$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/2CA802E618AF11F1B70F0562083D8C67.roa File: 2CA802E618AF11F1B70F0562083D8C67.roa (raw, json) Hash identifier: lFQ6yoWTM2pz67ni9h5bMdscyEIZBnFD06g9IzSasf8= Subject key identifier: 88:9C:1F:50:7A:10:A7:68:AF:E9:3F:2B:9C:8D:B2:72:5C:BF:35:7B Certificate issuer: /CN=A91D8157/serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Certificate serial: 10 Authority key identifier: 91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/2CA802E618AF11F1B70F0562083D8C67.roa Signing time: Thu 05 Mar 2026 16:20:07 +0000 ROA not before: Thu 05 Mar 2026 16:20:07 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 138197 IP address blocks: 151.158.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 02:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8157, serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Validity Not Before: Mar 5 16:20:07 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a9ad37-b4d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:45:ff:15:ae:b6:42:08:27:7a:ae:44:75:2c: d9:18:5f:7d:8c:b9:9f:1f:24:38:6c:ad:7e:ec:a5: be:39:79:bb:a4:23:dc:ad:89:cb:d3:80:86:03:88: 4a:f3:b3:5f:4e:2c:f0:f8:7e:c4:b9:40:4a:d1:b3: f3:4b:38:b8:d3:b0:72:85:fd:03:ae:d0:30:95:ff: 39:6b:1f:6d:d6:09:29:fb:67:74:43:21:ae:b3:9e: c3:c0:9e:59:72:bf:f8:49:cd:4e:e6:72:9e:0f:67: 1c:03:25:87:05:3c:cf:f8:70:15:87:4e:a8:07:b9: c7:37:bd:06:5b:d6:62:e0:bd:e3:90:7e:bc:b1:32: 78:95:b9:df:64:cf:c3:f0:2d:12:9f:ec:42:4a:9c: d6:47:ac:c6:1b:f9:99:f3:a5:ef:4b:e1:99:01:de: c7:be:f3:04:9d:3a:88:8c:c7:68:a3:d4:e3:2b:1a: 43:09:3d:ca:90:0e:57:3d:10:7d:d8:b4:a2:4e:11: da:80:32:c8:c9:43:58:b0:e3:1c:d8:64:88:da:b3: 4c:df:0e:9e:e0:f0:b1:78:ce:15:91:ff:66:10:51: 5c:67:84:df:e1:5e:c9:4f:83:56:2f:b7:d2:0f:86: bf:1a:4b:94:fc:b2:dd:c8:0f:ee:dd:7c:5d:ba:85: da:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:9C:1F:50:7A:10:A7:68:AF:E9:3F:2B:9C:8D:B2:72:5C:BF:35:7B X509v3 Authority Key Identifier: keyid:91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/2CA802E618AF11F1B70F0562083D8C67.roa sbgp-ipAddrBlock: critical IPv4: 151.158.216.0/23 Signature Algorithm: sha256WithRSAEncryption 00:f0:d9:3c:9d:a7:d6:56:79:84:c6:db:6a:37:74:e4:98:25: b7:76:dd:63:70:ab:f7:05:22:68:28:fc:9a:fa:6b:d0:ae:de: 69:5f:dd:92:16:c4:e5:73:54:78:d8:60:31:c3:77:be:3c:e7: d9:27:72:7a:af:e9:9e:28:09:25:70:aa:89:87:75:a6:41:87: bc:e7:0c:3f:35:ad:4c:51:69:f3:d8:c0:e8:bd:b5:8b:f2:1d: 19:47:2f:25:bd:57:76:f1:fb:4b:43:45:91:b9:6d:23:72:ed: e5:ba:6a:67:7e:f7:5d:e2:a8:ba:ce:fb:3e:24:00:d0:a9:45: d2:e7:ea:4d:cd:43:22:ad:17:14:04:20:2e:cf:75:c1:e8:fa: 40:7e:ae:61:95:2d:87:7c:c2:71:9f:93:31:4c:3a:32:34:a2: 9f:18:ed:c0:8f:6f:35:9b:48:a1:6a:d1:e8:cc:ff:13:39:ad: 47:10:65:2c:3a:53:ef:a1:43:42:f2:a3:c9:f2:12:e8:25:77: 79:1d:95:fb:df:e4:70:6a:cb:38:fe:fb:6d:e7:21:51:27:1f: 29:37:ce:6b:dc:a1:0f:9c:b0:d7:d7:68:60:68:0e:83:43:e1: a9:53:99:cb:a9:0b:f6:01:b1:35:44:c6:63:46:96:26:41:28: 74:8b:36:27 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODE1NzExMC8GA1UEBRMoOTFEQTNBMTc2MzdDRDI5MkNFQTQ2NzBERDEzQTcyRDg2 RUFBMkQ5MTAeFw0yNjAzMDUxNjIwMDdaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTlhZDM3LWI0ZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXRf8VrrZCCCd6rkR1LNkYX32MuZ8fJDhsrX7spb45ebukI9yticvTgIYDiErz s19OLPD4fsS5QErRs/NLOLjTsHKF/QOu0DCV/zlrH23WCSn7Z3RDIa6znsPAnlly v/hJzU7mcp4PZxwDJYcFPM/4cBWHTqgHucc3vQZb1mLgveOQfryxMniVud9kz8Pw LRKf7EJKnNZHrMYb+Znzpe9L4ZkB3se+8wSdOoiMx2ij1OMrGkMJPcqQDlc9EH3Y tKJOEdqAMsjJQ1iw4xzYZIjas0zfDp7g8LF4zhWR/2YQUVxnhN/hXslPg1Yvt9IP hr8aS5T8st3ID+7dfF26hdoxAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUiJwfUHoQ p2iv6T8rnI2ycly/NXswHwYDVR0jBBgwFoAUkdo6F2N80pLOpGcN0Tpy2G6qLZEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MTU3LzI1MDgzOEFFMTE0 MjExRjE5RDM3NjI4RjIxM0Q4QzY3L2tkbzZGMk44MHBMT3BHY04wVHB5Mkc2cUxa RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIva2RvNkYyTjgwcExPcEdjTjBUcHkyRzZxTFpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODE1Ny8yNTA4MzhBRTExNDIxMUYxOUQzNzYyOEYyMTNEOEM2Ny8yQ0E4MDJFNjE4 QUYxMUYxQjcwRjA1NjIwODNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGXntgwDQYJKoZIhvcNAQELBQADggEBAADw2Tydp9ZWeYTG22o3dOSY Jbd23WNwq/cFImgo/Jr6a9Cu3mlf3ZIWxOVzVHjYYDHDd74859kncnqv6Z4oCSVw qomHdaZBh7znDD81rUxRafPYwOi9tYvyHRlHLyW9V3bx+0tDRZG5bSNy7eW6amd+ 913iqLrO+z4kANCpRdLn6k3NQyKtFxQEIC7PdcHo+kB+rmGVLYd8wnGfkzFMOjI0 op8Y7cCPbzWbSKFq0ejM/xM5rUcQZSw6U++hQ0Lyo8nyEugld3kdlfvf5HBqyzj+ +23nIVEnHyk3zmvcoQ+csNfXaGBoDoND4alTmcupC/YBsTVExmNGliZBKHSLNic= -----END CERTIFICATE-----Generated at Sat Mar 7 16:08:19 2026 by rpki-client