$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/C45CF470520711F1A16AA95CA0833773.roa File: C45CF470520711F1A16AA95CA0833773.roa (raw, json) Hash identifier: qdFoJbJ8TOgCfnHbBMSQzEvTn3hFb8Cr3CpnOL28tCM= Subject key identifier: 46:47:C6:77:26:F5:F9:88:DD:CC:74:F8:92:9D:AB:0B:7C:CC:4A:79 Certificate issuer: /CN=A91D8157/serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Certificate serial: 43 Authority key identifier: 91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/C45CF470520711F1A16AA95CA0833773.roa Signing time: Sun 17 May 2026 15:47:54 +0000 ROA not before: Sun 17 May 2026 15:47:54 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 138197 IP address blocks: 151.158.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 09:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8157, serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Validity Not Before: May 17 15:47:54 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=6a09e32a-b9a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:39:0f:e6:0f:fd:1c:80:7d:f5:51:95:cf:b5: 4a:82:ad:73:05:3a:8c:1d:9e:76:fd:73:6a:d6:d2: 8a:34:3b:6d:05:da:4d:97:6e:4d:fe:fa:d8:f6:c0: 2b:26:eb:21:13:54:61:6d:bd:43:0e:8a:97:9e:70: fb:1f:8d:cd:d2:d6:46:7d:e7:90:2b:48:7a:24:3c: 2f:51:80:c5:ff:03:c5:5b:f4:6b:69:c7:88:4e:75: 9a:c8:f0:6d:47:b6:b1:bd:3d:74:ca:37:88:d5:7e: 4f:60:a0:28:08:b0:46:e8:8c:83:96:01:cb:8c:39: ae:5f:9b:ef:51:d9:8a:af:8d:42:bd:bf:f4:b6:d8: ea:55:7c:fb:73:3f:03:b1:1a:09:00:2b:fa:43:82: 53:cc:d3:45:db:78:1f:5e:7d:0a:49:4c:c1:b1:e0: 71:34:5a:5b:6d:df:5c:73:39:08:b1:37:b4:04:84: 8d:5d:f2:44:8e:1c:a0:fd:6c:ef:12:91:55:3f:6a: 5d:e2:c3:0e:90:cb:62:5b:84:96:ca:ef:ef:a9:e2: a6:30:f8:db:5f:a8:df:0d:8d:8c:52:bf:82:0d:f1: 60:09:a9:8f:39:55:93:30:cf:4d:56:90:fa:b9:c0: 31:e1:97:46:b0:96:29:cc:b0:c9:8f:01:66:6f:87: 57:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:47:C6:77:26:F5:F9:88:DD:CC:74:F8:92:9D:AB:0B:7C:CC:4A:79 X509v3 Authority Key Identifier: keyid:91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/C45CF470520711F1A16AA95CA0833773.roa sbgp-ipAddrBlock: critical IPv4: 151.158.217.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:6e:45:e4:1f:55:ae:71:30:7b:46:b0:9e:55:36:b3:6f:67: 94:cf:31:cd:88:dd:59:88:20:93:fc:89:51:ee:71:15:c9:1d: d8:52:44:6b:d0:97:5a:ad:62:d7:37:fe:74:2c:2f:70:f4:66: 3b:78:47:75:71:fa:e8:01:75:58:1c:af:a4:31:10:69:0b:75: c1:22:5e:79:a9:1a:f3:cb:59:93:92:9b:2b:39:e3:ac:69:b9: 2e:71:73:5e:19:a3:3b:18:6b:7b:94:7d:36:c7:70:f2:32:24: 0a:0f:87:62:b0:bd:d6:bb:86:18:75:d6:c1:7d:04:39:84:3e: 91:ae:d7:76:68:1e:6b:b6:c3:8e:fa:dc:df:7f:0f:d5:77:4f: c7:37:2a:dd:9b:ea:68:4f:a9:03:e7:85:3a:6d:ff:f1:d5:c3: bf:b2:7f:e0:28:cc:c3:a9:29:71:3e:92:f7:6b:6e:00:64:68: 29:e6:bd:df:d7:21:22:4c:b5:41:67:64:2a:34:2f:fb:68:16: 24:e9:8e:65:27:45:62:48:12:33:a7:b2:a2:d1:41:92:c9:25: ff:a1:fd:86:ab:b6:96:16:5c:8b:17:23:63:9e:f0:ea:87:f6: d4:1b:24:90:82:ce:1d:fa:1e:04:5c:72:bc:e8:87:df:61:70: 56:a8:68:16 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODE1NzExMC8GA1UEBRMoOTFEQTNBMTc2MzdDRDI5MkNFQTQ2NzBERDEzQTcyRDg2 RUFBMkQ5MTAeFw0yNjA1MTcxNTQ3NTRaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMDllMzJhLWI5YTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7OQ/mD/0cgH31UZXPtUqCrXMFOowdnnb9c2rW0oo0O20F2k2Xbk3++tj2wCsm 6yETVGFtvUMOipeecPsfjc3S1kZ955ArSHokPC9RgMX/A8Vb9Gtpx4hOdZrI8G1H trG9PXTKN4jVfk9goCgIsEbojIOWAcuMOa5fm+9R2YqvjUK9v/S22OpVfPtzPwOx GgkAK/pDglPM00XbeB9efQpJTMGx4HE0Wltt31xzOQixN7QEhI1d8kSOHKD9bO8S kVU/al3iww6Qy2JbhJbK7++p4qYw+NtfqN8NjYxSv4IN8WAJqY85VZMwz01WkPq5 wDHhl0awlinMsMmPAWZvh1dHAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQURkfGdyb1 +YjdzHT4kp2rC3zMSnkwHwYDVR0jBBgwFoAUkdo6F2N80pLOpGcN0Tpy2G6qLZEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MTU3LzI1MDgzOEFFMTE0 MjExRjE5RDM3NjI4RjIxM0Q4QzY3L2tkbzZGMk44MHBMT3BHY04wVHB5Mkc2cUxa RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIva2RvNkYyTjgwcExPcEdjTjBUcHkyRzZxTFpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODE1Ny8yNTA4MzhBRTExNDIxMUYxOUQzNzYyOEYyMTNEOEM2Ny9DNDVDRjQ3MDUy MDcxMUYxQTE2QUE5NUNBMDgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACXntkwDQYJKoZIhvcNAQELBQADggEBACtuReQfVa5xMHtGsJ5VNrNv Z5TPMc2I3VmIIJP8iVHucRXJHdhSRGvQl1qtYtc3/nQsL3D0Zjt4R3Vx+ugBdVgc r6QxEGkLdcEiXnmpGvPLWZOSmys546xpuS5xc14ZozsYa3uUfTbHcPIyJAoPh2Kw vda7hhh11sF9BDmEPpGu13ZoHmu2w4763N9/D9V3T8c3Kt2b6mhPqQPnhTpt//HV w7+yf+AozMOpKXE+kvdrbgBkaCnmvd/XISJMtUFnZCo0L/toFiTpjmUnRWJIEjOn sqLRQZLJJf+h/YartpYWXIsXI2Oe8OqH9tQbJJCCzh36HgRccrzoh99hcFaoaBY= -----END CERTIFICATE-----Generated at Sat Jun 6 12:06:07 2026 by rpki-client