$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B9FD184CC84211F0BF44E068C4F9AE02.roa File: B9FD184CC84211F0BF44E068C4F9AE02.roa (raw, json) Hash identifier: Dpwj2Qu/QGjMr3LLgKtKZSMo+Zdwrsw/mVNkFjzmGJQ= Subject key identifier: 50:61:0F:D3:2C:E0:7D:84:D0:B3:04:BB:76:5F:20:C0:D8:97:4B:AF Certificate issuer: /CN=A91CCDAE/serialNumber=2DBFC7B28615B1FF78D7CF46886AF92139FF968A Certificate serial: 53 Authority key identifier: 2D:BF:C7:B2:86:15:B1:FF:78:D7:CF:46:88:6A:F9:21:39:FF:96:8A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B9FD184CC84211F0BF44E068C4F9AE02.roa Signing time: Fri 27 Mar 2026 08:43:50 +0000 ROA not before: Fri 27 Mar 2026 08:43:50 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 40779 IP address blocks: 82.158.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.crl rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:43:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCDAE, serialNumber=2DBFC7B28615B1FF78D7CF46886AF92139FF968A Validity Not Before: Mar 27 08:43:50 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c64346-1c7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8a:1b:d3:45:3c:f7:02:99:ab:b3:fc:18:11: d5:0c:62:61:44:c6:dc:db:a4:7f:59:54:90:57:c7: 47:07:dd:93:57:97:30:60:36:95:ad:1f:19:6e:48: 5a:47:ff:b0:97:1e:4d:f3:96:12:37:07:71:31:01: cb:db:a0:5c:dd:ac:e9:19:1a:d4:65:0b:0d:f8:b5: 26:46:43:a8:67:58:b6:07:e4:ad:04:15:5f:69:c2: 39:a3:4d:8c:69:9d:fd:b0:6e:5b:4d:b1:36:c5:1f: ca:03:01:f3:01:37:15:9e:20:7a:b8:0a:85:9c:44: c5:84:9d:c1:df:72:f6:fa:09:26:61:6f:91:aa:7f: 72:ce:f2:aa:8f:fe:7b:2a:a8:5e:b2:d7:f8:6d:f2: 99:28:b5:5a:70:db:06:07:a1:38:c2:a2:1d:89:8a: 8a:e4:48:9e:0f:da:dd:47:86:fa:7d:6a:36:1f:bd: ef:16:fe:5b:62:52:7d:da:0b:c1:d2:3c:ce:41:be: 4a:70:a2:6a:2a:2b:bc:cb:27:e9:ad:16:30:33:26: e3:a8:7c:0b:1e:79:e2:6e:5b:94:b5:c3:2a:b2:72: e6:ce:58:d2:25:53:a4:e8:6d:ce:d7:de:cb:89:ee: 45:b1:d0:9d:77:22:f2:91:d8:4b:f1:61:a5:99:7f: 2f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:61:0F:D3:2C:E0:7D:84:D0:B3:04:BB:76:5F:20:C0:D8:97:4B:AF X509v3 Authority Key Identifier: keyid:2D:BF:C7:B2:86:15:B1:FF:78:D7:CF:46:88:6A:F9:21:39:FF:96:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B9FD184CC84211F0BF44E068C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 82.158.224.0/21 Signature Algorithm: sha256WithRSAEncryption 0c:4b:2f:e6:fd:e9:05:7a:bf:7a:1a:bb:45:df:35:b8:64:ab: 