$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8E/6B9A2338CE6F11F0A323DF55C4F9AE02/160AF8E8CE8D11F0BE6FB51EC4F9AE02.roa File: 160AF8E8CE8D11F0BE6FB51EC4F9AE02.roa (raw, json) Hash identifier: 3OV5G0MzOx3A7cffbPL2mxy1J9i86/E4uGYCDCcUs/I= Subject key identifier: 11:D8:A5:E6:17:31:36:7F:97:5D:B0:8F:47:7C:F9:51:3C:2B:16:BF Certificate issuer: /CN=A91CFA8E/serialNumber=488FB0697C446960FFDA2643E6BC9B44BA3D1CAC Certificate serial: 68 Authority key identifier: 48:8F:B0:69:7C:44:69:60:FF:DA:26:43:E6:BC:9B:44:BA:3D:1C:AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SI-waXxEaWD_2iZD5rybRLo9HKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8E/6B9A2338CE6F11F0A323DF55C4F9AE02/160AF8E8CE8D11F0BE6FB51EC4F9AE02.roa Signing time: Fri 05 Jun 2026 03:32:31 +0000 ROA not before: Fri 05 Jun 2026 03:32:31 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 56309 IP address blocks: 157.85.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8E/6B9A2338CE6F11F0A323DF55C4F9AE02/SI-waXxEaWD_2iZD5rybRLo9HKw.crl rsync://rpki.apnic.net/member_repository/A91CFA8E/6B9A2338CE6F11F0A323DF55C4F9AE02/SI-waXxEaWD_2iZD5rybRLo9HKw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SI-waXxEaWD_2iZD5rybRLo9HKw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8E, serialNumber=488FB0697C446960FFDA2643E6BC9B44BA3D1CAC Validity Not Before: Jun 5 03:32:31 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a22434f-4b88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:82:31:1d:d6:99:b7:0a:57:fd:20:46:c2:77: 2a:8c:b8:f3:31:3f:8c:fc:94:70:bb:dd:b2:4d:84: c9:9f:64:97:dd:8a:b2:42:db:fa:b4:f9:b6:f2:69: 88:0e:f2:1e:8b:88:4a:45:55:a0:d9:68:56:1c:c6: 5f:79:9b:dc:13:3e:35:16:77:6f:2b:f7:ad:7d:0e: da:41:1e:c7:b1:a1:53:7d:c0:77:e3:0e:51:4a:5c: 2c:56:46:0b:44:89:1d:7f:c4:c7:39:c2:a9:33:b2: a6:43:37:c9:2b:44:74:43:6f:fb:57:60:ec:95:3e: 5c:13:a6:32:51:46:e7:b9:e8:04:27:82:b3:a0:4e: 8d:1b:bd:4a:be:46:b3:1a:f9:61:9c:70:67:28:b6: c4:fe:f3:ad:40:4a:ce:c6:53:3b:b8:36:46:12:44: e0:0a:e0:34:9a:21:48:2c:c3:42:dc:ac:ad:f8:d6: 8f:69:cd:6d:18:86:2c:8e:9e:ac:33:60:77:e4:9a: 09:3a:2e:98:02:68:36:cd:18:4a:a3:79:5b:0a:3e: 36:fa:9a:7d:91:6b:2f:36:d9:96:76:d3:75:9c:65: 7e:7b:7c:c5:48:e2:89:a0:f1:ea:88:96:b8:6e:8a: 84:ba:7b:26:b0:92:74:71:71:65:6a:b0:ea:43:90: 05:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D8:A5:E6:17:31:36:7F:97:5D:B0:8F:47:7C:F9:51:3C:2B:16:BF X509v3 Authority Key Identifier: keyid:48:8F:B0:69:7C:44:69:60:FF:DA:26:43:E6:BC:9B:44:BA:3D:1C:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/6B9A2338CE6F11F0A323DF55C4F9AE02/SI-waXxEaWD_2iZD5rybRLo9HKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SI-waXxEaWD_2iZD5rybRLo9HKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/6B9A2338CE6F11F0A323DF55C4F9AE02/160AF8E8CE8D11F0BE6FB51EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.85.96.0/20 