$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/F1C8BFF238A811F191A00E84CC833773.roa File: F1C8BFF238A811F191A00E84CC833773.roa (raw, json) Hash identifier: BY5Ig4kmYxdpREBe3TG6klzUVveH2vshIVRdKFowsUY= Subject key identifier: B6:F7:68:4E:F3:FB:C4:79:29:1B:26:6F:A5:BB:DD:FF:70:CF:E9:CB Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2219 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/F1C8BFF238A811F191A00E84CC833773.roa Signing time: Wed 15 Apr 2026 08:56:09 +0000 ROA not before: Wed 15 Apr 2026 08:56:09 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151858 IP address blocks: 157.10.52.0/23 maxlen: 23 157.20.82.0/23 maxlen: 23 160.25.166.0/23 maxlen: 23 160.187.146.0/23 maxlen: 23 160.191.86.0/23 maxlen: 23 160.191.88.0/23 maxlen: 23 160.250.180.0/23 maxlen: 23 161.248.82.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8729 (0x2219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Apr 15 08:56:09 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69df52a9-b9e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3d:20:3f:9a:f5:f5:c8:d6:09:dd:65:3d:e1: 08:86:6b:c5:75:df:ed:21:e2:43:01:3e:ec:4b:d2: 95:11:f0:83:0f:89:5c:ff:1c:f0:08:a0:94:b4:1f: 96:cd:c1:3f:50:c7:90:e4:3b:44:d0:48:1d:4e:26: 32:83:21:f9:75:56:07:91:64:1d:74:90:4c:c4:d1: da:64:00:3d:00:d5:d2:38:27:e8:bb:82:78:ba:d3: a8:bb:22:2d:f0:ac:70:60:41:4c:fc:f0:97:d7:1a: cf:16:21:f5:62:b2:5f:08:c4:d2:a1:6c:3f:e1:d4: dc:75:12:ed:31:75:24:d1:d1:6c:36:ee:3e:f3:1a: 32:e1:a0:1f:e9:b8:3d:17:23:76:88:de:fd:7d:58: 2d:93:dd:5c:c9:81:7c:55:82:28:bd:d4:ca:f8:d0: a2:11:a9:92:16:6e:a1:07:f7:c3:a8:06:36:d6:c8: 8a:88:ce:18:20:13:c2:74:6e:d5:d2:35:ad:16:79: 49:3b:82:89:de:84:91:5f:3a:83:a8:ba:d0:ad:88: db:2c:46:89:4d:47:73:0b:23:83:19:08:47:86:46: 19:84:61:8a:7c:ab:c2:91:8b:db:02:ba:e7:00:ec: 59:55:d2:12:7d:32:7d:3e:2e:80:39:51:d5:8a:56: bf:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:F7:68:4E:F3:FB:C4:79:29:1B:26:6F:A5:BB:DD:FF:70:CF:E9:CB X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/F1C8BFF238A811F191A00E84CC833773.roa sbgp-ipAddrBlock: critical IPv4: 157.10.52.0/23 157.20.82.0/23 160.25.166.0/23 160.187.146.0/23 160.191.86.0-160.191.89.255 160.250.180.0/23 161.248.82.0/23 Signature Algorithm: sha256WithRSAEncryption 33:e6:e6:df:28:87:22:3d:db:78:d3:58:16:c5:85:ad:de:e0: 09:5f:5f:6d:a1:bf:81:44:ee:43:00:58:86:07:a9:ae:c5:bc: c6:b3:04:4f:d5:0f:ee:c0:94:29:9a:93:a0:26:72:9b:bd:56: d4:62:df:81:94:5e:f6:e9:52:b8:2d:5d:83:7a:5c:cc:46:1e: 04:c3:ea:73:21:a7:e6:6d:fd:58:bb:49:6f:44:9b:cd:09:53: ea:98:b8:b7:d4:05:b8:3b:66:81:45:05:5c:5a:e1:b9:e2:93: 3b:6d:c8:c3:b5:df:3c:82:0f:ea:2d:ad:8e:67:35:70:d8:9a: 11:81:da:02:4e:1f:f4:87:e6:c4:75:76:8a:bd:fb:85:75:95: aa:04:87:05:53:ce:38:2e:94:64:86:f5:1e:0b:c8:e2:e0:ff: bc:da:f2:94:b6:5f:e6:9e:cd:97:bd:52:67:ad:de:3f:98:c4: 6b:32:3c:df:e6:44:27:05:0b:aa:de:b8:5e:b8:89:e1:01:86: 7c:7d:c7:78:32:3f:64:26:13:96:2d:09:3d:1c:ce:55:66:83: ff:c7:79:20:a1:4d:41:c5:08:d5:ad:b0:df:e0:c3:fb:7b:5d: 4c:ed:7e:6e:a2:10:1c:de:04:44:02:38:23:f9:80:38:12:24: 5e:59:fc:f2 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgICIhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjYwNDE1MDg1NjA5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWRmNTJhOS1iOWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1j0gP5r19cjWCd1lPeEIhmvFdd/tIeJDAT7sS9KVEfCDD4lc/xzwCKCUtB+W zcE/UMeQ5DtE0EgdTiYygyH5dVYHkWQddJBMxNHaZAA9ANXSOCfou4J4utOouyIt 8KxwYEFM/PCX1xrPFiH1YrJfCMTSoWw/4dTcdRLtMXUk0dFsNu4+8xoy4aAf6bg9 FyN2iN79fVgtk91cyYF8VYIovdTK+NCiEamSFm6hB/fDqAY21siKiM4YIBPCdG7V 0jWtFnlJO4KJ3oSRXzqDqLrQrYjbLEaJTUdzCyODGQhHhkYZhGGKfKvCkYvbArrn AOxZVdISfTJ9Pi6AOVHVila/kQIDAQABo4ICjDCCAogwHQYDVR0OBBYEFLb3aE7z +8R5KRsmb6W73f9wz+nLMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRjFDOEJGRjIz OEE4MTFGMTkxQTAwRTg0Q0M4MzM3NzMucm9hMEsGCCsGAQUFBwEHAQH/BDwwOjA4 BAIAATAyAwQBnQo0AwQBnRRSAwQBoBmmAwQBoLuSMAwDBAGgv1YDBAGgv1gDBAGg +rQDBAGh+FIwDQYJKoZIhvcNAQELBQADggEBADPm5t8ohyI923jTWBbFha3e4Alf X22hv4FE7kMAWIYHqa7FvMazBE/VD+7AlCmak6Amcpu9VtRi34GUXvbpUrgtXYN6 XMxGHgTD6nMhp+Zt/Vi7SW9Em80JU+qYuLfUBbg7ZoFFBVxa4bnikzttyMO13zyC D+otrY5nNXDYmhGB2gJOH/SH5sR1doq9+4V1laoEhwVTzjgulGSG9R4LyOLg/7za 8pS2X+aezZe9Umet3j+YxGsyPN/mRCcFC6reuF64ieEBhnx9x3gyP2QmE5YtCT0c zlVmg//HeSChTUHFCNWtsN/gw/t7XUztfm6iEBzeBEQCOCP5gDgSJF5Z/PI= -----END CERTIFICATE-----Generated at Fri Apr 17 20:24:35 2026 by rpki-client