$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/5C154406988911E991B10838C4F9AE02.roa File: 5C154406988911E991B10838C4F9AE02.roa (raw, json) Hash identifier: 6Fzpl7Y9ajUJOKHixKWiY9U2IbPu6r4VOVT8m52u14o= Subject key identifier: 79:42:28:0C:27:5C:C6:55:8C:62:CB:55:33:82:9A:A2:41:A6:A8:6B Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0F1A Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/5C154406988911E991B10838C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:38:01 +0000 ROA not before: Fri 02 Jan 2026 18:14:49 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 23881 IP address blocks: 23.226.0.0/24 maxlen: 24 23.226.1.0/24 maxlen: 24 23.226.2.0/24 maxlen: 24 23.226.3.0/24 maxlen: 24 23.226.4.0/24 maxlen: 24 23.226.5.0/24 maxlen: 24 23.226.6.0/24 maxlen: 24 23.226.7.0/24 maxlen: 24 23.226.8.0/24 maxlen: 24 23.226.9.0/24 maxlen: 24 23.226.10.0/24 maxlen: 24 23.226.11.0/24 maxlen: 24 23.226.12.0/24 maxlen: 24 23.226.13.0/24 maxlen: 24 23.226.14.0/24 maxlen: 24 23.226.15.0/24 maxlen: 24 162.247.0.0/24 maxlen: 24 162.247.1.0/24 maxlen: 24 162.247.2.0/24 maxlen: 24 162.247.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3866 (0xf1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E, serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Validity Not Before: Jan 2 18:14:49 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a44f49-3146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:72:7e:10:a7:e4:72:f9:81:41:b2:07:d7:c7: 89:1c:46:9d:c9:cf:3e:68:11:3d:78:e9:59:dc:a0: 16:01:b6:c0:ad:24:db:28:55:13:fd:0b:b0:b8:c8: d6:a5:85:fd:da:98:91:af:c7:82:57:08:93:08:72: 55:f2:11:23:4e:7d:79:c2:0e:22:ee:43:ed:61:cf: f1:15:5f:43:7d:15:73:b2:1c:2c:d7:90:f8:4e:99: 80:d6:7f:5b:9b:fc:a7:7c:d2:3c:f4:1c:f3:5d:a5: 08:e5:c9:c7:40:59:26:7c:c7:d2:2f:aa:04:bd:07: 71:49:30:ac:32:7e:fd:a7:62:cc:2b:98:73:4a:22: f0:2b:8f:3d:82:05:87:0c:49:54:65:0f:0f:10:9e: b2:92:d8:0f:69:70:78:4b:32:e0:04:cb:6a:81:28: 74:46:21:56:b8:1b:85:de:9d:b4:99:3f:84:45:13: 21:1a:b4:7e:82:ce:94:76:6c:6e:21:c1:c4:ad:94: 29:ed:9a:9a:cb:9c:c2:ec:db:47:47:95:ce:e5:02: 44:84:ef:e3:d9:7e:51:05:50:2d:c2:98:a5:1e:46: d7:f5:46:89:72:eb:90:47:f0:a0:18:50:6f:7f:d5: 5b:c5:c9:4a:3c:21:a9:e2:29:94:b0:ad:2e:10:9b: ef:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:42:28:0C:27:5C:C6:55:8C:62:CB:55:33:82:9A:A2:41:A6:A8:6B X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/5C154406988911E991B10838C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 23.226.0.0/20 162.247.0.0/22 Signature Algorithm: sha256WithRSAEncryption a4:d5:88:db:35:ea:9b:fa:ad:4a:8e:ec:ba:cf:e2:94:05:58: d5:ab:76:36:6a:20:e3:bb:4e:67:25:70:85:44:29:35:54:fb: f5:90:77:c3:8a:dc:83:81:7c:0a:7d:4c:1c:74:9b:1e:5e:70: c1:81:59:8d:93:4f:71:17:39:2c:1f:d5:d6:6d:0a:8c:2e:a5: 21:1c:12:ad:d6:9b:85:51:94:38:0d:dd:7d:ac:49:9c:b0:ec: da:84:a8:38:af:9a:bc:1e:33:3b:08:2b:ca:f7:16:e2:8f:ae: 84:60:5c:02:08:8f:45:83:19:3f:e4:da:c0:e1:75:d6:45:65: 22:64:65:8a:73:94:02:dc:2d:b6:33:a0:25:60:94:47:c1:32: 58:82:16:f8:d0:f6:9a:bd:a5:09:5c:67:e0:eb:84:86:4c:36: e3:78:a5:ab:30:51:40:af:5d:0f:62:c2:33:b0:e9:7d:e9:6d: a5:df:17:4f:13:b9:da:24:e8:cc:e3:a9:65:ae:e2:a3:32:eb: 48:be:c8:0e:4a:cb:58:bf:cb:5b:ea:60:31:9c:a2:bc:da:b8: ee:18:5d:22:f1:1a:5d:4e:28:6c:9e:a6:9e:df:be:71:3a:28: 0f:34:81:d1:f3:0b:a4:d5:43:ee:d2:73:01:f3:88:a9:54:07: da:9f:ac:39 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjYwMTAyMTgxNDQ5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGY0OS0zMTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXJ+EKfkcvmBQbIH18eJHEadyc8+aBE9eOlZ3KAWAbbArSTbKFUT/QuwuMjW pYX92piRr8eCVwiTCHJV8hEjTn15wg4i7kPtYc/xFV9DfRVzshws15D4TpmA1n9b m/ynfNI89BzzXaUI5cnHQFkmfMfSL6oEvQdxSTCsMn79p2LMK5hzSiLwK489ggWH DElUZQ8PEJ6yktgPaXB4SzLgBMtqgSh0RiFWuBuF3p20mT+ERRMhGrR+gs6Udmxu IcHErZQp7Zqay5zC7NtHR5XO5QJEhO/j2X5RBVAtwpilHkbX9UaJcuuQR/CgGFBv f9VbxclKPCGp4imUsK0uEJvvlQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFHlCKAwn XMZVjGLLVTOCmqJBpqhrMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VGM0UvQ0I3NENGNkU5ODdCMTFFOTgzRUNDRjEzQzRGOUFFMDIvNUMxNTQ0MDY5 ODg5MTFFOTkxQjEwODM4QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQEF+IAAwQCovcAMA0GCSqGSIb3DQEBCwUAA4IBAQCk1YjbNeqb+q1K juy6z+KUBVjVq3Y2aiDju05nJXCFRCk1VPv1kHfDityDgXwKfUwcdJseXnDBgVmN k09xFzksH9XWbQqMLqUhHBKt1puFUZQ4Dd19rEmcsOzahKg4r5q8HjM7CCvK9xbi j66EYFwCCI9Fgxk/5NrA4XXWRWUiZGWKc5QC3C22M6AlYJRHwTJYghb40PaavaUJ XGfg64SGTDbjeKWrMFFAr10PYsIzsOl96W2l3xdPE7naJOjM46llruKjMutIvsgO SstYv8tb6mAxnKK82rjuGF0i8RpdTihsnqae375xOigPNIHR8wuk1UPu0nMB84ip VAfan6w5 -----END CERTIFICATE-----Generated at Mon Mar 2 09:19:14 2026 by rpki-client