$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4EF9/75A0CD14D13711EEAA9F1980C4F9AE02/BF886C00D26A11EEAF76482BC4F9AE02.roa File: BF886C00D26A11EEAF76482BC4F9AE02.roa (raw, json) Hash identifier: pe8TaT6TRoY+NwLH+0tFi8b3zVP1G5yZ0XDW/NBZF5o= Subject key identifier: 17:16:EF:1C:CA:A4:33:5C:F5:9F:C7:83:7B:18:A4:DD:45:77:69:70 Certificate issuer: /CN=A91A4EF9/serialNumber=872C9368656C778357C2A5A99BECFFF677550AC8 Certificate serial: 0186 Authority key identifier: 87:2C:93:68:65:6C:77:83:57:C2:A5:A9:9B:EC:FF:F6:77:55:0A:C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hyyTaGVsd4NXwqWpm-z_9ndVCsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4EF9/75A0CD14D13711EEAA9F1980C4F9AE02/BF886C00D26A11EEAF76482BC4F9AE02.roa Signing time: Wed 25 Feb 2026 02:33:25 +0000 ROA not before: Wed 25 Feb 2026 02:33:25 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 152301 IP address blocks: 157.10.72.0/23 maxlen: 24 208.122.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4EF9/75A0CD14D13711EEAA9F1980C4F9AE02/hyyTaGVsd4NXwqWpm-z_9ndVCsg.crl rsync://rpki.apnic.net/member_repository/A91A4EF9/75A0CD14D13711EEAA9F1980C4F9AE02/hyyTaGVsd4NXwqWpm-z_9ndVCsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hyyTaGVsd4NXwqWpm-z_9ndVCsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4EF9, serialNumber=872C9368656C778357C2A5A99BECFFF677550AC8 Validity Not Before: Feb 25 02:33:25 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=699e5f75-7c27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:85:b1:3d:12:64:c4:f4:f2:a6:88:13:4c:0e: ff:30:dc:05:10:70:7e:41:e8:29:9a:83:bf:5a:dc: 13:48:10:9b:72:67:23:ab:ad:e2:cc:38:84:89:03: c7:d4:d2:0e:c6:4e:dd:6c:da:c7:38:46:3a:b3:f1: e3:e1:c6:dd:da:b5:d2:39:05:be:d9:41:18:a8:0c: 5f:1a:eb:e9:76:f1:af:43:93:2d:ee:11:81:2d:33: c8:62:dc:17:34:57:6b:2a:c4:dc:2c:a3:b9:11:04: 4c:e6:e4:d6:0f:58:2a:94:a8:96:10:e7:39:bc:d0: 6d:cc:ff:b6:e1:05:5f:bd:9c:aa:00:81:56:a8:dc: 4f:29:fa:66:d4:78:3c:91:ce:df:f5:cc:67:3d:cf: 5a:62:fc:67:fc:e9:b9:8c:e7:17:21:bc:b6:9e:1d: d8:a2:af:31:39:e3:a4:38:e9:fb:87:9e:0e:5c:a5: 5c:26:2b:f1:ea:bd:6c:34:29:bf:cb:b0:af:7c:5b: 99:4b:f5:e7:5d:6d:05:d8:d0:c0:14:05:8a:e1:4f: 9e:f3:d8:67:4b:4f:62:56:54:c8:2b:c5:29:b8:05: 26:d3:88:41:1f:cb:f7:03:1b:e1:97:7c:23:5a:25: 7d:8e:e4:b4:07:ab:8e:dc:be:16:61:2b:ef:66:2a: dc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:16:EF:1C:CA:A4:33:5C:F5:9F:C7:83:7B:18:A4:DD:45:77:69:70 X509v3 Authority Key Identifier: keyid:87:2C:93:68:65:6C:77:83:57:C2:A5:A9:9B:EC:FF:F6:77:55:0A:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4EF9/75A0CD14D13711EEAA9F1980C4F9AE02/hyyTaGVsd4NXwqWpm-z_9ndVCsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hyyTaGVsd4NXwqWpm-z_9ndVCsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4EF9/75A0CD14D13711EEAA9F1980C4F9AE02/BF886C00D26A11EEAF76482BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.72.0/23 