$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9706/F888443A114711F18BB454AF223D8C67/B7B7EE46118411F1951E019C333D8C67.roa File: B7B7EE46118411F1951E019C333D8C67.roa (raw, json) Hash identifier: nTrTUgHl4VUdhScRvQ7M38Aw7fBG/zsPSb6R6Q8BgHU= Subject key identifier: 7E:F2:A8:6D:11:8D:50:5F:9F:B9:16:30:31:54:F5:AA:13:D9:97:79 Certificate issuer: /CN=A91C9706/serialNumber=F1E0FD7BDAF1719890F6B249B3BC418214BA8ACB Certificate serial: 0B Authority key identifier: F1:E0:FD:7B:DA:F1:71:98:90:F6:B2:49:B3:BC:41:82:14:BA:8A:CB Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/8eD9e9rxcZiQ9rJJs7xBghS6iss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9706/F888443A114711F18BB454AF223D8C67/B7B7EE46118411F1951E019C333D8C67.roa Signing time: Sun 01 Mar 2026 05:33:16 +0000 ROA not before: Tue 24 Feb 2026 13:28:34 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 151805 IP address blocks: 151.158.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9706/F888443A114711F18BB454AF223D8C67/8eD9e9rxcZiQ9rJJs7xBghS6iss.crl rsync://rpki.apnic.net/member_repository/A91C9706/F888443A114711F18BB454AF223D8C67/8eD9e9rxcZiQ9rJJs7xBghS6iss.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/8eD9e9rxcZiQ9rJJs7xBghS6iss.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9706, serialNumber=F1E0FD7BDAF1719890F6B249B3BC418214BA8ACB Validity Not Before: Feb 24 13:28:34 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a3cf9c-d3a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:85:ce:43:fa:e7:fb:e4:10:b2:43:dd:d9:ba: 76:83:bf:e6:95:ba:17:eb:31:bc:f6:a5:9e:31:1a: 9d:9a:8b:9e:74:aa:ae:70:c9:d8:f0:17:57:e8:52: 40:f2:a9:8c:1b:b2:3b:d5:0b:13:a8:61:8c:a3:df: 3b:4f:7e:bc:99:9b:7c:7f:c1:13:4f:ea:3f:5f:ad: b2:92:e7:d0:0a:c6:10:a6:7b:65:3e:c0:da:08:7e: 0f:f1:e2:0d:db:65:00:2e:22:39:6d:aa:ab:f3:a1: ad:46:c8:08:eb:22:3a:10:35:69:0b:56:dc:03:a3: 5d:66:95:91:41:1a:bb:0d:3a:c7:30:88:c5:39:92: 29:78:25:88:02:64:7b:73:0a:67:c7:2b:6e:d2:0f: 4e:2b:ae:05:d6:d3:dd:0f:54:54:f3:ca:c3:3d:42: 30:4d:fc:1d:68:77:32:2a:cc:b3:bb:30:61:3b:c5: 8e:c5:17:f1:2d:15:cf:9c:23:a4:8a:83:c1:2a:7a: 36:0e:db:4b:48:12:2c:39:6d:c1:5b:e6:5b:3b:04: b4:15:df:11:03:28:e7:57:10:5d:9f:38:7d:da:d2: de:ed:d9:5d:c2:fe:5f:56:91:fe:0c:4d:b1:76:a8: 43:2b:3e:d1:5b:88:32:c1:ad:b3:96:97:a3:42:84: 8a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:F2:A8:6D:11:8D:50:5F:9F:B9:16:30:31:54:F5:AA:13:D9:97:79 X509v3 Authority Key Identifier: keyid:F1:E0:FD:7B:DA:F1:71:98:90:F6:B2:49:B3:BC:41:82:14:BA:8A:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9706/F888443A114711F18BB454AF223D8C67/8eD9e9rxcZiQ9rJJs7xBghS6iss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/8eD9e9rxcZiQ9rJJs7xBghS6iss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9706/F888443A114711F18BB454AF223D8C67/B7B7EE46118411F1951E019C333D8C67.roa