$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/90CF95CE66DD11F09FD37312C4F9AE02.roa File: 90CF95CE66DD11F09FD37312C4F9AE02.roa (raw, json) Hash identifier: M8odrWp11xwPayPr1xVWIoKWwAfvrI8IVkAjTpLwwzk= Subject key identifier: 9C:1B:E7:BB:19:C0:69:22:99:CC:42:EA:D5:FF:B3:D4:F8:60:90:81 Certificate issuer: /CN=A91AC5BC/serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Certificate serial: 97 Authority key identifier: A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/90CF95CE66DD11F09FD37312C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:20:06 +0000 ROA not before: Sat 28 Feb 2026 13:58:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149513 IP address blocks: 163.223.72.0/23 maxlen: 24 2402:1920::/32 maxlen: 32 2402:1920:f400::/38 maxlen: 40 2402:1920:fc00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:25:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC5BC, serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Validity Not Before: Feb 28 13:58:26 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a46736-bfd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:06:bc:d9:7e:07:5f:01:5e:1e:74:de:c2:37: e9:fe:d2:f5:81:40:90:3f:b4:05:fe:f5:a5:08:66: be:90:f2:ae:49:11:5a:5b:76:bc:5f:01:13:33:4b: 91:ec:98:07:af:3c:e4:88:cd:74:01:93:6c:84:d0: 9b:54:28:69:eb:e3:63:82:a4:ba:34:47:5b:bd:b1: 5c:8a:bb:4f:49:0a:78:93:5e:fb:12:27:5b:0d:5d: 4a:55:ee:be:10:02:c7:25:18:12:17:c5:9e:2e:e0: 77:6e:d9:5e:7d:be:fe:5b:6f:33:ea:84:55:eb:7d: fb:b1:65:bf:6a:18:ba:89:c5:99:39:a2:f1:cb:11: 73:64:58:01:bf:5c:78:60:29:8b:86:67:92:9f:9f: 93:53:7e:4f:85:7b:35:52:ed:58:6b:63:0f:57:df: d6:43:de:27:d1:70:ec:36:b4:72:50:e9:46:f9:51: b4:17:b8:65:cb:df:5e:b5:79:76:d3:74:68:34:bd: 89:6a:5f:f9:27:0a:36:a6:16:a0:24:3f:b4:5c:47: a8:f0:69:5f:a7:bc:9a:1b:e1:59:ad:89:86:e3:fa: 29:1e:e0:26:e0:70:48:d4:fd:63:b3:87:e1:a3:5a: e4:b5:8c:69:51:b3:18:2b:48:74:f9:db:3c:06:2a: 22:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:1B:E7:BB:19:C0:69:22:99:CC:42:EA:D5:FF:B3:D4:F8:60:90:81 X509v3 Authority Key Identifier: keyid:A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/90CF95CE66DD11F09FD37312C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.72.0/23 IPv6: 2402:1920::/32 Signature Algorithm: sha256WithRSAEncryption 63:d7:f3:11:b2:37:40:62:3b:d6:47:22:81:c2:d0:8e:27:fa: 42:66:53:ac:22:9e:f9:4f:b2:a1:56:de:a6:65:42:b8:29:4d: 9c:e5:88:53:2d:bc:18:05:92:65:17:a4:1a:4a:0e:6f:d1:fe: eb:50:48:bc:d6:12:40:45:f2:10:2b:00:76:e1:2b:19:43:66: bd:79:45:c9:a9:26:5c:51:dd:26:af:a6:02:20:d3:62:da:a2: 68:e2:9e:98:b4:23:80:3d:60:08:df:82:82:19:10:61:e1:be: c6:e8:ed:63:67:cc:f6:12:ee:60:3a:4e:76:3c:da:2c:b7:4f: 5a:44:e9:ce:20:ba:70:20:6e:95:cd:c0:25:e6:40:65:4a:78: b2:a9:88:25:51:58:72:fe:d1:ac:0b:27:6a:9b:ed:3f:3a:1a: b2:b1:ec:e8:c2:4e:bb:84:fe:a5:dd:7c:88:c9:13:3d:b3:e9: ba:69:27:6d:62:c3:a3:b5:20:85:1d:cd:40:1a:fb:14:f6:e6: 64:9d:ed:10:e1:6b:78:54:fe:e0:a3:2f:c5:5d:06:a8:65:20: ab:d4:1e:af:c8:91:23:6a:77:4b:5c:a7:5e:6c:d7:60:70:85: da:14:34:9d:4c:cc:4e:4b:5b:4e:a7:05:67:a0:0b:f9:83:fb: 44:4f:56:4f -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM1QkMxMTAvBgNVBAUTKEExNDUyNDFEOTgzMEFGMjRBNzE1NjczNTEyNTVFQzhF N0VENTNFRkUwHhcNMjYwMjI4MTM1ODI2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjczNi1iZmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQa82X4HXwFeHnTewjfp/tL1gUCQP7QF/vWlCGa+kPKuSRFaW3a8XwETM0uR 7JgHrzzkiM10AZNshNCbVChp6+NjgqS6NEdbvbFcirtPSQp4k177EidbDV1KVe6+ EALHJRgSF8WeLuB3btlefb7+W28z6oRV6337sWW/ahi6icWZOaLxyxFzZFgBv1x4 YCmLhmeSn5+TU35PhXs1Uu1Ya2MPV9/WQ94n0XDsNrRyUOlG+VG0F7hly99etXl2 03RoNL2Jal/5Jwo2phagJD+0XEeo8Glfp7yaG+FZrYmG4/opHuAm4HBI1P1js4fh o1rktYxpUbMYK0h0+ds8BioiJQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFJwb57sZ wGkimcxC6tX/s9T4YJCBMB8GA1UdIwQYMBaAFKFFJB2YMK8kpxVnNRJV7I5+1T7+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzVCQy83MUU1RDhCRTU5 RjIxMUYwQjRGQUU5NUZDNEY5QUUwMi9vVVVrSFpnd3J5U25GV2MxRWxYc2puN1ZQ djQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29VVWtIWmd3cnlTbkZXYzFFbFhzam43VlB2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUM1QkMvNzFFNUQ4QkU1OUYyMTFGMEI0RkFFOTVGQzRGOUFFMDIvOTBDRjk1Q0U2 NkREMTFGMDlGRDM3MzEyQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBo99IMA0EAgACMAcDBQAkAhkgMA0GCSqGSIb3DQEBCwUAA4IBAQBj 1/MRsjdAYjvWRyKBwtCOJ/pCZlOsIp75T7KhVt6mZUK4KU2c5YhTLbwYBZJlF6Qa Sg5v0f7rUEi81hJARfIQKwB24SsZQ2a9eUXJqSZcUd0mr6YCINNi2qJo4p6YtCOA PWAI34KCGRBh4b7G6O1jZ8z2Eu5gOk52PNost09aROnOILpwIG6VzcAl5kBlSniy qYglUVhy/tGsCydqm+0/Ohqysezowk67hP6l3XyIyRM9s+m6aSdtYsOjtSCFHc1A GvsU9uZkne0Q4Wt4VP7goy/FXQaoZSCr1B6vyJEjandLXKdebNdgcIXaFDSdTMxO S1tOpwVnoAv5g/tET1ZP -----END CERTIFICATE-----Generated at Mon Mar 2 10:12:23 2026 by rpki-client