$ rpki-client -vvf rpki.apnic.net/member_repository/A9197B7B/4CB3A384FBE911F0912FE61C6D6F56BC/153BBC22FBEC11F094C0A6516D6F56BC.roa File: 153BBC22FBEC11F094C0A6516D6F56BC.roa (raw, json) Hash identifier: Fa+JKx4M6Yd97D4JU6xtHSXgVRciDGQpK7A4XgrvaWo= Subject key identifier: F3:71:FD:A7:99:6E:2A:13:D1:8A:E3:1B:34:D2:6A:33:DA:6E:11:F0 Certificate issuer: /CN=A9197B7B/serialNumber=2256B82B0A6EDC6268A3CC90ACC05C74F114CE39 Certificate serial: 15 Authority key identifier: 22:56:B8:2B:0A:6E:DC:62:68:A3:CC:90:AC:C0:5C:74:F1:14:CE:39 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Ila4Kwpu3GJoo8yQrMBcdPEUzjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197B7B/4CB3A384FBE911F0912FE61C6D6F56BC/153BBC22FBEC11F094C0A6516D6F56BC.roa Signing time: Sun 01 Mar 2026 05:40:03 +0000 ROA not before: Wed 28 Jan 2026 01:53:03 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 134789 IP address blocks: 151.158.96.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197B7B/4CB3A384FBE911F0912FE61C6D6F56BC/Ila4Kwpu3GJoo8yQrMBcdPEUzjk.crl rsync://rpki.apnic.net/member_repository/A9197B7B/4CB3A384FBE911F0912FE61C6D6F56BC/Ila4Kwpu3GJoo8yQrMBcdPEUzjk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Ila4Kwpu3GJoo8yQrMBcdPEUzjk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197B7B, serialNumber=2256B82B0A6EDC6268A3CC90ACC05C74F114CE39 Validity Not Before: Jan 28 01:53:03 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a3d132-76eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a3:1d:21:a8:ed:9d:4d:e0:65:f6:35:78:df: 35:a1:7e:2f:5c:53:ce:20:70:0f:c4:ce:bf:d5:be: a3:0f:e6:98:13:e8:4a:a0:1d:08:99:3b:a5:0a:f0: 48:d6:13:ba:e8:80:77:a4:05:a0:fd:9e:31:cd:e9: b4:66:a6:0d:c4:1d:49:a1:f5:05:b8:10:cb:eb:19: c0:6d:33:13:2f:5c:5a:6e:bd:8e:3b:60:ed:6a:68: 61:86:d8:fd:a5:3c:95:cb:10:aa:ce:ad:87:35:8b: 02:2f:d2:65:3c:38:9e:ef:6e:ab:e8:a5:9f:64:6e: b3:c4:56:d9:42:ab:ed:f1:d7:b6:ed:5e:1f:90:fa: f6:91:f7:d3:b4:c9:ec:4f:de:d6:f4:67:19:63:9b: 00:99:ed:69:0a:52:85:78:bd:d3:f2:33:44:26:76: 9c:1d:0f:e2:3a:f7:20:e6:0f:d1:52:90:e3:07:95: 88:23:91:d8:8b:ab:26:f5:c6:e9:c0:bb:93:33:ce: b3:d1:4f:70:8e:35:f2:4d:3d:e1:8d:8c:87:78:fb: d9:3f:b3:0b:25:df:e3:f5:86:09:fd:f7:5b:64:b2: dd:aa:3c:74:86:65:52:fd:f0:5c:1d:45:51:9f:bc: 0c:aa:22:e7:2a:bf:26:dc:1d:f0:20:0b:10:1b:7f: 70:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:71:FD:A7:99:6E:2A:13:D1:8A:E3:1B:34:D2:6A:33:DA:6E:11:F0 X509v3 Authority Key Identifier: keyid:22:56:B8:2B:0A:6E:DC:62:68:A3:CC:90:AC:C0:5C:74:F1:14:CE:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197B7B/4CB3A384FBE911F0912FE61C6D6F56BC/Ila4Kwpu3GJoo8yQrMBcdPEUzjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Ila4Kwpu3GJoo8yQrMBcdPEUzjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197B7B/4CB3A384FBE911F0912FE61C6D6F56BC/153BBC22FBEC11F094C0A6516D6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 