208.122.28.0/23 Signature Algorithm: sha256WithRSAEncryption 24:f6:91:39:27:88:1d:99:a1:62:a4:d0:94:8f:a2:b1:ad:08: 3c:72:a6:09:bf:3f:1f:12:de:cf:ee:30:40:22:42:6e:be:d4: 44:bf:58:f1:07:fe:c9:90:48:9d:a5:92:b4:3b:84:0e:fe:7a: 5c:84:b2:78:55:47:30:74:03:b6:bb:a5:cd:7e:c6:c5:f3:c1: e8:8f:51:3a:ca:9d:39:f9:0f:32:cc:fa:28:3c:11:20:b2:e3: 18:d0:b5:87:32:49:d9:b0:03:ae:c0:25:de:68:d8:92:b2:c6: af:7e:5d:af:20:09:3a:bf:e5:00:b5:1f:d8:25:fd:71:9e:6b: 9c:0a:4d:00:c6:1f:96:85:46:64:6a:14:12:00:25:54:93:0a: ce:9e:15:57:0d:be:dd:65:70:46:51:83:e5:5b:5e:ac:2a:48: db:08:52:d6:b6:08:70:51:6a:35:62:78:48:f1:14:1b:af:87: 86:76:c7:c0:99:bb:f5:7a:ce:fc:aa:52:86:a4:78:8e:d4:2e: 86:86:8d:b6:94:d8:3d:ef:11:74:86:c4:08:c9:2c:63:af:7e: f9:f5:51:c4:db:32:76:ef:cf:40:7a:fa:9e:f4:97:fe:f1:b4: fb:79:f5:7e:28:37:44:24:b4:00:60:1e:1c:ae:f3:cf:47:99: 13:df:03:4d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QTRFRjkxMTAvBgNVBAUTKDg3MkM5MzY4NjU2Qzc3ODM1N0MyQTVBOTlCRUNGRkY2 Nzc1NTBBQzgwHhcNMjYwMjI1MDIzMzI1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTllNWY3NS03YzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYWxPRJkxPTypogTTA7/MNwFEHB+QegpmoO/WtwTSBCbcmcjq63izDiEiQPH 1NIOxk7dbNrHOEY6s/Hj4cbd2rXSOQW+2UEYqAxfGuvpdvGvQ5Mt7hGBLTPIYtwX NFdrKsTcLKO5EQRM5uTWD1gqlKiWEOc5vNBtzP+24QVfvZyqAIFWqNxPKfpm1Hg8 kc7f9cxnPc9aYvxn/Om5jOcXIby2nh3Yoq8xOeOkOOn7h54OXKVcJivx6r1sNCm/ y7CvfFuZS/XnXW0F2NDAFAWK4U+e89hnS09iVlTIK8UpuAUm04hBH8v3Axvhl3wj WiV9juS0B6uO3L4WYSvvZircfQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBcW7xzK pDNc9Z/Hg3sYpN1Fd2lwMB8GA1UdIwQYMBaAFIcsk2hlbHeDV8KlqZvs//Z3VQrI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVGOS83NUEwQ0QxNEQx MzcxMUVFQUE5RjE5ODBDNEY5QUUwMi9oeXlUYUdWc2Q0Tlh3cVdwbS16XzluZFZD c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2h5eVRhR1ZzZDROWHdxV3BtLXpfOW5kVkNzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRFRjkvNzVBMENEMTREMTM3MTFFRUFBOUYxOTgwQzRGOUFFMDIvQkY4ODZDMDBE MjZBMTFFRUFGNzY0ODJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGdCkgDBAHQehwwDQYJKoZIhvcNAQELBQADggEBACT2kTkn iB2ZoWKk0JSPorGtCDxypgm/Px8S3s/uMEAiQm6+1ES/WPEH/smQSJ2lkrQ7hA7+ elyEsnhVRzB0A7a7pc1+xsXzweiPUTrKnTn5DzLM+ig8ESCy4xjQtYcySdmwA67A Jd5o2JKyxq9+Xa8gCTq/5QC1H9gl/XGea5wKTQDGH5aFRmRqFBIAJVSTCs6eFVcN vt1lcEZRg+VbXqwqSNsIUta2CHBRajVieEjxFBuvh4Z2x8CZu/V6zvyqUoakeI7U LoaGjbaU2D3vEXSGxAjJLGOvfvn1UcTbMnbvz0B6+p70l/7xtPt59X4oN0QktABg Hhyu889HmRPfA00= -----END CERTIFICATE-----Generated at Mon Mar 2 11:17:04 2026 by rpki-client