$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/5C154406988911E991B10838C4F9AE02.roa File: 5C154406988911E991B10838C4F9AE02.roa (raw, json) Hash identifier: tQrQ6Cd+gUF5DxrjyCWytmMItl98qXXXMjLohZ6qa3w= Subject key identifier: 89:7E:55:AB:EC:BE:68:EE:97:21:92:FE:4C:78:53:15:01:41:45:A8 Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0F2A Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/5C154406988911E991B10838C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:32:20 +0000 ROA not before: Fri 02 Jan 2026 18:14:49 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 23881 IP address blocks: 23.226.0.0/24 maxlen: 24 23.226.1.0/24 maxlen: 24 23.226.2.0/24 maxlen: 24 23.226.3.0/24 maxlen: 24 23.226.4.0/24 maxlen: 24 23.226.5.0/24 maxlen: 24 23.226.6.0/24 maxlen: 24 23.226.7.0/24 maxlen: 24 23.226.8.0/24 maxlen: 24 23.226.9.0/24 maxlen: 24 23.226.10.0/24 maxlen: 24 23.226.11.0/24 maxlen: 24 23.226.12.0/24 maxlen: 24 23.226.13.0/24 maxlen: 24 23.226.14.0/24 maxlen: 24 23.226.15.0/24 maxlen: 24 162.247.0.0/24 maxlen: 24 162.247.1.0/24 maxlen: 24 162.247.2.0/24 maxlen: 24 162.247.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:28:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3882 (0xf2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E, serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Validity Not Before: Jan 2 18:14:49 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a59f74-25cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b2:13:60:9d:ad:66:4e:17:f1:93:33:5e:c4: f7:9e:5d:9e:d2:85:41:a9:e6:49:94:3b:c2:1c:42: b2:69:46:e2:dc:a4:e4:08:53:af:35:eb:0c:49:63: 48:41:66:bc:d0:25:d1:5b:67:07:70:a0:49:c1:59: 70:fc:4b:17:b8:dd:b9:a5:e7:aa:17:f9:70:d9:a7: 3c:ab:e1:96:c4:4a:31:b7:f5:79:e8:39:17:e1:64: 2d:01:b5:d5:32:30:3f:37:9b:cc:bd:fc:e7:56:4b: 66:90:5f:80:e3:8b:66:12:c7:d7:4a:e3:59:67:9a: 07:46:39:ff:46:f0:6f:32:b6:e2:a7:3e:53:43:d3: 32:0a:ce:0e:4f:d7:cd:59:f8:d4:d3:7e:dd:9d:76: 98:3c:0b:45:ba:01:8a:cb:36:9b:bc:21:8d:d2:e4: 16:70:64:1d:5a:52:65:e3:23:0c:f4:46:2a:52:c7: c1:af:cb:aa:70:e3:0b:20:80:f8:56:8e:29:fa:bb: 1c:e8:21:03:de:9c:d0:54:c6:09:ed:18:29:53:a5: fe:c4:b1:f6:70:0d:0b:9f:44:29:77:d5:2b:a7:ec: fd:43:10:a3:e4:3c:f9:97:17:a4:45:3a:e1:17:62: 5c:28:95:db:c0:b5:ed:90:72:bb:44:83:b4:8d:dc: f2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:7E:55:AB:EC:BE:68:EE:97:21:92:FE:4C:78:53:15:01:41:45:A8 X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/5C154406988911E991B10838C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 23.226.0.0/20 162.247.0.0/22 Signature Algorithm: sha256WithRSAEncryption 33:24:c7:85:b9:50:97:45:b8:1e:c6:fa:d1:78:57:c5:7e:42: af:de:2d:90:e4:c9:bf:da:45:90:82:0a:84:12:0e:ee:d2:52: e3:20:17:04:72:0a:da:17:50:f3:e5:e4:80:90:d5:b0:60:8a: ce:6d:b3:ed:28:a6:86:a5:86:13:2f:ec:f3:75:27:74:29:df: 29:b7:58:d2:2f:a0:ad:91:b7:66:fe:c4:e7:61:32:90:34:b1: ea:91:2d:7d:61:33:86:5a:2b:9b:97:c4:f7:04:92:e9:bc:7d: 04:ee:c6:c7:20:68:31:e0:62:91:ee:e7:7b:9b:44:8e:d7:b4: 7b:f8:60:b5:c2:a7:f9:88:31:c9:09:4a:85:18:f7:e2:9f:d2: 77:56:c0:a6:5e:78:52:e4:50:c2:a1:7a:c1:46:90:b3:03:d0: e0:bb:b1:3b:4d:c5:b1:e1:48:7b:60:04:d8:d5:4d:a2:78:a6: 6e:3f:a2:10:8e:4c:86:b1:18:49:d9:16:91:cd:51:fe:03:39: 85:5c:d3:80:bf:97:a8:e1:e9:6d:66:d5:d3:b3:03:69:13:9b: 5a:e2:4f:ee:99:5b:28:9b:78:ab:48:32:7d:ea:1b:94:38:52: be:15:e6:f0:18:5d:60:ec:ef:05:f0:3f:7f:38:e6:a9:c6:d3: 09:89:fe:f3 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjYwMTAyMTgxNDQ5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWY3NC0yNWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbITYJ2tZk4X8ZMzXsT3nl2e0oVBqeZJlDvCHEKyaUbi3KTkCFOvNesMSWNI QWa80CXRW2cHcKBJwVlw/EsXuN25peeqF/lw2ac8q+GWxEoxt/V56DkX4WQtAbXV MjA/N5vMvfznVktmkF+A44tmEsfXSuNZZ5oHRjn/RvBvMrbipz5TQ9MyCs4OT9fN WfjU037dnXaYPAtFugGKyzabvCGN0uQWcGQdWlJl4yMM9EYqUsfBr8uqcOMLIID4 Vo4p+rsc6CED3pzQVMYJ7RgpU6X+xLH2cA0Ln0Qpd9Urp+z9QxCj5Dz5lxekRTrh F2JcKJXbwLXtkHK7RIO0jdzyywIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIl+Vavs vmjulyGS/kx4UxUBQUWoMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VGM0UvQ0I3NENGNkU5ODdCMTFFOTgzRUNDRjEzQzRGOUFFMDIvNUMxNTQ0MDY5 ODg5MTFFOTkxQjEwODM4QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQEF+IAAwQCovcAMA0GCSqGSIb3DQEBCwUAA4IBAQAzJMeFuVCXRbge xvrReFfFfkKv3i2Q5Mm/2kWQggqEEg7u0lLjIBcEcgraF1Dz5eSAkNWwYIrObbPt KKaGpYYTL+zzdSd0Kd8pt1jSL6Ctkbdm/sTnYTKQNLHqkS19YTOGWiubl8T3BJLp vH0E7sbHIGgx4GKR7ud7m0SO17R7+GC1wqf5iDHJCUqFGPfin9J3VsCmXnhS5FDC oXrBRpCzA9Dgu7E7TcWx4Uh7YATY1U2ieKZuP6IQjkyGsRhJ2RaRzVH+AzmFXNOA v5eo4eltZtXTswNpE5ta4k/umVsom3irSDJ96huUOFK+FebwGF1g7O8F8D9/OOap xtMJif7z -----END CERTIFICATE-----Generated at Thu Mar 26 12:57:38 2026 by rpki-client