$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/E6F0F39214CE11EA9E740182C4F9AE02.roa File: E6F0F39214CE11EA9E740182C4F9AE02.roa (raw, json) Hash identifier: USUvjmydXjtMJPzPbFEwUqIP+Ih5VSwPB5Ykt4WO3Ws= Subject key identifier: 03:35:ED:3B:64:70:33:60:A3:A7:09:85:2D:EA:C3:DE:44:C1:17:AF Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0DEF Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/E6F0F39214CE11EA9E740182C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:09:42 +0000 ROA not before: Wed 14 Jan 2026 18:14:54 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 4637 IP address blocks: 134.159.0.0/16 maxlen: 24 192.154.16.0/24 maxlen: 24 192.154.24.0/23 maxlen: 23 192.154.24.0/24 maxlen: 24 192.154.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:56:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3567 (0xdef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Jan 14 18:14:54 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a472d6-d4bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3d:82:b2:70:09:61:78:2c:8c:55:80:a5:5d: 58:18:cb:c4:4d:08:f7:42:07:d4:f0:9a:28:21:b0: 02:3d:3f:ab:de:99:4b:47:06:31:10:a5:5b:3a:c5: 0e:3c:f5:04:47:d6:b9:0e:36:1b:6b:90:cb:dd:f0: c8:be:f1:0d:33:9a:83:70:c5:ed:b1:ff:3b:7a:b9: 03:9d:f7:86:9f:c6:d8:34:6d:42:72:2e:6f:12:23: bb:d8:2f:fc:5f:31:2c:d7:cc:23:76:90:a0:40:bf: bd:21:07:95:62:59:db:72:4e:ed:64:ff:13:dd:48: 14:12:32:60:d2:af:24:31:39:b2:74:f8:1e:2c:0f: 6b:e2:79:00:5e:ca:91:40:2d:a3:94:09:bd:43:94: b7:bc:22:be:d4:08:e0:af:c2:fe:d2:72:c0:02:9f: 2a:13:46:26:04:7e:06:eb:d6:90:e5:17:58:2a:fc: db:b3:ce:a5:f4:ff:02:55:41:0b:1e:0b:9c:f3:ee: fe:99:e1:3c:64:82:ec:60:11:b2:45:b8:96:34:04: 33:7a:33:19:47:d3:da:4c:60:1f:15:e1:8e:17:33: 28:b2:89:fb:fb:f1:70:3f:94:5a:12:19:a6:92:6a: e8:62:46:2e:80:9d:6d:ec:8a:28:39:40:3c:06:b0: a4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:35:ED:3B:64:70:33:60:A3:A7:09:85:2D:EA:C3:DE:44:C1:17:AF X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/E6F0F39214CE11EA9E740182C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 134.159.0.0/16 192.154.16.0/24 192.154.24.0/23 Signature Algorithm: sha256WithRSAEncryption 88:b2:ec:4b:64:da:93:07:33:81:5e:64:2c:9b:69:98:a5:a6: 74:4c:c9:6c:34:bd:4c:15:85:5e:43:b5:5a:51:6b:0d:b1:61: a2:69:b9:50:3f:c4:4d:6f:6a:d7:fd:e0:67:b1:27:36:9a:ed: 86:e7:59:53:cb:b6:b2:ad:18:3e:c2:fe:f0:6f:b0:48:e4:88: ff:75:7b:39:83:5f:35:4f:95:ca:f0:e3:d3:e0:e4:a7:ba:0e: d3:f8:75:7f:1e:4f:fa:93:18:df:b4:5f:ad:ba:46:99:c7:4d: 16:fa:a1:bc:c3:77:58:e8:73:3c:ef:14:f2:41:c7:53:cc:ab: f6:9d:13:c0:38:f8:4a:14:55:f3:e9:a6:6d:6d:9e:52:6a:5b: bf:75:71:50:be:8c:72:f2:e0:b3:55:de:d8:fc:1c:4b:47:5d: 06:34:9e:09:51:22:c1:30:09:b2:3d:c4:e2:d7:32:21:06:15: 8e:66:70:26:75:6a:4c:77:4f:fb:64:8d:18:a9:45:0a:db:bb: 2a:e2:78:1b:9a:86:99:a7:1d:c3:04:81:3a:76:09:78:1c:0c: d3:57:82:1d:04:a4:2e:57:e1:08:66:b3:3b:e6:01:8c:15:fa: ab:e2:18:d7:c6:46:ab:fb:0f:aa:11:71:31:47:e7:7a:94:f5: 01:3a:81:8f -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgICDe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjYwMTE0MTgxNDU0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzJkNi1kNGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnD2CsnAJYXgsjFWApV1YGMvETQj3QgfU8JooIbACPT+r3plLRwYxEKVbOsUO PPUER9a5DjYba5DL3fDIvvENM5qDcMXtsf87erkDnfeGn8bYNG1Cci5vEiO72C/8 XzEs18wjdpCgQL+9IQeVYlnbck7tZP8T3UgUEjJg0q8kMTmydPgeLA9r4nkAXsqR QC2jlAm9Q5S3vCK+1Ajgr8L+0nLAAp8qE0YmBH4G69aQ5RdYKvzbs86l9P8CVUEL Hguc8+7+meE8ZILsYBGyRbiWNAQzejMZR9PaTGAfFeGOFzMoson7+/FwP5RaEhmm kmroYkYugJ1t7IooOUA8BrCk6wIDAQABo4ICazCCAmcwHQYDVR0OBBYEFAM17Ttk cDNgo6cJhS3qw95EwRevMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMTUwQkY2OTBEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvRTZGMEYzOTIx NENFMTFFQTlFNzQwMTgyQzRGOUFFMDIucm9hMCoGCCsGAQUFBwEHAQH/BBswGTAX BAIAATARAwMAhp8DBADAmhADBAHAmhgwDQYJKoZIhvcNAQELBQADggEBAIiy7Etk 2pMHM4FeZCybaZilpnRMyWw0vUwVhV5DtVpRaw2xYaJpuVA/xE1vatf94GexJzaa 7YbnWVPLtrKtGD7C/vBvsEjkiP91ezmDXzVPlcrw49Pg5Ke6DtP4dX8eT/qTGN+0 X626RpnHTRb6obzDd1joczzvFPJBx1PMq/adE8A4+EoUVfPppm1tnlJqW791cVC+ jHLy4LNV3tj8HEtHXQY0nglRIsEwCbI9xOLXMiEGFY5mcCZ1akx3T/tkjRipRQrb uyrieBuahpmnHcMEgTp2CXgcDNNXgh0EpC5X4QhmszvmAYwV+qviGNfGRqv7D6oR cTFH53qU9QE6gY8= -----END CERTIFICATE-----Generated at Mon Mar 2 08:16:00 2026 by rpki-client