151.158.96.0/23 Signature Algorithm: sha256WithRSAEncryption 22:09:7b:5a:7e:44:c1:c2:fd:7f:8c:30:7c:84:11:8e:18:08: 47:e1:e2:3c:37:57:3c:d9:3e:29:d3:14:25:e2:9c:21:91:31: 82:94:1c:e5:0d:3d:78:df:29:9f:73:bb:54:4e:fe:5a:37:84: 49:fa:1c:1e:01:28:86:e0:af:8e:56:6b:4f:c1:bf:8b:3d:1e: 51:50:42:9a:6a:7e:d3:c1:2d:38:30:4d:2c:ba:38:55:63:28: 2e:55:aa:34:8e:1e:01:98:bf:ba:28:ba:34:bc:1d:54:1c:83: c3:b9:2e:dc:1c:37:b3:b9:05:3a:e6:f6:36:8d:31:45:83:21: 38:13:6a:60:28:5a:43:4b:9e:c4:46:49:e2:98:0b:01:b7:68: 4e:68:24:b4:57:9f:61:b1:45:66:8e:3f:39:eb:e7:74:69:77: 3e:dc:45:51:31:cb:8f:8e:40:a3:67:25:fc:de:a3:fd:e3:32: f4:36:a6:a2:51:57:a1:5d:7b:11:26:bb:a2:01:85:80:5b:c4: 9a:aa:2e:06:e7:09:da:ad:68:41:78:fe:01:57:84:00:21:c8: 25:40:e2:63:0a:ce:97:91:16:22:20:6a:8e:2c:4d:a4:4d:78: 00:55:4b:66:92:f0:2f:7f:8c:8d:b6:20:c7:0d:bd:10:ed:eb: 20:f5:c8:ab -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0I3QjExMC8GA1UEBRMoMjI1NkI4MkIwQTZFREM2MjY4QTNDQzkwQUNDMDVDNzRG MTE0Q0UzOTAeFw0yNjAxMjgwMTUzMDNaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkMTMyLTc2ZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqox0hqO2dTeBl9jV43zWhfi9cU84gcA/Ezr/VvqMP5pgT6EqgHQiZO6UK8EjW E7rogHekBaD9njHN6bRmpg3EHUmh9QW4EMvrGcBtMxMvXFpuvY47YO1qaGGG2P2l PJXLEKrOrYc1iwIv0mU8OJ7vbqvopZ9kbrPEVtlCq+3x17btXh+Q+vaR99O0yexP 3tb0ZxljmwCZ7WkKUoV4vdPyM0QmdpwdD+I69yDmD9FSkOMHlYgjkdiLqyb1xunA u5MzzrPRT3CONfJNPeGNjId4+9k/swsl3+P1hgn991tkst2qPHSGZVL98FwdRVGf vAyqIucqvybcHfAgCxAbf3CXAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU83H9p5lu KhPRiuMbNNJqM9puEfAwHwYDVR0jBBgwFoAUIla4Kwpu3GJoo8yQrMBcdPEUzjkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3QjdCLzRDQjNBMzg0RkJF OTExRjA5MTJGRTYxQzZENkY1NkJDL0lsYTRLd3B1M0dKb284eVFyTUJjZFBFVXpq ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSWxhNEt3cHUzR0pvbzh5UXJNQmNkUEVVemprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0I3Qi80Q0IzQTM4NEZCRTkxMUYwOTEyRkU2MUM2RDZGNTZCQy8xNTNCQkMyMkZC RUMxMUYwOTRDMEE2NTE2RDZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGXnmAwDQYJKoZIhvcNAQELBQADggEBACIJe1p+RMHC/X+MMHyEEY4Y CEfh4jw3VzzZPinTFCXinCGRMYKUHOUNPXjfKZ9zu1RO/lo3hEn6HB4BKIbgr45W a0/Bv4s9HlFQQppqftPBLTgwTSy6OFVjKC5VqjSOHgGYv7ooujS8HVQcg8O5Ltwc N7O5BTrm9jaNMUWDITgTamAoWkNLnsRGSeKYCwG3aE5oJLRXn2GxRWaOPznr53Rp dz7cRVExy4+OQKNnJfzeo/3jMvQ2pqJRV6FdexEmu6IBhYBbxJqqLgbnCdqtaEF4 /gFXhAAhyCVA4mMKzpeRFiIgao4sTaRNeABVS2aS8C9/jI22IMcNvRDt6yD1yKs= -----END CERTIFICATE-----Generated at Mon Mar 2 18:03:10 2026 by rpki-client