$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/0C708FB4C67E11EE87B34958C4F9AE02.roa File: 0C708FB4C67E11EE87B34958C4F9AE02.roa (raw, json) Hash identifier: k3TfFva0pazkCIRXdBLI4mn/25rKAlL7flbXoW+92L0= Subject key identifier: BA:A6:3A:43:E0:65:5E:9C:06:BB:FE:7D:BF:37:B3:FA:C6:AB:46:9C Certificate issuer: /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Certificate serial: 0189 Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/0C708FB4C67E11EE87B34958C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:13:47 +0000 ROA not before: Wed 25 Feb 2026 03:24:03 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 152456 IP address blocks: 157.15.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:41:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1, serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Validity Not Before: Feb 25 03:24:03 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a5a92b-6dc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1a:60:3b:9e:5e:ff:8e:63:0e:b2:2f:3c:58: ae:ce:1b:d3:52:1f:d0:9e:85:12:dc:df:f8:44:c5: 5d:53:de:8f:54:97:0d:94:2a:8c:4b:25:4d:15:9f: 65:3f:48:25:22:3b:5f:38:ef:7b:f8:21:50:e7:04: fe:91:be:c0:6f:ef:c2:f0:a3:64:1e:b0:bd:f5:53: d1:3a:76:2a:9c:3c:01:ee:86:eb:ca:23:6a:34:58: 10:0d:ae:5c:1e:43:4f:96:7b:5c:28:96:f4:67:f6: ac:eb:45:02:1d:47:63:a4:ef:24:4b:02:cc:33:d7: 3a:2e:9d:74:45:52:0a:16:de:df:71:2b:71:73:ec: ce:24:51:93:8b:35:43:d4:15:60:2a:96:d1:bc:ef: f3:91:06:43:81:fa:87:e5:2f:42:e7:4e:dd:95:a7: 88:3c:97:7d:cc:4d:ba:e4:ed:12:2c:ef:45:ab:2c: 47:ea:aa:c0:c0:d3:fd:58:49:0c:d4:69:ea:a6:b9: cd:5c:7e:e8:04:5d:d6:f8:8c:97:d0:14:59:95:42: 07:0b:2d:1a:a7:58:1a:62:53:da:3c:ab:ac:0e:4d: a3:98:18:7b:01:94:00:b3:4d:f7:98:06:51:23:1c: cb:23:94:ae:e6:99:fd:07:7f:0c:af:81:d5:9f:ff: 63:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A6:3A:43:E0:65:5E:9C:06:BB:FE:7D:BF:37:B3:FA:C6:AB:46:9C X509v3 Authority Key Identifier: keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/0C708FB4C67E11EE87B34958C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.15.136.0/23 Signature Algorithm: sha256WithRSAEncryption 44:5b:5a:fd:fd:4f:9b:10:f3:58:45:fa:f9:2f:58:54:8d:b7: 4c:e2:55:46:c6:c9:4a:86:b7:9c:e0:87:7d:ff:ec:45:a4:a4: e9:07:7a:7a:f4:4b:58:b8:18:01:b9:71:54:cf:83:7a:c0:54: 12:11:ca:2e:29:4c:72:31:90:3d:4c:9b:bc:68:3f:e8:15:4f: 32:0f:90:88:8b:af:57:75:47:9a:0f:5d:3d:d2:07:e3:ed:19: 14:30:86:97:34:a4:79:c3:91:77:5c:9a:d2:8f:a3:a4:40:3e: d1:ac:49:e6:55:24:79:3a:84:a1:73:87:24:50:12:9c:e0:01: 3f:b2:1d:3a:b2:da:cf:d0:8b:df:2e:3d:08:2c:7c:63:fe:80: 26:c0:51:aa:92:89:b4:7c:99:41:74:39:4f:b7:3a:78:18:7b: 0d:36:d5:b6:7c:11:ff:91:1b:27:a7:b7:b0:a1:3f:e8:01:ad: 68:03:f9:df:39:4e:cd:2d:93:df:fd:ac:4a:67:66:97:81:4c: 49:cd:80:a5:b0:7b:e9:ef:8a:59:fe:d8:8b:79:5f:a7:04:58: 8d:13:4f:b5:bb:1c:25:3c:49:55:af:50:a8:14:43:33:e6:b2: 3b:86:7f:29:43:70:57:57:77:a7:03:90:58:60:ec:2d:ce:75: 22:9c:7a:06 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0RTExMTAvBgNVBAUTKDcwRTg4NTU3QjBDMDgyQzlCMDZFQ0Y1OUI4RjI4QTc3 MDNBNjM4MDEwHhcNMjYwMjI1MDMyNDAzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTkyYi02ZGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BpgO55e/45jDrIvPFiuzhvTUh/QnoUS3N/4RMVdU96PVJcNlCqMSyVNFZ9l P0glIjtfOO97+CFQ5wT+kb7Ab+/C8KNkHrC99VPROnYqnDwB7obryiNqNFgQDa5c HkNPlntcKJb0Z/as60UCHUdjpO8kSwLMM9c6Lp10RVIKFt7fcStxc+zOJFGTizVD 1BVgKpbRvO/zkQZDgfqH5S9C507dlaeIPJd9zE265O0SLO9FqyxH6qrAwNP9WEkM 1GnqprnNXH7oBF3W+IyX0BRZlUIHCy0ap1gaYlPaPKusDk2jmBh7AZQAs033mAZR IxzLI5Su5pn9B38Mr4HVn/9jGQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLqmOkPg ZV6cBrv+fb83s/rGq0acMB8GA1UdIwQYMBaAFHDohVewwILJsG7PWbjyincDpjgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRFMS82MjMxQTAyRUM2 N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdzbXdiczladVBLS2R3T21P QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NPaUZWN0RBZ3Ntd2JzOVp1UEtLZHdPbU9BRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzY0RTEvNjIzMUEwMkVDNjdEMTFFRTg3MDI3QjNBQzRGOUFFMDIvMEM3MDhGQjRD NjdFMTFFRTg3QjM0OTU4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQ+IMA0GCSqGSIb3DQEBCwUAA4IBAQBEW1r9/U+bEPNYRfr5L1hU jbdM4lVGxslKhrec4Id9/+xFpKTpB3p69EtYuBgBuXFUz4N6wFQSEcouKUxyMZA9 TJu8aD/oFU8yD5CIi69XdUeaD1090gfj7RkUMIaXNKR5w5F3XJrSj6OkQD7RrEnm VSR5OoShc4ckUBKc4AE/sh06strP0IvfLj0ILHxj/oAmwFGqkom0fJlBdDlPtzp4 GHsNNtW2fBH/kRsnp7ewoT/oAa1oA/nfOU7NLZPf/axKZ2aXgUxJzYClsHvp74pZ /tiLeV+nBFiNE0+1uxwlPElVr1CoFEMz5rI7hn8pQ3BXV3enA5BYYOwtznUinHoG -----END CERTIFICATE-----Generated at Thu Mar 26 21:48:46 2026 by rpki-client