sbgp-ipAddrBlock: critical IPv4: 151.158.219.0/24 Signature Algorithm: sha256WithRSAEncryption 82:e7:53:02:e2:ef:77:7a:fd:fc:54:4a:18:e4:e0:d3:c4:15: 4d:c0:0a:c6:bf:ce:ec:ff:20:7c:d9:43:6d:e1:35:a9:44:63: d9:95:39:ad:39:61:14:70:62:3c:72:04:c5:77:4d:e4:a0:6a: e4:25:dd:a3:6f:63:ac:e7:55:a2:c0:bc:26:e7:e6:3b:c4:dd: e8:b6:4e:a1:fb:be:e3:9a:d8:58:a7:ac:87:e0:e6:dd:fc:16: de:3d:92:74:38:12:22:17:f5:29:22:55:5c:0b:64:86:eb:90: 68:d9:80:75:00:f0:ea:71:2d:fe:3b:89:96:11:9a:19:04:dd: 01:de:56:bb:db:f9:26:dd:d4:05:46:1f:ef:9d:1a:9b:61:9c: ad:88:c3:c6:6c:72:7c:c8:3d:ee:ee:b3:c1:97:31:18:ba:1f: 18:7b:a0:e3:61:41:78:37:7d:77:0a:50:49:95:a6:00:a7:89: 6b:43:f1:da:a8:69:6a:ba:9f:f5:cd:49:7c:cf:53:36:fa:8f: c1:8f:84:cb:15:61:32:81:02:01:75:22:4c:df:bd:f7:f2:66: cb:61:bb:7f:ac:0f:d8:68:53:d8:85:09:35:68:25:5e:e0:7f: be:fb:63:86:b0:fa:99:43:4e:64:13:a6:67:21:2e:e9:71:3b: aa:4c:0a:e2 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OTcwNjExMC8GA1UEBRMoRjFFMEZEN0JEQUYxNzE5ODkwRjZCMjQ5QjNCQzQxODIx NEJBOEFDQjAeFw0yNjAyMjQxMzI4MzRaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNjZjljLWQzYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCThc5D+uf75BCyQ93ZunaDv+aVuhfrMbz2pZ4xGp2ai550qq5wydjwF1foUkDy qYwbsjvVCxOoYYyj3ztPfryZm3x/wRNP6j9frbKS59AKxhCme2U+wNoIfg/x4g3b ZQAuIjltqqvzoa1GyAjrIjoQNWkLVtwDo11mlZFBGrsNOscwiMU5kil4JYgCZHtz CmfHK27SD04rrgXW090PVFTzysM9QjBN/B1odzIqzLO7MGE7xY7FF/EtFc+cI6SK g8EqejYO20tIEiw5bcFb5ls7BLQV3xEDKOdXEF2fOH3a0t7t2V3C/l9Wkf4MTbF2 qEMrPtFbiDLBrbOWl6NChIpjAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUfvKobRGN UF+fuRYwMVT1qhPZl3kwHwYDVR0jBBgwFoAU8eD9e9rxcZiQ9rJJs7xBghS6issw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5NzA2L0Y4ODg0NDNBMTE0 NzExRjE4QkI0NTRBRjIyM0Q4QzY3LzhlRDllOXJ4Y1ppUTlySkpzN3hCZ2hTNmlz cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvOGVEOWU5cnhjWmlROXJKSnM3eEJnaFM2aXNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTcwNi9GODg4NDQzQTExNDcxMUYxOEJCNDU0QUYyMjNEOEM2Ny9CN0I3RUU0NjEx ODQxMUYxOTUxRTAxOUMzMzNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACXntswDQYJKoZIhvcNAQELBQADggEBAILnUwLi73d6/fxUShjk4NPE FU3ACsa/zuz/IHzZQ23hNalEY9mVOa05YRRwYjxyBMV3TeSgauQl3aNvY6znVaLA vCbn5jvE3ei2TqH7vuOa2FinrIfg5t38Ft49knQ4EiIX9SkiVVwLZIbrkGjZgHUA 8OpxLf47iZYRmhkE3QHeVrvb+Sbd1AVGH++dGpthnK2Iw8ZscnzIPe7us8GXMRi6 Hxh7oONhQXg3fXcKUEmVpgCniWtD8dqoaWq6n/XNSXzPUzb6j8GPhMsVYTKBAgF1 IkzfvffyZsthu3+sD9hoU9iFCTVoJV7gf777Y4aw+plDTmQTpmchLulxO6pMCuI= -----END CERTIFICATE-----Generated at Mon Mar 2 14:04:35 2026 by rpki-client