$ rpki-client -vvf rpki.apnic.net/member_repository/A916B30C/915CBA26B05E11EE97C78B75C4F9AE02/590DDF2EE64E11F085BE5D6A396F56BC.roa File: 590DDF2EE64E11F085BE5D6A396F56BC.roa (raw, json) Hash identifier: qSu9m0yL32Z5g5QuOGqXr9RA0It4qG1c8qPpPNVwDLM= Subject key identifier: 59:15:69:28:57:A5:8B:A6:08:01:7C:E0:12:3B:3A:AA:1A:97:DA:06 Certificate issuer: /CN=A916B30C/serialNumber=BF08E8E0B2A676DCAEC49D519BFEC76546C2167E Certificate serial: 01AA Authority key identifier: BF:08:E8:E0:B2:A6:76:DC:AE:C4:9D:51:9B:FE:C7:65:46:C2:16:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vwjo4LKmdtyuxJ1Rm_7HZUbCFn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B30C/915CBA26B05E11EE97C78B75C4F9AE02/590DDF2EE64E11F085BE5D6A396F56BC.roa Signing time: Mon 23 Mar 2026 03:39:01 +0000 ROA not before: Mon 23 Mar 2026 03:39:01 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 154305 IP address blocks: 157.10.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B30C/915CBA26B05E11EE97C78B75C4F9AE02/vwjo4LKmdtyuxJ1Rm_7HZUbCFn4.crl rsync://rpki.apnic.net/member_repository/A916B30C/915CBA26B05E11EE97C78B75C4F9AE02/vwjo4LKmdtyuxJ1Rm_7HZUbCFn4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vwjo4LKmdtyuxJ1Rm_7HZUbCFn4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B30C, serialNumber=BF08E8E0B2A676DCAEC49D519BFEC76546C2167E Validity Not Before: Mar 23 03:39:01 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69c0b5d5-4ec2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:21:42:dd:b1:62:ef:6e:e7:5d:dc:21:d8:ec: e6:f0:65:3e:8d:35:ee:02:19:a9:51:ff:0c:ca:71: 70:ed:14:64:89:5b:ac:09:b0:d5:a5:fb:48:99:e5: 03:7b:2c:9f:8d:1e:fd:45:03:7a:f0:40:ef:3f:e7: 88:70:27:0f:df:d1:64:b1:1f:97:55:cd:e2:ac:6a: b3:09:50:af:54:5b:d6:9b:f6:b9:93:dd:d4:da:8f: 21:53:6d:88:d2:7c:61:7c:95:d1:d9:8a:0b:0e:0a: 7c:f1:10:e8:19:0b:c6:ce:a1:1e:ad:f1:4e:90:66: ad:92:63:b8:b4:49:da:e6:58:33:01:90:16:de:54: 9e:82:cb:00:96:fa:d3:94:98:61:f5:8a:9d:b2:e6: cd:c4:bf:b6:e9:7d:2c:17:c4:84:b6:3c:c2:b7:ea: d0:b1:87:65:0b:10:23:45:30:85:03:5e:5c:a1:c7: 80:33:59:c5:51:d6:20:f5:a9:b4:0c:5e:07:6a:35: 42:ef:40:8c:1b:7c:e6:52:e2:95:be:5e:70:c0:0f: 94:d1:53:e3:9c:f6:3f:ec:a4:52:e9:27:f0:9e:29: 3e:c3:46:97:6c:c5:68:af:41:8f:4f:8a:2f:3f:3d: d4:f5:c8:0e:f4:58:27:c1:e2:e5:e3:bc:b5:37:67: 2b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:15:69:28:57:A5:8B:A6:08:01:7C:E0:12:3B:3A:AA:1A:97:DA:06 X509v3 Authority Key Identifier: keyid:BF:08:E8:E0:B2:A6:76:DC:AE:C4:9D:51:9B:FE:C7:65:46:C2:16:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B30C/915CBA26B05E11EE97C78B75C4F9AE02/vwjo4LKmdtyuxJ1Rm_7HZUbCFn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vwjo4LKmdtyuxJ1Rm_7HZUbCFn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B30C/915CBA26B05E11EE97C78B75C4F9AE02/590DDF2EE64E11F085BE5D6A396F56BC.roa