$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/CF6BED9EC63611EEA0C70259C4F9AE02.roa File: CF6BED9EC63611EEA0C70259C4F9AE02.roa (raw, json) Hash identifier: a3vM/Ppf0GxiRLmbleY13cfOquo7BmGPzlHgh28TyyE= Subject key identifier: 32:90:5C:E2:EE:BF:D0:3E:8E:69:BA:C4:AF:86:0A:3A:17:EB:9A:FD Certificate issuer: /CN=A91E1936/serialNumber=5B5CC40309A07C03DF0B6304FCD840F950BFB041 Certificate serial: 0191 Authority key identifier: 5B:5C:C4:03:09:A0:7C:03:DF:0B:63:04:FC:D8:40:F9:50:BF:B0:41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/CF6BED9EC63611EEA0C70259C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:20:39 +0000 ROA not before: Wed 11 Feb 2026 04:23:32 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 398704 IP address blocks: 157.15.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.crl rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 03:29:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1936, serialNumber=5B5CC40309A07C03DF0B6304FCD840F950BFB041 Validity Not Before: Feb 11 04:23:32 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a45947-64c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:24:14:92:23:e7:95:f5:4b:2f:a7:05:a9:53: 99:44:9b:02:70:8d:85:b7:59:e1:70:13:8c:a7:a2: 4e:4c:93:c1:46:6d:6a:e1:26:e9:02:ee:3c:3c:ad: 99:f2:52:bf:51:f0:2a:26:41:05:94:68:51:68:bf: d0:e9:11:99:bc:9c:98:f9:30:2c:fd:41:c9:12:63: 0a:6d:8c:5b:90:a8:3d:9d:fc:25:09:2e:01:cc:c1: d4:9e:65:10:3f:fa:08:86:3a:31:b7:48:ba:7f:ed: aa:45:17:f9:4f:ee:5c:33:23:ad:fc:47:21:e7:20: 64:53:cb:40:8c:df:f3:6d:63:ac:bd:8e:2e:ba:ee: 1a:e3:9a:63:db:b5:6d:b9:03:d0:cc:49:7a:96:91: 6b:ad:24:88:d0:c5:83:99:99:c7:08:02:88:f9:d3: b6:32:4c:7d:f1:40:2b:d2:52:fe:88:74:34:4d:b7: a3:fa:2a:2d:74:70:b9:71:43:e6:7d:13:fb:b8:59: 4a:60:26:71:7f:e9:b0:69:77:f7:79:65:13:f9:7a: 34:54:2a:bb:74:59:2c:1d:65:e6:c5:01:17:47:9c: 1d:81:00:f7:3d:f0:51:21:7f:e2:8c:de:2d:9f:af: 1e:c4:aa:11:e6:35:e9:68:e2:10:7d:16:ce:b2:0c: 7b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:90:5C:E2:EE:BF:D0:3E:8E:69:BA:C4:AF:86:0A:3A:17:EB:9A:FD X509v3 Authority Key Identifier: keyid:5B:5C:C4:03:09:A0:7C:03:DF:0B:63:04:FC:D8:40:F9:50:BF:B0:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/CF6BED9EC63611EEA0C70259C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.15.28.0/23 Signature Algorithm: sha256WithRSAEncryption 38:48:b6:58:0d:e6:d9:70:17:13:01:3d:ac:e4:5a:1c:cb:49: 2e:23:22:64:b4:72:fb:db:1d:62:aa:38:f1:53:57:45:91:32: 90:e1:b5:f8:be:6b:cb:c2:fc:f9:80:c4:18:b3:56:bd:4c:37: f9:30:61:2a:bf:59:f1:a2:d6:8c:a2:d0:58:35:0e:26:3f:27: 63:81:2f:ba:fe:3e:dc:6b:d9:9a:54:87:20:cc:d2:e8:41:51: c9:31:d8:31:16:48:52:d6:6b:96:62:df:eb:b1:5b:4c:33:7a: 08:d9:5f:64:d5:a5:32:21:c2:0b:53:eb:4e:45:be:48:c7:0e: f6:d6:98:33:6d:3c:22:d3:3d:d6:70:82:20:e6:32:f2:ef:40: 8f:b2:01:34:e1:c5:58:5a:9e:2c:2e:76:49:3e:2d:97:9d:a6: 2c:55:fc:b0:00:18:f8:8f:bc:dc:ed:28:5c:d3:c6:de:54:69: 3a:08:f7:db:80:1d:5a:cd:c0:ab:0a:82:0f:ce:71:f8:f3:8f: b4:ff:5a:cb:ed:64:ce:e3:99:72:d1:ae:df:66:47:25:c0:cf: 7d:85:37:28:58:ac:79:c5:a4:bc:04:e4:d8:a1:b9:b1:81:50: dd:17:59:4b:93:2f:ad:2a:7c:f9:c2:9f:22:98:ab:d6:6a:0d: f5:39:c0:7f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE5MzYxMTAvBgNVBAUTKDVCNUNDNDAzMDlBMDdDMDNERjBCNjMwNEZDRDg0MEY5 NTBCRkIwNDEwHhcNMjYwMjExMDQyMzMyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTk0Ny02NGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCQUkiPnlfVLL6cFqVOZRJsCcI2Ft1nhcBOMp6JOTJPBRm1q4SbpAu48PK2Z 8lK/UfAqJkEFlGhRaL/Q6RGZvJyY+TAs/UHJEmMKbYxbkKg9nfwlCS4BzMHUnmUQ P/oIhjoxt0i6f+2qRRf5T+5cMyOt/Ech5yBkU8tAjN/zbWOsvY4uuu4a45pj27Vt uQPQzEl6lpFrrSSI0MWDmZnHCAKI+dO2Mkx98UAr0lL+iHQ0Tbej+iotdHC5cUPm fRP7uFlKYCZxf+mwaXf3eWUT+Xo0VCq7dFksHWXmxQEXR5wdgQD3PfBRIX/ijN4t n68exKoR5jXpaOIQfRbOsgx7BQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDKQXOLu v9A+jmm6xK+GCjoX65r9MB8GA1UdIwQYMBaAFFtcxAMJoHwD3wtjBPzYQPlQv7BB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTkzNi82RUI5QzAzRUM2 MzYxMUVFQUJDQzA0MEJDNEY5QUUwMi9XMXpFQXdtZ2ZBUGZDMk1FX05oQS1WQ19z RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1cxekVBd21nZkFQZkMyTUVfTmhBLVZDX3NFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE5MzYvNkVCOUMwM0VDNjM2MTFFRUFCQ0MwNDBCQzRGOUFFMDIvQ0Y2QkVEOUVD NjM2MTFFRUEwQzcwMjU5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQ8cMA0GCSqGSIb3DQEBCwUAA4IBAQA4SLZYDebZcBcTAT2s5Foc y0kuIyJktHL72x1iqjjxU1dFkTKQ4bX4vmvLwvz5gMQYs1a9TDf5MGEqv1nxotaM otBYNQ4mPydjgS+6/j7ca9maVIcgzNLoQVHJMdgxFkhS1muWYt/rsVtMM3oI2V9k 1aUyIcILU+tORb5Ixw721pgzbTwi0z3WcIIg5jLy70CPsgE04cVYWp4sLnZJPi2X naYsVfywABj4j7zc7Shc08beVGk6CPfbgB1azcCrCoIPznH484+0/1rL7WTO45ly 0a7fZkclwM99hTcoWKx5xaS8BOTYobmxgVDdF1lLky+tKnz5wp8imKvWag31OcB/ -----END CERTIFICATE-----Generated at Sun Mar 22 07:24:52 2026 by rpki-client