$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/14201780319711F18CC67F1EAC833773.roa File: 14201780319711F18CC67F1EAC833773.roa (raw, json) Hash identifier: rmQmGHW+PcZ7eabQimG8Wo2e37zYIDwJm/8G4jj1kT0= Subject key identifier: 78:19:B1:6A:B7:96:9C:9D:DA:FB:A5:58:8C:F9:88:A9:2C:C5:24:70 Certificate issuer: /CN=A91C7EF2/serialNumber=9B9D39725B27D420281385163492FF75F15113DA Certificate serial: AE Authority key identifier: 9B:9D:39:72:5B:27:D4:20:28:13:85:16:34:92:FF:75:F1:51:13:DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/m505clsn1CAoE4UWNJL_dfFRE9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/14201780319711F18CC67F1EAC833773.roa Signing time: Mon 06 Apr 2026 09:00:37 +0000 ROA not before: Mon 06 Apr 2026 09:00:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 147314 IP address blocks: 165.101.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/m505clsn1CAoE4UWNJL_dfFRE9o.crl rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/m505clsn1CAoE4UWNJL_dfFRE9o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/m505clsn1CAoE4UWNJL_dfFRE9o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7EF2, serialNumber=9B9D39725B27D420281385163492FF75F15113DA Validity Not Before: Apr 6 09:00:37 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69d37635-7a75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4f:49:0d:b1:1e:47:24:bb:9e:43:ca:85:c4: 0f:a2:32:2d:28:c0:22:e1:2c:a8:b1:1f:1e:42:6d: a6:2f:43:de:47:a8:e5:e9:2d:d8:00:61:e8:1e:ab: 33:5c:50:57:ec:90:9d:8e:7d:e9:dd:84:44:d9:91: 5a:e9:a8:3c:b1:f7:9a:2f:24:d7:9a:08:7e:5c:fd: 6d:97:95:a9:00:72:7d:39:7f:58:36:61:59:51:50: ec:2a:d8:23:15:7d:a9:e7:7b:8a:d8:8a:c9:55:54: 41:34:5a:a4:d7:d8:91:8e:29:4f:77:fc:38:33:39: 20:25:4c:25:ae:66:a7:83:0d:38:9c:0c:83:f9:3f: d6:05:ff:83:46:61:7b:8e:ae:08:f6:b9:fa:53:75: 63:c6:36:09:c3:52:e2:af:1b:ce:2d:56:74:9c:6a: 78:6a:d0:fc:e3:3c:77:55:df:72:44:1c:2f:ea:8e: 0f:e7:0b:8f:c3:ea:f8:bb:ac:b9:4e:7a:fe:a1:16: 7d:b2:ec:1e:86:9f:d6:9e:80:ed:c2:d8:ef:0c:73: ff:aa:ea:4b:fc:b2:6f:33:41:5c:a6:d0:2d:01:34: 20:5f:4b:29:3e:28:94:75:c0:67:13:15:6d:cf:d8: 40:07:5a:e7:66:ba:82:71:51:af:50:10:ab:fd:62: 09:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:19:B1:6A:B7:96:9C:9D:DA:FB:A5:58:8C:F9:88:A9:2C:C5:24:70 X509v3 Authority Key Identifier: keyid:9B:9D:39:72:5B:27:D4:20:28:13:85:16:34:92:FF:75:F1:51:13:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/m505clsn1CAoE4UWNJL_dfFRE9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/m505clsn1CAoE4UWNJL_dfFRE9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/14201780319711F18CC67F1EAC833773.roa