$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/20B2721A955B11EFBF0F5669C4F9AE02.roa File: 20B2721A955B11EFBF0F5669C4F9AE02.roa (raw, json) Hash identifier: qRLyslYx22+qKxQxzfTyLV443rh4uNIFMoyDuD/9wGg= Subject key identifier: 0B:83:4D:A2:78:F7:A6:70:E5:40:01:F1:0A:C8:F7:9B:1C:60:A2:0A Certificate issuer: /CN=A91B8E70/serialNumber=81C26F3D8F4136E5190CC7A17D6AF722422EB66F Certificate serial: 0109 Authority key identifier: 81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/20B2721A955B11EFBF0F5669C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:20:33 +0000 ROA not before: Thu 23 Oct 2025 08:20:26 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 153378 IP address blocks: 160.191.116.0/23 maxlen: 23 160.191.116.0/24 maxlen: 24 160.191.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.crl rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:20:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=81C26F3D8F4136E5190CC7A17D6AF722422EB66F Validity Not Before: Oct 23 08:20:26 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5aac1-78fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6b:8e:82:3f:3d:10:aa:85:48:35:5a:a9:d7: 96:41:44:5d:ca:78:90:19:82:fc:b1:c9:30:cc:55: 3d:c2:29:9d:af:89:91:11:3b:df:1f:8b:9b:c2:c9: 38:fc:6f:98:c3:91:60:6d:b3:b2:e7:eb:af:76:82: 5c:22:07:42:54:8b:b1:f8:d3:ed:49:0f:64:0c:d1: ef:9b:10:79:a8:28:a1:9b:0b:67:f5:42:b9:69:35: b6:8d:a4:49:ce:3a:5f:d9:98:21:c5:05:68:7f:a2: 56:f8:e3:56:3b:f0:c6:18:98:0a:4d:33:93:d6:86: a0:ce:d3:2b:5e:b6:7c:bc:9a:90:22:e3:6a:d6:63: b1:bf:49:73:07:3d:fa:fa:64:df:75:d6:ba:ab:33: 59:23:91:3b:5f:63:6f:24:f1:56:94:00:55:a6:de: 4b:cb:5c:80:de:d5:74:59:be:3d:68:22:2f:fa:96: ec:19:56:95:b9:1d:84:5c:89:48:f1:28:86:f7:71: 7d:d7:d5:9d:2e:52:9b:aa:49:9b:42:dc:81:83:8e: 97:9c:ec:40:f4:01:f9:c1:da:c9:d9:f2:55:a9:6f: 66:77:00:30:29:61:7e:c0:f6:8c:fd:9a:4c:83:89: ca:a8:2f:c9:45:79:7f:f7:ac:a2:b0:17:ac:9f:6a: 0e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:83:4D:A2:78:F7:A6:70:E5:40:01:F1:0A:C8:F7:9B:1C:60:A2:0A X509v3 Authority Key Identifier: keyid:81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/20B2721A955B11EFBF0F5669C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.191.116.0/23 Signature Algorithm: sha256WithRSAEncryption 41:38:94:3d:d5:a6:7f:ac:aa:c3:94:14:a7:1a:64:da:97:74: c4:d3:a5:cb:93:9e:50:0c:93:f6:55:a5:3a:13:68:ef:a5:8a: f6:ed:b8:f1:90:76:1e:a0:83:76:d9:4b:88:3c:bb:66:a4:67: 46:bc:df:0b:9d:3f:b3:92:dd:c6:b9:90:01:84:50:2f:8a:15: f4:e4:df:08:02:a6:9c:54:d6:4c:86:ba:be:7f:6a:32:9f:46: db:fd:65:1d:41:9d:35:6c:64:00:d1:0d:42:7c:17:20:ba:4e: f9:26:df:90:8e:ee:8c:b9:88:a0:2c:22:ed:66:df:37:12:67: 16:63:05:26:3d:11:9e:56:8f:bf:de:9c:ec:cd:bb:3a:98:8f: 48:54:11:7e:2e:22:54:b1:d4:21:2a:54:1e:be:13:05:ec:95: dd:55:8e:ef:17:72:3a:64:92:6c:b1:d6:e0:38:b5:9d:f8:9c: aa:86:9d:1d:13:b8:db:40:ec:3c:e8:d7:6a:60:c0:d9:b7:43: 11:f5:b2:08:c1:08:bf:7a:50:12:a5:7e:5d:79:5f:17:e8:60: 43:ca:b9:be:de:30:ec:30:8e:ce:b1:48:ac:ef:a4:4b:8b:ab: 31:62:6b:b2:e1:80:23:79:9d:b4:b4:87:b5:18:22:83:a9:b1: 6a:44:2e:5c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFNzAxMTAvBgNVBAUTKDgxQzI2RjNEOEY0MTM2RTUxOTBDQzdBMTdENkFGNzIy NDIyRUI2NkYwHhcNMjUxMDIzMDgyMDI2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YWFjMS03OGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2uOgj89EKqFSDVaqdeWQURdyniQGYL8sckwzFU9wimdr4mRETvfH4ubwsk4 /G+Yw5FgbbOy5+uvdoJcIgdCVIux+NPtSQ9kDNHvmxB5qCihmwtn9UK5aTW2jaRJ zjpf2ZghxQVof6JW+ONWO/DGGJgKTTOT1oagztMrXrZ8vJqQIuNq1mOxv0lzBz36 +mTfdda6qzNZI5E7X2NvJPFWlABVpt5Ly1yA3tV0Wb49aCIv+pbsGVaVuR2EXIlI 8SiG93F919WdLlKbqkmbQtyBg46XnOxA9AH5wdrJ2fJVqW9mdwAwKWF+wPaM/ZpM g4nKqC/JRXl/96yisBesn2oOXQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAuDTaJ4 96Zw5UAB8QrI95scYKIKMB8GA1UdIwQYMBaAFIHCbz2PQTblGQzHoX1q9yJCLrZv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEU3MC8yRDk5NzBEODk1 NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9nY0p2UFk5Qk51VVpETWVoZldyM0lrSXV0 bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2djSnZQWTlCTnVVWkRNZWhmV3IzSWtJdXRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhFNzAvMkQ5OTcwRDg5NTVBMTFFRkJEOUUwMjRBQzRGOUFFMDIvMjBCMjcyMUE5 NTVCMTFFRkJGMEY1NjY5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoL90MA0GCSqGSIb3DQEBCwUAA4IBAQBBOJQ91aZ/rKrDlBSnGmTa l3TE06XLk55QDJP2VaU6E2jvpYr27bjxkHYeoIN22UuIPLtmpGdGvN8LnT+zkt3G uZABhFAvihX05N8IAqacVNZMhrq+f2oyn0bb/WUdQZ01bGQA0Q1CfBcguk75Jt+Q ju6MuYigLCLtZt83EmcWYwUmPRGeVo+/3pzszbs6mI9IVBF+LiJUsdQhKlQevhMF 7JXdVY7vF3I6ZJJssdbgOLWd+Jyqhp0dE7jbQOw86NdqYMDZt0MR9bIIwQi/elAS pX5deV8X6GBDyrm+3jDsMI7OsUis76RLi6sxYmuy4YAjeZ20tIe1GCKDqbFqRC5c -----END CERTIFICATE-----Generated at Mon Mar 2 22:34:28 2026 by rpki-client