$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/16C96BAE18E311EFB8960668C4F9AE02.roa File: 16C96BAE18E311EFB8960668C4F9AE02.roa (raw, json) Hash identifier: vKccd2F9ftUD7dxFhS0jRDAUZNsfYOsIjkhXXA2UhHI= Subject key identifier: E2:5F:A5:36:8F:4A:59:26:2D:E9:CB:B3:3A:E2:FD:FA:78:DE:C9:91 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 120F Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/16C96BAE18E311EFB8960668C4F9AE02.roa Signing time: Thu 02 Apr 2026 17:22:10 +0000 ROA not before: Thu 02 Apr 2026 17:22:10 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 58655 IP address blocks: 220.152.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4623 (0x120f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Apr 2 17:22:10 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cea5c2-413e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2b:73:73:82:9f:7d:a2:f9:0e:78:11:5f:77: 2f:47:ab:b0:f9:97:a3:e3:bf:9a:9d:e5:99:2c:0f: 38:4d:ed:d3:6d:47:99:40:5f:e9:1d:fc:b8:fe:73: 3a:c9:15:26:fb:dd:d7:8e:41:c9:e0:d0:ef:d0:ef: d6:9f:df:90:f4:ce:ae:a8:36:e8:9d:e4:66:e9:ce: b3:54:33:9b:36:1c:ff:c7:75:1f:78:b4:bc:9d:52: 80:01:4b:a3:24:db:0f:bc:a9:fa:10:fd:9e:50:06: 5a:8e:d3:8d:d4:f8:ad:89:43:c2:80:63:36:df:96: 39:0e:cb:58:ea:58:91:76:f6:21:68:b0:bf:71:4e: f9:d5:28:9b:27:3b:79:b3:23:89:e0:f4:86:0c:82: d1:eb:b2:46:cc:b9:e4:9a:f2:28:bc:d4:38:58:52: 6f:3f:47:4e:9a:2b:29:64:84:7a:72:41:ca:04:f8: a2:ee:47:08:70:e7:82:98:7f:d2:4a:f8:ab:5f:09: 21:d9:90:f4:e0:1f:c5:71:3e:bc:29:90:bd:c8:62: e0:53:8e:f6:7b:fc:95:19:55:14:a4:d7:c7:51:e4: 5c:fe:fb:36:cb:00:cd:e6:f6:a6:60:1d:66:b8:97: 31:e5:b1:47:c4:5b:72:73:fe:db:fc:a5:0f:ca:a3: 78:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:5F:A5:36:8F:4A:59:26:2D:E9:CB:B3:3A:E2:FD:FA:78:DE:C9:91 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/16C96BAE18E311EFB8960668C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 220.152.112.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:20:c0:74:89:60:0a:88:b7:ab:80:40:9b:bb:06:2b:3f:0e: 1b:d0:70:29:ae:c3:f7:a5:94:eb:45:d8:f5:e3:6e:f0:9e:3f: f2:c2:07:6b:3c:eb:2a:a7:a7:19:7f:1d:a2:21:75:ab:9f:83: 20:1e:f1:36:e1:96:be:b4:33:56:9b:c4:72:9b:f1:04:60:6b: cd:58:6a:35:5f:d8:de:c7:a4:66:0f:90:32:56:7f:5b:99:ba: 23:23:a9:e2:bc:df:c0:93:27:d5:a5:3f:b8:94:9f:55:78:e7: 74:86:46:dd:d0:7c:8e:44:b5:88:f2:4d:b2:1c:b8:e8:a3:57: 03:8c:03:33:71:ab:ec:7e:00:f3:53:5c:b5:84:27:80:a8:51: 34:6d:51:51:1d:0f:2d:1d:bb:73:2e:8a:cf:82:48:b8:c9:94: cb:6b:86:bd:4e:d9:79:26:22:c4:42:3e:ae:eb:f5:f3:fb:46: 62:f1:14:2f:2e:e0:6f:1c:04:ef:46:53:80:ab:2b:30:3b:e0: e0:8b:df:1d:16:c2:0b:05:f6:cb:d3:1e:d8:12:d0:31:f6:83: 68:19:fb:ad:ae:2a:33:34:39:9b:67:7b:de:9a:d3:03:2d:8f: 4d:5b:e6:1d:7c:ed:43:25:88:f1:93:12:d7:79:e8:91:30:91: 62:90:2f:79 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjYwNDAyMTcyMjEwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlYTVjMi00MTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvitzc4KffaL5DngRX3cvR6uw+Zej47+aneWZLA84Te3TbUeZQF/pHfy4/nM6 yRUm+93XjkHJ4NDv0O/Wn9+Q9M6uqDboneRm6c6zVDObNhz/x3UfeLS8nVKAAUuj JNsPvKn6EP2eUAZajtON1PitiUPCgGM235Y5DstY6liRdvYhaLC/cU751SibJzt5 syOJ4PSGDILR67JGzLnkmvIovNQ4WFJvP0dOmispZIR6ckHKBPii7kcIcOeCmH/S SvirXwkh2ZD04B/FcT68KZC9yGLgU472e/yVGVUUpNfHUeRc/vs2ywDN5vamYB1m uJcx5bFHxFtyc/7b/KUPyqN4xQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOJfpTaP SlkmLenLszri/fp43smRMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvMTZDOTZCQUUx OEUzMTFFRkI4OTYwNjY4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA3JhwMA0GCSqGSIb3DQEBCwUAA4IBAQCPIMB0iWAKiLergECbuwYr Pw4b0HAprsP3pZTrRdj1427wnj/ywgdrPOsqp6cZfx2iIXWrn4MgHvE24Za+tDNW m8Rym/EEYGvNWGo1X9jex6RmD5AyVn9bmbojI6nivN/AkyfVpT+4lJ9VeOd0hkbd 0HyORLWI8k2yHLjoo1cDjAMzcavsfgDzU1y1hCeAqFE0bVFRHQ8tHbtzLorPgki4 yZTLa4a9Ttl5JiLEQj6u6/Xz+0Zi8RQvLuBvHATvRlOAqyswO+Dgi98dFsILBfbL 0x7YEtAx9oNoGfutriozNDmbZ3vemtMDLY9NW+YdfO1DJYjxkxLXeeiRMJFikC95 -----END CERTIFICATE-----Generated at Fri Apr 17 21:29:10 2026 by rpki-client