOURGRUFF QjdGMTFFRUI0NzdGMDc4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRQ6MA0GCSqGSIb3DQEBCwUAA4IBAQBmdoYBA/Xa+ftmSP9vPYpM 7fqslCPORccBnmSnyOK1fXNOWCkSHPxPTIeH8qylWaE2d5NFEAA7xd/20rOvGfm6 1iRnhYJYOOEeb2imqbSfvKooEM8Egv9NfUuthxQGciDa7MScIWmS/4olScSc8b8P BioOlptOFbzYANWqJpF7aAxsXJK4ExEQrFtaOpTRw+EWVveXyUevZ/lXNifdNDzS L1OyjPLagjpbsic6plsltrF/kKMKkymEbLUJbceu/XlG7Nhrin/XdFcv5mgqubw7 zkTRc/MFKgmAag7lU1WgSiynCR1NNZaxM+fRhbHIYc8EGsKKhYkws4J3L5iCD37L -----END CERTIFICATE-----Generated at Mon Mar 2 04:34:22 2026 by rpki-client