$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/7677A43AF8C511EBA498E771C4F9AE02.roa File: 7677A43AF8C511EBA498E771C4F9AE02.roa (raw, json) Hash identifier: q9UFtte8apt4vOKEWhUz4jyi1G/GVyXpdhUjXt1lKLU= Subject key identifier: C5:96:2A:1C:A7:E8:80:FE:50:4A:41:FE:6E:B4:00:31:F1:09:18:EC Certificate issuer: /CN=A91B1FA8/serialNumber=0DEEED1362143C362F24F97C67C8E4ECE2C7A561 Certificate serial: 13CB Authority key identifier: 0D:EE:ED:13:62:14:3C:36:2F:24:F9:7C:67:C8:E4:EC:E2:C7:A5:61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/De7tE2IUPDYvJPl8Z8jk7OLHpWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/7677A43AF8C511EBA498E771C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:15:51 +0000 ROA not before: Tue 04 Mar 2025 17:44:56 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 55002 IP address blocks: 159.196.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/De7tE2IUPDYvJPl8Z8jk7OLHpWE.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/De7tE2IUPDYvJPl8Z8jk7OLHpWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/De7tE2IUPDYvJPl8Z8jk7OLHpWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5067 (0x13cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=0DEEED1362143C362F24F97C67C8E4ECE2C7A561 Validity Not Before: Mar 4 17:44:56 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a42df7-9cc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:43:65:95:8b:3f:af:29:88:ed:d3:e9:fb:0b: 91:57:85:35:79:69:94:60:3a:3b:32:f1:dc:49:7b: 1b:fe:e8:d6:0a:08:42:f4:df:f4:59:f2:f2:5a:7e: 8e:ca:dd:6c:ae:41:2b:79:1b:cd:37:c2:db:49:06: d6:54:07:d1:90:8a:65:d0:37:87:c0:b8:1f:c7:15: 6a:fb:ec:27:77:fa:c3:1e:5e:b0:c4:5b:a9:ae:38: 70:2c:dc:12:9a:ce:a9:70:de:ae:39:8c:9c:00:5b: 42:d4:3c:fe:b5:f2:5c:5f:cc:61:70:f7:7f:8d:1f: a1:19:cf:0d:5d:f2:7c:4a:d3:9e:28:f2:80:2f:85: de:15:48:80:e2:25:b8:bc:d4:d6:fe:dd:e8:06:99: 20:0b:b2:c6:b5:da:0b:7d:ac:5c:0e:88:87:84:f7: e2:f0:3e:bf:38:99:e6:47:3e:ec:10:e3:7f:39:b5: 53:52:0f:6b:0a:da:18:77:04:23:a2:ba:f9:61:00: c4:bf:f1:13:b4:1a:be:44:3a:65:69:e1:86:e4:9d: 62:a6:76:46:c1:3d:a0:ba:e5:2b:35:40:3c:94:9f: 66:99:39:0b:04:6a:ef:4b:10:fd:59:63:86:53:50: f8:8a:d1:85:58:a2:64:91:62:d5:ef:16:f5:b5:f0: c1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:96:2A:1C:A7:E8:80:FE:50:4A:41:FE:6E:B4:00:31:F1:09:18:EC X509v3 Authority Key Identifier: keyid:0D:EE:ED:13:62:14:3C:36:2F:24:F9:7C:67:C8:E4:EC:E2:C7:A5:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/De7tE2IUPDYvJPl8Z8jk7OLHpWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/De7tE2IUPDYvJPl8Z8jk7OLHpWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/7677A43AF8C511EBA498E771C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 159.196.220.