sbgp-ipAddrBlock: critical IPv4: 157.10.167.0/24 Signature Algorithm: sha256WithRSAEncryption b8:c3:01:aa:77:c9:d4:c0:09:06:a1:65:51:6e:a8:54:60:a4: 34:aa:72:17:f4:da:d8:d9:fa:5f:58:ba:b3:de:95:b6:ea:a3: 86:42:22:6c:5c:28:f2:d8:c5:51:c6:2f:30:65:51:2b:83:e2: 08:77:9d:1e:27:35:48:75:3c:bd:a8:66:aa:a3:3d:4c:8b:c3: 2e:65:b7:23:b4:da:9d:f2:f1:52:34:4a:6d:88:c6:16:41:22: 46:bc:5f:99:fe:02:29:52:a9:c9:68:96:05:0e:fa:df:b9:20: 8e:40:19:fd:10:37:97:9d:13:48:fd:20:5e:e5:55:e2:dd:91: f6:f8:a4:c6:05:01:99:2b:18:d2:fe:5c:72:c6:45:25:96:1d: 28:eb:dd:a3:63:aa:43:3f:2f:ff:ea:17:48:a1:cf:c3:fb:7b: a2:43:5e:bd:cc:78:c6:c6:f7:23:fe:17:99:34:a0:65:e9:79: df:d3:5e:29:64:dd:a8:34:22:47:8d:eb:29:66:7e:d6:71:26: c4:93:49:a4:e9:a5:f6:ae:f4:f4:6c:ba:6c:26:c4:7a:5e:d7: b9:3f:05:65:d6:f5:af:df:eb:8c:c6:90:92:37:dd:e6:fe:94: 34:ee:e0:da:d4:f1:c9:5d:28:f1:8f:56:22:59:6d:0f:5d:0d: 04:80:e0:a8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIzMEMxMTAvBgNVBAUTKEJGMDhFOEUwQjJBNjc2RENBRUM0OUQ1MTlCRkVDNzY1 NDZDMjE2N0UwHhcNMjYwMzIzMDMzOTAxWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWMwYjVkNS00ZWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyFC3bFi727nXdwh2Ozm8GU+jTXuAhmpUf8MynFw7RRkiVusCbDVpftImeUD eyyfjR79RQN68EDvP+eIcCcP39FksR+XVc3irGqzCVCvVFvWm/a5k93U2o8hU22I 0nxhfJXR2YoLDgp88RDoGQvGzqEerfFOkGatkmO4tEna5lgzAZAW3lSegssAlvrT lJhh9YqdsubNxL+26X0sF8SEtjzCt+rQsYdlCxAjRTCFA15coceAM1nFUdYg9am0 DF4HajVC70CMG3zmUuKVvl5wwA+U0VPjnPY/7KRS6Sfwnik+w0aXbMVor0GPT4ov Pz3U9cgO9FgnweLl47y1N2crPwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFkVaShX pYumCAF84BI7Oqoal9oGMB8GA1UdIwQYMBaAFL8I6OCypnbcrsSdUZv+x2VGwhZ+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjMwQy85MTVDQkEyNkIw NUUxMUVFOTdDNzhCNzVDNEY5QUUwMi92d2pvNExLbWR0eXV4SjFSbV83SFpVYkNG bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Z3am80TEttZHR5dXhKMVJtXzdIWlViQ0ZuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIzMEMvOTE1Q0JBMjZCMDVFMTFFRTk3Qzc4Qjc1QzRGOUFFMDIvNTkwRERGMkVF NjRFMTFGMDg1QkU1RDZBMzk2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAnQqnMA0GCSqGSIb3DQEBCwUAA4IBAQC4wwGqd8nUwAkGoWVRbqhU YKQ0qnIX9NrY2fpfWLqz3pW26qOGQiJsXCjy2MVRxi8wZVErg+IId50eJzVIdTy9 qGaqoz1Mi8MuZbcjtNqd8vFSNEptiMYWQSJGvF+Z/gIpUqnJaJYFDvrfuSCOQBn9 EDeXnRNI/SBe5VXi3ZH2+KTGBQGZKxjS/lxyxkUllh0o692jY6pDPy//6hdIoc/D +3uiQ169zHjGxvcj/heZNKBl6Xnf014pZN2oNCJHjespZn7WcSbEk0mk6aX2rvT0 bLpsJsR6Xte5PwVl1vWv3+uMxpCSN93m/pQ07uDa1PHJXSjxj1YiWW0PXQ0EgOCo -----END CERTIFICATE-----Generated at Thu Mar 26 16:04:01 2026 by rpki-client