$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8E/6B9A2338CE6F11F0A323DF55C4F9AE02/160AF8E8CE8D11F0BE6FB51EC4F9AE02.roa File: 160AF8E8CE8D11F0BE6FB51EC4F9AE02.roa (raw, json) Hash identifier: w2I93tWFGO9r1ycsLwYKSHur6VSKhkkXWi+U4yYabwI= Subject key identifier: F3:50:C9:B6:B1:AC:BC:00:A1:7B:E5:DC:74:E8:39:B0:A7:18:4C:CE Certificate issuer: /CN=A91CFA8E/serialNumber=488FB0697C446960FFDA2643E6BC9B44BA3D1CAC Certificate serial: 33 Authority key identifier: 48:8F:B0:69:7C:44:69:60:FF:DA:26:43:E6:BC:9B:44:BA:3D:1C:AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SI-waXxEaWD_2iZD5rybRLo9HKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8E/6B9A2338CE6F11F0A323DF55C4F9AE02/160AF8E8CE8D11F0BE6FB51EC4F9AE02.roa Signing time: Sun 01 Mar 2026 05:56:40 +0000 ROA not before: Mon 01 Dec 2025 08:09:40 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 56309 IP address blocks: 157.85.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8E/6B9A2338CE6F11F0A323DF55C4F9AE02/SI-waXxEaWD_2iZD5rybRLo9HKw.crl rsync://rpki.apnic.net/member_repository/A91CFA8E/6B9A2338CE6F11F0A323DF55C4F9AE02/SI-waXxEaWD_2iZD5rybRLo9HKw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SI-waXxEaWD_2iZD5rybRLo9HKw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:25:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8E, serialNumber=488FB0697C446960FFDA2643E6BC9B44BA3D1CAC Validity Not Before: Dec 1 08:09:40 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3d518-d871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:8b:73:ab:90:a0:58:77:61:07:48:7b:e4:68: a5:a2:20:01:67:58:48:83:a6:80:0b:84:b2:4f:32: 65:d8:09:30:01:20:53:32:f5:16:d3:29:70:25:5d: cb:e9:15:22:a9:17:91:74:95:c3:79:88:88:e1:76: a4:c5:65:da:dd:d2:4d:01:23:e9:c1:d2:65:ff:a0: b6:83:a3:d5:e2:42:b7:92:a3:9e:6e:2b:be:8d:e9: dc:d1:fd:f2:83:69:ef:b5:1e:1c:00:da:53:70:52: 00:b3:ae:db:58:52:59:7d:0e:b7:9f:09:62:05:d4: 3e:b5:75:0c:5f:57:fc:6f:f7:c9:50:e1:73:1b:eb: 4b:5e:09:ca:2e:9f:9e:7b:15:78:96:f8:07:0f:46: 5f:9d:ae:44:72:97:b4:a9:6a:0a:a3:f8:04:9e:46: 0a:9e:cf:14:71:fd:1e:ac:1e:9e:04:a8:16:fc:40: 3d:b2:f5:05:97:12:01:3e:cb:88:51:62:83:0f:af: 0a:52:97:95:dc:16:36:8b:eb:7e:a7:bd:75:60:0c: 23:2d:5c:c4:10:f6:99:62:ce:ae:79:fb:24:be:e7: 8c:e9:c5:2b:5b:13:eb:bb:cd:ed:f4:ad:78:4c:28: d4:5c:33:0b:e1:f7:8b:a5:56:65:b8:9d:3f:4b:9a: 72:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:50:C9:B6:B1:AC:BC:00:A1:7B:E5:DC:74:E8:39:B0:A7:18:4C:CE X509v3 Authority Key Identifier: