$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3AD9/9150DA4AF98011F087DA99084F6F56BC/CCCD5D78F98011F0A50135134F6F56BC.roa File: CCCD5D78F98011F0A50135134F6F56BC.roa (raw, json) Hash identifier: 1M2DD/iZFFo8+gHRyKlwxw6SxZSzmI1dVyv8AHl5J7g= Subject key identifier: 68:85:07:AD:CD:CA:FC:63:16:C6:94:DA:92:07:A9:97:31:75:1E:5C Certificate issuer: /CN=A91A3AD9/serialNumber=EC2AF0740FD7899DE5DA12D4127A5DFCFA6E63DE Certificate serial: 28 Authority key identifier: EC:2A:F0:74:0F:D7:89:9D:E5:DA:12:D4:12:7A:5D:FC:FA:6E:63:DE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7CrwdA_XiZ3l2hLUEnpd_PpuY94.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3AD9/9150DA4AF98011F087DA99084F6F56BC/CCCD5D78F98011F0A50135134F6F56BC.roa Signing time: Sun 15 Mar 2026 16:45:05 +0000 ROA not before: Sun 15 Mar 2026 16:45:05 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 149440 IP address blocks: 151.158.0.0/24 maxlen: 24 151.158.1.0/24 maxlen: 24 193.57.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3AD9/9150DA4AF98011F087DA99084F6F56BC/7CrwdA_XiZ3l2hLUEnpd_PpuY94.crl rsync://rpki.apnic.net/member_repository/A91A3AD9/9150DA4AF98011F087DA99084F6F56BC/7CrwdA_XiZ3l2hLUEnpd_PpuY94.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7CrwdA_XiZ3l2hLUEnpd_PpuY94.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3AD9, serialNumber=EC2AF0740FD7899DE5DA12D4127A5DFCFA6E63DE Validity Not Before: Mar 15 16:45:05 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b6e211-cefe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:20:8d:47:09:f3:62:2d:4a:10:fe:a3:55:97: c1:3c:35:ab:e5:98:ac:87:2b:cc:b7:a7:3d:82:c4: e5:4c:6c:c6:cb:ff:07:23:57:3e:78:f2:16:d5:75: 0c:3a:7f:5a:cb:3d:dd:44:31:1d:e9:51:d3:d3:36: f4:82:f4:94:c7:3b:06:9f:40:58:45:ca:ef:30:69: 5d:ef:45:21:d1:f1:a0:f5:03:22:7f:e6:b3:3f:80: 8a:fe:68:04:ff:fe:bd:1b:b5:91:21:72:1b:e1:12: f2:03:e6:30:d3:a5:f2:d8:c1:31:5a:c3:c8:c6:33: ca:fa:a5:bc:5d:bc:2a:d8:ce:fb:5d:81:1a:f6:40: c2:7c:a4:85:23:53:d6:8f:09:40:82:72:f8:d3:c0: e3:f8:9d:33:fb:8e:d2:e1:ec:ea:b5:d2:6d:f6:34: 6b:06:99:8f:ce:f6:21:e4:8a:03:f2:16:99:6e:0f: db:83:25:18:17:7a:3d:e8:e6:30:a1:88:b5:48:d6: 5c:c4:dd:c0:38:59:71:90:48:63:7e:06:21:1b:bc: 2b:8d:f6:40:40:5a:c1:17:8d:44:25:56:ed:0a:90: 90:1a:35:81:6e:c7:f4:a6:65:d6:51:54:2b:74:e1: 00:c9:46:50:49:a4:02:c3:56:8c:a5:24:2c:eb:ec: e5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:85:07:AD:CD:CA:FC:63:16:C6:94:DA:92:07:A9:97:31:75:1E:5C X509v3 Authority Key Identifier: keyid:EC:2A:F0:74:0F:D7:89:9D:E5:DA:12:D4:12:7A:5D:FC:FA:6E:63:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3AD9/9150DA4AF98011F087DA99084F6F56BC/7CrwdA_XiZ3l2hLUEnpd_PpuY94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7CrwdA_XiZ3l2hLUEnpd_PpuY94.