$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/75BE67B2F12311F09E054F8D4F6F56BC.roa File: 75BE67B2F12311F09E054F8D4F6F56BC.roa (raw, json) Hash identifier: QeHn1agdKxmdJdH278JH44lkIuCADGys4RpsqprN2FU= Subject key identifier: 9F:8A:7F:CA:C9:C2:39:6E:02:5D:C7:02:22:3E:92:04:16:03:2C:A1 Certificate issuer: /CN=A91D2B9A/serialNumber=499D691B0F732D9006E9513C60B7366B4E690400 Certificate serial: 1F Authority key identifier: 49:9D:69:1B:0F:73:2D:90:06:E9:51:3C:60:B7:36:6B:4E:69:04:00 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SZ1pGw9zLZAG6VE8YLc2a05pBAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/75BE67B2F12311F09E054F8D4F6F56BC.roa Signing time: Mon 02 Mar 2026 11:30:08 +0000 ROA not before: Wed 14 Jan 2026 08:31:45 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 142207 IP address blocks: 151.158.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.crl rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SZ1pGw9zLZAG6VE8YLc2a05pBAA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 08:06:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B9A, serialNumber=499D691B0F732D9006E9513C60B7366B4E690400 Validity Not Before: Jan 14 08:31:45 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a574bf-08bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a2:c6:2a:7e:77:76:3a:9d:a4:45:fb:35:dd: 76:87:ef:7d:c5:11:71:de:c3:bf:2f:ed:21:5b:f7: 81:71:bc:9a:f2:3d:a4:3e:6c:a5:c5:07:42:73:59: ba:a6:66:a2:0d:23:05:a1:5a:b8:6e:24:d8:5f:a1: 52:2d:63:c1:e6:27:d6:98:26:03:f3:5d:80:f5:d5: cd:52:5f:fb:d3:27:50:f9:49:c5:bf:bd:0d:9e:cf: 93:35:c1:71:bc:61:c1:53:44:66:b6:a5:fd:32:16: 87:09:ea:2f:50:67:17:5d:17:63:04:cd:d9:3c:59: e7:60:a0:d4:a6:d8:ef:b5:10:f2:a0:f2:c2:18:bc: 32:20:1a:f0:96:83:65:8f:1c:4a:01:5a:e4:f3:ce: e0:fe:24:c1:f9:43:9e:81:e2:6a:d6:81:c0:f4:0b: 55:3c:25:9c:56:79:7e:5a:aa:66:93:29:d3:cc:97: a8:e1:5f:f2:df:67:b6:7c:9f:1c:ce:4e:05:d0:b1: 3a:5e:4b:b2:a6:e3:80:ac:99:1e:5d:88:85:e7:d6: 50:87:25:c7:e7:ec:21:81:bc:15:59:76:37:fb:91: f4:98:f6:b3:a7:c2:e3:1a:14:43:67:26:cd:08:e1: 5f:a7:cb:c5:82:48:6a:32:7c:d3:8b:e8:0a:25:c6: 43:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:8A:7F:CA:C9:C2:39:6E:02:5D:C7:02:22:3E:92:04:16:03:2C:A1 X509v3 Authority Key Identifier: keyid:49:9D:69:1B:0F:73:2D:90:06:E9:51:3C:60:B7:36:6B:4E:69:04:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SZ1pGw9zLZAG6VE8YLc2a05pBAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/75BE67B2F12311F09E054F8D4F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 