$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/665497A2AC1011ED8592693FC4F9AE02.roa File: 665497A2AC1011ED8592693FC4F9AE02.roa (raw, json) Hash identifier: qIJw0+FjxuTWluHNODsBUj7/4aX0PbanF96QaF1KBaA= Subject key identifier: 96:74:A3:7C:72:7C:0A:04:18:02:B6:21:E1:F4:A3:0D:01:2A:EA:97 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 0260 Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/665497A2AC1011ED8592693FC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:57:29 +0000 ROA not before: Fri 05 Sep 2025 03:08:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24006 IP address blocks: 202.160.48.0/21 maxlen: 21 202.160.56.0/21 maxlen: 21 2400:b400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:48:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 608 (0x260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B, serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Sep 5 03:08:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a437b9-1601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e7:43:a7:8c:bb:33:8b:6b:ec:19:17:7e:48: fa:d1:ff:6f:9a:d3:0e:c5:ab:22:43:56:98:60:e1: ba:1d:b4:20:6a:2e:c5:1c:c6:5f:8c:f0:0c:82:d3: 27:60:3b:53:57:4e:2b:a3:c6:14:e9:a2:35:a7:bf: 10:b3:e9:6e:b5:bb:7c:07:be:82:95:43:da:1c:2c: c1:3f:9c:72:7a:2f:48:42:5b:e3:5e:3c:be:9a:8c: 4e:c1:ad:75:ff:d4:16:7d:ba:c7:d4:1b:24:7c:33: 39:5b:a1:ad:fd:5a:92:86:95:73:59:fb:69:39:18: 31:14:2a:90:d1:3d:b2:d6:33:85:27:c1:f3:d4:e6: 1f:89:72:da:00:5b:16:1e:6f:ef:5a:fa:f7:fa:c5: 56:d4:16:6e:67:db:a1:9a:6e:71:39:6e:f9:0c:60: da:10:6e:1b:6a:24:7a:cc:0f:5a:1b:98:63:50:b6: c0:d4:65:14:f6:80:7a:2e:db:8c:4d:6c:bf:5a:4b: ed:b7:c7:57:6a:dc:c5:70:2f:c2:94:06:80:37:9d: 44:ed:42:26:7c:62:d3:b7:3a:31:0f:e8:0a:c8:71: e5:03:ca:f1:fb:62:42:58:3d:ee:e9:d3:64:6e:4e: 1d:8a:7e:90:ae:2d:42:bb:1c:12:72:49:20:56:71: ba:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:74:A3:7C:72:7C:0A:04:18:02:B6:21:E1:F4:A3:0D:01:2A:EA:97 X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/665497A2AC1011ED8592693FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.160.48.0/20 IPv6: 2400:b400::/32 Signature Algorithm: sha256WithRSAEncryption 75:38:eb:c5:9f:b8:5f:80:49:13:1d:ac:cf:3f:42:cf:91:6f: 81:1b:05:cb:83:ee:29:e1:98:1d:ac:c7:3a:4e:f4:f3:0f:8e: 44:2f:12:52:ce:61:e4:bd:dc:f4:81:c2:a7:c2:a1:a7:93:58: e2:fc:7b:27:f8:a7:a4:7f:db:6f:d4:b2:ae:b3:57:27:d4:00: 72:f4:6a:9c:78:cd:1a:35:78:0b:d9:c5:3b:fa:73:3b:9b:33: 89:af:17:6d:44:15:dc:1e:36:c0:a8:9a:94:81:4b:d0:f8:73: 60:e3:c3:44:4d:c3:5b:3b:81:2b:95:98:0c:5d:e4:a5:a2:92: a1:40:25:9b:a5:87:13:36:d4:ca:f1:79:4f:29:6a:21:f0:c7: 79:3a:91:a7:4f:29:e2:75:62:9e:33:8c:80:94:b8:3a:7c:b8: 08:9c:e1:72:df:15:a2:51:9b:17:d5:ee:08:cd:2e:0c:54:e8: e9:88:47:5a:d5:98:4f:15:a3:48:d8:e5:b9:8c:32:9c:98:87: 37:b1:95:47:9d:7a:51:fb:cf:cd:dd:35:d2:1c:08:59:cc:16: 61:13:48:88:65:f7:90:07:fb:c7:2f:1c:29:d3:41:3a:75:a5: c0:63:95:74:b0:88:09:48:fd:bb:96:a1:a1:11:8c:2f:75:b8: 7e:ee:7a:4a -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjUwOTA1MDMwODUyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzdiOS0xNjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqudDp4y7M4tr7BkXfkj60f9vmtMOxasiQ1aYYOG6HbQgai7FHMZfjPAMgtMn YDtTV04ro8YU6aI1p78Qs+lutbt8B76ClUPaHCzBP5xyei9IQlvjXjy+moxOwa11 /9QWfbrH1BskfDM5W6Gt/VqShpVzWftpORgxFCqQ0T2y1jOFJ8Hz1OYfiXLaAFsW Hm/vWvr3+sVW1BZuZ9uhmm5xOW75DGDaEG4baiR6zA9aG5hjULbA1GUU9oB6LtuM TWy/Wkvtt8dXatzFcC/ClAaAN51E7UImfGLTtzoxD+gKyHHlA8rx+2JCWD3u6dNk bk4din6Qri1CuxwSckkgVnG6VQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFJZ0o3xy fAoEGAK2IeH0ow0BKuqXMB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhFOUIvNjlFQjQyQzA5NjBFMTFFRDlBNENFQTY1QzRGOUFFMDIvNjY1NDk3QTJB QzEwMTFFRDg1OTI2OTNGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQEyqAwMA0EAgACMAcDBQAkALQAMA0GCSqGSIb3DQEBCwUAA4IBAQB1 OOvFn7hfgEkTHazPP0LPkW+BGwXLg+4p4ZgdrMc6TvTzD45ELxJSzmHkvdz0gcKn wqGnk1ji/Hsn+Kekf9tv1LKus1cn1ABy9GqceM0aNXgL2cU7+nM7mzOJrxdtRBXc HjbAqJqUgUvQ+HNg48NETcNbO4ErlZgMXeSlopKhQCWbpYcTNtTK8XlPKWoh8Md5 OpGnTynidWKeM4yAlLg6fLgInOFy3xWiUZsX1e4IzS4MVOjpiEda1ZhPFaNI2OW5 jDKcmIc3sZVHnXpR+8/N3TXSHAhZzBZhE0iIZfeQB/vHLxwp00E6daXAY5V0sIgJ SP27lqGhEYwvdbh+7npK -----END CERTIFICATE-----Generated at Sat Mar 28 12:07:35 2026 by rpki-client