6d:5f:65:a0:d9:62:9c:e3:9a:cd:bf:98:32:84:ef:a9:a3:43: 56:33:2b:fb:b4:ea:6d:2a:22:2e:d4:c1:2e:16:54:68:1b:28: 5f:99:c5:fe:43:d6:9f:90:0c:24:bd:7d:eb:19:c4:59:14:bd: 9a:90:bd:47:62:bd:91:17:da:6e:61:3a:6a:14:6a:a5:e6:e5: 39:9b:19:d9:c8:02:ac:ae:3f:14:28:1a:ee:75:1b:a7:9d:83: c7:a1:3a:3c:a5:71:09:d2:d7:f7:4b:f1:bc:74:59:54:53:c2: f2:ad:ef:5e:17:43:ce:c7:2e:5b:13:2c:cb:9e:32:da:7b:26: bf:72:4b:ff:e0:22:b6:24:21:cb:a3:f5:a2:8b:c0:df:4d:91: ed:5e:86:d3:f8:c2:98:6e:2f:7e:11:2f:c0:cb:11:20:d5:78: c3:23:24:37:d8:cf:8b:a2:d3:b9:97:7d:43:fb:43:b2:f9:6d: 75:3f:bd:94:6e:2f:df:ec:a8:3f:55:b5:49:8c:f5:48:d5:5c: b9:e4:23:5b:43:01:24:af:29:ce:8d:fe:da:00:26:6c:a9:e2: bd:03:b4:56:54:57:aa:90:c5:db:6e:33:f0:2e:c8:9b:33:44: 78:43:19:37 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0RBRTExMC8GA1UEBRMoMkRCRkM3QjI4NjE1QjFGRjc4RDdDRjQ2ODg2QUY5MjEz OUZGOTY4QTAeFw0yNjAzMjcwODQzNTBaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YzY0MzQ2LTFjN2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2ihvTRTz3Apmrs/wYEdUMYmFExtzbpH9ZVJBXx0cH3ZNXlzBgNpWtHxluSFpH /7CXHk3zlhI3B3ExAcvboFzdrOkZGtRlCw34tSZGQ6hnWLYH5K0EFV9pwjmjTYxp nf2wbltNsTbFH8oDAfMBNxWeIHq4CoWcRMWEncHfcvb6CSZhb5Gqf3LO8qqP/nsq qF6y1/ht8pkotVpw2wYHoTjCoh2JiorkSJ4P2t1Hhvp9ajYfve8W/ltiUn3aC8HS PM5BvkpwomoqK7zLJ+mtFjAzJuOofAseeeJuW5S1wyqycubOWNIlU6Tobc7X3suJ 7kWx0J13IvKR2EvxYaWZfy+rAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUUGEP0yzg fYTQswS7dl8gwNiXS68wHwYDVR0jBBgwFoAULb/HsoYVsf94189GiGr5ITn/loow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDREFFLzJGQkVBNDAyQzg0 MjExRjBBMzNFOUE3RUM0RjlBRTAyL0xiX0hzb1lWc2Y5NDE4OUdpR3I1SVRuX2xv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvTGJfSHNvWVZzZjk0MTg5R2lHcjVJVG5fbG9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0RBRS8yRkJFQTQwMkM4NDIxMUYwQTMzRTlBN0VDNEY5QUUwMi9COUZEMTg0Q0M4 NDIxMUYwQkY0NEUwNjhDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBANSnuAwDQYJKoZIhvcNAQELBQADggEBAAxLL+b96QV6v3oau0XfNbhk q21fZaDZYpzjms2/mDKE76mjQ1YzK/u06m0qIi7UwS4WVGgbKF+Zxf5D1p+QDCS9 fesZxFkUvZqQvUdivZEX2m5hOmoUaqXm5TmbGdnIAqyuPxQoGu51G6edg8ehOjyl cQnS1/dL8bx0WVRTwvKt714XQ87HLlsTLMueMtp7Jr9yS//gIrYkIcuj9aKLwN9N ke1ehtP4wphuL34RL8DLESDVeMMjJDfYz4ui07mXfUP7Q7L5bXU/vZRuL9/sqD9V tUmM9UjVXLnkI1tDASSvKc6N/toAJmyp4r0DtFZUV6qQxdtuM/AuyJszRHhDGTc= -----END CERTIFICATE-----Generated at Fri Apr 17 09:38:39 2026 by rpki-client