$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/1FFCF508ADF211EE93DC0A12C4F9AE02.roa File: 1FFCF508ADF211EE93DC0A12C4F9AE02.roa (raw, json) Hash identifier: 01Z3o9E/9a1yoPoDH4foZI/dUy6PRT7K5bZ7LbnHM+g= Subject key identifier: 1D:B6:63:F0:49:AF:FC:0E:F0:C7:E9:D9:18:93:A3:5D:41:75:2D:58 Certificate issuer: /CN=A91A7F56/serialNumber=9FB741B729803C6B4329BC3B40E76E52ABD8B9F8 Certificate serial: 019C Authority key identifier: 9F:B7:41:B7:29:80:3C:6B:43:29:BC:3B:40:E7:6E:52:AB:D8:B9:F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n7dBtymAPGtDKbw7QOduUqvYufg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/1FFCF508ADF211EE93DC0A12C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:02:27 +0000 ROA not before: Sat 21 Feb 2026 03:23:58 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 140133 IP address blocks: 157.10.78.0/23 maxlen: 23 157.10.78.0/24 maxlen: 24 157.10.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/n7dBtymAPGtDKbw7QOduUqvYufg.crl rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/n7dBtymAPGtDKbw7QOduUqvYufg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n7dBtymAPGtDKbw7QOduUqvYufg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F56, serialNumber=9FB741B729803C6B4329BC3B40E76E52ABD8B9F8 Validity Not Before: Feb 21 03:23:58 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a41cc3-76c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:94:94:a8:69:e6:90:72:d2:49:51:87:79:f0: 0b:5a:d1:f6:d3:32:df:5d:1f:71:d7:ff:d6:87:6b: 0c:bd:6d:18:ae:4c:e0:28:7f:69:45:b1:de:ff:d2: 8c:ff:d8:a7:56:38:fb:0b:b7:cb:63:b2:ec:18:75: 4a:06:3c:08:20:8f:be:ca:f0:3f:23:67:e2:5f:61: 63:df:21:a4:ce:4e:a4:26:7e:8f:3c:10:ec:72:1b: 91:f5:92:42:e2:d1:3d:45:8d:4a:a3:90:b2:92:4f: d1:8c:e5:4a:a1:c3:4b:10:83:97:7d:62:2d:2a:4a: d9:d9:f6:af:d0:9b:35:6f:a2:db:99:1f:70:46:dc: 2b:3d:4f:ac:ac:10:ff:51:a2:ab:15:34:ec:d9:97: 1f:d9:68:03:de:2b:a0:d9:d8:57:b4:fc:9d:c0:ff: d7:e4:36:a4:b6:28:72:53:cc:1b:66:9b:0e:f7:c2: c6:ce:c6:b4:b5:03:97:0d:f3:81:c7:b2:27:7a:eb: 58:d0:0b:7c:cf:70:ae:16:44:cb:83:c8:d6:99:6f: 65:64:80:fa:0c:ee:f0:d1:5d:e6:ef:7f:a1:6e:b9: 80:04:98:b2:62:c9:a9:4f:1b:04:87:1d:d4:88:d0: a1:dc:4e:f0:35:7e:98:a0:ae:f7:09:75:24:a6:f6: 18:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:B6:63:F0:49:AF:FC:0E:F0:C7:E9:D9:18:93:A3:5D:41:75:2D:58 X509v3 Authority Key Identifier: keyid:9F:B7:41:B7:29:80:3C:6B:43:29:BC:3B:40:E7:6E:52:AB:D8:B9:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/n7dBtymAPGtDKbw7QOduUqvYufg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n7dBtymAPGtDKbw7QOduUqvYufg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/1FFCF508ADF211EE93DC0A12C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.78.0/23 