$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/BAEA3A3C497B11F096DCA14EC4F9AE02.roa File: BAEA3A3C497B11F096DCA14EC4F9AE02.roa (raw, json) Hash identifier: b+mY57M99SmP6KZ5ZfpHKrC3YrkcKIFwFC4SLOMsH9I= Subject key identifier: 75:65:C6:B8:5C:B8:6B:EC:3D:69:21:69:69:79:13:84:1F:33:09:09 Certificate issuer: /CN=A91CFFCB/serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Certificate serial: 8C Authority key identifier: 22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/BAEA3A3C497B11F096DCA14EC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:07:39 +0000 ROA not before: Sun 15 Jun 2025 00:00:22 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 45773 IP address blocks: 165.99.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:52:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Validity Not Before: Jun 15 00:00:22 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3e5bb-a962 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:e0:85:9e:c8:22:58:a6:ba:83:36:b0:2b:58: 55:c5:a6:cc:47:f9:82:92:b5:f9:09:fa:ab:9b:a0: 23:48:a7:81:fa:0b:31:34:1f:c1:68:f7:a7:91:73: 20:08:e9:c3:bb:ed:e1:3a:4e:e8:25:23:e9:55:d9: b3:d3:46:25:51:6f:2d:58:d6:0a:45:77:9f:db:ea: 54:dc:c4:84:83:36:ce:5e:5b:92:20:72:ab:4e:b4: 2b:ed:4a:7f:c5:2e:d0:74:79:a4:fc:60:25:be:e8: 89:ca:de:78:ca:6d:b4:e5:2f:a6:bb:cb:1c:10:99: 7d:79:2a:f9:f8:a1:ad:d9:d6:4b:72:ce:52:13:db: 38:43:c5:ed:7a:3e:fc:ae:7b:61:a9:54:f2:ac:6e: d8:b6:7d:a5:7e:a2:ae:f2:52:e5:64:a4:8f:d8:0b: 91:4a:f3:c9:5a:ba:8e:97:45:7b:30:ff:a0:a4:8f: 3a:9c:aa:58:08:f5:81:bd:3c:d2:f6:1f:8f:33:eb: 85:2e:03:01:69:a5:0d:3a:08:d3:f8:16:5c:1a:66: f8:6a:af:f3:10:84:6e:e9:6f:e9:ab:4a:5e:8a:dd: 4d:ec:07:78:f1:d1:86:6f:ee:ab:81:68:c8:2c:b6: 44:dc:01:33:d3:1a:e3:3e:59:7f:b7:82:50:79:cb: e3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:65:C6:B8:5C:B8:6B:EC:3D:69:21:69:69:79:13:84:1F:33:09:09 X509v3 Authority Key Identifier: keyid:22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/BAEA3A3C497B11F096DCA14EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.99.206.0/23 Signature Algorithm: sha256WithRSAEncryption 31:2b:14:d6:c8:c9:dd:aa:d3:73:09:01:80:4a:ae:c6:bf:cf: 47:fd:c3:e7:a3:da:45:27:ba:54:59:54:eb:80:6a:c1:7c:e6: 71:57:f5:d1:69:c4:8a:4c:5f:a7:de:35:de:dd:98:9c:d3:c5: f5:83:58:39:6b:b2:4a:52:6b:d3:41:f9:bf:95:97:4c:14:31: 8e:eb:28:1f:8c:31:8e:d8:b4:8d:3d:83:63:c7:fe:d8:ca:a1: 5a:11:d1:0e:0f:db:79:b6:1b:66:f1:61:e0:f6:d8:e4:c3:58: 39:83:4d:35:c9:df:d2:2e:ea:55:bc:b9:2b:49:de:97:f1:9b: 82:e9:57:ba:11:2a:2a:ae:9b:24:91:0e:d7:e2:80:fd:5f:e9: d4:b2:dd:a2:d2:7a:bd:d0:42:de:cb:f9:8a:e6:48:c2:01:6a: 2b:e0:8d:a4:e6:09:c6:fe:0b:59:79:66:95:be:78:26:c4:94: 23:68:2a:c0:8e:90:85:3b:ca:2d:bc:63:26:af:c0:ee:88:72: 7c:8b:57:75:33:76:f6:cc:3a:8d:ad:2a:db:b2:da:69:92:42: 27:98:07:62:f7:75:1b:10:63:fa:c7:a9:ca:99:d2:9a:c3:61: 06:24:ea:00:01:d7:9a:03:0d:85:06:0a:ff:32:0e:ae:2c:87: 90:6a:d2:7c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQ0IxMTAvBgNVBAUTKDIyMjQyOTQ0MTZCODQ2NTcwNjU1NEI1MkNCQzU2RjQ0 OUJDNDZDODkwHhcNMjUwNjE1MDAwMDIyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTViYi1hOTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAieCFnsgiWKa6gzawK1hVxabMR/mCkrX5Cfqrm6AjSKeB+gsxNB/BaPenkXMg COnDu+3hOk7oJSPpVdmz00YlUW8tWNYKRXef2+pU3MSEgzbOXluSIHKrTrQr7Up/ xS7QdHmk/GAlvuiJyt54ym205S+mu8scEJl9eSr5+KGt2dZLcs5SE9s4Q8Xtej78 rnthqVTyrG7Ytn2lfqKu8lLlZKSP2AuRSvPJWrqOl0V7MP+gpI86nKpYCPWBvTzS 9h+PM+uFLgMBaaUNOgjT+BZcGmb4aq/zEIRu6W/pq0peit1N7Ad48dGGb+6rgWjI LLZE3AEz0xrjPll/t4JQecvj4wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHVlxrhc uGvsPWkhaWl5E4QfMwkJMB8GA1UdIwQYMBaAFCIkKUQWuEZXBlVLUsvFb0SbxGyJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZDQi9FRDBGMTFGNDQy MDUxMUYwQkY3QTg3MTFDNEY5QUUwMi9JaVFwUkJhNFJsY0dWVXRTeThWdlJKdkVi SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lpUXBSQmE0UmxjR1ZVdFN5OFZ2Ukp2RWJJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQ0IvRUQwRjExRjQ0MjA1MTFGMEJGN0E4NzExQzRGOUFFMDIvQkFFQTNBM0M0 OTdCMTFGMDk2RENBMTRFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWPOMA0GCSqGSIb3DQEBCwUAA4IBAQAxKxTWyMndqtNzCQGASq7G v89H/cPno9pFJ7pUWVTrgGrBfOZxV/XRacSKTF+n3jXe3Zic08X1g1g5a7JKUmvT Qfm/lZdMFDGO6ygfjDGO2LSNPYNjx/7YyqFaEdEOD9t5thtm8WHg9tjkw1g5g001 yd/SLupVvLkrSd6X8ZuC6Ve6ESoqrpskkQ7X4oD9X+nUst2i0nq90ELey/mK5kjC AWor4I2k5gnG/gtZeWaVvngmxJQjaCrAjpCFO8otvGMmr8DuiHJ8i1d1M3b2zDqN rSrbstppkkInmAdi93UbEGP6x6nKmdKaw2EGJOoAAdeaAw2FBgr/Mg6uLIeQatJ8 -----END CERTIFICATE-----Generated at Mon Mar 2 15:51:16 2026 by rpki-client