sbgp-ipAddrBlock: critical IPv4: 165.101.223.0/24 Signature Algorithm: sha256WithRSAEncryption aa:6f:fb:ec:a9:d7:5e:28:98:f0:87:93:0f:cd:39:33:8d:b9: 4f:20:d1:6d:42:b3:ac:25:3a:16:fc:1d:2d:b8:d6:c6:fb:92: 5a:2a:8f:e4:b2:7d:c8:d8:b5:dd:59:39:be:2a:06:e4:4a:7c: f1:9f:91:bf:a2:5a:59:11:82:b7:11:d8:ed:5b:7b:2b:10:0c: c7:96:99:24:ec:9d:63:58:37:97:95:65:83:bc:d7:ee:02:e0: e0:f6:9f:29:c6:92:fd:d8:0f:6f:18:1e:4c:c7:77:a7:6d:b2: 30:5e:cf:88:d5:b8:96:22:d6:ec:8d:43:bf:42:13:d8:a6:2a: ed:9f:c9:aa:f1:30:17:a0:8a:57:ae:33:e6:b2:18:aa:cd:70: 1f:19:70:c4:fe:d2:fe:25:09:af:bc:76:9b:65:cb:3a:a8:7a: f0:57:c5:23:a9:c4:4e:a2:b0:89:c9:f0:49:06:70:0e:c0:4a: 4a:b9:ee:fe:03:00:b2:e9:d4:94:53:f8:98:ac:c9:73:2e:4f: 3d:79:b1:16:dc:e0:6f:87:22:a9:f5:73:b8:f1:71:20:32:9e: b4:95:a3:96:90:f2:22:a2:f8:69:37:cf:34:30:20:a9:29:c7: c6:fb:9c:39:76:93:4f:e8:77:e0:4b:ac:3f:7c:ad:df:3d:4c: 5f:8b:1e:29 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdFRjIxMTAvBgNVBAUTKDlCOUQzOTcyNUIyN0Q0MjAyODEzODUxNjM0OTJGRjc1 RjE1MTEzREEwHhcNMjYwNDA2MDkwMDM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQzNzYzNS03YTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvk9JDbEeRyS7nkPKhcQPojItKMAi4SyosR8eQm2mL0PeR6jl6S3YAGHoHqsz XFBX7JCdjn3p3YRE2ZFa6ag8sfeaLyTXmgh+XP1tl5WpAHJ9OX9YNmFZUVDsKtgj FX2p53uK2IrJVVRBNFqk19iRjilPd/w4MzkgJUwlrmangw04nAyD+T/WBf+DRmF7 jq4I9rn6U3VjxjYJw1LirxvOLVZ0nGp4atD84zx3Vd9yRBwv6o4P5wuPw+r4u6y5 Tnr+oRZ9suwehp/WnoDtwtjvDHP/qupL/LJvM0FcptAtATQgX0spPiiUdcBnExVt z9hAB1rnZrqCcVGvUBCr/WIJKwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHgZsWq3 lpyd2vulWIz5iKksxSRwMB8GA1UdIwQYMBaAFJudOXJbJ9QgKBOFFjSS/3XxURPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0VGMi82MjI2QzkzNjYz ODExMUYwQTMzRDIzNjRDNEY5QUUwMi9tNTA1Y2xzbjFDQW9FNFVXTkpMX2RmRlJF OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL201MDVjbHNuMUNBb0U0VVdOSkxfZGZGUkU5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzdFRjIvNjIyNkM5MzY2MzgxMTFGMEEzM0QyMzY0QzRGOUFFMDIvMTQyMDE3ODAz MTk3MTFGMThDQzY3RjFFQUM4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQApWXfMA0GCSqGSIb3DQEBCwUAA4IBAQCqb/vsqddeKJjwh5MPzTkz jblPINFtQrOsJToW/B0tuNbG+5JaKo/ksn3I2LXdWTm+KgbkSnzxn5G/olpZEYK3 EdjtW3srEAzHlpkk7J1jWDeXlWWDvNfuAuDg9p8pxpL92A9vGB5Mx3enbbIwXs+I 1biWItbsjUO/QhPYpirtn8mq8TAXoIpXrjPmshiqzXAfGXDE/tL+JQmvvHabZcs6 qHrwV8UjqcROorCJyfBJBnAOwEpKue7+AwCy6dSUU/iYrMlzLk89ebEW3OBvhyKp 9XO48XEgMp60laOWkPIiovhpN880MCCpKcfG+5w5dpNP6HfgS6w/fK3fPUxfix4p -----END CERTIFICATE-----Generated at Mon Apr 6 15:08:26 2026 by rpki-client