$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/7CE4326245B511EFBAC06E1EC4F9AE02.roa File: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (raw, json) Hash identifier: y32dMEUN6YUCKolUe/uVA0r0aXZ6vWR2Ez2nh841QQQ= Subject key identifier: 0D:F1:08:37:21:63:F7:DD:28:3C:C4:8F:41:81:13:21:4D:85:CF:10 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: 0139 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/7CE4326245B511EFBAC06E1EC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:29:51 +0000 ROA not before: Tue 13 Jan 2026 04:23:43 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 152317 IP address blocks: 157.10.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:35:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Jan 13 04:23:43 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a582bf-ede9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b9:3c:b0:3e:db:87:0a:30:4e:73:78:9e:87: fb:fd:92:ef:fa:5b:5b:60:6d:8c:68:d4:73:74:e8: 27:e2:16:cb:00:74:72:ea:6f:af:f2:d8:b0:4c:8d: 28:af:04:b5:0b:d3:c3:78:da:a2:6a:b2:de:e6:b5: 68:3e:75:56:f4:ff:7b:7f:b3:d3:85:34:8a:ae:a7: 36:bd:b9:4f:f8:df:66:2c:b0:c8:83:9c:06:d4:f8: ee:c9:9a:a2:18:ff:8f:4f:53:33:ec:e9:a8:61:5c: 46:56:b5:34:1d:04:89:4a:3a:e8:e4:34:62:95:2e: a8:22:34:2a:b9:28:0e:fb:d8:1c:4c:26:ad:8a:60: 22:54:7d:4a:09:13:31:6b:31:7a:51:5b:bc:92:87: 23:b8:75:67:b1:fe:76:c1:13:ca:50:99:1f:8b:b2: 02:82:8e:d3:7f:76:bc:f8:e2:45:18:67:7e:2d:7a: 26:78:11:5d:df:ba:0e:6a:52:3b:e2:9d:1e:a9:df: 73:48:fd:2b:d2:87:ab:8e:2d:18:b4:d4:dd:08:df: 5a:4b:3c:5b:65:c5:ba:79:08:05:9d:69:3e:a7:03: 95:02:a0:5b:a9:0f:d4:46:da:a1:f8:f6:a0:7e:cb: 21:d3:a5:bc:4c:ca:46:3b:6f:13:68:fb:f3:27:8f: 0c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F1:08:37:21:63:F7:DD:28:3C:C4:8F:41:81:13:21:4D:85:CF:10 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/7CE4326245B511EFBAC06E1EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.140.0/23 Signature Algorithm: sha256WithRSAEncryption 34:7d:4d:5e:e5:4f:3b:df:13:32:68:a5:21:f6:2d:a9:50:f4: 64:ac:a9:9e:e4:21:d9:60:6b:7f:d4:24:58:1f:76:0f:12:4f: 05:34:97:1a:ab:f7:fa:71:c2:c8:c5:1e:36:46:fb:ef:18:4f: 36:d3:36:f2:d1:5b:92:bc:8e:92:9c:a7:1e:e1:95:73:58:99: b9:51:c5:b1:da:0b:0a:10:dd:7d:be:59:8b:c5:a7:10:4b:15: 3d:21:b9:79:69:c2:9e:9b:64:c8:31:c5:f4:96:d2:c2:f8:fb: 79:b8:b9:1f:67:12:c6:69:76:b5:0a:13:6e:41:f3:22:35:3c: 5e:95:7f:94:db:38:61:94:e7:ae:19:bd:ac:78:d5:31:03:b2: 79:56:7d:85:60:43:54:8f:e9:3a:c6:8b:d7:42:5d:3b:9a:27: 9a:9a:4e:41:66:f4:c9:a6:6a:eb:99:8f:30:f9:0b:bd:da:6c: b6:2c:61:14:c8:a8:ff:e8:60:50:34:94:2a:dd:bb:e0:c0:af: 92:a1:9c:a8:d8:4b:c9:2b:04:5f:9c:b0:83:0d:aa:17:bc:37: ad:17:c6:6e:d9:f8:93:b4:ff:13:37:be:d5:50:4d:64:03:f3: 6f:18:c7:17:f1:c0:81:38:30:84:e9:d8:48:05:4b:af:28:79: 4c:5e:67:74 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjYwMTEzMDQyMzQzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODJiZi1lZGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbk8sD7bhwowTnN4nof7/ZLv+ltbYG2MaNRzdOgn4hbLAHRy6m+v8tiwTI0o rwS1C9PDeNqiarLe5rVoPnVW9P97f7PThTSKrqc2vblP+N9mLLDIg5wG1PjuyZqi GP+PT1Mz7OmoYVxGVrU0HQSJSjro5DRilS6oIjQquSgO+9gcTCatimAiVH1KCRMx azF6UVu8kocjuHVnsf52wRPKUJkfi7ICgo7Tf3a8+OJFGGd+LXomeBFd37oOalI7 4p0eqd9zSP0r0oerji0YtNTdCN9aSzxbZcW6eQgFnWk+pwOVAqBbqQ/URtqh+Pag fssh06W8TMpGO28TaPvzJ48M0wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA3xCDch Y/fdKDzEj0GBEyFNhc8QMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI2MjkvRTJDRjk0MEE0NUI0MTFFRjhGREI3NDFEQzRGOUFFMDIvN0NFNDMyNjI0 NUI1MTFFRkJBQzA2RTFFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQqMMA0GCSqGSIb3DQEBCwUAA4IBAQA0fU1e5U873xMyaKUh9i2p UPRkrKme5CHZYGt/1CRYH3YPEk8FNJcaq/f6ccLIxR42RvvvGE820zby0VuSvI6S nKce4ZVzWJm5UcWx2gsKEN19vlmLxacQSxU9Ibl5acKem2TIMcX0ltLC+Pt5uLkf ZxLGaXa1ChNuQfMiNTxelX+U2zhhlOeuGb2seNUxA7J5Vn2FYENUj+k6xovXQl07 mieamk5BZvTJpmrrmY8w+Qu92my2LGEUyKj/6GBQNJQq3bvgwK+SoZyo2EvJKwRf nLCDDaoXvDetF8Zu2fiTtP8TN77VUE1kA/NvGMcX8cCBODCE6dhIBUuvKHlMXmd0 -----END CERTIFICATE-----Generated at Fri Mar 27 00:35:04 2026 by rpki-client