$ rpki-client -vvf rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/CD26CAC0431611EE80B53A75C4F9AE02.roa File: CD26CAC0431611EE80B53A75C4F9AE02.roa (raw, json) Hash identifier: vPWknUKvmhzNYKbXzeUeTtIU2gsg4u0/mGjZtAQaw4o= Subject key identifier: 14:5A:58:71:6E:E7:2A:2C:EE:42:EF:8D:2F:F2:32:09:BA:85:02:A3 Certificate issuer: /CN=A91E00FC/serialNumber=4BD9994BC5CFF9ECB6683C94DC6EECD5EEEE0E78 Certificate serial: 0AAE Authority key identifier: 4B:D9:99:4B:C5:CF:F9:EC:B6:68:3C:94:DC:6E:EC:D5:EE:EE:0E:78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S9mZS8XP-ey2aDyU3G7s1e7uDng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/CD26CAC0431611EE80B53A75C4F9AE02.roa Signing time: Tue 26 May 2026 20:28:35 +0000 ROA not before: Tue 26 May 2026 20:28:35 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 139006 IP address blocks: 165.173.160.0/22 maxlen: 24 165.173.190.0/23 maxlen: 23 165.173.190.0/24 maxlen: 24 165.173.191.0/24 maxlen: 24 199.67.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.crl rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S9mZS8XP-ey2aDyU3G7s1e7uDng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2734 (0xaae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E00FC, serialNumber=4BD9994BC5CFF9ECB6683C94DC6EECD5EEEE0E78 Validity Not Before: May 26 20:28:35 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a160273-fee2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c3:6a:cf:3e:fc:ee:9e:38:db:91:d9:90:47: e6:3d:03:44:69:9c:03:2c:de:74:88:ab:f6:22:93: fa:63:95:c0:5c:8d:f9:84:f0:fc:73:81:b4:b0:61: b8:7b:ca:93:0b:2e:ee:51:36:37:1e:d0:20:c3:ba: e0:08:ae:4f:b9:6b:a0:1f:c4:f2:90:86:0b:c5:96: 16:41:9c:69:8e:26:84:94:56:df:91:e6:73:a0:54: 78:3a:da:d6:27:c4:42:01:62:1e:77:69:30:9d:48: e9:de:92:d1:d6:27:e0:a6:1d:e8:12:c7:da:b0:3b: 7a:b8:19:86:03:9b:c6:82:8c:89:5d:88:7d:b6:ab: 24:58:37:5a:48:15:ef:f6:56:59:fe:04:b4:3d:24: b9:34:95:86:34:6e:48:2b:89:d1:fb:ca:ac:ff:65: f1:0f:4d:30:90:07:7c:d4:7e:43:b3:cf:28:d7:5f: ec:b2:a5:a0:43:a9:0a:6b:89:23:22:cc:9b:ee:db: d6:6c:2f:8e:ae:88:39:81:14:d2:e6:89:59:a7:07: eb:01:87:c6:6b:1d:16:2f:71:76:f5:c1:a6:7d:34: 04:5b:bd:5c:62:5d:72:1e:98:1e:1b:18:ab:7f:50: 2c:3b:48:a4:94:8d:76:84:7f:b5:25:fd:f3:68:e7: d1:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:5A:58:71:6E:E7:2A:2C:EE:42:EF:8D:2F:F2:32:09:BA:85:02:A3 X509v3 Authority Key Identifier: keyid:4B:D9:99:4B:C5:CF:F9:EC:B6:68:3C:94:DC:6E:EC:D5:EE:EE:0E:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S9mZS8XP-ey2aDyU3G7s1e7uDng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/CD26CAC0431611EE80B53A75C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.173.160.0/22 