$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/BAEA3A3C497B11F096DCA14EC4F9AE02.roa File: BAEA3A3C497B11F096DCA14EC4F9AE02.roa (raw, json) Hash identifier: QEFTIDA+TJrcDI4/EvRQfRv5uCDm3GXgS8OiMfubAA0= Subject key identifier: FD:0E:66:7E:D2:26:D0:3D:AB:F6:A9:CE:6D:2E:29:E7:49:D7:5F:EA Certificate issuer: /CN=A91CFFCB/serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Certificate serial: A2 Authority key identifier: 22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/BAEA3A3C497B11F096DCA14EC4F9AE02.roa Signing time: Fri 03 Apr 2026 07:41:07 +0000 ROA not before: Fri 03 Apr 2026 07:41:06 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 45773 IP address blocks: 165.99.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 06:51:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Validity Not Before: Apr 3 07:41:06 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cf6f12-2ef1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a0:a2:b3:43:9e:a1:eb:30:81:93:80:a8:2f: 4d:b8:95:ab:f7:8d:1a:c4:10:6e:57:63:a7:7a:99: e4:55:50:4b:2e:20:7d:cf:2f:72:71:15:87:8a:9f: cc:44:02:da:e2:0a:2c:57:62:0e:0b:14:e7:89:7d: 76:b2:70:75:ee:7a:c8:ea:0d:c2:68:29:fb:87:cb: 62:a9:30:a6:ed:94:b8:72:10:ad:c6:1c:97:08:09: 64:da:9f:26:a6:ac:8c:39:de:8c:40:b7:ab:e4:6a: d7:0a:54:e6:ab:fa:e9:26:a5:5e:d7:62:2b:38:19: 90:c1:4e:58:b5:66:7c:58:ad:ef:0b:f4:36:ba:d5: c7:e5:45:25:ee:54:cf:65:c0:5c:49:e6:25:32:fe: d2:14:e2:c3:79:7c:e5:f0:fb:d7:0f:97:18:2e:cf: 99:7f:cd:39:3e:6c:6a:ed:7a:d8:66:60:03:eb:f1: 84:1a:e1:4d:72:5b:51:73:6b:5d:e7:5c:0a:7c:a2: 51:7b:fb:14:1e:7a:71:ad:8a:bd:e4:ea:41:1d:ca: 74:74:ae:74:5d:68:24:5b:ae:ac:c7:59:b7:04:50: 3e:0d:19:bb:5d:ce:93:0d:46:e6:8e:3b:37:df:3e: 22:11:aa:31:2d:c5:54:d1:4e:0e:1d:05:e3:9e:ed: 10:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:0E:66:7E:D2:26:D0:3D:AB:F6:A9:CE:6D:2E:29:E7:49:D7:5F:EA X509v3 Authority Key Identifier: keyid:22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/BAEA3A3C497B11F096DCA14EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.99.206.0/23 Signature Algorithm: sha256WithRSAEncryption 71:46:c5:06:40:64:06:c3:92:5d:58:5e:ff:d0:ec:7a:d8:56: cd:a6:11:a1:6a:b6:aa:0a:3e:7d:f5:93:38:01:45:25:86:44: 9b:cb:54:90:3e:65:18:df:8b:e1:21:d9:19:7c:8a:db:bd:c7: 37:df:c7:5c:a8:0c:66:63:93:fb:72:61:c8:bb:c0:05:db:e6: 85:2d:60:a8:c1:f3:bd:30:a1:d1:42:c3:08:49:37:34:70:27: 0e:79:17:cb:e4:d0:5b:f3:9c:59:81:fa:70:60:ca:b0:af:45: 94:39:02:51:bd:bc:21:e8:13:a1:de:c0:da:a0:0a:1c:46:0a: 2d:eb:83:ff:98:e5:2b:83:e5:68:b4:f8:f4:0f:37:36:2b:f1: 4d:4c:7b:69:17:79:65:8e:32:cb:c1:25:60:3e:bb:e9:9f:d2: 61:54:5a:b5:42:03:11:07:3b:6f:1a:91:db:93:60:38:6d:72: e1:c5:3a:e5:49:9f:1a:00:4c:e5:7c:94:07:46:a1:46:6e:9d: 72:eb:2a:f4:95:6e:bf:7c:c6:d6:20:6f:69:7c:78:99:ac:da: 37:55:7c:9e:b0:a8:ae:ac:c8:1a:12:90:f0:cc:4b:fd:1e:0a: 3f:24:43:ed:5b:c0:3d:00:0f:e1:1f:c7:d5:4a:3d:2e:41:97: aa:4f:e0:89 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQ0IxMTAvBgNVBAUTKDIyMjQyOTQ0MTZCODQ2NTcwNjU1NEI1MkNCQzU2RjQ0 OUJDNDZDODkwHhcNMjYwNDAzMDc0MTA2WhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmNmYxMi0yZWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaCis0OeoeswgZOAqC9NuJWr940axBBuV2OnepnkVVBLLiB9zy9ycRWHip/M RALa4gosV2IOCxTniX12snB17nrI6g3CaCn7h8tiqTCm7ZS4chCtxhyXCAlk2p8m pqyMOd6MQLer5GrXClTmq/rpJqVe12IrOBmQwU5YtWZ8WK3vC/Q2utXH5UUl7lTP ZcBcSeYlMv7SFOLDeXzl8PvXD5cYLs+Zf805Pmxq7XrYZmAD6/GEGuFNcltRc2td 51wKfKJRe/sUHnpxrYq95OpBHcp0dK50XWgkW66sx1m3BFA+DRm7Xc6TDUbmjjs3 3z4iEaoxLcVU0U4OHQXjnu0QqQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFP0OZn7S JtA9q/apzm0uKedJ11/qMB8GA1UdIwQYMBaAFCIkKUQWuEZXBlVLUsvFb0SbxGyJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZDQi9FRDBGMTFGNDQy MDUxMUYwQkY3QTg3MTFDNEY5QUUwMi9JaVFwUkJhNFJsY0dWVXRTeThWdlJKdkVi SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lpUXBSQmE0UmxjR1ZVdFN5OFZ2Ukp2RWJJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQ0IvRUQwRjExRjQ0MjA1MTFGMEJGN0E4NzExQzRGOUFFMDIvQkFFQTNBM0M0 OTdCMTFGMDk2RENBMTRFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWPOMA0GCSqGSIb3DQEBCwUAA4IBAQBxRsUGQGQGw5JdWF7/0Ox6 2FbNphGharaqCj599ZM4AUUlhkSby1SQPmUY34vhIdkZfIrbvcc338dcqAxmY5P7 cmHIu8AF2+aFLWCowfO9MKHRQsMISTc0cCcOeRfL5NBb85xZgfpwYMqwr0WUOQJR vbwh6BOh3sDaoAocRgot64P/mOUrg+VotPj0Dzc2K/FNTHtpF3lljjLLwSVgPrvp n9JhVFq1QgMRBztvGpHbk2A4bXLhxTrlSZ8aAEzlfJQHRqFGbp1y6yr0lW6/fMbW IG9pfHiZrNo3VXyesKiurMgaEpDwzEv9Hgo/JEPtW8A9AA/hH8fVSj0uQZeqT+CJ -----END CERTIFICATE-----Generated at Fri Apr 17 05:29:02 2026 by rpki-client