Signature Algorithm: sha256WithRSAEncryption 1f:3e:e4:48:76:99:bb:ea:db:6b:f9:a0:7c:91:36:72:b1:88: f1:8b:5a:07:04:7a:71:46:21:9c:0e:09:af:c3:be:54:35:49: 0b:11:55:c7:a4:a5:9b:1c:98:dd:02:58:12:cd:f2:e6:e5:cd: 67:f8:e8:e2:95:9f:4c:d8:29:36:39:c6:24:87:c2:89:8a:39: d4:45:75:af:d0:32:27:79:14:0b:12:9a:84:40:30:a2:74:b3: 4f:c5:7c:27:0e:d7:28:ee:3d:2c:4c:06:51:cc:2f:ce:14:d4: 03:1e:ec:c0:95:61:c3:6c:c9:ed:cb:54:b3:06:13:27:60:8f: 84:4e:b7:21:db:72:c5:d8:da:7c:a9:37:79:73:ed:f7:bc:d1: e0:4b:92:15:0e:11:2d:8d:e2:57:be:72:f5:31:80:4e:24:c3: 73:f2:55:e2:63:53:0b:52:09:31:05:47:a8:63:7d:93:45:6e: d0:07:20:8c:3e:b0:31:1b:ce:ba:cf:f0:23:f1:70:90:7b:bd: 3a:b0:fd:51:90:ed:74:a1:bd:56:3b:ee:6a:94:2f:54:c0:d6: 8f:07:13:7b:41:7e:fe:e6:67:ed:65:c2:f3:68:09:89:3e:15: 3a:cb:3d:ce:e1:91:00:00:27:d5:b8:1d:95:d2:ee:a9:fa:d7: 67:6f:50:ed -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkE4RTExMC8GA1UEBRMoNDg4RkIwNjk3QzQ0Njk2MEZGREEyNjQzRTZCQzlCNDRC QTNEMUNBQzAeFw0yNjA2MDUwMzMyMzFaFw0yNzA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMjI0MzRmLTRiODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCygjEd1pm3Clf9IEbCdyqMuPMxP4z8lHC73bJNhMmfZJfdirJC2/q0+bbyaYgO 8h6LiEpFVaDZaFYcxl95m9wTPjUWd28r9619DtpBHsexoVN9wHfjDlFKXCxWRgtE iR1/xMc5wqkzsqZDN8krRHRDb/tXYOyVPlwTpjJRRue56AQngrOgTo0bvUq+RrMa +WGccGcotsT+861ASs7GUzu4NkYSROAK4DSaIUgsw0LcrK341o9pzW0YhiyOnqwz YHfkmgk6LpgCaDbNGEqjeVsKPjb6mn2Ray822ZZ203WcZX57fMVI4omg8eqIlrhu ioS6eyawknRxcWVqsOpDkAWFAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUEdil5hcx Nn+XXbCPR3z5UTwrFr8wHwYDVR0jBBgwFoAUSI+waXxEaWD/2iZD5rybRLo9HKww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGQThFLzZCOUEyMzM4Q0U2 RjExRjBBMzIzREY1NUM0RjlBRTAyL1NJLXdhWHhFYVdEXzJpWkQ1cnliUkxvOUhL dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU0ktd2FYeEVhV0RfMmlaRDVyeWJSTG85SEt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RS82QjlBMjMzOENFNkYxMUYwQTMyM0RGNTVDNEY5QUUwMi8xNjBBRjhFOENF OEQxMUYwQkU2RkI1MUVDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBASdVWAwDQYJKoZIhvcNAQELBQADggEBAB8+5Eh2mbvq22v5oHyRNnKx iPGLWgcEenFGIZwOCa/DvlQ1SQsRVcekpZscmN0CWBLN8ublzWf46OKVn0zYKTY5 xiSHwomKOdRFda/QMid5FAsSmoRAMKJ0s0/FfCcO1yjuPSxMBlHML84U1AMe7MCV YcNsye3LVLMGEydgj4ROtyHbcsXY2nypN3lz7fe80eBLkhUOES2N4le+cvUxgE4k w3PyVeJjUwtSCTEFR6hjfZNFbtAHIIw+sDEbzrrP8CPxcJB7vTqw/VGQ7XShvVY7 7mqUL1TA1o8HE3tBfv7mZ+1lwvNoCYk+FTrLPc7hkQAAJ9W4HZXS7qn612dvUO0= -----END CERTIFICATE-----Generated at Sat Jun 13 13:05:18 2026 by rpki-client