$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/C659227E3D9611F1B3BD8648C4833773.roa File: C659227E3D9611F1B3BD8648C4833773.roa (raw, json) Hash identifier: v97yjUDPBLsQreHo0jyLgRH5WkwQUkMN3CpB93x2tJ4= Subject key identifier: F5:BC:0C:2A:05:F3:15:0F:AC:2C:22:56:1B:76:83:87:8D:1C:F7:DA Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 019A Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/C659227E3D9611F1B3BD8648C4833773.roa Signing time: Tue 21 Apr 2026 15:28:41 +0000 ROA not before: Tue 21 Apr 2026 15:28:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152605 IP address blocks: 157.20.146.0/24 maxlen: 24 157.20.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 04:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Apr 21 15:28:41 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69e797a9-fb96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:13:7f:9a:68:57:c1:f6:04:a4:e4:a1:a4:e5: c4:f0:8a:07:81:62:49:4f:21:7d:0a:40:58:73:38: d2:00:75:08:87:f3:b7:16:ee:06:df:44:cc:23:fe: 3e:34:be:c5:ac:46:ae:39:62:39:00:ca:b2:63:bc: 93:00:46:f9:a5:82:aa:9e:df:bd:3a:21:53:f1:70: e5:20:f5:78:9a:53:14:de:30:de:7f:18:fc:24:55: f1:ed:42:32:e6:30:01:20:df:b5:7d:4b:b0:3a:ae: 58:d8:bf:4a:e3:40:c0:65:c4:45:cb:89:a1:3e:60: 56:d2:3b:de:b6:2d:d1:eb:3f:ab:be:2e:7a:30:06: fa:78:80:57:c3:f2:45:1f:b9:55:85:65:58:55:23: c2:aa:06:b8:55:2d:c7:33:7d:f8:a2:e4:ce:1f:3c: 9f:04:42:82:c0:29:82:1e:96:89:f3:d3:9e:93:73: 28:77:9b:ac:37:75:63:76:cf:7b:35:99:ec:b9:ba: d9:6a:5f:10:e9:a1:ee:04:ac:78:b3:30:42:a2:5f: 3f:f5:c3:3c:fd:8b:96:a1:27:10:f0:c5:26:3d:e6: a5:01:ca:8a:13:d6:63:94:f6:17:f6:5c:3c:ea:fc: 98:0b:6d:61:33:11:d9:30:68:90:c8:0d:d4:71:e4: dd:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:BC:0C:2A:05:F3:15:0F:AC:2C:22:56:1B:76:83:87:8D:1C:F7:DA X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/C659227E3D9611F1B3BD8648C4833773.roa sbgp-ipAddrBlock: critical IPv4: 157.20.146.0/23 Signature Algorithm: sha256WithRSAEncryption bd:cf:b2:d4:9e:ff:9b:fd:ac:5b:bd:1c:7d:48:5f:83:5b:f6: 31:1a:95:de:91:fb:3e:d7:97:71:f9:0b:1c:56:59:f8:3f:a9: 7b:03:00:eb:bb:07:9e:0d:5e:4f:b4:50:2b:c7:aa:d9:19:26: 56:42:e1:ef:fc:d6:61:32:19:fa:8d:0d:cb:af:56:f0:a8:cb: bc:7f:fd:86:23:8d:b1:97:6c:7c:22:87:37:70:f7:8f:b5:95: 76:ba:c8:78:7c:70:52:d8:40:c7:f8:90:b7:b1:d4:e1:e3:e5: 5c:03:c7:6c:51:61:23:af:54:6d:ab:7e:5a:39:21:40:1e:5d: 2d:bf:d5:e5:75:d1:57:07:89:72:7f:9b:d4:96:2a:6f:e2:d6: d4:54:b9:0a:33:64:3c:95:3f:33:fd:61:22:c7:dc:ef:d7:e0: f8:98:05:c3:43:3b:fc:55:34:84:52:2a:5e:c8:39:70:c4:38: d4:d9:b8:d0:5c:92:f3:b4:b4:8e:b5:99:05:2a:86:cc:69:4b: 8e:75:5c:6c:ff:34:c8:72:93:8c:88:a1:4f:1c:a2:23:b3:1b: 76:50:69:c1:38:51:d5:ad:26:45:0e:cb:7c:5e:5e:38:89:0c: 8d:d5:a1:33:3a:64:3d:6c:a0:49:a4:04:e6:2d:03:84:44:ba: 31:9e:05:0a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjYwNDIxMTUyODQxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU3OTdhOS1mYjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBN/mmhXwfYEpOShpOXE8IoHgWJJTyF9CkBYczjSAHUIh/O3Fu4G30TMI/4+ NL7FrEauOWI5AMqyY7yTAEb5pYKqnt+9OiFT8XDlIPV4mlMU3jDefxj8JFXx7UIy 5jABIN+1fUuwOq5Y2L9K40DAZcRFy4mhPmBW0jveti3R6z+rvi56MAb6eIBXw/JF H7lVhWVYVSPCqga4VS3HM334ouTOHzyfBEKCwCmCHpaJ89Oek3Mod5usN3Vjds97 NZnsubrZal8Q6aHuBKx4szBCol8/9cM8/YuWoScQ8MUmPealAcqKE9ZjlPYX9lw8 6vyYC21hMxHZMGiQyA3UceTdBQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPW8DCoF 8xUPrCwiVht2g4eNHPfaMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTI5REEvMzRCNUI1MTREQTU0MTFFRTgyN0NBNTdEQzRGOUFFMDIvQzY1OTIyN0Uz RDk2MTFGMUIzQkQ4NjQ4QzQ4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRSSMA0GCSqGSIb3DQEBCwUAA4IBAQC9z7LUnv+b/axbvRx9SF+D W/YxGpXekfs+15dx+QscVln4P6l7AwDruweeDV5PtFArx6rZGSZWQuHv/NZhMhn6 jQ3Lr1bwqMu8f/2GI42xl2x8Ioc3cPePtZV2ush4fHBS2EDH+JC3sdTh4+VcA8ds UWEjr1Rtq35aOSFAHl0tv9XlddFXB4lyf5vUlipv4tbUVLkKM2Q8lT8z/WEix9zv 1+D4mAXDQzv8VTSEUipeyDlwxDjU2bjQXJLztLSOtZkFKobMaUuOdVxs/zTIcpOM iKFPHKIjsxt2UGnBOFHVrSZFDst8Xl44iQyN1aEzOmQ9bKBJpATmLQOERLoxngUK -----END CERTIFICATE-----Generated at Tue Apr 28 11:51:30 2026 by rpki-client