151.158.14.0/23 Signature Algorithm: sha256WithRSAEncryption 55:10:27:24:d2:df:2c:67:7f:2b:1d:a9:e1:db:12:45:74:88: 4a:d2:b3:24:e9:6b:d8:5f:2e:b1:de:98:ff:92:2c:2f:50:8b: 92:41:9a:81:29:1b:2f:6e:78:00:a0:84:19:4a:ee:fc:f1:6b: b4:08:07:8f:4a:55:b8:e1:33:37:50:5b:03:bf:69:d4:9d:a7: 02:25:54:d7:dc:76:19:45:fd:e7:1e:53:3f:38:89:c5:c0:e9: f1:73:6c:93:e2:0b:19:3c:a5:60:9c:4f:46:63:d6:c8:82:07: 65:4a:d9:48:97:1e:47:db:56:3e:cf:3a:b3:8d:11:32:c9:5a: fa:38:1c:0d:de:eb:4b:aa:bc:07:06:bf:61:75:56:fa:df:3c: 90:86:5a:f2:6a:62:bd:76:5e:92:c1:7a:e9:9c:7c:c7:04:7b: de:6b:62:4f:1b:d2:36:4b:7b:9b:62:82:52:ac:d8:b6:9c:9e: 5b:c8:21:b3:4c:03:61:85:9a:09:53:08:6b:2a:d4:be:19:5f: 51:7d:a5:7a:d3:78:da:80:d7:46:e4:d5:cf:46:ed:df:80:ca: e6:03:dc:ca:0e:dd:78:bb:58:e5:39:c8:f5:4b:17:51:bd:eb: e6:59:09:18:aa:6d:70:b7:86:6c:26:70:7c:3c:57:0a:da:81: ed:28:e7:93 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkI5QTExMC8GA1UEBRMoNDk5RDY5MUIwRjczMkQ5MDA2RTk1MTNDNjBCNzM2NkI0 RTY5MDQwMDAeFw0yNjAxMTQwODMxNDVaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU3NGJmLTA4YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7osYqfnd2Op2kRfs13XaH733FEXHew78v7SFb94FxvJryPaQ+bKXFB0JzWbqm ZqINIwWhWrhuJNhfoVItY8HmJ9aYJgPzXYD11c1SX/vTJ1D5ScW/vQ2ez5M1wXG8 YcFTRGa2pf0yFocJ6i9QZxddF2MEzdk8WedgoNSm2O+1EPKg8sIYvDIgGvCWg2WP HEoBWuTzzuD+JMH5Q56B4mrWgcD0C1U8JZxWeX5aqmaTKdPMl6jhX/LfZ7Z8nxzO TgXQsTpeS7Km44CsmR5diIXn1lCHJcfn7CGBvBVZdjf7kfSY9rOnwuMaFENnJs0I 4V+ny8WCSGoyfNOL6AolxkPxAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUn4p/ysnC OW4CXccCIj6SBBYDLKEwHwYDVR0jBBgwFoAUSZ1pGw9zLZAG6VE8YLc2a05pBAAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQjlBLzc3OTY5QjhDRjEy MjExRjBBQzVDREE3RTRFNkY1NkJDL1NaMXBHdzl6TFpBRzZWRThZTGMyYTA1cEJB QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvU1oxcEd3OXpMWkFHNlZFOFlMYzJhMDVwQkFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkI5QS83Nzk2OUI4Q0YxMjIxMUYwQUM1Q0RBN0U0RTZGNTZCQy83NUJFNjdCMkYx MjMxMUYwOUUwNTRGOEQ0RjZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGXng4wDQYJKoZIhvcNAQELBQADggEBAFUQJyTS3yxnfysdqeHbEkV0 iErSsyTpa9hfLrHemP+SLC9Qi5JBmoEpGy9ueACghBlK7vzxa7QIB49KVbjhMzdQ WwO/adSdpwIlVNfcdhlF/eceUz84icXA6fFzbJPiCxk8pWCcT0Zj1siCB2VK2UiX HkfbVj7POrONETLJWvo4HA3e60uqvAcGv2F1VvrfPJCGWvJqYr12XpLBeumcfMcE e95rYk8b0jZLe5tiglKs2LacnlvIIbNMA2GFmglTCGsq1L4ZX1F9pXrTeNqA10bk 1c9G7d+AyuYD3MoO3Xi7WOU5yPVLF1G96+ZZCRiqbXC3hmwmcHw8Vwrage0o55M= -----END CERTIFICATE-----Generated at Sat Mar 7 16:13:08 2026 by rpki-client