$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/5A9C0D58311C11F0B91A2E64C4F9AE02.roa File: 5A9C0D58311C11F0B91A2E64C4F9AE02.roa (raw, json) Hash identifier: EOyR31nb50n9WnNlb3rcrt1TfJ23uFl543E7Owa7HQI= Subject key identifier: CC:87:B9:6A:91:0F:05:41:28:7D:90:D4:CB:85:35:1C:E3:B0:76:FA Certificate issuer: /CN=A91A5ED2/serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Certificate serial: 9F Authority key identifier: D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/5A9C0D58311C11F0B91A2E64C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:32:33 +0000 ROA not before: Sat 13 Dec 2025 06:45:16 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4826 IP address blocks: 165.99.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5ED2, serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Validity Not Before: Dec 13 06:45:16 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a43ff1-1206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:56:59:82:12:96:30:9c:b5:60:9e:4e:8a:b9: 9a:4c:c2:52:b4:f2:3f:69:33:c2:60:f2:af:f8:2f: 74:5c:c5:c6:a7:e8:0d:b9:bd:b3:28:6b:b5:0d:00: da:99:66:52:ab:45:3a:72:de:f8:05:6e:d7:42:85: 70:84:18:53:15:a7:24:d8:a9:f3:a6:28:9a:ed:99: a4:fc:97:30:27:69:40:52:a8:e6:61:83:52:5f:5e: 5b:56:63:85:95:3a:03:b8:68:a0:ea:29:f1:e4:1c: da:31:8a:16:64:6d:1b:78:6a:6d:ae:b7:0f:47:b1: cb:2e:20:a5:c9:f9:fa:d3:2e:2d:87:91:6c:7c:78: da:12:75:1f:7f:84:8c:7a:f0:d8:88:e4:dd:dd:b6: d6:a0:83:12:f4:29:4f:4f:ab:d8:01:33:d1:3b:42: 28:97:90:d1:b2:e1:23:45:53:c2:3f:a0:c9:48:70: 1e:ba:dd:45:cb:52:a7:80:7d:36:7a:c6:a3:72:62: 98:57:94:1a:97:00:78:03:51:1d:c4:89:70:b7:12: 9a:d3:8d:f6:44:cd:de:0b:55:c8:82:40:80:d6:b6: bb:83:86:e9:98:95:fb:41:8d:54:6b:26:c1:4e:d0: 93:0c:7c:ec:af:0d:9f:34:6b:d8:4e:3c:dd:10:df: 2e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:87:B9:6A:91:0F:05:41:28:7D:90:D4:CB:85:35:1C:E3:B0:76:FA X509v3 Authority Key Identifier: keyid:D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/5A9C0D58311C11F0B91A2E64C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.99.18.0/24 Signature Algorithm: sha256WithRSAEncryption 25:f9:c4:e9:d0:3f:f6:19:94:50:43:48:5d:bf:ba:2f:51:11: b5:65:e2:50:c3:09:1b:7b:a7:ab:4f:c1:92:45:6b:af:77:c9: d3:66:b9:3f:08:14:0c:06:03:5b:e5:9f:05:bf:e5:c3:c8:81: 76:3a:98:99:c1:7a:05:bb:c2:76:86:37:58:5c:73:45:4b:8e: 56:15:52:ef:55:cd:47:8c:7c:b3:52:f1:bf:b7:3d:2a:e0:f2: a6:20:92:fc:10:4c:f2:c6:99:5c:63:e7:e4:1e:a9:dc:f9:03: 3d:4f:8b:5c:69:8a:19:c7:d8:e0:ee:c8:fc:05:02:6b:84:25: 69:20:06:9c:b4:b5:ec:c2:d9:b1:ec:64:0d:c7:eb:b2:f7:41: fc:82:e2:38:8e:fc:ac:c4:77:66:a1:bb:cf:9d:fe:ce:90:b0: 19:3c:ad:5e:4f:d9:0d:9a:5b:f2:5b:63:c8:15:f5:f6:d6:98: 56:d8:14:e6:d7:c4:0d:26:27:c6:96:21:12:47:0e:73:81:fb: 7d:f5:7c:24:f5:99:86:5c:78:40:e3:10:5d:26:fc:be:5c:d1: f9:f2:96:42:e5:eb:bb:f7:dd:b2:9d:5f:a1:41:73:4a:fd:52: fc:66:4f:64:e9:d4:86:5e:59:dc:a5:0f:98:59:96:ff:a9:39: 5e:d6:4d:09 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFRDIxMTAvBgNVBAUTKEQ5MDRENTUyQzBFRjMyRjI0OUFCQTQ1OTdCRDg0QTE1 RUU1NTU1QzEwHhcNMjUxMjEzMDY0NTE2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2ZmMS0xMjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlFZZghKWMJy1YJ5OirmaTMJStPI/aTPCYPKv+C90XMXGp+gNub2zKGu1DQDa mWZSq0U6ct74BW7XQoVwhBhTFack2Knzpiia7Zmk/JcwJ2lAUqjmYYNSX15bVmOF lToDuGig6inx5BzaMYoWZG0beGptrrcPR7HLLiClyfn60y4th5FsfHjaEnUff4SM evDYiOTd3bbWoIMS9ClPT6vYATPRO0Iol5DRsuEjRVPCP6DJSHAeut1Fy1KngH02 esajcmKYV5QalwB4A1EdxIlwtxKa0432RM3eC1XIgkCA1ra7g4bpmJX7QY1UaybB TtCTDHzsrw2fNGvYTjzdEN8utwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMyHuWqR DwVBKH2Q1MuFNRzjsHb6MB8GA1UdIwQYMBaAFNkE1VLA7zLySaukWXvYShXuVVXB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUVEMi9GMjQ1QjJENjMx MUIxMUYwQTJGNTExNjBDNEY5QUUwMi8yUVRWVXNEdk12SkpxNlJaZTloS0ZlNVZW Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJRVFZVc0R2TXZKSnE2UlplOWhLRmU1VlZjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVFRDIvRjI0NUIyRDYzMTFCMTFGMEEyRjUxMTYwQzRGOUFFMDIvNUE5QzBENTgz MTFDMTFGMEI5MUEyRTY0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQApWMSMA0GCSqGSIb3DQEBCwUAA4IBAQAl+cTp0D/2GZRQQ0hdv7ov URG1ZeJQwwkbe6erT8GSRWuvd8nTZrk/CBQMBgNb5Z8Fv+XDyIF2OpiZwXoFu8J2 hjdYXHNFS45WFVLvVc1HjHyzUvG/tz0q4PKmIJL8EEzyxplcY+fkHqnc+QM9T4tc aYoZx9jg7sj8BQJrhCVpIAactLXswtmx7GQNx+uy90H8guI4jvysxHdmobvPnf7O kLAZPK1eT9kNmlvyW2PIFfX21phW2BTm18QNJifGliESRw5zgft99Xwk9ZmGXHhA 4xBdJvy+XNH58pZC5eu7992ynV+hQXNK/VL8Zk9k6dSGXlncpQ+YWZb/qTle1k0J -----END CERTIFICATE-----Generated at Mon Mar 2 07:11:31 2026 by rpki-client