$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/0F0E88A6192F11F183D9B1FC303D8C67.roa File: 0F0E88A6192F11F183D9B1FC303D8C67.roa (raw, json) Hash identifier: 5aKDuZwd3Wn+m9JFqN35rRMwxZf4PwI1YL49pBMgje4= Subject key identifier: 33:4A:AC:ED:8C:AA:09:95:D1:D4:B4:B9:11:3F:9E:0D:AB:F2:87:70 Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 3820 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/0F0E88A6192F11F183D9B1FC303D8C67.roa Signing time: Fri 06 Mar 2026 07:35:33 +0000 ROA not before: Fri 06 Mar 2026 07:35:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150344 IP address blocks: 151.158.126.0/24 maxlen: 24 151.158.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14368 (0x3820) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Mar 6 07:35:33 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69aa83c5-d0d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c9:38:97:64:6e:68:59:56:51:92:6c:92:7b: 28:95:a8:68:f9:cc:11:6c:32:4d:56:e6:0f:ed:d5: b0:fb:e5:4f:fe:67:df:6f:e6:89:e9:b3:fb:0a:12: 05:d4:2b:f5:4b:d0:0f:90:19:80:d3:14:47:71:65: 28:bf:1c:99:09:7d:82:92:2e:d3:f2:7e:cf:00:ee: 83:8f:fa:c0:6e:90:f3:e2:b5:7d:d7:cf:3e:34:ad: c3:a7:79:5d:cb:03:03:26:97:26:ce:15:91:b4:1d: 04:1c:35:40:b0:5f:ac:3f:53:b8:2f:3c:69:0f:d7: fe:0c:97:62:88:e7:67:1f:04:f6:12:5c:59:4a:14: 17:74:8a:74:87:5a:55:6f:96:0d:28:9d:91:8c:25: 63:f4:1c:73:91:e5:46:da:a8:3b:72:c2:69:01:1a: a4:fa:86:fa:67:a3:70:76:72:19:13:2d:c6:ab:18: 90:7b:c9:4b:9f:02:4c:b9:28:6e:84:ac:14:3e:41: ec:58:93:7b:c9:53:ce:ee:ec:1f:e8:9f:99:eb:48: ca:24:71:d1:21:6a:c1:a9:75:d5:4f:ab:38:a4:5d: 73:47:c1:db:76:da:45:3c:ed:e4:3e:bd:1a:b6:a0: b8:88:d0:23:c9:99:0f:13:61:ad:7f:da:c7:38:18: b7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:4A:AC:ED:8C:AA:09:95:D1:D4:B4:B9:11:3F:9E:0D:AB:F2:87:70 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/0F0E88A6192F11F183D9B1FC303D8C67.roa sbgp-ipAddrBlock: critical IPv4: 151.158.126.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:33:1c:2a:a1:b9:76:48:68:55:b1:00:b0:24:7b:95:c4:0a: af:dd:63:c6:f1:78:a2:a5:ff:7f:6d:87:bc:66:9a:5c:63:3b: b8:ef:88:8c:62:6b:bc:f0:eb:65:b0:a9:ef:cb:b6:ff:34:24: 37:68:a2:fd:96:e1:22:04:27:63:98:9d:5f:4c:66:e6:ef:a9: df:80:f9:36:f2:a1:04:ac:10:6d:79:ce:fb:33:6c:4a:72:e2: e6:1a:2f:ff:50:00:02:51:18:a0:ed:3b:f5:e5:c4:1b:cc:ae: f7:47:bb:f3:18:7c:be:ef:08:46:3a:55:6a:32:70:d8:9a:0c: 82:d7:74:07:05:a9:bb:3d:63:6e:a5:a6:4f:65:80:54:cf:3b: 40:4f:49:2a:bd:0f:92:32:e6:e4:66:06:f9:5e:e2:7a:a9:c1: 24:2c:53:9e:58:70:7c:3a:33:2c:d3:6c:9f:4e:b1:d3:29:60: 4a:3f:40:c1:b6:22:fb:a1:80:36:e5:20:b0:da:4a:e9:ee:22: 28:45:de:ca:fb:16:2d:74:ae:18:d2:aa:10:5b:ac:4b:91:65: f7:b3:58:8f:7f:ec:fc:40:5d:3b:48:f6:7a:7b:90:5c:75:05: b1:62:9a:c4:78:2e:a9:4d:b4:a7:6a:81:7c:a5:15:66:d6:0a: 3e:ba:e9:68 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICOCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjYwMzA2MDczNTMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFhODNjNS1kMGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsk4l2RuaFlWUZJsknsolaho+cwRbDJNVuYP7dWw++VP/mffb+aJ6bP7ChIF 1Cv1S9APkBmA0xRHcWUovxyZCX2Cki7T8n7PAO6Dj/rAbpDz4rV9188+NK3Dp3ld ywMDJpcmzhWRtB0EHDVAsF+sP1O4LzxpD9f+DJdiiOdnHwT2ElxZShQXdIp0h1pV b5YNKJ2RjCVj9BxzkeVG2qg7csJpARqk+ob6Z6NwdnIZEy3GqxiQe8lLnwJMuShu hKwUPkHsWJN7yVPO7uwf6J+Z60jKJHHRIWrBqXXVT6s4pF1zR8HbdtpFPO3kPr0a tqC4iNAjyZkPE2Gtf9rHOBi3FQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDNKrO2M qgmV0dS0uRE/ng2r8odwMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQjk5NTNEQkExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMEYwRTg4QTYx OTJGMTFGMTgzRDlCMUZDMzAzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBl55+MA0GCSqGSIb3DQEBCwUAA4IBAQCOMxwqobl2SGhVsQCwJHuV xAqv3WPG8Xiipf9/bYe8ZppcYzu474iMYmu88OtlsKnvy7b/NCQ3aKL9luEiBCdj mJ1fTGbm76nfgPk28qEErBBtec77M2xKcuLmGi//UAACURig7Tv15cQbzK73R7vz GHy+7whGOlVqMnDYmgyC13QHBam7PWNupaZPZYBUzztAT0kqvQ+SMubkZgb5XuJ6 qcEkLFOeWHB8OjMs02yfTrHTKWBKP0DBtiL7oYA25SCw2krp7iIoRd7K+xYtdK4Y 0qoQW6xLkWX3s1iPf+z8QF07SPZ6e5BcdQWxYprEeC6pTbSnaoF8pRVm1go+uulo -----END CERTIFICATE-----Generated at Sat Mar 7 16:08:20 2026 by rpki-client