$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/60EB8700B30E11F0B1F91F33C4F9AE02.roa File: 60EB8700B30E11F0B1F91F33C4F9AE02.roa (raw, json) Hash identifier: YLJFOGAMewb97DKxri6XTol9/9UwejtNGk636DcOByw= Subject key identifier: D9:BB:CD:1A:E3:59:9B:70:81:66:8F:C7:47:08:9C:26:FB:8D:09:CE Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 6C46 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/60EB8700B30E11F0B1F91F33C4F9AE02.roa Signing time: Mon 13 Apr 2026 07:11:36 +0000 ROA not before: Mon 13 Apr 2026 07:11:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153410 IP address blocks: 163.227.158.0/23 maxlen: 24 2001:df4:97c0::/48 maxlen: 48 2001:df5:7340::/48 maxlen: 48 2001:df5:c2c0::/48 maxlen: 48 2001:df5:c340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:33:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27718 (0x6c46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Apr 13 07:11:36 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69dc9728-04a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a3:0d:13:c9:c3:6c:b8:9e:eb:a2:b4:d3:ac: 54:1e:b6:96:35:56:57:63:fa:74:fe:22:74:56:cb: ea:ff:50:90:2a:85:92:e5:18:ed:30:4d:80:02:1c: 8c:b0:90:78:55:8e:bd:04:22:e8:15:1c:28:40:7d: 19:d8:f9:03:44:c4:dd:30:ba:59:6f:97:e4:a0:dd: 56:51:45:2a:3e:b5:44:51:34:77:67:26:f9:98:91: eb:ca:89:58:0b:92:b1:ed:26:7f:a9:aa:81:92:be: 3d:5b:a0:7e:70:38:6d:13:60:50:59:cc:1f:1d:a0: 74:cb:fb:16:e8:c3:0d:0f:bd:62:96:19:a3:f2:80: 2c:91:f6:e8:52:31:74:43:15:4d:fd:71:09:3d:54: 6c:d3:83:a7:67:8c:28:41:b3:66:8f:99:aa:8a:aa: b2:9a:94:d4:8e:e7:d0:d4:ce:cd:39:19:5c:56:0e: fb:9e:d6:bc:98:ad:af:ae:99:28:9d:bf:50:81:e8: 30:5a:46:bc:cb:5e:21:35:e9:83:74:2a:fd:83:3f: 1d:86:c0:1d:ba:53:95:9b:06:3b:55:9a:c7:e9:3a: 34:08:37:49:09:53:90:74:7b:1d:1f:dd:26:8a:0e: 2d:cf:ef:6c:a8:ef:b7:82:23:5c:53:6c:2f:e4:33: 92:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BB:CD:1A:E3:59:9B:70:81:66:8F:C7:47:08:9C:26:FB:8D:09:CE X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/60EB8700B30E11F0B1F91F33C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.227.158.0/23 IPv6: 2001:df4:97c0::/48 2001:df5:7340::/48 2001:df5:c2c0::/48 2001:df5:c340::/48 Signature Algorithm: sha256WithRSAEncryption 58:4d:ac:1f:32:2d:99:87:50:87:59:d6:14:19:73:03:01:5c: e6:bd:f9:aa:b3:e2:e2:4e:c9:d7:c8:3a:ef:97:3a:ae:72:59: 73:60:ac:87:93:c5:bf:df:99:74:38:1d:90:2b:67:71:fb:79: c8:9c:8f:36:86:31:46:07:fa:db:eb:3c:0d:53:36:46:06:83: 96:63:63:68:a7:5b:75:4f:99:5a:35:ca:9b:05:0b:26:19:d1: 92:cc:2b:fd:01:04:f2:f4:fd:a7:98:c8:98:4d:75:ee:fe:db: 15:bc:ed:1c:fe:b8:ff:ee:f4:23:2e:b3:b9:96:db:45:8b:9a: 9a:d9:e8:73:64:85:70:77:a9:d9:d5:c3:25:94:04:a8:e5:8d: ef:d8:e2:9e:38:e9:9a:af:90:9b:b8:1d:fb:17:d3:30:03:49: bd:66:0a:6c:b4:a2:63:73:0d:49:48:7d:16:f4:04:1c:69:2c: c2:1e:15:c7:1b:be:b2:78:6e:7e:7d:9e:a9:cf:3e:70:9c:6a: de:65:33:4b:5e:c4:b7:25:2a:99:99:d8:14:5c:36:0d:30:7b: 2e:de:a6:b1:a4:25:9c:32:2f:fc:90:87:70:98:25:37:1a:14: d5:d0:04:4e:31:91:ad:d5:de:92:ab:ed:5d:6b:6b:36:1b:de: 1c:f4:73:c8 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgICbEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjYwNDEzMDcxMTM2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWRjOTcyOC0wNGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKMNE8nDbLie66K006xUHraWNVZXY/p0/iJ0Vsvq/1CQKoWS5RjtME2AAhyM sJB4VY69BCLoFRwoQH0Z2PkDRMTdMLpZb5fkoN1WUUUqPrVEUTR3Zyb5mJHryolY C5Kx7SZ/qaqBkr49W6B+cDhtE2BQWcwfHaB0y/sW6MMND71ilhmj8oAskfboUjF0 QxVN/XEJPVRs04OnZ4woQbNmj5mqiqqympTUjufQ1M7NORlcVg77nta8mK2vrpko nb9QgegwWka8y14hNemDdCr9gz8dhsAdulOVmwY7VZrH6To0CDdJCVOQdHsdH90m ig4tz+9sqO+3giNcU2wv5DOSAQIDAQABo4ICjDCCAogwHQYDVR0OBBYEFNm7zRrj WZtwgWaPx0cInCb7jQnOMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNjBFQjg3MDBC MzBFMTFGMEIxRjkxRjMzQzRGOUFFMDIucm9hMEsGCCsGAQUFBwEHAQH/BDwwOjAM BAIAATAGAwQBo+OeMCoEAgACMCQDBwAgAQ30l8ADBwAgAQ31c0ADBwAgAQ31wsAD BwAgAQ31w0AwDQYJKoZIhvcNAQELBQADggEBAFhNrB8yLZmHUIdZ1hQZcwMBXOa9 +aqz4uJOydfIOu+XOq5yWXNgrIeTxb/fmXQ4HZArZ3H7ecicjzaGMUYH+tvrPA1T NkYGg5ZjY2inW3VPmVo1ypsFCyYZ0ZLMK/0BBPL0/aeYyJhNde7+2xW87Rz+uP/u 9CMus7mW20WLmprZ6HNkhXB3qdnVwyWUBKjlje/Y4p446ZqvkJu4HfsX0zADSb1m Cmy0omNzDUlIfRb0BBxpLMIeFccbvrJ4bn59nqnPPnCcat5lM0texLclKpmZ2BRc Ng0wey7eprGkJZwyL/yQh3CYJTcaFNXQBE4xka3V3pKr7V1razYb3hz0c8g= -----END CERTIFICATE-----Generated at Fri Apr 17 20:47:45 2026 by rpki-client