$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/D999F880AF4411F0A866CC48C4F9AE02.roa File: D999F880AF4411F0A866CC48C4F9AE02.roa (raw, json) Hash identifier: 2rQsXi5kIwQ2IE+rYx9M2psZsNK3ECigUyxfaVNd7kI= Subject key identifier: 3A:11:C5:80:10:81:77:8D:22:AD:87:63:14:3C:FF:56:F3:B5:A4:EA Certificate issuer: /CN=A91BEA8B/serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Certificate serial: CB Authority key identifier: 41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/D999F880AF4411F0A866CC48C4F9AE02.roa Signing time: Thu 21 May 2026 07:39:37 +0000 ROA not before: Thu 21 May 2026 07:39:37 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 154066 IP address blocks: 165.99.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 07:05:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA8B, serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Validity Not Before: May 21 07:39:37 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a0eb6b9-20a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1e:4a:aa:7b:96:1b:5c:b9:94:ae:a6:55:3a: 97:c3:dc:a6:21:40:56:ac:d4:32:f4:91:51:3b:af: 09:30:ce:b1:41:d2:25:9d:51:c9:90:ad:ad:6e:0f: fe:a8:34:c7:a9:a6:a3:4e:b9:5b:a8:5f:7a:27:9e: d1:bb:c5:f5:ea:08:d0:0c:da:aa:52:0e:a5:ad:01: e1:d3:b9:3e:82:35:b0:48:2b:b2:17:02:8c:c9:a7: 8e:b4:af:31:48:14:dc:3d:af:e7:e0:d0:98:96:28: 28:a4:75:07:ee:dd:08:cf:6a:3d:b1:78:9c:d3:53: 77:00:09:ea:d8:98:06:27:46:d5:46:ba:ba:f6:ec: 24:3a:46:40:5d:f7:c5:3d:eb:26:a6:6a:24:53:03: 27:8f:f7:53:c9:37:ff:55:66:3a:ea:99:ca:63:e5: 6b:69:71:40:62:24:35:c8:df:fa:2e:10:33:41:e7: 08:3d:03:ac:4e:d3:64:bf:87:ac:d1:05:a0:f4:5f: f5:f5:91:6a:34:6e:db:1f:fd:37:11:b9:5d:dd:34: 78:38:31:23:ff:7d:98:ce:7e:cb:78:57:1e:35:c6: 99:15:b7:f3:c0:eb:eb:00:5d:e6:e5:f1:bc:9a:5e: 49:80:ee:6c:a5:ff:7c:ce:f2:ad:25:47:77:c7:e9: bf:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:11:C5:80:10:81:77:8D:22:AD:87:63:14:3C:FF:56:F3:B5:A4:EA X509v3 Authority Key Identifier: keyid:41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/D999F880AF4411F0A866CC48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.99.191.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:a0:b9:e4:80:84:62:08:f6:1a:49:34:40:b5:d8:a0:65:e8: 6c:9e:1f:ca:08:83:c7:11:ba:b4:17:c7:31:45:71:b9:78:ee: 83:8f:71:8f:b4:96:d0:44:6b:ce:9b:1f:a8:b5:47:42:83:24: ad:3d:40:c9:60:7c:c8:e9:52:eb:a3:85:52:f6:9b:0a:d1:0a: 60:c7:da:d4:22:cf:38:a5:92:df:1a:94:89:ea:5b:30:ab:64: 49:b1:69:07:ad:b0:04:94:c8:ca:1c:53:3f:ac:06:61:c2:0b: 59:18:69:20:ba:eb:73:fb:3f:47:16:22:39:09:2b:51:89:5c: 37:73:03:1d:f4:d4:1d:ce:fe:ed:26:b5:83:68:31:30:64:c6: a2:cb:8d:fb:75:f9:4e:bf:a7:eb:72:0d:29:da:cd:61:14:40: 3d:bc:57:c6:b8:cc:7e:13:75:45:b2:01:7d:0a:b2:1b:21:9f: df:f4:c1:82:bf:37:e3:6e:05:3d:d0:d2:f7:2c:e5:77:3b:47: d5:98:22:89:ac:66:c4:87:41:e3:96:4f:a2:ce:63:4b:42:a5: 9b:8c:f8:82:8e:13:25:5f:91:65:63:91:f4:dc:8d:bf:73:22: a9:1a:58:dc:7f:10:53:2b:45:16:f1:57:f1:71:6b:0c:83:f4: 03:bc:92:c3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVBOEIxMTAvBgNVBAUTKDQxQzc1NzE0Mjk5QTU3OEREMTkwRkQxRjczMDk1NUIx RkQ5QUMxRjQwHhcNMjYwNTIxMDczOTM3WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBlYjZiOS0yMGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnh5KqnuWG1y5lK6mVTqXw9ymIUBWrNQy9JFRO68JMM6xQdIlnVHJkK2tbg/+ qDTHqaajTrlbqF96J57Ru8X16gjQDNqqUg6lrQHh07k+gjWwSCuyFwKMyaeOtK8x SBTcPa/n4NCYligopHUH7t0Iz2o9sXic01N3AAnq2JgGJ0bVRrq69uwkOkZAXffF PesmpmokUwMnj/dTyTf/VWY66pnKY+VraXFAYiQ1yN/6LhAzQecIPQOsTtNkv4es 0QWg9F/19ZFqNG7bH/03Ebld3TR4ODEj/32Yzn7LeFceNcaZFbfzwOvrAF3m5fG8 ml5JgO5spf98zvKtJUd3x+m/yQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDoRxYAQ gXeNIq2HYxQ8/1bztaTqMB8GA1UdIwQYMBaAFEHHVxQpmleN0ZD9H3MJVbH9msH0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUE4Qi9CQTA4QUE0MjRC ODExMUYwOEY2NTUwN0VDNEY5QUUwMi9RY2RYRkNtYVY0M1JrUDBmY3dsVnNmMmF3 ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FjZFhGQ21hVjQzUmtQMGZjd2xWc2YyYXdmUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVBOEIvQkEwOEFBNDI0QjgxMTFGMDhGNjU1MDdFQzRGOUFFMDIvRDk5OUY4ODBB RjQ0MTFGMEE4NjZDQzQ4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQApWO/MA0GCSqGSIb3DQEBCwUAA4IBAQCOoLnkgIRiCPYaSTRAtdig Zehsnh/KCIPHEbq0F8cxRXG5eO6Dj3GPtJbQRGvOmx+otUdCgyStPUDJYHzI6VLr o4VS9psK0Qpgx9rUIs84pZLfGpSJ6lswq2RJsWkHrbAElMjKHFM/rAZhwgtZGGkg uutz+z9HFiI5CStRiVw3cwMd9NQdzv7tJrWDaDEwZMaiy437dflOv6frcg0p2s1h FEA9vFfGuMx+E3VFsgF9CrIbIZ/f9MGCvzfjbgU90NL3LOV3O0fVmCKJrGbEh0Hj lk+izmNLQqWbjPiCjhMlX5FlY5H03I2/cyKpGljcfxBTK0UW8VfxcWsMg/QDvJLD -----END CERTIFICATE-----Generated at Sat Jun 13 19:57:27 2026 by rpki-client