Signature Algorithm: sha256WithRSAEncryption 54:be:a6:a6:96:2c:04:29:ad:07:08:6a:25:ee:20:e0:c5:75: 9d:51:95:42:32:39:d8:43:a8:45:12:f2:5e:98:01:e9:dc:0f: f1:91:6f:05:f2:7c:d4:70:f4:b5:cf:ef:fe:75:ed:94:21:a1: aa:e0:ce:04:8b:fa:68:3d:45:82:78:2b:b5:b3:a2:f9:fa:04: dc:34:58:2e:a5:6a:3e:c4:2d:b0:f6:4a:57:6f:b6:24:b1:ea: 10:9c:dd:17:06:e8:90:22:7a:af:88:c4:be:3a:3a:31:95:fa: 03:6a:09:92:d2:26:ff:45:65:e9:b0:8a:c7:13:c3:00:49:b8: 77:f8:ba:5d:d5:fb:29:57:d3:c8:77:47:0a:98:10:9b:13:af: 96:52:4f:ec:20:46:19:8f:f2:9d:33:71:70:55:43:53:40:3e: 30:37:ec:a0:73:13:d4:e8:96:70:ca:75:93:1c:6c:5c:57:1c: c6:df:1e:9c:3a:78:62:8e:f5:3c:ac:75:e5:18:f3:35:1f:c2: 8f:91:9e:bf:d7:a0:50:57:0b:a3:35:b8:b1:20:0c:47:b4:83: 02:d9:ac:6e:bc:12:1c:cf:06:c2:4c:6b:c3:77:75:bf:ab:7d: 19:c3:80:de:d9:88:7e:c5:9f:e2:b6:84:88:fc:02:02:98:2a: 81:0d:94:10 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNTYxMTAvBgNVBAUTKDlGQjc0MUI3Mjk4MDNDNkI0MzI5QkMzQjQwRTc2RTUy QUJEOEI5RjgwHhcNMjYwMjIxMDMyMzU4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWNjMy03NmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJSUqGnmkHLSSVGHefALWtH20zLfXR9x1//Wh2sMvW0YrkzgKH9pRbHe/9KM /9inVjj7C7fLY7LsGHVKBjwIII++yvA/I2fiX2Fj3yGkzk6kJn6PPBDschuR9ZJC 4tE9RY1Ko5Cykk/RjOVKocNLEIOXfWItKkrZ2fav0Js1b6LbmR9wRtwrPU+srBD/ UaKrFTTs2Zcf2WgD3iug2dhXtPydwP/X5DaktihyU8wbZpsO98LGzsa0tQOXDfOB x7IneutY0At8z3CuFkTLg8jWmW9lZID6DO7w0V3m73+hbrmABJiyYsmpTxsEhx3U iNCh3E7wNX6YoK73CXUkpvYY+wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFB22Y/BJ r/wO8Mfp2RiTo11BdS1YMB8GA1UdIwQYMBaAFJ+3QbcpgDxrQym8O0DnblKr2Ln4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y1Ni85NEQ1NzIzNkFD Q0QxMUVFODEwNjkwNTBDNEY5QUUwMi9uN2RCdHltQVBHdERLYnc3UU9kdVVxdll1 ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL243ZEJ0eW1BUEd0REtidzdRT2R1VXF2WXVmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTdGNTYvOTRENTcyMzZBQ0NEMTFFRTgxMDY5MDUwQzRGOUFFMDIvMUZGQ0Y1MDhB REYyMTFFRTkzREMwQTEyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQpOMA0GCSqGSIb3DQEBCwUAA4IBAQBUvqamliwEKa0HCGol7iDg xXWdUZVCMjnYQ6hFEvJemAHp3A/xkW8F8nzUcPS1z+/+de2UIaGq4M4Ei/poPUWC eCu1s6L5+gTcNFgupWo+xC2w9kpXb7YkseoQnN0XBuiQInqviMS+OjoxlfoDagmS 0ib/RWXpsIrHE8MASbh3+Lpd1fspV9PId0cKmBCbE6+WUk/sIEYZj/KdM3FwVUNT QD4wN+ygcxPU6JZwynWTHGxcVxzG3x6cOnhijvU8rHXlGPM1H8KPkZ6/16BQVwuj NbixIAxHtIMC2axuvBIczwbCTGvDd3W/q30Zw4De2Yh+xZ/itoSI/AICmCqBDZQQ -----END CERTIFICATE-----Generated at Mon Mar 2 16:07:50 2026 by rpki-client