$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/B0F42ADA114211F1B6291DC0213D8C67.roa File: B0F42ADA114211F1B6291DC0213D8C67.roa (raw, json) Hash identifier: 11wLuFZd8HYD0POC8srBT9Q0n7NwOxHc0gJVO4lf97k= Subject key identifier: 26:4D:C5:D5:FA:10:8A:12:54:CC:11:DB:67:40:DF:81:09:C4:BD:4A Certificate issuer: /CN=A91D8157/serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Certificate serial: 0B Authority key identifier: 91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/B0F42ADA114211F1B6291DC0213D8C67.roa Signing time: Sun 01 Mar 2026 05:33:48 +0000 ROA not before: Tue 24 Feb 2026 05:35:56 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 149171 IP address blocks: 151.158.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8157, serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Validity Not Before: Feb 24 05:35:56 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a3cfbb-fc9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c3:17:58:45:28:61:cf:6a:5f:ab:d1:20:fd: e3:66:cc:c5:30:3f:42:93:75:43:e5:bb:ad:ca:50: a0:21:30:1a:7b:7a:1c:5e:f4:8d:07:3d:93:3a:a3: e1:34:93:23:fa:70:78:4d:9b:5c:a4:ef:8d:bf:86: 29:ed:13:f8:cc:c3:9a:65:10:68:bb:4c:b7:88:c3: d3:2d:3e:9e:6d:38:03:97:36:26:26:f9:8e:c9:b0: a3:23:81:c7:d9:57:0e:67:68:d2:56:99:0a:d7:d0: 0b:49:2f:39:fb:1c:2b:ae:6d:19:43:93:aa:29:51: b4:d3:b7:f1:8f:fc:1f:1b:ee:27:7a:3e:75:5e:77: b3:c4:80:d8:b5:94:67:a5:96:3c:a9:9d:11:c4:14: 1a:ec:c1:ee:51:bf:04:a7:a5:f1:fe:7a:28:33:da: 85:ee:73:11:d2:af:bf:98:14:23:fd:0e:00:8b:02: a1:26:96:98:e5:0a:65:22:f7:8a:14:c7:bb:dc:ca: 82:50:a1:90:46:06:27:5e:16:8e:53:5f:0a:f4:c5: 4f:30:5f:f7:13:5b:03:f1:f8:45:70:60:c6:20:80: 71:27:69:92:0b:39:11:0e:08:8c:7c:b9:b5:98:92: 42:17:71:3e:87:5e:c8:ae:be:0a:63:c3:20:e4:75: c0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:4D:C5:D5:FA:10:8A:12:54:CC:11:DB:67:40:DF:81:09:C4:BD:4A X509v3 Authority Key Identifier: keyid:91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/B0F42ADA114211F1B6291DC0213D8C67.roa sbgp-ipAddrBlock: critical IPv4: 151.158.216.0/23 Signature Algorithm: sha256WithRSAEncryption 67:8e:5f:22:ab:f0:1c:9c:fb:ce:99:32:10:41:82:75:c0:6d: c2:85:79:ee:b4:c8:dc:ec:04:ad:01:f6:21:64:8f:70:e2:30: 1f:84:56:4c:f2:f8:24:b2:63:1f:d0:23:14:64:1c:06:1c:de: 41:ab:83:63:14:8b:f3:1e:12:dd:67:f1:5b:bf:af:28:d3:73: 84:83:93:e4:e7:85:8c:97:26:ea:fe:5a:78:e5:be:09:a4:f3: 87:fa:38:59:fb:96:6a:96:0f:78:e0:9d:71:5c:eb:a6:53:3a: 74:47:de:6d:cd:84:4a:a6:46:2b:60:b6:a1:51:e6:31:25:f8: 31:fc:4a:4e:05:b9:83:8b:2b:6a:b9:ef:f0:e5:78:e6:c6:f4: a3:93:88:d0:01:91:73:83:ad:c0:8d:59:7b:b8:da:9b:e6:25: 80:d6:a9:6f:f1:37:7d:b9:17:3b:1b:46:99:35:7d:42:83:7c: 5b:38:be:eb:05:ac:ee:0d:12:b0:1b:37:70:55:2a:c3:1f:a7: a3:ea:26:1c:d7:5f:18:ac:c8:93:86:57:1b:41:21:a4:b8:c8: 13:5b:36:73:ad:7a:a3:aa:c6:a8:d5:75:d4:c0:3f:55:61:08: 83:6c:0b:8d:bf:8f:92:64:58:4b:4e:d4:74:88:b8:1a:ce:80: f2:dd:13:b7 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODE1NzExMC8GA1UEBRMoOTFEQTNBMTc2MzdDRDI5MkNFQTQ2NzBERDEzQTcyRDg2 RUFBMkQ5MTAeFw0yNjAyMjQwNTM1NTZaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNjZmJiLWZjOWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1wxdYRShhz2pfq9Eg/eNmzMUwP0KTdUPlu63KUKAhMBp7ehxe9I0HPZM6o+E0 kyP6cHhNm1yk742/hintE/jMw5plEGi7TLeIw9MtPp5tOAOXNiYm+Y7JsKMjgcfZ Vw5naNJWmQrX0AtJLzn7HCuubRlDk6opUbTTt/GP/B8b7id6PnVed7PEgNi1lGel ljypnRHEFBrswe5RvwSnpfH+eigz2oXucxHSr7+YFCP9DgCLAqEmlpjlCmUi94oU x7vcyoJQoZBGBideFo5TXwr0xU8wX/cTWwPx+EVwYMYggHEnaZILOREOCIx8ubWY kkIXcT6HXsiuvgpjwyDkdcCbAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUJk3F1foQ ihJUzBHbZ0DfgQnEvUowHwYDVR0jBBgwFoAUkdo6F2N80pLOpGcN0Tpy2G6qLZEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MTU3LzI1MDgzOEFFMTE0 MjExRjE5RDM3NjI4RjIxM0Q4QzY3L2tkbzZGMk44MHBMT3BHY04wVHB5Mkc2cUxa RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIva2RvNkYyTjgwcExPcEdjTjBUcHkyRzZxTFpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODE1Ny8yNTA4MzhBRTExNDIxMUYxOUQzNzYyOEYyMTNEOEM2Ny9CMEY0MkFEQTEx NDIxMUYxQjYyOTFEQzAyMTNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGXntgwDQYJKoZIhvcNAQELBQADggEBAGeOXyKr8Byc+86ZMhBBgnXA bcKFee60yNzsBK0B9iFkj3DiMB+EVkzy+CSyYx/QIxRkHAYc3kGrg2MUi/MeEt1n 8Vu/ryjTc4SDk+TnhYyXJur+Wnjlvgmk84f6OFn7lmqWD3jgnXFc66ZTOnRH3m3N hEqmRitgtqFR5jEl+DH8Sk4FuYOLK2q57/DleObG9KOTiNABkXODrcCNWXu42pvm JYDWqW/xN325FzsbRpk1fUKDfFs4vusFrO4NErAbN3BVKsMfp6PqJhzXXxisyJOG VxtBIaS4yBNbNnOteqOqxqjVddTAP1VhCINsC42/j5JkWEtO1HSIuBrOgPLdE7c= -----END CERTIFICATE-----Generated at Mon Mar 2 10:21:33 2026 by rpki-client