$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/C19C2720CA2711EE82C12B0CC4F9AE02.roa File: C19C2720CA2711EE82C12B0CC4F9AE02.roa (raw, json) Hash identifier: iT8lofsufkqaE8kLYzzckWQ2CiWcXYbFpAikgckwO3Q= Subject key identifier: 64:9B:0D:C9:B1:1C:13:3A:48:73:6B:33:CB:9D:20:67:CB:1D:E4:28 Certificate issuer: /CN=A91CD1A2/serialNumber=C3E200D4005D9A23E4BFAEAE0EDB72EA43F1D096 Certificate serial: 0187 Authority key identifier: C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/C19C2720CA2711EE82C12B0CC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:28:55 +0000 ROA not before: Sun 05 Oct 2025 04:30:55 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136582 IP address blocks: 157.15.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.crl rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD1A2, serialNumber=C3E200D4005D9A23E4BFAEAE0EDB72EA43F1D096 Validity Not Before: Oct 5 04:30:55 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a414e7-9830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e7:ce:6f:8b:db:17:b7:1c:17:71:96:bf:63: 28:c8:1a:e6:f9:43:69:97:31:b1:49:01:af:0b:49: 3b:93:78:74:83:b6:17:75:d5:ac:cf:7e:b1:e3:e2: 59:36:89:f7:e2:1f:aa:29:37:94:67:56:73:df:ea: 29:37:d6:55:34:e3:80:1a:82:de:6d:16:40:07:92: 79:49:b6:2d:d5:1d:c8:f9:fb:23:83:ab:46:a9:30: 87:b0:fd:03:77:7a:04:84:ad:be:29:ad:fe:80:d6: c8:db:5c:d8:3c:70:af:57:a0:fb:f0:6a:cf:78:bb: 50:c8:70:2f:dd:8e:ae:5b:6c:ed:3d:48:5e:2d:59: 7c:97:5f:11:87:af:63:66:a8:95:b4:38:f5:36:cd: c4:d7:8c:0a:63:25:98:9e:24:ec:57:45:41:05:7b: 3b:89:ae:4e:0b:a3:54:d3:57:5c:9e:5d:31:35:08: c5:9e:49:67:86:73:8f:62:79:17:03:04:56:8b:cb: 8f:bc:56:2e:53:4d:2a:38:d7:bb:d7:75:1a:b9:e1: 84:5c:37:c0:3c:2b:9d:b4:46:f5:92:e8:ed:cb:8d: bd:c0:e2:33:ec:8a:59:4f:57:08:8f:78:cc:8c:d2: 36:4b:e9:0d:79:99:0e:a6:ad:ca:b2:31:98:c6:35: 31:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:9B:0D:C9:B1:1C:13:3A:48:73:6B:33:CB:9D:20:67:CB:1D:E4:28 X509v3 Authority Key Identifier: keyid:C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/C19C2720CA2711EE82C12B0CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.15.225.0/24 Signature Algorithm: sha256WithRSAEncryption 97:ea:4c:e3:f2:d9:f6:c6:ce:27:f8:0e:3f:da:d8:70:9c:45: eb:0e:95:27:4f:e6:29:bb:ea:8e:78:1a:d3:dd:1c:61:47:74: 9d:c4:ff:48:d6:d6:07:b7:3e:fa:84:a2:7e:a4:2e:76:95:6f: 8f:85:9e:34:f6:8e:66:ee:a6:14:14:b1:6f:69:f6:33:97:ac: e3:66:34:55:07:a7:94:5d:74:aa:ee:49:f2:8c:3f:74:a5:ff: 5c:7a:db:4d:a4:9c:49:3b:6f:dd:6a:78:14:9f:e2:02:40:19: dd:71:0c:1e:b2:94:ce:f5:0b:7f:9c:51:e6:12:62:c0:ed:59: 40:c1:37:b7:03:7b:d3:17:d0:82:6a:a8:e4:18:4d:dd:b5:db: e6:cc:ce:13:ad:60:5c:bd:64:aa:b9:79:86:ac:34:61:b3:69: 3f:ec:56:0f:55:2f:bf:06:68:1f:7b:20:9f:f8:17:77:1f:29: e9:03:e2:fe:88:07:c6:41:d1:77:9d:da:43:9a:c5:cd:67:f1: 7b:d1:96:d0:38:11:05:af:b7:09:1f:fd:eb:1d:31:f2:22:aa: 71:1d:07:11:b9:f0:f4:03:2b:1c:62:78:60:01:00:30:85:26: 5d:be:03:2f:aa:2a:ed:09:ca:9e:df:af:43:b7:da:98:2c:b5: e0:a7:4f:23 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QxQTIxMTAvBgNVBAUTKEMzRTIwMEQ0MDA1RDlBMjNFNEJGQUVBRTBFREI3MkVB NDNGMUQwOTYwHhcNMjUxMDA1MDQzMDU1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTRlNy05ODMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+fOb4vbF7ccF3GWv2MoyBrm+UNplzGxSQGvC0k7k3h0g7YXddWsz36x4+JZ Non34h+qKTeUZ1Zz3+opN9ZVNOOAGoLebRZAB5J5SbYt1R3I+fsjg6tGqTCHsP0D d3oEhK2+Ka3+gNbI21zYPHCvV6D78GrPeLtQyHAv3Y6uW2ztPUheLVl8l18Rh69j ZqiVtDj1Ns3E14wKYyWYniTsV0VBBXs7ia5OC6NU01dcnl0xNQjFnklnhnOPYnkX AwRWi8uPvFYuU00qONe713UaueGEXDfAPCudtEb1kujty429wOIz7IpZT1cIj3jM jNI2S+kNeZkOpq3KsjGYxjUx+QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGSbDcmx HBM6SHNrM8udIGfLHeQoMB8GA1UdIwQYMBaAFMPiANQAXZoj5L+urg7bcupD8dCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDFBMi8xQTFFM0RFNEM5 RkExMUVFODNGNUIwMjlDNEY5QUUwMi93LUlBMUFCZG1pUGt2NjZ1RHR0eTZrUHgw SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ctSUExQUJkbWlQa3Y2NnVEdHR5NmtQeDBKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QxQTIvMUExRTNERTRDOUZBMTFFRTgzRjVCMDI5QzRGOUFFMDIvQzE5QzI3MjBD QTI3MTFFRTgyQzEyQjBDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAnQ/hMA0GCSqGSIb3DQEBCwUAA4IBAQCX6kzj8tn2xs4n+A4/2thw nEXrDpUnT+Ypu+qOeBrT3RxhR3SdxP9I1tYHtz76hKJ+pC52lW+PhZ409o5m7qYU FLFvafYzl6zjZjRVB6eUXXSq7knyjD90pf9cettNpJxJO2/dangUn+ICQBndcQwe spTO9Qt/nFHmEmLA7VlAwTe3A3vTF9CCaqjkGE3dtdvmzM4TrWBcvWSquXmGrDRh s2k/7FYPVS+/BmgfeyCf+Bd3HynpA+L+iAfGQdF3ndpDmsXNZ/F70ZbQOBEFr7cJ H/3rHTHyIqpxHQcRufD0AyscYnhgAQAwhSZdvgMvqirtCcqe369Dt9qYLLXgp08j -----END CERTIFICATE-----Generated at Mon Mar 2 11:22:32 2026 by rpki-client