$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/3446813047DC11EFA05E932EC4F9AE02.roa File: 3446813047DC11EFA05E932EC4F9AE02.roa (raw, json) Hash identifier: K4s4bQ+AZEMbINRSOhh8kAqaJQUKtCHKATxaJcI+fSc= Subject key identifier: 59:7E:77:10:4A:5C:BE:55:C5:02:B1:28:29:55:38:D1:C8:26:3C:C0 Certificate issuer: /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Certificate serial: 0135 Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/3446813047DC11EFA05E932EC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:08:18 +0000 ROA not before: Tue 13 Jan 2026 04:24:21 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 152317 IP address blocks: 157.10.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D313B, serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Validity Not Before: Jan 13 04:24:21 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41e22-a534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:db:4e:d8:d9:27:7c:29:4e:7c:ac:4f:bd:fe: 67:a1:3c:e5:2c:bf:ce:40:3e:bb:48:c8:97:73:b3: e1:00:dc:13:3e:64:d7:5d:36:f9:a8:2e:9c:05:eb: d5:2e:09:69:b5:e9:5a:25:d0:63:29:2c:2f:4b:ad: ed:3f:67:18:b7:bd:a6:32:82:da:fb:56:01:49:20: 28:58:ea:86:7a:a2:9b:65:8a:7f:1b:1f:af:bf:38: 38:61:6f:cb:74:df:56:b5:2a:77:05:1c:ec:9b:1f: 10:8b:66:4b:1c:7e:ea:88:74:d8:68:36:6c:32:11: 77:37:b6:2a:1c:ae:db:e7:4e:c9:e3:69:9b:da:63: eb:cc:ac:30:68:fe:c2:86:a2:7d:71:54:1e:ad:59: 41:c9:42:a7:a8:cf:17:a2:5b:8f:73:ad:78:cc:b8: 6e:88:9a:a5:5c:92:1e:62:a1:59:80:ad:84:d3:b7: bc:8e:e9:88:8e:93:ea:5c:2a:a5:01:72:8d:01:ab: 71:17:ef:8a:72:55:9b:e4:df:7f:db:38:69:9f:01: e3:da:75:e4:cf:86:3a:da:f0:35:32:ca:fb:60:7b: cd:49:5e:1a:84:32:47:12:43:18:6d:33:35:9c:e2: 98:16:24:e5:df:f9:32:2f:0a:2b:d6:b9:0a:28:39: 42:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:7E:77:10:4A:5C:BE:55:C5:02:B1:28:29:55:38:D1:C8:26:3C:C0 X509v3 Authority Key Identifier: keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/3446813047DC11EFA05E932EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.136.0/23 Signature Algorithm: sha256WithRSAEncryption a5:1f:7b:f3:67:cd:bc:65:de:61:b4:a1:1e:20:b5:80:dd:87: cb:20:c3:4d:b0:98:11:c8:94:58:c4:a7:86:50:6e:73:93:e8: 4e:c2:0a:fd:61:3f:7f:ff:4c:12:35:57:05:60:e5:8e:33:65: 5f:4a:c4:4e:32:b3:ef:41:4c:95:cc:cd:4e:ba:d4:ed:cc:6a: 77:38:15:29:83:4e:e0:f1:8d:51:96:f2:9b:d5:36:27:a5:b3: 6f:53:e1:37:13:6f:1c:a3:14:a6:b7:0f:03:dc:02:12:8c:f3: 61:cd:52:84:c7:64:55:d2:42:c0:ea:6a:92:91:09:39:27:f4: de:e2:c0:1a:7e:8b:3f:26:0a:34:bc:87:da:dd:ca:ea:78:1b: f3:0c:d1:b0:84:01:63:b8:de:6b:07:59:45:63:cd:52:68:e6: 96:a9:3a:e0:b0:37:a5:a4:0b:42:33:89:a4:eb:e7:d5:eb:53: 64:b2:e4:5b:1c:ad:8f:db:10:92:7a:5c:23:14:45:9d:d6:12: 8c:d6:f6:ea:53:94:30:df:1c:cf:a6:b2:10:ac:fe:82:60:d5: 37:27:4e:3e:30:22:74:98:7e:05:61:6a:36:ce:8c:4e:4d:31: d3:83:8d:33:2e:35:7f:c6:7e:9d:25:6f:00:a3:16:62:1e:58: 04:d9:e2:93 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxM0IxMTAvBgNVBAUTKDgwRTkyNzVCNkU2RUJDNkFENzU4NUQ3NkFGQjZBNDAw QjUxNDJDM0YwHhcNMjYwMTEzMDQyNDIxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWUyMi1hNTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5dtO2NknfClOfKxPvf5noTzlLL/OQD67SMiXc7PhANwTPmTXXTb5qC6cBevV LglptelaJdBjKSwvS63tP2cYt72mMoLa+1YBSSAoWOqGeqKbZYp/Gx+vvzg4YW/L dN9WtSp3BRzsmx8Qi2ZLHH7qiHTYaDZsMhF3N7YqHK7b507J42mb2mPrzKwwaP7C hqJ9cVQerVlByUKnqM8XoluPc614zLhuiJqlXJIeYqFZgK2E07e8jumIjpPqXCql AXKNAatxF++KclWb5N9/2zhpnwHj2nXkz4Y62vA1Msr7YHvNSV4ahDJHEkMYbTM1 nOKYFiTl3/kyLwor1rkKKDlCvQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFl+dxBK XL5VxQKxKClVONHIJjzAMB8GA1UdIwQYMBaAFIDpJ1tubrxq11hddq+2pAC1FCw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEzQi9DQ0U5OUQ3RTQ3 REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZHclhXRjEycjdha0FMVVVM RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDMxM0IvQ0NFOTlEN0U0N0RCMTFFRkFFQTRCMDJEQzRGOUFFMDIvMzQ0NjgxMzA0 N0RDMTFFRkEwNUU5MzJFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQqIMA0GCSqGSIb3DQEBCwUAA4IBAQClH3vzZ828Zd5htKEeILWA 3YfLIMNNsJgRyJRYxKeGUG5zk+hOwgr9YT9//0wSNVcFYOWOM2VfSsROMrPvQUyV zM1OutTtzGp3OBUpg07g8Y1RlvKb1TYnpbNvU+E3E28coxSmtw8D3AISjPNhzVKE x2RV0kLA6mqSkQk5J/Te4sAafos/Jgo0vIfa3crqeBvzDNGwhAFjuN5rB1lFY81S aOaWqTrgsDelpAtCM4mk6+fV61NksuRbHK2P2xCSelwjFEWd1hKM1vbqU5Qw3xzP prIQrP6CYNU3J04+MCJ0mH4FYWo2zoxOTTHTg40zLjV/xn6dJW8AoxZiHlgE2eKT -----END CERTIFICATE-----Generated at Thu Mar 26 16:00:13 2026 by rpki-client