$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/D2E2FC0C027411F1BB34E46C2D3D8C67.roa File: D2E2FC0C027411F1BB34E46C2D3D8C67.roa (raw, json) Hash identifier: 3MeSl5Q+l04dslawOPPM43+H6/Pz8lJTdv+OK+PnY2o= Subject key identifier: 7F:9E:E0:DB:54:E1:0C:01:6F:8A:68:40:D0:FF:60:AC:91:D2:4B:54 Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 07FB Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/D2E2FC0C027411F1BB34E46C2D3D8C67.roa Signing time: Sun 01 Mar 2026 21:25:29 +0000 ROA not before: Thu 05 Feb 2026 09:27:00 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9891 IP address blocks: 14.207.141.0/24 maxlen: 24 14.207.142.0/24 maxlen: 24 14.207.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 22:52:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2043 (0x7fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561, serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Feb 5 09:27:00 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4aec9-91a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c1:db:63:39:83:c0:28:c0:63:f9:db:88:83: 6f:ab:51:97:95:9c:06:c2:4f:0e:28:53:8c:5a:cc: 4d:28:4a:91:a7:56:81:17:50:b0:c4:a2:6e:6d:68: 0c:c0:d6:9a:98:3e:ed:b2:e4:11:e9:78:7e:47:52: 2a:cc:b6:3c:13:27:70:28:60:1b:2a:64:3f:d7:42: 39:18:cf:7d:35:b9:b5:e4:62:ee:07:af:c0:8e:a5: b7:59:a9:eb:74:28:99:21:bc:48:ca:fc:64:ca:32: ae:67:18:ff:24:24:1f:8e:91:d3:29:57:bb:89:3b: 61:b1:3d:c4:63:73:67:1d:a8:04:d2:03:84:2e:09: 44:91:3c:4f:04:4f:b9:3b:2f:ea:bb:fd:73:2f:d2: 55:2a:c5:a6:47:f2:79:4f:e3:ee:57:e0:12:2e:59: ea:69:aa:04:31:0b:b7:fa:75:8c:65:60:3e:59:27: 0b:af:aa:a3:fe:07:ed:1f:5f:20:e8:5d:4f:58:e7: af:49:79:3a:f9:4b:00:2c:ed:83:5b:1d:b5:2b:24: 11:ef:fa:7d:81:f1:03:e8:df:a6:7d:ba:8d:70:d7: da:e2:30:cb:f7:6f:f4:9e:11:7a:2c:68:89:62:b9: 4e:1f:c5:ed:41:69:63:66:d6:9d:f2:69:4f:22:e1: 6b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:9E:E0:DB:54:E1:0C:01:6F:8A:68:40:D0:FF:60:AC:91:D2:4B:54 X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/D2E2FC0C027411F1BB34E46C2D3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 14.207.141.0-14.207.143.255 Signature Algorithm: sha256WithRSAEncryption b0:6e:8a:67:23:eb:1e:e9:25:75:5a:94:32:0f:84:67:f4:fc: 7e:e0:b0:01:c4:30:34:ed:d6:52:22:cc:69:04:38:2c:94:a1: 10:e3:e3:db:54:e7:95:04:0e:d3:65:92:da:4d:63:5e:b4:c9: d8:5d:7e:7a:1e:0e:35:68:9c:e4:4a:e4:10:a5:70:1e:9f:7c: 11:9f:d6:81:f5:a7:48:59:c7:00:f2:7b:cd:15:9e:a0:1f:ac: 5a:a3:f2:ba:46:fa:e7:39:8f:f2:5a:1d:5e:27:ba:3d:8f:75: 99:ac:71:02:88:7e:27:05:9f:73:dd:3f:8f:ec:bc:8e:e8:1b: 41:73:35:21:51:c7:0b:21:0f:24:8d:a3:d9:3d:bc:75:1b:54: c2:dc:d6:4b:e3:e2:ff:d8:02:30:42:0f:29:2f:46:44:ad:88: 87:ab:88:28:e6:21:20:13:8b:83:5c:16:12:95:22:15:ee:c2: 7d:9b:09:f6:42:89:c7:94:36:1a:6b:ef:67:54:7c:23:40:f8: f3:f4:cc:49:2d:80:73:89:23:c3:2b:33:91:68:68:d1:90:75: 8c:50:4a:15:5e:55:0c:55:f8:95:d6:ae:05:cc:7e:99:b7:5b: 35:48:7d:6f:c2:02:15:f2:51:01:8e:02:f8:09:2f:2a:aa:52: 89:06:b7:99 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICB/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjYwMjA1MDkyNzAwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWVjOS05MWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsHbYzmDwCjAY/nbiINvq1GXlZwGwk8OKFOMWsxNKEqRp1aBF1CwxKJubWgM wNaamD7tsuQR6Xh+R1IqzLY8EydwKGAbKmQ/10I5GM99Nbm15GLuB6/AjqW3Wanr dCiZIbxIyvxkyjKuZxj/JCQfjpHTKVe7iTthsT3EY3NnHagE0gOELglEkTxPBE+5 Oy/qu/1zL9JVKsWmR/J5T+PuV+ASLlnqaaoEMQu3+nWMZWA+WScLr6qj/gftH18g 6F1PWOevSXk6+UsALO2DWx21KyQR7/p9gfED6N+mfbqNcNfa4jDL92/0nhF6LGiJ YrlOH8XtQWljZtad8mlPIuFrwQIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFH+e4NtU 4QwBb4poQND/YKyR0ktUMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvRDJFMkZDMEMw Mjc0MTFGMUJCMzRFNDZDMkQzRDhDNjcucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAAOz40DBAQOz4AwDQYJKoZIhvcNAQELBQADggEBALBuimcj6x7p JXValDIPhGf0/H7gsAHEMDTt1lIizGkEOCyUoRDj49tU55UEDtNlktpNY160ydhd fnoeDjVonORK5BClcB6ffBGf1oH1p0hZxwDye80VnqAfrFqj8rpG+uc5j/JaHV4n uj2PdZmscQKIficFn3PdP4/svI7oG0FzNSFRxwshDySNo9k9vHUbVMLc1kvj4v/Y AjBCDykvRkStiIeriCjmISATi4NcFhKVIhXuwn2bCfZCiceUNhpr72dUfCNA+PP0 zEktgHOJI8MrM5FoaNGQdYxQShVeVQxV+JXWrgXMfpm3WzVIfW/CAhXyUQGOAvgJ LyqqUokGt5k= -----END CERTIFICATE-----Generated at Sat Mar 7 18:58:18 2026 by rpki-client