keyid:48:8F:B0:69:7C:44:69:60:FF:DA:26:43:E6:BC:9B:44:BA:3D:1C:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/6B9A2338CE6F11F0A323DF55C4F9AE02/SI-waXxEaWD_2iZD5rybRLo9HKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SI-waXxEaWD_2iZD5rybRLo9HKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/6B9A2338CE6F11F0A323DF55C4F9AE02/160AF8E8CE8D11F0BE6FB51EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.85.96.0/20 Signature Algorithm: sha256WithRSAEncryption a5:48:03:6e:9c:87:60:7e:38:e3:26:68:b2:61:c8:b3:7a:38: 5b:a6:c7:99:8a:35:c4:67:0c:c0:d4:49:39:0c:38:86:86:76: de:90:b7:22:9e:f3:12:49:73:ca:a2:9f:71:d3:2c:ab:aa:35: 03:fc:80:35:7c:00:d2:e7:10:a1:06:1d:ca:92:5b:db:83:77: b7:d4:a8:57:b1:b2:e1:ac:f7:b6:5e:0c:f3:52:51:d6:f9:43: 1f:dd:77:3e:56:8e:a3:0d:c3:80:99:6a:01:91:ef:17:70:77: 4c:87:2f:50:4b:b6:16:77:bb:da:33:8d:26:d6:f1:29:e8:5b: c2:90:3b:62:c3:8c:63:61:cb:3e:4c:e4:ba:9c:a8:2e:60:13: 4a:bc:0d:11:08:46:1b:29:22:29:ed:98:31:fb:de:9a:27:ef: 55:5a:87:f2:d0:f2:c4:55:a7:ac:5f:30:24:3e:de:dd:50:af: 89:a3:6e:8f:00:64:b7:eb:a5:32:8f:f7:7e:e6:55:b5:9b:3e: cd:2a:0b:a3:bc:13:ba:c6:72:bb:ec:f5:85:3e:55:63:86:13: cd:75:49:79:9c:bf:b9:70:83:cc:59:bc:6a:3d:8e:51:c1:fc: 8e:db:cb:9e:24:78:12:dd:9f:47:19:4a:74:a1:7b:05:b8:2b: ac:14:d1:a9 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkE4RTExMC8GA1UEBRMoNDg4RkIwNjk3QzQ0Njk2MEZGREEyNjQzRTZCQzlCNDRC QTNEMUNBQzAeFw0yNTEyMDEwODA5NDBaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNTE4LWQ4NzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDti3OrkKBYd2EHSHvkaKWiIAFnWEiDpoALhLJPMmXYCTABIFMy9RbTKXAlXcvp FSKpF5F0lcN5iIjhdqTFZdrd0k0BI+nB0mX/oLaDo9XiQreSo55uK76N6dzR/fKD ae+1HhwA2lNwUgCzrttYUll9DrefCWIF1D61dQxfV/xv98lQ4XMb60teCcoun557 FXiW+AcPRl+drkRyl7Spagqj+ASeRgqezxRx/R6sHp4EqBb8QD2y9QWXEgE+y4hR YoMPrwpSl5XcFjaL636nvXVgDCMtXMQQ9plizq55+yS+54zpxStbE+u7ze30rXhM KNRcMwvh94ulVmW4nT9LmnJ1AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU81DJtrGs vAChe+XcdOg5sKcYTM4wHwYDVR0jBBgwFoAUSI+waXxEaWD/2iZD5rybRLo9HKww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGQThFLzZCOUEyMzM4Q0U2 RjExRjBBMzIzREY1NUM0RjlBRTAyL1NJLXdhWHhFYVdEXzJpWkQ1cnliUkxvOUhL dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU0ktd2FYeEVhV0RfMmlaRDVyeWJSTG85SEt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RS82QjlBMjMzOENFNkYxMUYwQTMyM0RGNTVDNEY5QUUwMi8xNjBBRjhFOENF OEQxMUYwQkU2RkI1MUVDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBASdVWAwDQYJKoZIhvcNAQELBQADggEBAKVIA26ch2B+OOMmaLJhyLN6 OFumx5mKNcRnDMDUSTkMOIaGdt6QtyKe8xJJc8qin3HTLKuqNQP8gDV8ANLnEKEG HcqSW9uDd7fUqFexsuGs97ZeDPNSUdb5Qx/ddz5WjqMNw4CZagGR7xdwd0yHL1BL thZ3u9ozjSbW8SnoW8KQO2LDjGNhyz5M5LqcqC5gE0q8DREIRhspIintmDH73pon 71Vah/LQ8sRVp6xfMCQ+3t1Qr4mjbo8AZLfrpTKP937mVbWbPs0qC6O8E7rGcrvs 9YU+VWOGE811SXmcv7lwg8xZvGo9jlHB/I7by54keBLdn0cZSnShewW4K6wU0ak= -----END CERTIFICATE-----Generated at Mon Mar 2 05:41:39 2026 by rpki-client