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:03:17:65:c5:76:13:da:3c:fa:ad:f7:5d:c8:ab:f3:63:11: f5:99:7a:fe:57:b8:d0:6b:a4:ce:f9:65:7e:21:bf:5b:b0:41: a1:93:3a:a8:b6:28:44:4a:51:fa:60:46:a4:4e:fa:8c:f7:15: 49:40:91:c2:28:d6:1f:84:d6:ca:42:14:2f:c7:81:70:10:3d: 09:06:8a:9a:d1:6f:e2:bb:70:ac:9e:37:70:1f:e9:3d:21:3f: f9:7d:c8:34:00:64:d4:6c:70:b9:4d:34:d1:a3:cb:23:49:d2: 20:a5:fe:80:12:d5:3c:bc:07:42:31:2d:55:a2:4f:ee:08:8d: d4:71:7d:d9:e9:41:06:de:e1:c5:0c:e8:14:35:fb:70:ec:74: 7b:3d:cd:ec:84:15:6c:9c:eb:93:3b:fa:4e:48:05:b9:a0:b8: 5e:7c:b0:86:7c:15:49:cd:67:1d:ab:06:44:3a:8e:40:36:07: 7f:83:1f:83:82:97:38:24:30:26:eb:7d:e8:81:7e:41:1a:ec: f7:69:83:47:7f:78:35:cb:67:01:59:f4:d5:f2:0e:0e:1b:5a: 95:88:0a:3e:bf:a1:a1:ea:68:2c:8b:b4:7d:10:59:49:5e:91: a2:46:7b:2c:7a:3e:34:6d:b7:ab:a4:4d:17:e0:d8:c6:eb:44: 66:ef:d9:3e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICE8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDBERUVFRDEzNjIxNDNDMzYyRjI0Rjk3QzY3QzhFNEVD RTJDN0E1NjEwHhcNMjUwMzA0MTc0NDU2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmRmNy05Y2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl0NllYs/rymI7dPp+wuRV4U1eWmUYDo7MvHcSXsb/ujWCghC9N/0WfLyWn6O yt1srkEreRvNN8LbSQbWVAfRkIpl0DeHwLgfxxVq++wnd/rDHl6wxFuprjhwLNwS ms6pcN6uOYycAFtC1Dz+tfJcX8xhcPd/jR+hGc8NXfJ8StOeKPKAL4XeFUiA4iW4 vNTW/t3oBpkgC7LGtdoLfaxcDoiHhPfi8D6/OJnmRz7sEON/ObVTUg9rCtoYdwQj orr5YQDEv/ETtBq+RDplaeGG5J1ipnZGwT2guuUrNUA8lJ9mmTkLBGrvSxD9WWOG U1D4itGFWKJkkWLV7xb1tfDBZwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMWWKhyn 6ID+UEpB/m60ADHxCRjsMB8GA1UdIwQYMBaAFA3u7RNiFDw2LyT5fGfI5Ozix6Vh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9ERjQ3MDkwMkFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9EZTd0RTJJVVBEWXZKUGw4WjhqazdPTEhw V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0RlN3RFMklVUERZdkpQbDhaOGprN09MSHBXRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjFGQTgvREY0NzA5MDJBRkQ5MTFFOEIyRUQ0QzdGQzRGOUFFMDIvNzY3N0E0M0FG OEM1MTFFQkE0OThFNzcxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCn8TcMA0GCSqGSIb3DQEBCwUAA4IBAQCcAxdlxXYT2jz6rfddyKvz YxH1mXr+V7jQa6TO+WV+Ib9bsEGhkzqotihESlH6YEakTvqM9xVJQJHCKNYfhNbK QhQvx4FwED0JBoqa0W/iu3CsnjdwH+k9IT/5fcg0AGTUbHC5TTTRo8sjSdIgpf6A EtU8vAdCMS1Vok/uCI3UcX3Z6UEG3uHFDOgUNftw7HR7Pc3shBVsnOuTO/pOSAW5 oLhefLCGfBVJzWcdqwZEOo5ANgd/gx+Dgpc4JDAm633ogX5BGuz3aYNHf3g1y2cB WfTV8g4OG1qViAo+v6Gh6mgsi7R9EFlJXpGiRnssej40bberpE0X4NjG60Rm79k+ -----END CERTIFICATE-----Generated at Mon Mar 2 10:37:28 2026 by rpki-client