$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD25E/355BEC86A27B11F0980FD04AC4F9AE02/9CF6A89AA27B11F09D816A4BC4F9AE02.roa File: 9CF6A89AA27B11F09D816A4BC4F9AE02.roa (raw, json) Hash identifier: r2L+5zqyZ6IXeM2mIQAiI2PNwo+tejqOC0YJpkywEYs= Subject key identifier: 41:EC:CB:24:BA:B9:52:04:61:C3:63:0B:25:73:C3:AA:7E:66:36:F5 Certificate issuer: /CN=A91DD25E/serialNumber=89BA90CB7D442A8387C6AB930738CA200E137BAD Certificate serial: 4D Authority key identifier: 89:BA:90:CB:7D:44:2A:83:87:C6:AB:93:07:38:CA:20:0E:13:7B:AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ibqQy31EKoOHxquTBzjKIA4Te60.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD25E/355BEC86A27B11F0980FD04AC4F9AE02/9CF6A89AA27B11F09D816A4BC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:14:25 +0000 ROA not before: Mon 06 Oct 2025 06:13:45 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 134349 IP address blocks: 157.15.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD25E/355BEC86A27B11F0980FD04AC4F9AE02/ibqQy31EKoOHxquTBzjKIA4Te60.crl rsync://rpki.apnic.net/member_repository/A91DD25E/355BEC86A27B11F0980FD04AC4F9AE02/ibqQy31EKoOHxquTBzjKIA4Te60.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ibqQy31EKoOHxquTBzjKIA4Te60.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:40:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD25E, serialNumber=89BA90CB7D442A8387C6AB930738CA200E137BAD Validity Not Before: Oct 6 06:13:45 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a3d940-e7cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ac:c0:a7:32:32:74:1e:c5:63:0d:83:cb:d1: a2:34:e8:07:d3:1f:8e:f9:50:52:0c:27:8b:8d:15: 73:cd:c2:3b:43:8c:f5:59:28:ae:92:49:64:3a:f8: 7a:37:46:c3:79:f4:67:7d:37:0c:6e:06:64:6e:ba: 70:ad:9c:af:ca:5f:86:3d:45:6e:15:4f:92:1c:77: d1:ed:99:a9:9b:96:43:43:b3:39:57:22:07:4b:49: 10:22:aa:e2:2e:37:71:5b:eb:4c:36:30:1f:a8:c8: 8d:1c:e8:6e:c2:1b:b8:9e:a6:cc:12:9c:f3:ce:6b: b5:f1:4b:71:ab:17:4f:5f:b2:12:d1:bc:e6:07:46: d3:39:19:0e:9d:63:78:3e:67:80:2f:a5:c0:05:b9: 3c:f7:34:0f:cf:e0:1f:b6:53:12:9e:45:b2:d1:d1: 04:71:f2:d9:ad:66:bd:61:ab:78:0e:8d:ac:de:72: 1d:ba:18:c3:3d:2b:bd:d6:1f:d0:07:1f:eb:40:18: f6:75:05:5a:92:da:c3:30:69:49:bc:e2:9f:69:77: 74:c2:40:e8:45:f7:cc:90:1c:fc:8d:94:a2:01:e2: 26:83:2c:9f:57:29:36:4b:18:5b:d5:8f:8a:f7:fa: 4e:0b:67:3a:f0:57:3f:39:e9:8c:2e:b8:8a:25:72: a5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:EC:CB:24:BA:B9:52:04:61:C3:63:0B:25:73:C3:AA:7E:66:36:F5 X509v3 Authority Key Identifier: keyid:89:BA:90:CB:7D:44:2A:83:87:C6:AB:93:07:38:CA:20:0E:13:7B:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD25E/355BEC86A27B11F0980FD04AC4F9AE02/ibqQy31EKoOHxquTBzjKIA4Te60.