$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/157A1BFC59EE11EBA398AA0AC4F9AE02.roa File: 157A1BFC59EE11EBA398AA0AC4F9AE02.roa (raw, json) Hash identifier: Rdzf+qY0rc3ljoOiOxZKwXFF+npaW6qfoR/HzxroHsY= Subject key identifier: 40:43:B5:7C:A2:4B:46:E9:31:4B:D2:5B:F0:31:BB:96:56:45:59:B3 Certificate issuer: /CN=A91557BA/serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Certificate serial: 0CE1 Authority key identifier: AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/157A1BFC59EE11EBA398AA0AC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:39:51 +0000 ROA not before: Sat 30 Aug 2025 18:38:48 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 10148 IP address blocks: 128.250.0.0/16 maxlen: 24 192.43.207.0/24 maxlen: 24 192.43.208.0/24 maxlen: 24 192.43.209.0/24 maxlen: 24 192.101.254.0/24 maxlen: 24 192.231.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3297 (0xce1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Validity Not Before: Aug 30 18:38:48 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42587-f0c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:4d:95:5e:23:94:6d:96:cc:21:8b:63:23:3f: 1c:ff:44:2d:03:05:30:ff:0e:07:57:e7:44:95:6e: e6:8d:ad:ec:b4:af:63:52:0f:65:de:87:64:99:fd: 42:43:b8:c8:a4:89:13:da:2f:c2:6e:f6:5f:ab:9f: 7b:a7:e7:90:af:a1:b8:00:ca:a3:8c:87:38:86:0a: 69:b0:0a:1e:4c:18:25:8c:c7:2d:0d:62:a7:a2:49: a6:a5:09:cf:1f:04:12:05:28:f5:b9:a5:b3:12:9f: 2f:5a:0e:a5:52:6b:fd:7d:7e:56:f8:b3:45:2a:5a: 27:ed:3d:cc:cf:64:ad:f2:a3:9f:99:32:b6:44:07: 4b:f1:b8:17:ea:de:a1:e6:07:85:76:9c:0b:79:1d: 6d:2d:64:0a:06:ee:98:aa:e3:e9:38:e8:97:e6:06: 1f:73:82:05:1f:82:df:a9:7d:ad:19:a5:1b:1d:aa: d3:31:c1:37:56:23:7a:38:47:fe:47:09:24:6b:07: 41:5c:47:1b:bf:cf:84:99:95:5e:83:0e:0c:3c:d1: 83:03:4c:97:cb:5b:ee:5b:56:5e:74:01:3d:a4:58: a1:a8:07:2e:fa:8b:3c:cd:b6:6c:8e:fd:ba:6a:de: 19:d8:95:13:3d:55:62:d8:cc:9d:42:b0:5d:c9:c9: a1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:43:B5:7C:A2:4B:46:E9:31:4B:D2:5B:F0:31:BB:96:56:45:59:B3 X509v3 Authority Key Identifier: keyid:AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/157A1BFC59EE11EBA398AA0AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 128.250.0.0/16 192.43.207.0-192.43.209.255 192.101.254.0/24 192.231.127.0/24 Signature Algorithm: sha256WithRSAEncryption c6:cb:64:05:07:20:ab:82:63:30:bc:16:18:c6:3c:36:01:d3: 84:dd:ff:61:b6:c0:87:a2:c4:f5:c4:51:3c:d5:1e:60:9f:63: e0:5d:c9:58:20:97:49:c3:30:42:ad:bf:80:15:ae:dd:80:f4: bf:e8:15:8e:63:6c:72:b5:81:95:ff:57:1e:47:bb:11:07:a2: e8:fa:e6:eb:4f:d8:dd:c3:16:c7:6c:c0:89:23:ea:82:c8:48: f4:ad:fe:18:05:64:cd:9e:51:09:b4:a9:ad:fb:08:b6:99:49: 82:4a:76:83:2d:87:d8:b4:25:61:e3:fe:ec:12:ab:90:35:c4: 0a:4d:c0:e2:38:cf:35:8a:0d:da:52:a7:cc:52:81:7e:77:3a: 35:d3:7d:6e:c9:44:cb:6a:7b:8c:3b:75:9a:0f:ae:43:55:90: 80:47:74:fd:65:9b:a0:2e:a1:9b:c2:e3:02:c8:05:f5:df:26: 02:13:74:cb:85:a4:ef:ea:64:e5:63:5c:25:05:84:32:08:4a: 7f:63:58:24:41:18:a3:4e:9c:ed:e3:96:86:7d:91:43:95:a0: 36:b4:00:07:32:c0:d1:fe:a5:b5:a7:13:17:bf:17:0e:12:2a: b6:e1:c6:ff:da:7d:a8:56:49:24:71:08:e5:7c:b9:ef:30:8d: 8b:22:4c:2f -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgICDOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKEFGMkQ0NTNCRUJCRkRGNUYyOUI2M0FDMTY3NTRDNzhE MUIwRkNCODgwHhcNMjUwODMwMTgzODQ4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjU4Ny1mMGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmU2VXiOUbZbMIYtjIz8c/0QtAwUw/w4HV+dElW7mja3stK9jUg9l3odkmf1C Q7jIpIkT2i/CbvZfq597p+eQr6G4AMqjjIc4hgppsAoeTBgljMctDWKnokmmpQnP HwQSBSj1uaWzEp8vWg6lUmv9fX5W+LNFKlon7T3Mz2St8qOfmTK2RAdL8bgX6t6h 5geFdpwLeR1tLWQKBu6YquPpOOiX5gYfc4IFH4LfqX2tGaUbHarTMcE3ViN6OEf+ RwkkawdBXEcbv8+EmZVegw4MPNGDA0yXy1vuW1ZedAE9pFihqAcu+os8zbZsjv26 at4Z2JUTPVVi2MydQrBdycmh4QIDAQABo4ICeTCCAnUwHQYDVR0OBBYEFEBDtXyi S0bpMUvSW/Axu5ZWRVmzMB8GA1UdIwQYMBaAFK8tRTvrv99fKbY6wWdUx40bD8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82ODEyREY5MjA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMxOHB0anJCWjFUSGpSc1B5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3J5MUZPLXVfMzE4cHRqckJaMVRIalJzUHk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU3QkEvNjgxMkRGOTIwNEVCMTFFQUE3MkZBMzYzQzRGOUFFMDIvMTU3QTFCRkM1 OUVFMTFFQkEzOThBQTBBQzRGOUFFMDIucm9hMDgGCCsGAQUFBwEHAQH/BCkwJzAl BAIAATAfAwMAgPowDAMEAMArzwMEAcAr0AMEAMBl/gMEAMDnfzANBgkqhkiG9w0B AQsFAAOCAQEAxstkBQcgq4JjMLwWGMY8NgHThN3/YbbAh6LE9cRRPNUeYJ9j4F3J WCCXScMwQq2/gBWu3YD0v+gVjmNscrWBlf9XHke7EQei6Prm60/Y3cMWx2zAiSPq gshI9K3+GAVkzZ5RCbSprfsItplJgkp2gy2H2LQlYeP+7BKrkDXECk3A4jjPNYoN 2lKnzFKBfnc6NdN9bslEy2p7jDt1mg+uQ1WQgEd0/WWboC6hm8LjAsgF9d8mAhN0 y4Wk7+pk5WNcJQWEMghKf2NYJEEYo06c7eOWhn2RQ5WgNrQABzLA0f6ltacTF78X DhIqtuHG/9p9qFZJJHEI5Xy57zCNiyJMLw== -----END CERTIFICATE-----Generated at Mon Mar 2 05:43:55 2026 by rpki-client