$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/B6C4F8787A5911EDB8C4E04FC4F9AE02.roa File: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (raw, json) Hash identifier: B71votStEYYp/K2emTulLeZ6cRSZ/0mH+ncAa56QIjU= Subject key identifier: D6:73:4D:78:05:67:0F:41:73:9B:9C:1A:BA:95:E2:5F:A9:32:CD:8A Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 0276 Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/B6C4F8787A5911EDB8C4E04FC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:17:49 +0000 ROA not before: Tue 03 Feb 2026 02:21:27 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 9555 IP address blocks: 152.91.0.0/16 maxlen: 17 152.91.8.0/24 maxlen: 24 152.91.9.0/24 maxlen: 24 152.91.11.0/24 maxlen: 24 152.91.14.0/24 maxlen: 24 152.91.45.0/24 maxlen: 24 152.91.69.0/24 maxlen: 24 152.91.79.0/24 maxlen: 24 152.91.80.0/24 maxlen: 24 152.91.81.0/24 maxlen: 24 152.91.82.0/24 maxlen: 24 152.91.89.0/24 maxlen: 24 152.91.105.0/24 maxlen: 24 152.91.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:28:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 630 (0x276) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Validity Not Before: Feb 3 02:21:27 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4589d-b286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f0:ac:be:82:7b:10:92:22:e5:2d:70:fa:15: fc:b3:8d:34:05:f3:23:4f:c2:86:bb:70:44:98:4a: d9:7c:23:63:7d:ea:82:b8:73:55:38:8f:d0:e6:ec: e8:d8:e2:1f:e6:f4:23:b8:e5:b1:01:11:66:1b:d4: a7:0c:e9:cb:33:38:56:49:e0:ac:35:c3:07:bd:4b: 42:a2:d5:4d:f2:b0:c3:f9:a2:40:9b:dd:4b:82:df: 45:0a:8f:e8:fc:1e:8d:8a:0c:15:5f:19:85:ac:d5: 5d:66:95:e4:77:2b:6f:23:90:ae:ab:5c:c4:d0:4a: c6:99:5f:35:91:36:e2:2e:e7:90:22:39:3c:1b:35: 24:de:c2:6d:82:1d:33:b3:99:c7:86:4c:08:52:8f: 37:6e:6b:30:ca:84:3a:57:28:30:e5:d1:d5:3d:b9: fa:07:8b:b8:a1:40:3d:c5:65:6f:87:1f:67:b0:24: 05:31:f2:9f:f6:c3:ac:2c:60:34:a4:bd:8c:d6:76: 33:e9:a8:fe:55:ba:b3:47:6b:ac:10:1e:b2:d9:90: 6f:d4:c9:60:bc:13:fc:c6:9b:a6:79:b8:be:75:b4: cb:65:cc:13:cf:92:0c:ec:14:ea:64:67:4f:8d:d8: b6:0b:60:46:e4:f1:27:10:de:66:9d:64:d6:f8:bc: e3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:73:4D:78:05:67:0F:41:73:9B:9C:1A:BA:95:E2:5F:A9:32:CD:8A X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/B6C4F8787A5911EDB8C4E04FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 152.91.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0f:95:02:d7:b8:b8:88:dc:66:d3:d5:ad:72:ab:98:0a:b1:4e: 7c:8a:e8:5b:0a:73:9f:4b:89:6f:97:f3:17:10:9b:3b:be:dd: f8:84:62:38:3a:ab:b8:c4:ff:94:88:9d:e6:65:47:36:fd:1a: 3e:21:16:f4:74:c5:1e:57:a9:3b:09:48:ec:4f:41:3b:bd:d8: 8e:73:23:87:7a:47:05:c3:73:c9:92:48:a5:07:f0:d0:c4:bf: c9:6d:f7:79:02:02:47:93:55:81:75:f4:30:00:e5:f8:55:b7: bd:fe:6b:a3:58:2f:c7:97:db:a8:5c:2f:5e:e4:63:c9:2b:1a: 03:04:11:d9:07:08:a1:a9:eb:c0:ea:5c:97:4c:5d:d9:80:72: e7:3e:53:bc:83:34:77:dd:21:88:6a:cf:4b:a8:1c:0e:93:a2: e8:c6:c2:8e:0f:23:ba:1c:de:9d:e1:73:07:6c:5f:1b:39:6d: 55:82:0d:10:fc:48:35:c1:6b:3c:90:90:07:15:42:db:42:ad: eb:db:43:34:16:ad:23:79:38:91:99:1b:9b:41:5d:fc:11:1e: b7:74:8c:2d:3d:f1:84:55:5e:15:c9:69:2a:f2:c9:58:2f:81: 3f:7a:e8:70:f0:46:00:59:13:4a:c3:a1:af:57:ba:1f:81:10: f9:21:5c:0c -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICAnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjYwMjAzMDIyMTI3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTg5ZC1iMjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovCsvoJ7EJIi5S1w+hX8s400BfMjT8KGu3BEmErZfCNjfeqCuHNVOI/Q5uzo 2OIf5vQjuOWxARFmG9SnDOnLMzhWSeCsNcMHvUtCotVN8rDD+aJAm91Lgt9FCo/o /B6NigwVXxmFrNVdZpXkdytvI5Cuq1zE0ErGmV81kTbiLueQIjk8GzUk3sJtgh0z s5nHhkwIUo83bmswyoQ6Vygw5dHVPbn6B4u4oUA9xWVvhx9nsCQFMfKf9sOsLGA0 pL2M1nYz6aj+VbqzR2usEB6y2ZBv1MlgvBP8xpumebi+dbTLZcwTz5IM7BTqZGdP jdi2C2BG5PEnEN5mnWTW+LzjNwIDAQABo4ICXzCCAlswHQYDVR0OBBYEFNZzTXgF Zw9Bc5ucGrqV4l+pMs2KMB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQwQUEvMkM3NUZFQzg3QTNDMTFFRDg2MUIyOTMzQzRGOUFFMDIvQjZDNEY4Nzg3 QTU5MTFFREI4QzRFMDRGQzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAmFswDQYJKoZIhvcNAQELBQADggEBAA+VAte4uIjcZtPVrXKrmAqx TnyK6FsKc59LiW+X8xcQmzu+3fiEYjg6q7jE/5SIneZlRzb9Gj4hFvR0xR5XqTsJ SOxPQTu92I5zI4d6RwXDc8mSSKUH8NDEv8lt93kCAkeTVYF19DAA5fhVt73+a6NY L8eX26hcL17kY8krGgMEEdkHCKGp68DqXJdMXdmAcuc+U7yDNHfdIYhqz0uoHA6T oujGwo4PI7oc3p3hcwdsXxs5bVWCDRD8SDXBazyQkAcVQttCrevbQzQWrSN5OJGZ G5tBXfwRHrd0jC098YRVXhXJaSryyVgvgT966HDwRgBZE0rDoa9Xuh+BEPkhXAw= -----END CERTIFICATE-----Generated at Mon Mar 2 09:13:36 2026 by rpki-client