$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFBCB/CBC363D8FDBC11F0B93A5F71676F56BC/2FA448EAFDBD11F083E9CE8F676F56BC.roa File: 2FA448EAFDBD11F083E9CE8F676F56BC.roa (raw, json) Hash identifier: RcZ+8Tgkr/98lt0nqg0mgsZ2FAFTLU/F6UQiIHa5elE= Subject key identifier: 66:44:26:81:C9:2F:59:7E:64:9A:4D:0C:DA:8E:0F:AB:F1:09:C5:3A Certificate issuer: /CN=A91CFBCB/serialNumber=BE657CC7F6A71A810C6B525E1A4C72B9CBD4D6ED Certificate serial: 17 Authority key identifier: BE:65:7C:C7:F6:A7:1A:81:0C:6B:52:5E:1A:4C:72:B9:CB:D4:D6:ED Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/vmV8x_anGoEMa1JeGkxyucvU1u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFBCB/CBC363D8FDBC11F0B93A5F71676F56BC/2FA448EAFDBD11F083E9CE8F676F56BC.roa Signing time: Sun 01 Mar 2026 05:41:13 +0000 ROA not before: Fri 30 Jan 2026 09:24:19 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 142253 IP address blocks: 151.158.114.0/24 maxlen: 24 151.158.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFBCB/CBC363D8FDBC11F0B93A5F71676F56BC/vmV8x_anGoEMa1JeGkxyucvU1u0.crl rsync://rpki.apnic.net/member_repository/A91CFBCB/CBC363D8FDBC11F0B93A5F71676F56BC/vmV8x_anGoEMa1JeGkxyucvU1u0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/vmV8x_anGoEMa1JeGkxyucvU1u0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFBCB, serialNumber=BE657CC7F6A71A810C6B525E1A4C72B9CBD4D6ED Validity Not Before: Jan 30 09:24:19 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a3d179-2bb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:a8:b3:ac:99:7c:59:6a:c8:e2:1d:1b:89:82: 05:63:20:cd:d1:4d:e3:d2:df:48:d9:be:ae:cd:4a: 78:43:27:6e:2e:1b:28:18:59:54:ed:5a:fe:c6:3b: 58:f0:ee:ff:6c:37:66:6c:f4:3c:88:21:3f:83:b7: c9:0c:64:74:64:92:c4:b3:ce:bb:57:5b:e8:39:2d: de:8a:e6:fd:cf:5f:e7:8b:11:6b:63:d5:ef:da:2a: 2f:b9:e5:e9:cf:84:3e:5a:2c:ee:98:d2:20:3c:a9: 63:ec:e3:0c:d8:7e:c3:0f:ed:ff:ae:a0:f1:e8:80: 5e:47:00:29:eb:87:7f:cd:87:21:ff:21:de:83:f6: 43:c1:e0:ed:ec:68:43:11:d9:dc:04:7b:00:40:02: 68:6f:66:c2:aa:9a:57:21:f3:98:3a:35:68:a1:c7: 6a:06:05:c8:b4:3d:ec:45:20:40:a7:59:ed:6f:22: 64:25:b2:a5:41:e1:97:6a:79:79:24:f3:8b:d6:3b: 6b:07:b4:78:04:86:22:0c:bc:7b:e8:48:63:18:a6: 41:64:b9:93:c6:7b:de:d5:0a:64:82:d3:69:14:dc: 1e:4f:ef:25:a2:77:5e:73:90:c3:fb:fc:ab:97:45: ac:d6:ab:8d:c8:1a:0a:11:18:ec:74:f6:81:68:cf: ee:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:44:26:81:C9:2F:59:7E:64:9A:4D:0C:DA:8E:0F:AB:F1:09:C5:3A X509v3 Authority Key Identifier: keyid:BE:65:7C:C7:F6:A7:1A:81:0C:6B:52:5E:1A:4C:72:B9:CB:D4:D6:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFBCB/CBC363D8FDBC11F0B93A5F71676F56BC/vmV8x_anGoEMa1JeGkxyucvU1u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/vmV8x_anGoEMa1JeGkxyucvU1u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFBCB/CBC363D8FDBC11F0B93A5F71676F56BC/2FA448EAFDBD11F083E9CE8F676F56BC.roa