$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B9FD184CC84211F0BF44E068C4F9AE02.roa File: B9FD184CC84211F0BF44E068C4F9AE02.roa (raw, json) Hash identifier: CmD1Hjq4sfRE9Mv41rm1funIPuK1g5FmHQfKUDMPpY0= Subject key identifier: 47:F0:F6:C5:D0:63:A0:24:5E:9C:AB:5B:EF:CC:F3:99:1B:B0:36:F5 Certificate issuer: /CN=A91CCDAE/serialNumber=2DBFC7B28615B1FF78D7CF46886AF92139FF968A Certificate serial: 3F Authority key identifier: 2D:BF:C7:B2:86:15:B1:FF:78:D7:CF:46:88:6A:F9:21:39:FF:96:8A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B9FD184CC84211F0BF44E068C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:59:27 +0000 ROA not before: Sun 23 Nov 2025 08:02:16 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 40779 IP address blocks: 82.158.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.crl rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 08:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCDAE, serialNumber=2DBFC7B28615B1FF78D7CF46886AF92139FF968A Validity Not Before: Nov 23 08:02:16 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a589af-495f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2d:5a:cc:75:5a:a7:70:51:67:d0:46:86:98: de:12:9a:dd:5a:db:dc:21:e3:30:6e:20:8b:04:73: 64:41:94:8b:f9:b1:f0:f8:cd:d0:be:48:53:2a:df: 69:1d:6c:db:8d:9a:e4:d6:12:0d:6b:9e:29:62:40: 20:3e:f6:df:f3:09:92:17:a6:b2:28:b2:94:9d:72: 16:4a:a1:61:f4:af:20:71:82:3a:93:be:7a:c3:f1: e9:11:bd:eb:d9:81:72:c7:de:a0:b4:b9:b9:16:0a: 18:14:ff:3e:1d:c5:6e:73:2b:0a:5c:00:5f:31:61: 5b:db:66:52:81:c8:56:b8:33:78:93:ab:2d:d2:23: 0a:31:05:40:dd:eb:e4:de:47:be:c2:44:c4:af:c3: ed:00:7e:52:d3:07:b5:72:c5:ad:69:bb:ec:88:32: 54:6f:34:4c:41:f6:5b:fa:d7:09:d3:e2:01:67:82: 3e:e2:9c:77:82:61:b7:21:ec:0f:15:a1:5a:4f:65: 16:de:e1:87:42:fe:ea:b0:e2:03:09:ab:4e:f9:a5: 16:d8:46:70:1d:b5:e9:13:b1:e5:73:97:f4:51:ef: 6d:73:2b:c3:6c:96:d1:64:03:b2:e7:6c:33:15:4f: 2e:83:21:af:34:5c:e7:65:17:c5:a5:11:ef:e9:7c: ee:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F0:F6:C5:D0:63:A0:24:5E:9C:AB:5B:EF:CC:F3:99:1B:B0:36:F5 X509v3 Authority Key Identifier: keyid:2D:BF:C7:B2:86:15:B1:FF:78:D7:CF:46:88:6A:F9:21:39:FF:96:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B9FD184CC84211F0BF44E068C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 82.158.224.0/21 Signature Algorithm: sha256WithRSAEncryption 7e:0d:41:9d:71:3e:2e:3e:79:0a:12:76:b4:6d:5a:c7:65:3c: 60:e9:2b:35:08:07:07:ba:54:30:03:0e:0c:fb:c0:ff:2e:c1: fd:11:e2:da:af:dc:23:d4:8f:12:38:c1:8a:3b:5e:c8:55:ff: 3b:64:11:92:bb:7f:81:4a:6e:43:24:47:c9:96:86:a0:f6:8e: 78:08:ff:e7:f1:d8:19:7d:0b:4f:a5:02:61:3a:1f:23:c6:1f: 3b:77:5f:f9:37:3f:dd:50:f5:35:19:f2:8e:4c:e5:53:9c:c7: 50:cf:1b:31:cc:3c:84:a9:d6:76:ae:cd:b2:d9:ea:c1:cb:97: 28:c3:6f:e8:c0:ea:03:20:96:68:01:a9:91:ee:50:e9:cd:c7: 0f:83:a3:f5:64:eb:4f:c9:f2:0d:d9:93:95:8e:36:84:c0:68: 30:72:30:f6:72:d6:db:9a:e2:57:71:e4:da:d3:7b:82:8f:93: b6:f0:a7:8b:aa:05:10:ed:5a:74:b7:b2:eb:71:f7:d6:0a:7c: 9b:b0:70:88:19:01:65:39:61:1c:b2:dd:b1:a1:4d:62:fc:9f: 31:b6:36:52:42:bd:3d:7a:af:c3:fb:46:6b:66:46:33:df:35: 9c:69:3c:5d:95:da:b2:35:a2:dc:4a:99:31:a8:f6:78:fa:9a: 5a:ee:bf:aa -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0RBRTExMC8GA1UEBRMoMkRCRkM3QjI4NjE1QjFGRjc4RDdDRjQ2ODg2QUY5MjEz OUZGOTY4QTAeFw0yNTExMjMwODAyMTZaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4OWFmLTQ5NWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCLVrMdVqncFFn0EaGmN4Smt1a29wh4zBuIIsEc2RBlIv5sfD4zdC+SFMq32kd bNuNmuTWEg1rniliQCA+9t/zCZIXprIospSdchZKoWH0ryBxgjqTvnrD8ekRvevZ gXLH3qC0ubkWChgU/z4dxW5zKwpcAF8xYVvbZlKByFa4M3iTqy3SIwoxBUDd6+Te R77CRMSvw+0AflLTB7Vyxa1pu+yIMlRvNExB9lv61wnT4gFngj7inHeCYbch7A8V oVpPZRbe4YdC/uqw4gMJq075pRbYRnAdtekTseVzl/RR721zK8NsltFkA7LnbDMV Ty6DIa80XOdlF8WlEe/pfO5DAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUR/D2xdBj oCRenKtb78zzmRuwNvUwHwYDVR0jBBgwFoAULb/HsoYVsf94189GiGr5ITn/loow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDREFFLzJGQkVBNDAyQzg0 MjExRjBBMzNFOUE3RUM0RjlBRTAyL0xiX0hzb1lWc2Y5NDE4OUdpR3I1SVRuX2xv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvTGJfSHNvWVZzZjk0MTg5R2lHcjVJVG5fbG9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0RBRS8yRkJFQTQwMkM4NDIxMUYwQTMzRTlBN0VDNEY5QUUwMi9COUZEMTg0Q0M4 NDIxMUYwQkY0NEUwNjhDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBANSnuAwDQYJKoZIhvcNAQELBQADggEBAH4NQZ1xPi4+eQoSdrRtWsdl PGDpKzUIBwe6VDADDgz7wP8uwf0R4tqv3CPUjxI4wYo7XshV/ztkEZK7f4FKbkMk R8mWhqD2jngI/+fx2Bl9C0+lAmE6HyPGHzt3X/k3P91Q9TUZ8o5M5VOcx1DPGzHM PISp1nauzbLZ6sHLlyjDb+jA6gMglmgBqZHuUOnNxw+Do/Vk60/J8g3Zk5WONoTA aDByMPZy1tua4ldx5NrTe4KPk7bwp4uqBRDtWnS3sutx99YKfJuwcIgZAWU5YRyy 3bGhTWL8nzG2NlJCvT16r8P7RmtmRjPfNZxpPF2V2rI1otxKmTGo9nj6mlruv6o= -----END CERTIFICATE-----Generated at Wed Mar 4 14:34:56 2026 by rpki-client