$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa File: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (raw, json) Hash identifier: /QLzHLc4Bljeytqfm2ftMcWADN1qUL1XXdTe5GG/zUk= Subject key identifier: 80:3B:D8:B0:41:43:EB:33:AB:58:50:CA:5D:E5:51:75:AC:C5:4C:AA Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: 87 Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:10:54 +0000 ROA not before: Tue 05 Aug 2025 08:45:07 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153996 IP address blocks: 165.101.64.0/23 maxlen: 23 165.101.64.0/24 maxlen: 24 165.101.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:58:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: Aug 5 08:45:07 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a3f48e-0acd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:43:01:b8:4c:a3:eb:ed:d6:67:06:a8:0e:0d: b4:43:37:29:fd:6e:0a:0d:ed:73:be:93:c2:93:f4: 94:08:64:03:a2:78:e2:97:e7:95:69:0c:fb:75:d3: 95:ff:15:22:9f:8f:f8:07:b3:7c:ec:2c:e2:46:d6: c7:5d:83:36:57:62:ca:1b:3f:55:6a:87:69:73:69: 45:f2:0b:bf:03:ef:27:72:11:76:17:e6:9a:58:58: a9:e7:50:a6:de:59:55:a7:94:ca:29:a7:23:f8:ee: 7a:2b:e9:9a:f5:f8:54:20:b6:8e:16:64:1e:65:7d: 80:1b:49:4b:c6:3d:db:64:6b:d8:d4:40:83:6d:40: 5d:e6:4c:ab:35:69:81:5c:42:11:89:02:23:c7:79: 0c:e0:d7:37:ef:0e:ff:ff:42:fd:78:2e:d4:24:db: 34:60:d3:3c:fd:f9:7b:5a:1a:d2:e5:56:1f:89:8f: 2f:ce:0b:db:60:8b:ea:6d:5a:ec:24:49:ed:de:13: 22:94:3d:ec:59:55:a9:20:89:d7:15:a4:cb:90:db: 7c:e5:a2:c1:5e:58:2e:b1:f5:8e:50:3d:82:e0:52: 78:63:39:9f:f3:ef:80:ea:48:8b:c1:50:5f:f9:b2: 8e:78:d8:6b:ca:c0:65:41:e9:d2:98:63:f0:f7:eb: 6b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:3B:D8:B0:41:43:EB:33:AB:58:50:CA:5D:E5:51:75:AC:C5:4C:AA X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.101.64.0/23 Signature Algorithm: sha256WithRSAEncryption af:f5:01:b0:ee:9d:b2:50:8a:84:10:31:4a:97:44:74:89:b1: 3f:d1:d0:65:cd:63:3b:df:7d:2a:4a:42:08:e2:c4:a3:3c:16: 45:f2:53:ba:44:e3:9d:11:0d:78:ce:ba:6b:2f:62:ac:64:62: 2c:cb:dd:6f:f3:56:9a:77:b1:20:d5:38:cd:06:c4:ab:46:f2: 95:c5:4f:e3:d8:17:49:d0:59:75:73:c6:5d:3f:c6:01:4b:aa: 65:f1:62:63:d1:c0:89:84:c5:a7:90:d5:0a:5f:88:7e:44:e1: 06:6f:6c:5c:13:b8:72:76:4b:f2:e1:6f:25:bd:bb:11:c9:f7: 5d:4c:17:25:23:bf:f2:ba:60:7a:e1:8d:7f:4a:3b:a1:f5:0b: 5a:c8:6e:d2:24:0b:0b:2a:ca:0b:08:ec:f1:c1:ba:bd:22:e4: 6d:cd:a7:98:e4:4e:03:0a:0f:a5:cc:6c:a0:19:0a:7f:39:e4: 97:b7:60:3f:9d:c3:81:e9:ff:74:c6:a1:91:f1:bb:9d:a1:bd: cf:4a:a2:89:a0:5c:8b:38:f5:2e:7a:32:4c:09:1b:2f:1d:5f: 22:81:71:e2:57:56:26:af:e9:6d:11:f0:f2:04:fa:c9:b1:53: 01:a5:36:df:c9:26:88:a4:4d:f8:de:c6:27:b6:f6:77:5e:c9: 6f:13:d5:0a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQwNTMxMTAvBgNVBAUTKDcyMEFBNjZGMzZDMTQ2MEFENEJDM0FDNjkyRjk2NUI3 MTc0QTU4RTAwHhcNMjUwODA1MDg0NTA3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjQ4ZS0wYWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskMBuEyj6+3WZwaoDg20Qzcp/W4KDe1zvpPCk/SUCGQDonjil+eVaQz7ddOV /xUin4/4B7N87CziRtbHXYM2V2LKGz9Vaodpc2lF8gu/A+8nchF2F+aaWFip51Cm 3llVp5TKKacj+O56K+ma9fhUILaOFmQeZX2AG0lLxj3bZGvY1ECDbUBd5kyrNWmB XEIRiQIjx3kM4Nc37w7//0L9eC7UJNs0YNM8/fl7WhrS5VYfiY8vzgvbYIvqbVrs JEnt3hMilD3sWVWpIInXFaTLkNt85aLBXlgusfWOUD2C4FJ4Yzmf8++A6kiLwVBf +bKOeNhrysBlQenSmGPw9+tr7QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIA72LBB Q+szq1hQyl3lUXWsxUyqMB8GA1UdIwQYMBaAFHIKpm82wUYK1Lw6xpL5ZbcXSljg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDA1My8zNjQwQ0I5NDUw RTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJnclV2RHJHa3ZsbHR4ZEtX T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQwNTMvMzY0MENCOTQ1MEUxMTFGMDkxQzRCQjc0QzRGOUFFMDIvQUM4QkNDMkU1 MEU0MTFGMEI4RTdENDVEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWVAMA0GCSqGSIb3DQEBCwUAA4IBAQCv9QGw7p2yUIqEEDFKl0R0 ibE/0dBlzWM7330qSkII4sSjPBZF8lO6ROOdEQ14zrprL2KsZGIsy91v81aad7Eg 1TjNBsSrRvKVxU/j2BdJ0Fl1c8ZdP8YBS6pl8WJj0cCJhMWnkNUKX4h+ROEGb2xc E7hydkvy4W8lvbsRyfddTBclI7/yumB64Y1/Sjuh9QtayG7SJAsLKsoLCOzxwbq9 IuRtzaeY5E4DCg+lzGygGQp/OeSXt2A/ncOB6f90xqGR8budob3PSqKJoFyLOPUu ejJMCRsvHV8igXHiV1Ymr+ltEfDyBPrJsVMBpTbfySaIpE343sYntvZ3XslvE9UK -----END CERTIFICATE-----Generated at Mon Mar 2 12:48:15 2026 by rpki-client