$ rpki-client -vvf rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/41E0B402AE1F11EE96A5C977C4F9AE02.roa File: 41E0B402AE1F11EE96A5C977C4F9AE02.roa (raw, json) Hash identifier: I3Aip9lEI/tB1p617YVnjX7fZuimKLHKae3IrKIw1Ds= Subject key identifier: 6A:68:65:0B:27:78:43:3D:8A:AE:69:40:FC:D3:86:7F:32:B3:AE:4A Certificate issuer: /CN=A91CED30/serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Certificate serial: 01A4 Authority key identifier: 3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/41E0B402AE1F11EE96A5C977C4F9AE02.roa Signing time: Sat 21 Mar 2026 03:39:08 +0000 ROA not before: Sat 21 Mar 2026 03:39:08 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 152306 IP address blocks: 157.10.84.0/23 maxlen: 23 157.10.84.0/24 maxlen: 24 157.10.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CED30, serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Validity Not Before: Mar 21 03:39:08 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69be12dc-7c8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3d:63:8a:6c:5d:69:b7:39:4d:6d:fb:69:c3: 9f:1a:aa:7a:c7:a8:c9:2b:ae:cc:53:8a:03:f2:64: e4:de:3f:eb:d9:d7:9b:b6:9f:04:36:82:af:db:45: 5f:d2:4d:75:1d:37:cc:f0:9c:51:94:51:f4:fa:1a: 31:9c:89:56:ba:04:29:0a:1d:d7:21:38:91:5a:bd: df:f9:3c:74:5b:83:1c:64:ed:23:2c:63:d5:5e:0b: 24:63:54:cd:67:4d:ff:e1:f9:b6:c1:eb:80:65:ea: 17:12:b0:ca:14:47:fe:7e:98:24:fa:94:53:b0:40: a6:89:e0:94:b7:80:c9:f6:9a:b5:a7:4d:fb:ba:e6: 73:f8:b2:f1:e0:2e:b5:9a:01:40:ec:93:b6:be:72: 06:14:18:df:ce:aa:74:39:ed:63:aa:22:bd:a8:2c: 03:fb:63:47:37:75:eb:35:92:0c:1a:75:a6:9e:fb: 6c:b9:4b:88:fc:0f:9e:b7:25:12:09:92:45:92:55: 53:18:72:d5:bd:fb:f0:59:d5:a9:bd:19:0c:a3:24: 81:b4:a2:ef:39:3d:b7:9e:91:95:27:29:df:7b:15: c0:5b:07:fd:39:be:53:bd:05:9c:76:81:f1:4a:7b: 2c:69:4d:3a:01:c5:31:2c:36:97:c9:6b:27:b3:91: a5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:68:65:0B:27:78:43:3D:8A:AE:69:40:FC:D3:86:7F:32:B3:AE:4A X509v3 Authority Key Identifier: keyid:3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/41E0B402AE1F11EE96A5C977C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.84.0/23 Signature Algorithm: sha256WithRSAEncryption 13:04:e9:71:50:83:5c:3a:07:a5:1c:40:84:0c:3c:7d:95:06: 9a:2d:3e:49:d2:eb:64:b4:2c:7c:68:bd:9e:24:ce:79:63:1a: 84:20:7d:66:31:3d:58:af:4d:89:f7:61:2b:68:a0:7d:27:f9: dc:5c:00:c6:9a:1f:0e:a2:58:84:39:f2:cc:55:3a:4c:17:8d: 6d:a1:f2:05:eb:15:14:d4:26:89:66:d3:7a:79:36:40:b2:32: 18:b5:af:d9:3c:ca:6d:bc:93:b4:f7:b4:02:68:a1:48:c6:fe: 72:06:dd:55:dc:ab:bd:3b:e2:ef:2d:ce:63:5a:f4:ca:74:c9: 1d:ce:a0:42:8d:15:c7:c6:ea:01:70:ff:50:cc:21:da:33:e2: 32:ba:39:6c:61:a1:5e:03:ef:a1:8a:f7:43:d8:e2:6a:9f:af: 5d:06:de:0e:44:21:36:e5:f3:02:5d:14:3c:f1:f9:01:8e:db: f3:3c:c0:9c:5f:ac:6b:88:35:9b:64:8d:b3:5e:54:a0:2e:d8: 6c:ba:b2:12:17:8e:c0:0c:ab:87:f5:bc:9d:8a:18:69:79:ea: 87:74:9c:6f:79:a8:70:95:85:52:3f:b9:81:80:8f:a3:d6:86: eb:f1:b6:1f:4e:67:45:db:5d:ea:2d:48:c3:ae:56:23:ed:3b: b0:f1:68:3a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VEMzAxMTAvBgNVBAUTKDNFMENERjg4MkFFRThDNzIyMUQ1ODhBM0M1MjYwMThF MUQ2NEM5NjgwHhcNMjYwMzIxMDMzOTA4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWJlMTJkYy03YzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoT1jimxdabc5TW37acOfGqp6x6jJK67MU4oD8mTk3j/r2debtp8ENoKv20Vf 0k11HTfM8JxRlFH0+hoxnIlWugQpCh3XITiRWr3f+Tx0W4McZO0jLGPVXgskY1TN Z03/4fm2weuAZeoXErDKFEf+fpgk+pRTsECmieCUt4DJ9pq1p037uuZz+LLx4C61 mgFA7JO2vnIGFBjfzqp0Oe1jqiK9qCwD+2NHN3XrNZIMGnWmnvtsuUuI/A+etyUS CZJFklVTGHLVvfvwWdWpvRkMoySBtKLvOT23npGVJynfexXAWwf9Ob5TvQWcdoHx SnssaU06AcUxLDaXyWsns5GlOQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGpoZQsn eEM9iq5pQPzThn8ys65KMB8GA1UdIwQYMBaAFD4M34gq7oxyIdWIo8UmAY4dZMlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUQzMC9CRTgwQzZBNkFF MUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpISWgxWWlqeFNZQmpoMWt5 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BnemZpQ3J1akhJaDFZaWp4U1lCamgxa3lXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VEMzAvQkU4MEM2QTZBRTFFMTFFRUE3RUEwQTc3QzRGOUFFMDIvNDFFMEI0MDJB RTFGMTFFRTk2QTVDOTc3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQpUMA0GCSqGSIb3DQEBCwUAA4IBAQATBOlxUINcOgelHECEDDx9 lQaaLT5J0utktCx8aL2eJM55YxqEIH1mMT1Yr02J92EraKB9J/ncXADGmh8OoliE OfLMVTpMF41tofIF6xUU1CaJZtN6eTZAsjIYta/ZPMptvJO097QCaKFIxv5yBt1V 3Ku9O+LvLc5jWvTKdMkdzqBCjRXHxuoBcP9QzCHaM+IyujlsYaFeA++hivdD2OJq n69dBt4ORCE25fMCXRQ88fkBjtvzPMCcX6xriDWbZI2zXlSgLthsurISF47ADKuH 9bydihhpeeqHdJxveahwlYVSP7mBgI+j1obr8bYfTmdF213qLUjDrlYj7Tuw8Wg6 -----END CERTIFICATE-----Generated at Thu Mar 26 11:36:53 2026 by rpki-client