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ibqQy31EKoOHxquTBzjKIA4Te60.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD25E/355BEC86A27B11F0980FD04AC4F9AE02/9CF6A89AA27B11F09D816A4BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.15.191.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:69:bb:26:63:a8:3d:3b:8e:f8:a8:18:ca:ee:47:a8:d8:94: 8d:b5:0a:21:c2:74:1a:3b:82:ca:d3:65:1c:54:2b:2b:4d:79: 73:4e:30:15:91:12:b1:ff:ff:85:8b:4b:9f:9d:0f:62:27:9e: 1c:d8:6b:05:ed:90:56:03:4b:ad:8b:30:4e:4e:50:14:c4:4a: 15:7d:8a:e2:37:91:27:ec:45:31:74:3c:4a:d9:d6:9d:9a:b9: ac:21:f4:8d:ba:91:88:0c:80:39:9f:32:2a:aa:71:07:e0:e7: 5c:26:ad:13:34:4b:50:90:03:d9:c1:85:5c:c8:30:01:ef:90: dc:f6:74:c6:06:0f:02:0a:aa:2a:15:84:55:f0:ba:f5:c4:c5: 8f:9b:a6:ea:7b:27:c6:6f:b0:9b:78:1b:3a:11:bb:a3:84:7b: 34:6e:fe:11:91:fd:35:fc:89:7b:31:d5:2b:36:50:9f:44:93: c2:77:97:0a:b7:a4:61:48:16:a7:f5:52:4a:d0:e7:48:6e:d7: a7:93:07:74:1e:f4:8a:96:42:33:f1:4e:e6:49:cf:5f:f8:d2: 70:8f:d6:3a:4b:9e:1b:da:92:f0:0b:93:f1:10:df:26:a4:49: 31:b7:84:f7:72:29:2c:37:60:ab:12:a2:88:f4:5c:03:19:e7: 5d:6c:94:34 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDI1RTExMC8GA1UEBRMoODlCQTkwQ0I3RDQ0MkE4Mzg3QzZBQjkzMDczOENBMjAw RTEzN0JBRDAeFw0yNTEwMDYwNjEzNDVaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOTQwLWU3Y2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDrMCnMjJ0HsVjDYPL0aI06AfTH475UFIMJ4uNFXPNwjtDjPVZKK6SSWQ6+Ho3 RsN59Gd9NwxuBmRuunCtnK/KX4Y9RW4VT5Icd9HtmamblkNDszlXIgdLSRAiquIu N3Fb60w2MB+oyI0c6G7CG7iepswSnPPOa7XxS3GrF09fshLRvOYHRtM5GQ6dY3g+ Z4AvpcAFuTz3NA/P4B+2UxKeRbLR0QRx8tmtZr1hq3gOjazech26GMM9K73WH9AH H+tAGPZ1BVqS2sMwaUm84p9pd3TCQOhF98yQHPyNlKIB4iaDLJ9XKTZLGFvVj4r3 +k4LZzrwVz856YwuuIolcqUFAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUQezLJLq5 UgRhw2MLJXPDqn5mNvUwHwYDVR0jBBgwFoAUibqQy31EKoOHxquTBzjKIA4Te60w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREMjVFLzM1NUJFQzg2QTI3 QjExRjA5ODBGRDA0QUM0RjlBRTAyL2licVF5MzFFS29PSHhxdVRCempLSUE0VGU2 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaWJxUXkzMUVLb09IeHF1VEJ6aktJQTRUZTYwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDI1RS8zNTVCRUM4NkEyN0IxMUYwOTgwRkQwNEFDNEY5QUUwMi85Q0Y2QTg5QUEy N0IxMUYwOUQ4MTZBNEJDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACdD78wDQYJKoZIhvcNAQELBQADggEBAE1puyZjqD07jvioGMruR6jY lI21CiHCdBo7gsrTZRxUKytNeXNOMBWRErH//4WLS5+dD2InnhzYawXtkFYDS62L ME5OUBTEShV9iuI3kSfsRTF0PErZ1p2auawh9I26kYgMgDmfMiqqcQfg51wmrRM0 S1CQA9nBhVzIMAHvkNz2dMYGDwIKqioVhFXwuvXExY+bpup7J8ZvsJt4GzoRu6OE ezRu/hGR/TX8iXsx1Ss2UJ9Ek8J3lwq3pGFIFqf1UkrQ50hu16eTB3Qe9IqWQjPx TuZJz1/40nCP1jpLnhvakvALk/EQ3yakSTG3hPdyKSw3YKsSooj0XAMZ511slDQ= -----END CERTIFICATE-----Generated at Mon Mar 2 10:52:24 2026 by rpki-client