165.173.190.0/23 199.67.70.0/24 Signature Algorithm: sha256WithRSAEncryption 64:86:58:16:b8:16:db:58:ea:c6:54:0a:6e:8a:60:61:bc:7d: d3:5a:9c:f4:42:da:ea:fd:fc:4d:8d:1f:52:5f:2a:95:07:3c: a6:fd:26:aa:bc:98:87:18:8e:e0:43:4a:59:f1:37:8b:c9:60: 13:9c:d5:f7:8f:29:ec:10:5f:2e:31:85:e1:9d:93:7f:33:c3: 53:7d:9c:1c:5d:ee:5a:7e:6f:52:28:fa:a2:4d:96:2c:5c:e6: 7e:2d:fa:5b:f5:41:9f:d9:83:31:76:5c:de:d8:09:73:f1:40: f3:9f:c2:3c:91:af:f6:e7:65:e4:a6:25:dc:15:3f:d6:56:bc: 20:3b:d8:00:48:fc:2c:1b:27:fd:15:9e:22:85:2d:a0:6c:00: 3f:22:c8:6c:e7:33:20:32:b0:30:bd:bf:ee:eb:3e:ec:b5:cd: 9f:27:84:e1:54:d8:d5:5b:b6:38:80:fb:ee:69:54:67:90:36: b6:98:87:0f:b7:f0:84:6e:98:13:df:63:d5:1f:e6:dd:09:3d: 59:bb:5a:c8:74:a0:52:a7:a5:10:49:e5:40:54:d9:f9:76:7b: f4:7a:91:76:aa:c0:9f:12:15:aa:3f:d3:58:2f:84:c1:7a:71: 26:d0:80:ae:b2:2f:91:53:64:cc:69:14:90:e9:a3:53:d3:a0: a9:54:55:d2 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAwRkMxMTAvBgNVBAUTKDRCRDk5OTRCQzVDRkY5RUNCNjY4M0M5NERDNkVFQ0Q1 RUVFRTBFNzgwHhcNMjYwNTI2MjAyODM1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE2MDI3My1mZWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMNqzz787p4425HZkEfmPQNEaZwDLN50iKv2IpP6Y5XAXI35hPD8c4G0sGG4 e8qTCy7uUTY3HtAgw7rgCK5PuWugH8TykIYLxZYWQZxpjiaElFbfkeZzoFR4OtrW J8RCAWIed2kwnUjp3pLR1ifgph3oEsfasDt6uBmGA5vGgoyJXYh9tqskWDdaSBXv 9lZZ/gS0PSS5NJWGNG5IK4nR+8qs/2XxD00wkAd81H5Ds88o11/ssqWgQ6kKa4kj Isyb7tvWbC+Orog5gRTS5olZpwfrAYfGax0WL3F29cGmfTQEW71cYl1yHpgeGxir f1AsO0iklI12hH+1Jf3zaOfRcQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFBRaWHFu 5yos7kLvjS/yMgm6hQKjMB8GA1UdIwQYMBaAFEvZmUvFz/nstmg8lNxu7NXu7g54 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDBGQy81NUYyQzRDNjdG MkYxMUVBQURGNEJGNkFDNEY5QUUwMi9TOW1aUzhYUC1leTJhRHlVM0c3czFlN3VE bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1M5bVpTOFhQLWV5MmFEeVUzRzdzMWU3dURuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTAwRkMvNTVGMkM0QzY3RjJGMTFFQUFERjRCRjZBQzRGOUFFMDIvQ0QyNkNBQzA0 MzE2MTFFRTgwQjUzQTc1QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCpa2gAwQBpa2+AwQAx0NGMA0GCSqGSIb3DQEBCwUAA4IBAQBkhlgW uBbbWOrGVApuimBhvH3TWpz0Qtrq/fxNjR9SXyqVBzym/SaqvJiHGI7gQ0pZ8TeL yWATnNX3jynsEF8uMYXhnZN/M8NTfZwcXe5afm9SKPqiTZYsXOZ+Lfpb9UGf2YMx dlze2Alz8UDzn8I8ka/252XkpiXcFT/WVrwgO9gASPwsGyf9FZ4ihS2gbAA/Ishs 5zMgMrAwvb/u6z7stc2fJ4ThVNjVW7Y4gPvuaVRnkDa2mIcPt/CEbpgT32PVH+bd CT1Zu1rIdKBSp6UQSeVAVNn5dnv0epF2qsCfEhWqP9NYL4TBenEm0ICusi+RU2TM aRSQ6aNT06CpVFXS -----END CERTIFICATE-----Generated at Wed Jun 17 09:24:24 2026 by rpki-client