$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/D999F880AF4411F0A866CC48C4F9AE02.roa File: D999F880AF4411F0A866CC48C4F9AE02.roa (raw, json) Hash identifier: cG6u0zgjdvCrRZeQ4usyXAcEzT17uS3cbK/qREEeINU= Subject key identifier: 42:23:90:1B:77:12:FD:24:7B:EB:55:F0:2C:D4:7F:B0:F4:1C:62:E3 Certificate issuer: /CN=A91BEA8B/serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Certificate serial: 9C Authority key identifier: 41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/D999F880AF4411F0A866CC48C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:16:04 +0000 ROA not before: Wed 22 Oct 2025 12:44:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 154066 IP address blocks: 165.99.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:57:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA8B, serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Validity Not Before: Oct 22 12:44:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a45834-bf3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f5:0e:90:7e:9d:5d:12:f2:85:9e:da:4d:7e: 9f:ae:0b:30:27:89:89:78:57:d5:cc:d6:bb:ed:22: 1d:eb:40:69:61:d6:53:36:80:d8:27:0f:37:15:f9: 41:f4:4e:29:1c:88:68:df:ff:70:9a:d7:1c:2f:63: 25:0b:37:ba:30:7f:7b:9c:da:ca:20:d6:ff:21:54: e1:48:84:4d:27:04:00:37:01:33:c6:7e:c4:2c:ab: 41:65:70:cf:01:3c:d8:c4:94:8b:16:27:ea:24:94: 7b:e1:d4:f9:c0:b3:60:d5:46:1e:47:5d:0b:10:3a: 7c:7a:f9:29:59:9d:8a:87:cf:fc:fa:b0:67:9f:38: 3e:4c:b5:b9:83:24:4f:5f:db:81:c5:7d:ec:fe:9b: 6c:41:04:00:08:d9:ea:67:9b:f1:55:4c:c1:1b:91: 4c:42:aa:2c:1a:a4:6e:9f:14:2f:18:f2:17:51:0a: 12:21:3c:e7:3e:49:e7:77:b1:c0:80:fc:d6:56:65: 49:71:cf:86:8f:0b:52:0a:7f:8d:09:66:8b:9f:d1: c7:11:7e:05:93:ee:81:7c:db:17:f2:30:e7:71:0e: 78:04:76:2a:f2:04:30:d2:a5:63:fe:af:1e:03:0c: 95:aa:70:c8:b6:dd:e5:72:37:14:18:75:1d:f4:3f: 14:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:23:90:1B:77:12:FD:24:7B:EB:55:F0:2C:D4:7F:B0:F4:1C:62:E3 X509v3 Authority Key Identifier: keyid:41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/D999F880AF4411F0A866CC48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.99.191.0/24 Signature Algorithm: sha256WithRSAEncryption bd:fa:17:ce:6b:cc:76:60:0d:d4:9f:ab:69:06:4b:81:03:f0: 57:37:b7:c6:e9:22:35:ef:a1:53:05:01:52:cb:01:4b:2d:f7: 89:8c:64:19:7c:59:55:97:81:31:20:96:70:ec:6d:4e:cf:5d: 07:09:a3:bc:82:6b:62:9a:47:cf:5e:c1:e8:75:a2:12:6e:a1: f4:a9:92:ee:23:7a:d6:ac:bd:5a:a7:15:67:5c:bd:8c:16:ea: 00:8f:48:31:2e:e6:0f:5e:c3:db:f9:91:7e:94:98:ab:ac:69: d9:a0:2d:dc:6d:33:96:6e:ec:fc:1f:e3:0b:28:e5:c4:3b:cc: 55:f1:5b:02:f8:c2:02:c7:cd:a2:92:83:75:32:f1:16:86:87: cc:3a:61:eb:71:7d:d8:25:d1:b2:14:ea:69:f2:c5:d9:c7:3d: bb:0d:9c:82:fa:13:5d:11:a7:f2:a1:4e:db:a4:ef:de:bf:9a: c2:2d:5a:00:08:36:35:eb:b2:c0:8e:76:dc:5d:1f:21:c5:86: 0a:ce:74:30:5c:c8:d6:50:42:a0:ac:25:ea:a7:b5:91:00:99: 4f:0b:c5:f4:e7:8b:1b:c8:79:c9:81:b2:02:e0:12:d2:a3:2e: e5:86:f3:30:77:c4:31:cd:1f:de:a5:a8:b2:b6:2a:46:cb:61: 76:ac:e7:5d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVBOEIxMTAvBgNVBAUTKDQxQzc1NzE0Mjk5QTU3OEREMTkwRkQxRjczMDk1NUIx RkQ5QUMxRjQwHhcNMjUxMDIyMTI0NDI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTgzNC1iZjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4vUOkH6dXRLyhZ7aTX6frgswJ4mJeFfVzNa77SId60BpYdZTNoDYJw83FflB 9E4pHIho3/9wmtccL2MlCze6MH97nNrKINb/IVThSIRNJwQANwEzxn7ELKtBZXDP ATzYxJSLFifqJJR74dT5wLNg1UYeR10LEDp8evkpWZ2Kh8/8+rBnnzg+TLW5gyRP X9uBxX3s/ptsQQQACNnqZ5vxVUzBG5FMQqosGqRunxQvGPIXUQoSITznPknnd7HA gPzWVmVJcc+GjwtSCn+NCWaLn9HHEX4Fk+6BfNsX8jDncQ54BHYq8gQw0qVj/q8e AwyVqnDItt3lcjcUGHUd9D8UFQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEIjkBt3 Ev0ke+tV8CzUf7D0HGLjMB8GA1UdIwQYMBaAFEHHVxQpmleN0ZD9H3MJVbH9msH0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUE4Qi9CQTA4QUE0MjRC ODExMUYwOEY2NTUwN0VDNEY5QUUwMi9RY2RYRkNtYVY0M1JrUDBmY3dsVnNmMmF3 ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FjZFhGQ21hVjQzUmtQMGZjd2xWc2YyYXdmUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVBOEIvQkEwOEFBNDI0QjgxMTFGMDhGNjU1MDdFQzRGOUFFMDIvRDk5OUY4ODBB RjQ0MTFGMEE4NjZDQzQ4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQApWO/MA0GCSqGSIb3DQEBCwUAA4IBAQC9+hfOa8x2YA3Un6tpBkuB A/BXN7fG6SI176FTBQFSywFLLfeJjGQZfFlVl4ExIJZw7G1Oz10HCaO8gmtimkfP XsHodaISbqH0qZLuI3rWrL1apxVnXL2MFuoAj0gxLuYPXsPb+ZF+lJirrGnZoC3c bTOWbuz8H+MLKOXEO8xV8VsC+MICx82ikoN1MvEWhofMOmHrcX3YJdGyFOpp8sXZ xz27DZyC+hNdEafyoU7bpO/ev5rCLVoACDY167LAjnbcXR8hxYYKznQwXMjWUEKg rCXqp7WRAJlPC8X054sbyHnJgbIC4BLSoy7lhvMwd8QxzR/epaiytipGy2F2rOdd -----END CERTIFICATE-----Generated at Mon Mar 2 05:36:17 2026 by rpki-client