$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2886/8632809810A311F1BE72B5AF393D8C67/9541152014DD11F1B59CF9DA123D8C67.roa File: 9541152014DD11F1B59CF9DA123D8C67.roa (raw, json) Hash identifier: o6jXstt3oz0pLRapDBGquL+NWtwn1qFvviGsBZcW4hM= Subject key identifier: 31:4F:5B:53:37:79:74:DD:DD:56:6D:09:0E:16:CD:BD:08:35:70:13 Certificate issuer: /CN=A91A2886/serialNumber=F683F222448C6A485DD8FEDFE1E9DC744213FA3C Certificate serial: 16 Authority key identifier: F6:83:F2:22:44:8C:6A:48:5D:D8:FE:DF:E1:E9:DC:74:42:13:FA:3C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9oPyIkSMakhd2P7f4encdEIT-jw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2886/8632809810A311F1BE72B5AF393D8C67/9541152014DD11F1B59CF9DA123D8C67.roa Signing time: Sun 01 Mar 2026 05:40:44 +0000 ROA not before: Sat 28 Feb 2026 19:42:15 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 151648 IP address blocks: 151.158.212.0/23 maxlen: 23 151.158.212.0/24 maxlen: 24 151.158.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2886/8632809810A311F1BE72B5AF393D8C67/9oPyIkSMakhd2P7f4encdEIT-jw.crl rsync://rpki.apnic.net/member_repository/A91A2886/8632809810A311F1BE72B5AF393D8C67/9oPyIkSMakhd2P7f4encdEIT-jw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9oPyIkSMakhd2P7f4encdEIT-jw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:42:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2886, serialNumber=F683F222448C6A485DD8FEDFE1E9DC744213FA3C Validity Not Before: Feb 28 19:42:15 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a3d15c-83a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c0:51:f2:e0:71:75:ee:9c:6e:70:bd:a9:32: 8c:4e:d2:fe:9a:20:bf:c5:e8:15:c2:53:b1:64:a2: 9b:7b:64:ae:0f:82:e6:ac:07:d6:99:3a:94:82:02: d2:03:e6:16:b2:ed:d2:f9:3c:97:6f:37:a2:9b:e7: 0c:1d:d0:a7:90:65:84:99:59:81:15:19:2a:fd:2c: 61:8f:be:d6:5f:aa:b1:2c:07:66:0d:db:1e:2a:b1: da:36:ac:d3:18:00:0c:0e:02:38:47:85:fd:be:e9: 54:7a:ad:44:97:90:94:66:ac:c0:19:d8:cc:0b:5b: 4a:22:95:a8:0b:df:14:8d:77:4c:f7:d2:af:24:1c: 98:3f:2f:5a:99:a0:41:db:18:d0:4a:c6:b2:97:0b: 43:28:92:61:7f:13:bc:ec:7b:78:f6:18:81:94:f4: 7b:7a:50:33:ae:01:9e:1b:6f:c2:f0:77:9a:1f:03: 2c:3a:ed:4e:a5:a4:97:86:0e:c7:d0:5f:7c:60:14: 94:19:87:c4:e4:c7:72:2a:20:29:28:ab:63:a3:3f: 7c:dd:f6:03:87:7d:d9:dd:7a:22:e2:b0:73:5d:2b: 71:cb:55:0c:9f:97:b0:36:6e:b8:eb:91:ca:3c:be: 5c:77:a1:f4:df:57:66:7a:5c:6c:02:94:de:f2:50: ae:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:4F:5B:53:37:79:74:DD:DD:56:6D:09:0E:16:CD:BD:08:35:70:13 X509v3 Authority Key Identifier: keyid:F6:83:F2:22:44:8C:6A:48:5D:D8:FE:DF:E1:E9:DC:74:42:13:FA:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2886/8632809810A311F1BE72B5AF393D8C67/9oPyIkSMakhd2P7f4encdEIT-jw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9oPyIkSMakhd2P7f4encdEIT-jw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2886/8632809810A311F1BE72B5AF393D8C67/9541152014DD11F1B59CF9DA123D8C67.roa sbgp-ipAddrBlock: critical IPv4: 151.158.212.0/23 Signature Algorithm: sha256WithRSAEncryption ae:f1:62:88:2a:bb:38:87:06:ad:ab:69:bc:8c:6f:2a:a0:f8: 18:ff:b3:1f:45:55:1e:83:da:ad:f7:6b:e9:0c:40:79:50:3e: f5:00:96:60:a2:11:7a:b4:6f:88:6f:86:79:e3:c5:b9:d6:d3: 6c:84:7a:64:8a:0d:0a:43:15:9d:f6:9d:2f:9d:db:79:2b:62: b2:d1:95:73:5c:15:0b:80:ab:c1:3f:e5:1e:8c:93:61:b0:6a: a6:1e:3f:d0:2f:da:00:c9:f2:d1:84:a7:fa:6e:24:46:60:d3: 92:8c:5d:18:e0:c3:40:60:42:7a:17:27:3c:cd:6d:dc:70:ec: c5:35:86:96:a7:31:43:d4:9c:26:f8:95:ba:05:d8:81:a4:28: 18:ee:23:87:7c:95:f1:d8:ed:ee:39:b5:11:2c:30:9a:dc:c6: 8f:93:50:8d:25:34:a7:d6:e8:b9:55:c5:3b:89:64:77:25:5d: e7:ef:05:43:4f:43:fe:a9:44:9d:99:fc:b4:6d:33:98:12:dc: cc:92:4d:7d:60:ef:c4:17:d5:0a:d4:c4:73:e9:85:b5:b1:9d: 04:22:8a:e9:97:47:95:d5:9a:20:59:66:9d:1a:05:c8:a1:36: 6b:5a:a7:f0:7f:b6:7a:65:10:0f:1f:d3:7c:85:7d:61:ba:cd: 86:1f:1e:56 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB Mjg4NjExMC8GA1UEBRMoRjY4M0YyMjI0NDhDNkE0ODVERDhGRURGRTFFOURDNzQ0 MjEzRkEzQzAeFw0yNjAyMjgxOTQyMTVaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkMTVjLTgzYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3wFHy4HF17pxucL2pMoxO0v6aIL/F6BXCU7Fkopt7ZK4PguasB9aZOpSCAtID 5hay7dL5PJdvN6Kb5wwd0KeQZYSZWYEVGSr9LGGPvtZfqrEsB2YN2x4qsdo2rNMY AAwOAjhHhf2+6VR6rUSXkJRmrMAZ2MwLW0oilagL3xSNd0z30q8kHJg/L1qZoEHb GNBKxrKXC0MokmF/E7zse3j2GIGU9Ht6UDOuAZ4bb8Lwd5ofAyw67U6lpJeGDsfQ X3xgFJQZh8Tkx3IqICkoq2OjP3zd9gOHfdndeiLisHNdK3HLVQyfl7A2brjrkco8 vlx3ofTfV2Z6XGwClN7yUK4VAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUMU9bUzd5 dN3dVm0JDhbNvQg1cBMwHwYDVR0jBBgwFoAU9oPyIkSMakhd2P7f4encdEIT+jww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyODg2Lzg2MzI4MDk4MTBB MzExRjFCRTcyQjVBRjM5M0Q4QzY3LzlvUHlJa1NNYWtoZDJQN2Y0ZW5jZEVJVC1q dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvOW9QeUlrU01ha2hkMlA3ZjRlbmNkRUlULWp3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mjg4Ni84NjMyODA5ODEwQTMxMUYxQkU3MkI1QUYzOTNEOEM2Ny85NTQxMTUyMDE0 REQxMUYxQjU5Q0Y5REExMjNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGXntQwDQYJKoZIhvcNAQELBQADggEBAK7xYogquziHBq2rabyMbyqg +Bj/sx9FVR6D2q33a+kMQHlQPvUAlmCiEXq0b4hvhnnjxbnW02yEemSKDQpDFZ32 nS+d23krYrLRlXNcFQuAq8E/5R6Mk2GwaqYeP9Av2gDJ8tGEp/puJEZg05KMXRjg w0BgQnoXJzzNbdxw7MU1hpanMUPUnCb4lboF2IGkKBjuI4d8lfHY7e45tREsMJrc xo+TUI0lNKfW6LlVxTuJZHclXefvBUNPQ/6pRJ2Z/LRtM5gS3MySTX1g78QX1QrU xHPphbWxnQQiiumXR5XVmiBZZp0aBcihNmtap/B/tnplEA8f03yFfWG6zYYfHlY= -----END CERTIFICATE-----Generated at Mon Mar 2 18:26:19 2026 by rpki-client