$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/48005D9EE5AE11EE9ECE4023C4F9AE02.roa File: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (raw, json) Hash identifier: Km37wq6aDw75/u5KZyWOq+MrrDlARwtAXstjS4OwvhE= Subject key identifier: FB:8E:82:CF:D5:86:C1:C3:09:B7:43:45:9E:3D:2A:E4:4B:F5:F3:B2 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 0180 Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/48005D9EE5AE11EE9ECE4023C4F9AE02.roa Signing time: Thu 05 Mar 2026 04:38:43 +0000 ROA not before: Thu 05 Mar 2026 04:38:43 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 152594 IP address blocks: 157.20.129.0/24 maxlen: 24 165.99.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:52:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Mar 5 04:38:43 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a908d3-7a66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:af:de:d8:bd:56:1d:88:76:6b:95:38:3b:7f: 03:75:d9:f8:3e:a2:d1:7c:e2:51:6a:96:07:a7:63: cf:b8:d6:9b:fd:90:4b:76:ad:27:79:7b:28:83:3b: 7b:9d:b6:0f:b2:1f:b6:76:69:3f:b0:f7:58:ba:d7: 87:17:d2:6e:91:a8:11:06:3c:b2:08:c9:eb:76:94: 6e:f9:c1:01:c2:20:24:69:4a:4b:ea:ff:ea:bd:b1: b1:61:9e:65:31:15:4b:e0:17:90:e2:eb:23:88:75: 9a:2b:b6:61:82:3b:c6:fc:de:64:ac:a2:0a:7d:24: f1:d9:94:a8:2e:72:5a:47:d4:e8:56:55:2c:2d:e9: 9a:d4:0e:e1:a1:3f:98:b7:4f:8d:7d:99:39:ae:3f: 83:e1:af:d0:07:56:99:8a:32:9d:b2:dc:f6:35:6b: fe:dc:ae:47:e7:c5:28:8c:90:57:d6:06:1c:bb:79: 7d:5f:46:96:8b:7e:b8:d7:ce:f9:63:92:b7:bc:80: d7:99:bb:a4:67:64:04:41:d9:f5:e8:c7:cf:eb:dc: 4f:4f:11:48:a5:50:d4:04:6b:ac:0e:65:33:30:86: f9:4b:a5:5f:59:b9:4e:50:b0:52:96:14:c1:67:3d: 9a:e0:9b:0f:4e:c8:13:95:c5:e0:d3:17:9e:3f:b0: d7:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:8E:82:CF:D5:86:C1:C3:09:B7:43:45:9E:3D:2A:E4:4B:F5:F3:B2 X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/48005D9EE5AE11EE9ECE4023C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.129.0/24 165.99.224.0/24 Signature Algorithm: sha256WithRSAEncryption 16:54:c5:a8:35:98:37:48:4c:85:91:62:09:a1:91:13:bb:b9: ff:06:b2:d1:4a:86:43:fc:5a:09:d6:21:72:06:3b:de:f0:fe: a2:a2:9a:d5:67:3b:0f:a8:d3:23:fb:b8:08:b9:d0:4d:02:84: fe:4e:4a:99:ac:84:71:81:6c:b6:85:04:2c:fb:4c:32:62:0c: 43:03:64:23:19:69:88:a4:20:ba:24:b8:06:00:0e:bb:db:3d: 27:6b:57:30:ab:7c:a7:30:dd:72:8f:8c:0f:2b:b4:0b:c8:62: 7f:86:f1:b2:81:d6:42:2c:f3:61:64:93:a3:bd:81:68:22:84: dc:1c:f1:09:06:95:45:1c:38:04:3e:d3:31:3e:81:94:d8:d5: 6f:ec:a5:ad:6d:d8:76:84:41:7e:33:c6:a3:7b:50:e6:b3:3d: 12:f4:be:e0:8e:0c:12:0c:d2:fc:0f:c7:a1:0c:ca:1f:3f:43: c1:5a:25:18:8f:e3:03:66:d7:90:22:03:22:e9:43:ab:a5:dd: 20:90:0d:ab:92:1a:89:7c:7a:54:9e:44:a3:33:ab:af:2c:ab: 38:aa:d9:36:81:f1:74:22:13:57:e0:eb:38:5f:01:74:73:07: a0:e9:0f:cf:05:ea:dd:8f:78:af:12:88:a1:36:03:fe:37:c3: 78:03:23:53 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjYwMzA1MDQzODQzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE5MDhkMy03YTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvK/e2L1WHYh2a5U4O38Dddn4PqLRfOJRapYHp2PPuNab/ZBLdq0neXsogzt7 nbYPsh+2dmk/sPdYuteHF9JukagRBjyyCMnrdpRu+cEBwiAkaUpL6v/qvbGxYZ5l MRVL4BeQ4usjiHWaK7ZhgjvG/N5krKIKfSTx2ZSoLnJaR9ToVlUsLema1A7hoT+Y t0+NfZk5rj+D4a/QB1aZijKdstz2NWv+3K5H58UojJBX1gYcu3l9X0aWi3641875 Y5K3vIDXmbukZ2QEQdn16MfP69xPTxFIpVDUBGusDmUzMIb5S6VfWblOULBSlhTB Zz2a4JsPTsgTlcXg0xeeP7DX2QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFPuOgs/V hsHDCbdDRZ49KuRL9fOyMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1QUMvQ0I3NEY4QkVFMUUwMTFFRUFGNkUxRTY4QzRGOUFFMDIvNDgwMDVEOUVF NUFFMTFFRTlFQ0U0MDIzQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAnRSBAwQApWPgMA0GCSqGSIb3DQEBCwUAA4IBAQAWVMWoNZg3SEyF kWIJoZETu7n/BrLRSoZD/FoJ1iFyBjve8P6ioprVZzsPqNMj+7gIudBNAoT+TkqZ rIRxgWy2hQQs+0wyYgxDA2QjGWmIpCC6JLgGAA672z0na1cwq3ynMN1yj4wPK7QL yGJ/hvGygdZCLPNhZJOjvYFoIoTcHPEJBpVFHDgEPtMxPoGU2NVv7KWtbdh2hEF+ M8aje1Dmsz0S9L7gjgwSDNL8D8ehDMofP0PBWiUYj+MDZteQIgMi6UOrpd0gkA2r khqJfHpUnkSjM6uvLKs4qtk2gfF0IhNX4Os4XwF0cweg6Q/PBerdj3ivEoihNgP+ N8N4AyNT -----END CERTIFICATE-----Generated at Thu Mar 26 19:24:49 2026 by rpki-client