$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/1167F6B2A18211EFA7475221C4F9AE02.roa File: 1167F6B2A18211EFA7475221C4F9AE02.roa (raw, json) Hash identifier: YCpUxQ8dgkmMh3e5UHsZ7Ir2L2aOgpsDHkfqNgWqSFU= Subject key identifier: C8:75:70:3A:AE:FD:92:94:33:DF:67:BB:57:BD:6A:DC:64:A3:7F:75 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: FC Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/1167F6B2A18211EFA7475221C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:42:49 +0000 ROA not before: Thu 04 Dec 2025 22:36:08 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133120 IP address blocks: 204.15.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Dec 4 22:36:08 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43449-9966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:51:a3:3b:95:44:41:ce:9f:c8:67:54:f9:a3: 2f:70:1d:03:90:c5:e5:e6:e4:ae:ac:b5:c5:35:34: 33:d0:b0:c3:4a:77:b0:b5:b1:8f:eb:71:43:9a:1b: f9:80:21:f0:80:76:e2:33:a6:08:1d:92:04:16:58: 57:56:d9:7d:54:f2:65:1a:59:18:26:90:17:5b:73: 85:fb:0c:4f:27:c3:5a:b6:61:0e:2f:d5:4b:9c:7b: d0:6f:b2:8d:ba:f5:8e:3a:44:2a:08:e0:9d:b5:88: 91:89:8d:87:8f:68:34:71:51:d4:bf:b1:76:e7:d0: 29:3a:de:bb:9e:bc:1d:b0:55:c4:5f:74:f6:4b:e3: 09:8d:d7:51:a1:fe:6c:32:4e:d2:5a:4f:4c:9b:f0: a0:1b:5c:1b:b6:9d:33:17:d6:c8:ca:92:81:0e:33: 06:b0:2d:46:f7:d9:64:91:09:28:f5:d6:23:d5:45: d6:18:25:1c:d3:6f:ee:67:ed:17:e9:04:e0:32:2d: f4:64:30:12:d6:c1:02:2c:c0:2f:79:ae:d8:17:3e: d4:6c:bc:6d:d9:2c:16:54:57:85:fb:f2:81:e1:e2: f8:3f:e8:e4:5c:e7:69:7f:90:5e:be:b6:ab:d0:72: f3:42:11:73:b0:cd:21:14:55:5a:ec:66:20:0a:34: c0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:75:70:3A:AE:FD:92:94:33:DF:67:BB:57:BD:6A:DC:64:A3:7F:75 X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/1167F6B2A18211EFA7475221C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 204.15.40.0/23 Signature Algorithm: sha256WithRSAEncryption 34:db:1e:b3:37:6f:3d:49:2e:b2:a3:1d:a3:6a:35:ae:1a:24: b8:d8:70:3d:d2:47:3e:a2:ab:1b:51:c2:54:9d:8e:b4:26:a0: a3:a4:c4:24:d0:7b:29:c7:13:59:e3:2c:a6:58:09:a8:a0:0b: 0a:86:93:a5:4b:0b:1b:13:84:fd:b6:21:82:f3:10:f2:2c:f8: 3f:d1:55:b5:90:26:be:82:58:e7:3b:95:c9:5c:e1:d5:1a:35: a8:f7:bd:10:69:16:eb:bf:4e:09:a9:44:c8:41:8a:6f:dd:f7: c4:a7:9a:1a:9e:99:8e:ec:c2:73:ab:68:9b:76:3d:6f:27:18: 65:ad:6f:6f:84:8d:d5:51:e3:a0:ee:db:70:b1:f0:ec:96:ae: d4:78:14:87:80:9e:a0:55:60:c0:95:f2:07:8b:99:37:7a:80: d3:21:04:46:4c:68:b2:25:79:80:3d:d2:70:15:22:28:fb:18: d2:7b:4e:4f:b4:98:59:8e:d7:3c:b4:7d:ee:61:86:89:ad:48: 7e:bc:1a:f3:bc:93:07:0a:6b:54:95:ab:da:66:c3:3c:0c:17: 3d:7f:c5:8a:97:27:77:04:a9:38:b3:d9:e9:97:41:dc:ee:09: 9d:ca:33:60:7a:6f:94:c5:b1:2c:fb:38:5d:ec:5b:2b:95:9c: 84:f9:fa:62 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKDkxMDgyNTc4RjcxRTRCODYwNTdEQzNFQjA3MDNGRTY1 ODlFNjY4OTEwHhcNMjUxMjA0MjIzNjA4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzQ0OS05OTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlFGjO5VEQc6fyGdU+aMvcB0DkMXl5uSurLXFNTQz0LDDSnewtbGP63FDmhv5 gCHwgHbiM6YIHZIEFlhXVtl9VPJlGlkYJpAXW3OF+wxPJ8NatmEOL9VLnHvQb7KN uvWOOkQqCOCdtYiRiY2Hj2g0cVHUv7F259ApOt67nrwdsFXEX3T2S+MJjddRof5s Mk7SWk9Mm/CgG1wbtp0zF9bIypKBDjMGsC1G99lkkQko9dYj1UXWGCUc02/uZ+0X 6QTgMi30ZDAS1sECLMAvea7YFz7UbLxt2SwWVFeF+/KB4eL4P+jkXOdpf5Bevrar 0HLzQhFzsM0hFFVa7GYgCjTA8QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMh1cDqu /ZKUM99nu1e9atxko391MB8GA1UdIwQYMBaAFJEIJXj3HkuGBX3D6wcD/mWJ5miR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS8xNTM0QTA1QUEx NzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0WUZmY1ByQndQLVpZbm1h SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkMwMzkvMTUzNEEwNUFBMTc0MTFFRkJGNjE2NjI0QzRGOUFFMDIvMTE2N0Y2QjJB MTgyMTFFRkE3NDc1MjIxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBzA8oMA0GCSqGSIb3DQEBCwUAA4IBAQA02x6zN289SS6yox2jajWu GiS42HA90kc+oqsbUcJUnY60JqCjpMQk0HspxxNZ4yymWAmooAsKhpOlSwsbE4T9 tiGC8xDyLPg/0VW1kCa+gljnO5XJXOHVGjWo970QaRbrv04JqUTIQYpv3ffEp5oa npmO7MJzq2ibdj1vJxhlrW9vhI3VUeOg7ttwsfDslq7UeBSHgJ6gVWDAlfIHi5k3 eoDTIQRGTGiyJXmAPdJwFSIo+xjSe05PtJhZjtc8tH3uYYaJrUh+vBrzvJMHCmtU lavaZsM8DBc9f8WKlyd3BKk4s9npl0Hc7gmdyjNgem+UxbEs+zhd7FsrlZyE+fpi -----END CERTIFICATE-----Generated at Mon Mar 2 11:24:51 2026 by rpki-client