sbgp-ipAddrBlock: critical IPv4: 151.158.114.0/23 Signature Algorithm: sha256WithRSAEncryption 37:a6:36:a5:ba:e3:50:26:e4:5b:72:ba:3a:a6:c4:11:24:39: 06:53:a0:ba:c2:ba:db:13:e3:04:95:c4:d5:dd:0c:76:8e:20: 30:f6:c7:53:5c:d1:9f:e4:1b:62:55:fa:35:2e:4f:76:cf:59: dc:6d:fc:94:d5:07:23:4c:78:01:1c:9a:ac:84:44:f3:f3:9c: bb:1b:82:b1:89:bd:5f:21:2b:68:11:4c:27:54:f6:10:41:6e: 5f:16:78:18:ae:4b:4e:af:0d:d4:6d:84:fa:97:48:31:a2:3d: 6f:c7:ee:b6:6b:9d:a7:39:4c:58:d0:28:72:62:22:08:34:a5: 3a:36:ef:01:87:dc:4d:8b:2a:90:6f:40:f1:2d:0e:f7:a9:75: 3a:68:29:86:34:e0:8e:f4:3c:d8:ec:e0:f0:0d:92:ab:e3:a3: 28:86:a2:80:6d:19:d3:29:51:ee:9c:da:c5:f1:be:fb:41:75: c1:7a:dc:eb:8c:d1:b8:bf:db:28:fd:08:79:90:13:f6:48:ad: b7:07:14:03:b6:9f:dd:a4:af:b4:ca:ea:80:10:3d:b8:5a:92: 38:f5:65:bb:3f:6a:1d:ea:f1:9d:18:4a:85:6a:f5:e7:e3:0c: c3:45:53:87:eb:3d:2d:3b:59:ae:ba:4b:10:77:5d:7b:9a:f9: ef:fa:3c:ab -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkJDQjExMC8GA1UEBRMoQkU2NTdDQzdGNkE3MUE4MTBDNkI1MjVFMUE0QzcyQjlD QkQ0RDZFRDAeFw0yNjAxMzAwOTI0MTlaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkMTc5LTJiYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCJqLOsmXxZasjiHRuJggVjIM3RTePS30jZvq7NSnhDJ24uGygYWVTtWv7GO1jw 7v9sN2Zs9DyIIT+Dt8kMZHRkksSzzrtXW+g5Ld6K5v3PX+eLEWtj1e/aKi+55enP hD5aLO6Y0iA8qWPs4wzYfsMP7f+uoPHogF5HACnrh3/NhyH/Id6D9kPB4O3saEMR 2dwEewBAAmhvZsKqmlch85g6NWihx2oGBci0PexFIECnWe1vImQlsqVB4ZdqeXkk 84vWO2sHtHgEhiIMvHvoSGMYpkFkuZPGe97VCmSC02kU3B5P7yWid15zkMP7/KuX RazWq43IGgoRGOx09oFoz+55AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUZkQmgckv WX5kmk0M2o4Pq/EJxTowHwYDVR0jBBgwFoAUvmV8x/anGoEMa1JeGkxyucvU1u0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGQkNCL0NCQzM2M0Q4RkRC QzExRjBCOTNBNUY3MTY3NkY1NkJDL3ZtVjh4X2FuR29FTWExSmVHa3h5dWN2VTF1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvdm1WOHhfYW5Hb0VNYTFKZUdreHl1Y3ZVMXUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkJDQi9DQkMzNjNEOEZEQkMxMUYwQjkzQTVGNzE2NzZGNTZCQy8yRkE0NDhFQUZE QkQxMUYwODNFOUNFOEY2NzZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGXnnIwDQYJKoZIhvcNAQELBQADggEBADemNqW641Am5FtyujqmxBEk OQZToLrCutsT4wSVxNXdDHaOIDD2x1Nc0Z/kG2JV+jUuT3bPWdxt/JTVByNMeAEc mqyERPPznLsbgrGJvV8hK2gRTCdU9hBBbl8WeBiuS06vDdRthPqXSDGiPW/H7rZr nac5TFjQKHJiIgg0pTo27wGH3E2LKpBvQPEtDvepdTpoKYY04I70PNjs4PANkqvj oyiGooBtGdMpUe6c2sXxvvtBdcF63OuM0bi/2yj9CHmQE/ZIrbcHFAO2n92kr7TK 6oAQPbhakjj1Zbs/ah3q8Z0YSoVq9efjDMNFU4frPS07Wa66SxB3XXua+e/6PKs= -----END CERTIFICATE-----Generated at Mon Mar 2 11:26:19 2026 by rpki-client