$ rpki-client -vvf rpki.apnic.net/member_repository/A918E3C0/B573B4E001B111F19C1E42C16B6F56BC/3F6F4A1A01B211F19B62C4E66C6F56BC.roa File: 3F6F4A1A01B211F19B62C4E66C6F56BC.roa (raw, json) Hash identifier: tMHj5+/ILv6Qo4xWUT+IoiNMESbwl2vJsPhAT7WrKns= Subject key identifier: 1F:9C:8A:F7:71:7C:8C:27:57:49:F0:1E:21:BF:48:58:A6:B3:25:ED Certificate issuer: /CN=A918E3C0/serialNumber=61FA7086811CB03FCB94C316CFEEAD889A8527F7 Certificate serial: 14 Authority key identifier: 61:FA:70:86:81:1C:B0:3F:CB:94:C3:16:CF:EE:AD:88:9A:85:27:F7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/YfpwhoEcsD_LlMMWz-6tiJqFJ_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E3C0/B573B4E001B111F19C1E42C16B6F56BC/3F6F4A1A01B211F19B62C4E66C6F56BC.roa Signing time: Mon 02 Mar 2026 13:49:51 +0000 ROA not before: Wed 04 Feb 2026 10:14:11 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 138233 IP address blocks: 151.158.140.0/24 maxlen: 24 151.158.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E3C0/B573B4E001B111F19C1E42C16B6F56BC/YfpwhoEcsD_LlMMWz-6tiJqFJ_c.crl rsync://rpki.apnic.net/member_repository/A918E3C0/B573B4E001B111F19C1E42C16B6F56BC/YfpwhoEcsD_LlMMWz-6tiJqFJ_c.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/YfpwhoEcsD_LlMMWz-6tiJqFJ_c.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Mar 2026 07:51:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E3C0, serialNumber=61FA7086811CB03FCB94C316CFEEAD889A8527F7 Validity Not Before: Feb 4 10:14:11 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a5957f-6d79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a0:0c:67:de:92:39:25:e9:f5:61:4a:a9:f0: da:6e:b4:f4:15:c4:91:96:95:00:8b:f8:62:cb:f3: d1:71:84:c0:89:b3:85:e6:23:fd:8a:4c:87:0f:47: 32:f6:f5:f4:80:6b:d8:55:5d:c3:8a:5d:f2:8c:31: d0:b3:f1:3c:e7:8c:77:8a:9c:d6:9c:41:8b:50:e3: 80:a7:aa:6c:22:09:12:13:c1:c7:05:6a:2f:0a:56: 02:cc:14:af:a4:00:cc:a2:d4:b4:ce:90:64:1f:bf: ed:dd:68:56:f9:cf:81:62:43:14:93:37:bf:d5:56: b6:ff:72:be:cb:c6:61:69:2d:cd:ca:62:dc:3d:80: e8:d3:7d:79:ca:7e:fd:b6:da:74:18:21:f2:3f:14: 43:a9:6b:c8:c0:15:36:9a:13:01:16:fd:34:a8:01: 72:84:12:21:ba:9f:30:b9:c5:d8:94:c3:b7:18:f8: e3:10:a5:59:0a:14:0b:47:9d:6b:c9:d5:99:f5:d7: 24:6a:d5:91:b5:ff:de:af:b0:0a:3c:b9:a4:94:d1: d3:4e:55:af:43:b5:2e:2f:ab:6a:a1:7c:5d:a6:0c: 20:ed:9a:30:d0:34:90:66:bd:07:61:5f:bf:9e:64: 97:87:62:78:f3:87:37:0b:17:63:5b:40:bd:15:3b: 3a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:9C:8A:F7:71:7C:8C:27:57:49:F0:1E:21:BF:48:58:A6:B3:25:ED X509v3 Authority Key Identifier: keyid:61:FA:70:86:81:1C:B0:3F:CB:94:C3:16:CF:EE:AD:88:9A:85:27:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E3C0/B573B4E001B111F19C1E42C16B6F56BC/YfpwhoEcsD_LlMMWz-6tiJqFJ_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/YfpwhoEcsD_LlMMWz-6tiJqFJ_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E3C0/B573B4E001B111F19C1E42C16B6F56BC/3F6F4A1A01B211F19B62C4E66C6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 151.158.140.0/23 Signature Algorithm: sha256WithRSAEncryption c2:89:82:21:70:86:4c:b8:ca:95:c2:4f:85:6d:e4:a1:0a:3d: 92:3d:e8:02:30:1d:d3:26:2b:3b:d2:76:91:fd:7d:83:4d:ed: bb:4f:be:87:fd:f3:20:29:8a:bd:e6:54:5e:08:8c:f2:22:38: 48:a2:80:de:06:3f:c4:23:46:3b:d8:20:f9:57:82:b0:c6:89: 7a:04:94:9d:81:b0:63:0d:bd:fc:d1:3c:49:03:3d:34:75:23: 7c:73:ea:68:d4:d9:e2:d7:2c:71:5e:4e:08:19:bd:06:6a:02: 04:aa:43:08:80:ef:6b:32:ec:57:84:90:90:0b:ae:73:e0:1e: 3d:1d:4e:e5:7a:3d:10:0f:ac:18:bf:fb:5a:3a:38:a1:23:42: 1b:19:a3:e9:b6:02:c4:3c:59:6d:8b:c6:f2:5d:af:ea:ea:7d: bb:f4:98:f1:82:4e:c3:39:29:38:95:97:5d:96:b3:cc:4f:0f: 73:0f:f2:9a:bb:4c:1d:19:05:61:ad:f7:d2:84:54:93:01:dc: 39:9d:12:e7:bd:a3:3d:1b:82:2f:89:77:cd:23:2e:8f:d5:76: f5:cb:3a:6c:23:c0:bf:28:1c:9d:99:8b:5c:b9:8a:ea:1d:72: 15:8c:c4:fb:47:8d:95:f9:26:78:a6:b0:a6:62:9f:5a:2b:8d: 09:25:31:4a -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTNDMDExMC8GA1UEBRMoNjFGQTcwODY4MTFDQjAzRkNCOTRDMzE2Q0ZFRUFEODg5 QTg1MjdGNzAeFw0yNjAyMDQxMDE0MTFaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU5NTdmLTZkNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnoAxn3pI5Jen1YUqp8NputPQVxJGWlQCL+GLL89FxhMCJs4XmI/2KTIcPRzL2 9fSAa9hVXcOKXfKMMdCz8TznjHeKnNacQYtQ44CnqmwiCRITwccFai8KVgLMFK+k AMyi1LTOkGQfv+3daFb5z4FiQxSTN7/VVrb/cr7LxmFpLc3KYtw9gOjTfXnKfv22 2nQYIfI/FEOpa8jAFTaaEwEW/TSoAXKEEiG6nzC5xdiUw7cY+OMQpVkKFAtHnWvJ 1Zn11yRq1ZG1/96vsAo8uaSU0dNOVa9DtS4vq2qhfF2mDCDtmjDQNJBmvQdhX7+e ZJeHYnjzhzcLF2NbQL0VOzo9AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUH5yK93F8 jCdXSfAeIb9IWKazJe0wHwYDVR0jBBgwFoAUYfpwhoEcsD/LlMMWz+6tiJqFJ/cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFM0MwL0I1NzNCNEUwMDFC MTExRjE5QzFFNDJDMTZCNkY1NkJDL1lmcHdob0Vjc0RfTGxNTVd6LTZ0aUpxRkpf Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvWWZwd2hvRWNzRF9MbE1NV3otNnRpSnFGSl9jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTNDMC9CNTczQjRFMDAxQjExMUYxOUMxRTQyQzE2QjZGNTZCQy8zRjZGNEExQTAx QjIxMUYxOUI2MkM0RTY2QzZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGXnowwDQYJKoZIhvcNAQELBQADggEBAMKJgiFwhky4ypXCT4Vt5KEK PZI96AIwHdMmKzvSdpH9fYNN7btPvof98yApir3mVF4IjPIiOEiigN4GP8QjRjvY IPlXgrDGiXoElJ2BsGMNvfzRPEkDPTR1I3xz6mjU2eLXLHFeTggZvQZqAgSqQwiA 72sy7FeEkJALrnPgHj0dTuV6PRAPrBi/+1o6OKEjQhsZo+m2AsQ8WW2LxvJdr+rq fbv0mPGCTsM5KTiVl12Ws8xPD3MP8pq7TB0ZBWGt99KEVJMB3DmdEue9oz0bgi+J d80jLo/VdvXLOmwjwL8oHJ2Zi1y5iuodchWMxPtHjZX5JnimsKZin1orjQklMUo= -----END CERTIFICATE-----Generated at Fri Mar 6 02:44:28 2026 by rpki-client