$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/09E42D1E921B11EF829E0041C4F9AE02.roa File: 09E42D1E921B11EF829E0041C4F9AE02.roa (raw, json) Hash identifier: j9PF6XHW/9cjHdZemEYcO4bIyJTkShVbfz28uJrkeSE= Subject key identifier: 29:99:AD:1B:C6:71:EB:81:06:9B:D5:DF:F2:91:25:89:51:2F:5A:46 Certificate issuer: /CN=A91C6CAF/serialNumber=9F02DA3AB5FB45317507C48021CE0A8B937255C9 Certificate serial: 01AA Authority key identifier: 9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/09E42D1E921B11EF829E0041C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:37:45 +0000 ROA not before: Tue 27 Jan 2026 03:23:09 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 152334 IP address blocks: 157.10.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.crl rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 12:37:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6CAF, serialNumber=9F02DA3AB5FB45317507C48021CE0A8B937255C9 Validity Not Before: Jan 27 03:23:09 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a58498-2304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4f:48:7c:32:d3:92:8c:79:ed:02:f7:f4:44: 25:dc:ae:ff:78:06:21:da:d1:a4:4d:9a:2f:ad:60: e8:1e:d1:20:f9:16:85:1e:48:fb:68:16:0a:8f:08: ba:9b:a7:71:5a:1a:54:fc:96:8c:24:31:ba:ad:cc: b5:b9:c4:f2:9d:90:6d:ca:4f:2a:45:ad:d5:4e:24: fe:17:34:0e:18:9e:b5:0e:c5:e0:8b:aa:60:bf:e5: e1:e5:4d:4c:76:b6:e0:cb:41:ae:69:18:e6:fa:cf: 76:8a:4c:b1:ae:a0:23:c3:ae:84:88:27:30:0a:a1: b1:aa:c5:85:76:9a:33:89:8d:66:68:58:e6:bd:0c: 4a:d1:5e:f2:4f:2e:1d:9a:56:ee:22:13:87:75:f3: f4:5e:e0:92:ea:e4:75:b4:b1:9e:68:a1:fd:20:b2: 0d:e1:e5:8d:44:54:dc:73:b5:bc:cd:b4:24:0b:15: 95:32:01:69:e7:c7:6e:95:2a:2d:09:9b:85:07:7b: af:99:3f:e7:82:25:64:40:bd:6c:e4:42:ec:38:eb: 52:62:22:ea:be:50:b9:9b:6a:80:df:c0:95:ec:dc: aa:e1:42:b9:79:dd:2d:b8:b6:c2:55:43:72:00:0e: 69:4e:f4:49:7a:72:a0:6e:0e:6e:0d:2b:bb:72:a2: e3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:99:AD:1B:C6:71:EB:81:06:9B:D5:DF:F2:91:25:89:51:2F:5A:46 X509v3 Authority Key Identifier: keyid:9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/09E42D1E921B11EF829E0041C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.238.0/24 Signature Algorithm: sha256WithRSAEncryption d2:86:fa:f0:ba:4c:d7:02:c6:ba:81:44:d9:72:53:02:43:f0: fe:c6:ce:b7:3e:d8:b2:3b:aa:d8:cb:12:cb:a8:d3:69:4f:37: 01:c6:80:11:25:c2:c8:dd:98:0f:53:0a:5e:39:2c:e6:2e:c2: 8d:30:11:31:3f:0d:ac:a1:3d:cc:fe:60:fc:94:b3:91:6c:16: b6:fb:60:17:4b:3e:36:1a:c0:92:9b:36:7b:bd:39:c2:56:1e: 1a:c7:cc:6b:a6:0a:b5:af:b6:15:bb:98:c8:e8:01:d0:a9:7e: 39:32:8b:51:13:2d:5c:54:0a:c5:14:d6:6c:7a:c2:2d:fb:29: dc:35:41:f7:b7:f2:7a:64:6b:ff:af:70:8f:b8:b2:2d:be:62: b4:16:7f:bd:eb:33:52:20:00:5d:7b:43:8f:53:49:12:72:5b: 2d:e8:84:20:c2:c4:d7:7a:66:33:1c:ce:a8:ea:91:df:50:ef: f6:8a:67:35:4c:7f:76:ae:38:56:b6:f0:c5:05:09:cd:fd:be: 26:d9:43:33:d6:9c:de:46:8b:41:60:37:16:d4:95:a3:88:6d: 80:6a:80:ff:51:6d:e8:3a:66:ec:52:2c:2e:0f:c3:47:2f:74: 78:f8:cc:b4:f1:4b:a0:17:af:50:3e:d8:17:e1:87:0b:33:b3: 50:f5:02:c1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZDQUYxMTAvBgNVBAUTKDlGMDJEQTNBQjVGQjQ1MzE3NTA3QzQ4MDIxQ0UwQThC OTM3MjU1QzkwHhcNMjYwMTI3MDMyMzA5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODQ5OC0yMzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3k9IfDLTkox57QL39EQl3K7/eAYh2tGkTZovrWDoHtEg+RaFHkj7aBYKjwi6 m6dxWhpU/JaMJDG6rcy1ucTynZBtyk8qRa3VTiT+FzQOGJ61DsXgi6pgv+Xh5U1M drbgy0GuaRjm+s92ikyxrqAjw66EiCcwCqGxqsWFdpoziY1maFjmvQxK0V7yTy4d mlbuIhOHdfP0XuCS6uR1tLGeaKH9ILIN4eWNRFTcc7W8zbQkCxWVMgFp58dulSot CZuFB3uvmT/ngiVkQL1s5ELsOOtSYiLqvlC5m2qA38CV7Nyq4UK5ed0tuLbCVUNy AA5pTvRJenKgbg5uDSu7cqLjswIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCmZrRvG ceuBBpvV3/KRJYlRL1pGMB8GA1UdIwQYMBaAFJ8C2jq1+0UxdQfEgCHOCouTclXJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkNBRi9GM0UwRkFFNEI2 RjQxMUVFQUMyMDM4MTBDNEY5QUUwMi9ud0xhT3JYN1JURjFCOFNBSWM0S2k1TnlW Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL253TGFPclg3UlRGMUI4U0FJYzRLaTVOeVZjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZDQUYvRjNFMEZBRTRCNkY0MTFFRUFDMjAzODEwQzRGOUFFMDIvMDlFNDJEMUU5 MjFCMTFFRjgyOUUwMDQxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAnQruMA0GCSqGSIb3DQEBCwUAA4IBAQDShvrwukzXAsa6gUTZclMC Q/D+xs63PtiyO6rYyxLLqNNpTzcBxoARJcLI3ZgPUwpeOSzmLsKNMBExPw2soT3M /mD8lLORbBa2+2AXSz42GsCSmzZ7vTnCVh4ax8xrpgq1r7YVu5jI6AHQqX45MotR Ey1cVArFFNZsesIt+yncNUH3t/J6ZGv/r3CPuLItvmK0Fn+96zNSIABde0OPU0kS clst6IQgwsTXemYzHM6o6pHfUO/2imc1TH92rjhWtvDFBQnN/b4m2UMz1pzeRotB YDcW1JWjiG2AaoD/UW3oOmbsUiwuD8NHL3R4+My08UugF69QPtgX4YcLM7NQ9QLB -----END CERTIFICATE-----Generated at Mon Mar 2 16:28:36 2026 by rpki-client