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3AD9/9150DA4AF98011F087DA99084F6F56BC/CCCD5D78F98011F0A50135134F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 151.158.0.0/23 193.57.57.0/24 Signature Algorithm: sha256WithRSAEncryption 89:ab:39:9e:7f:7b:aa:1d:62:02:51:dd:e6:a8:21:47:6c:f1: 2b:67:12:0d:08:8a:69:b8:1e:27:51:9f:d7:35:5a:2a:02:d9: 17:6e:7f:9a:99:69:bd:ec:c1:10:8d:25:fa:bb:05:4c:eb:0a: 7c:6c:95:2b:0e:cc:84:40:1e:29:e5:c9:98:b0:31:01:3e:5e: 85:e5:54:f3:b2:42:e3:4d:58:82:4d:eb:c2:06:bc:7f:c7:48: 78:b7:b4:21:61:2f:dc:12:c9:9f:59:fe:51:b4:cb:e1:50:2d: b0:e8:14:0f:85:ee:36:75:b0:88:0e:1b:68:14:4a:28:fe:43: 29:6c:89:4d:1f:86:c8:75:91:5d:0c:85:48:6c:7a:69:c5:e5: 1d:be:ea:3b:5e:db:a6:ca:2f:f1:22:ab:7e:c8:3c:a7:64:0f: c8:62:14:85:64:e2:40:0b:39:08:f8:66:c0:04:7e:9f:4b:88: a6:bb:82:4e:3f:9f:26:31:d3:19:2f:99:cf:41:7b:d1:fc:b0: fa:d7:67:68:e7:a1:16:a0:d1:22:86:e5:7b:aa:18:bc:b3:bf: 52:5d:0e:1a:a4:dd:74:32:5d:5d:32:5d:71:ca:84:a2:45:95: 05:db:44:01:01:4c:d5:9b:f6:49:0d:f7:6b:bc:a8:71:f4:6b: ef:12:40:ff -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB M0FEOTExMC8GA1UEBRMoRUMyQUYwNzQwRkQ3ODk5REU1REExMkQ0MTI3QTVERkNG QTZFNjNERTAeFw0yNjAzMTUxNjQ1MDVaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YjZlMjExLWNlZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoII1HCfNiLUoQ/qNVl8E8NavlmKyHK8y3pz2CxOVMbMbL/wcjVz548hbVdQw6 f1rLPd1EMR3pUdPTNvSC9JTHOwafQFhFyu8waV3vRSHR8aD1AyJ/5rM/gIr+aAT/ /r0btZEhchvhEvID5jDTpfLYwTFaw8jGM8r6pbxdvCrYzvtdgRr2QMJ8pIUjU9aP CUCCcvjTwOP4nTP7jtLh7Oq10m32NGsGmY/O9iHkigPyFpluD9uDJRgXej3o5jCh iLVI1lzE3cA4WXGQSGN+BiEbvCuN9kBAWsEXjUQlVu0KkJAaNYFux/SmZdZRVCt0 4QDJRlBJpALDVoylJCzr7OVFAgMBAAGjggJmMIICYjAdBgNVHQ4EFgQUaIUHrc3K /GMWxpTakgeplzF1HlwwHwYDVR0jBBgwFoAU7CrwdA/XiZ3l2hLUEnpd/PpuY94w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzQUQ5LzkxNTBEQTRBRjk4 MDExRjA4N0RBOTkwODRGNkY1NkJDLzdDcndkQV9YaVozbDJoTFVFbnBkX1BwdVk5 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvN0Nyd2RBX1hpWjNsMmhMVUVucGRfUHB1WTk0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0FEOS85MTUwREE0QUY5ODAxMUYwODdEQTk5MDg0RjZGNTZCQy9DQ0NENUQ3OEY5 ODAxMUYwQTUwMTM1MTM0RjZGNTZCQy5yb2EwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAGXngADBADBOTkwDQYJKoZIhvcNAQELBQADggEBAImrOZ5/e6odYgJR 3eaoIUds8StnEg0Iimm4HidRn9c1WioC2Rduf5qZab3swRCNJfq7BUzrCnxslSsO zIRAHinlyZiwMQE+XoXlVPOyQuNNWIJN68IGvH/HSHi3tCFhL9wSyZ9Z/lG0y+FQ LbDoFA+F7jZ1sIgOG2gUSij+QylsiU0fhsh1kV0MhUhsemnF5R2+6jte26bKL/Ei q37IPKdkD8hiFIVk4kALOQj4ZsAEfp9LiKa7gk4/nyYx0xkvmc9Be9H8sPrXZ2jn oRag0SKG5XuqGLyzv1JdDhqk3XQyXV0yXXHKhKJFlQXbRAEBTNWb9kkN92u8qHH0 a+8SQP8= -----END CERTIFICATE-----Generated at Thu Mar 26 06:11:06 2026 by rpki-client