$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA850/2DBC4948ED2711F0B397D379446F56BC/CE6915C0ED3A11F0A5B7B5054B6F56BC.roa File: CE6915C0ED3A11F0A5B7B5054B6F56BC.roa (raw, json) Hash identifier: 18c0IjqREvvCbFh1OonuDqpoKVFbN0WBr8JimtNfp4Y= Subject key identifier: EE:69:BF:40:0D:E8:00:01:09:02:A6:5B:13:14:EF:E1:2C:06:CF:1F Certificate issuer: /CN=A91EA850/serialNumber=995D70A97F56B2E000BACA6ECA4373E6207BB98D Certificate serial: 23 Authority key identifier: 99:5D:70:A9:7F:56:B2:E0:00:BA:CA:6E:CA:43:73:E6:20:7B:B9:8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mV1wqX9WsuAAuspuykNz5iB7uY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA850/2DBC4948ED2711F0B397D379446F56BC/CE6915C0ED3A11F0A5B7B5054B6F56BC.roa Signing time: Mon 02 Mar 2026 14:52:47 +0000 ROA not before: Fri 09 Jan 2026 09:08:47 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 142187 IP address blocks: 192.58.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA850/2DBC4948ED2711F0B397D379446F56BC/mV1wqX9WsuAAuspuykNz5iB7uY0.crl rsync://rpki.apnic.net/member_repository/A91EA850/2DBC4948ED2711F0B397D379446F56BC/mV1wqX9WsuAAuspuykNz5iB7uY0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mV1wqX9WsuAAuspuykNz5iB7uY0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA850, serialNumber=995D70A97F56B2E000BACA6ECA4373E6207BB98D Validity Not Before: Jan 9 09:08:47 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a5a43f-f3c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:97:39:6f:83:1c:09:b6:1a:75:18:e0:50:2f: 07:43:04:84:3b:8c:6d:de:a1:72:27:cf:6d:6e:9e: 0c:4d:50:3c:19:40:b9:41:6d:65:1c:7e:6f:d2:8f: e3:9d:28:d8:48:00:18:ef:95:c7:a0:39:a8:8b:dd: 66:18:05:c9:bb:40:58:37:4c:92:c2:ff:f9:b6:db: 6e:93:48:9a:b9:10:48:bf:fc:23:a0:e2:90:76:5d: c2:72:a5:6b:5b:fd:4f:e7:bf:7b:05:f2:86:0e:74: 49:7c:a5:c9:36:48:b4:d9:66:f3:eb:81:fd:9e:b8: 6f:e5:0e:cd:8e:a8:62:94:8f:f9:93:90:55:0f:05: 84:08:bf:32:b6:e4:2c:ca:4d:a7:d9:f6:9d:7c:a7: e5:b6:6a:04:2f:90:e5:79:16:2c:0a:f3:d4:e3:33: cc:da:4c:71:21:ed:a2:02:da:01:65:79:55:ef:96: 1b:f1:5b:ed:ff:4a:a5:38:df:0d:8b:9f:dc:fb:07: b8:8d:7e:f5:42:3b:fb:59:c3:cf:a1:4c:03:df:94: 38:5d:eb:5c:d0:06:48:66:e7:f3:82:83:26:a4:ad: 8b:f6:04:1c:fd:06:6a:66:e8:14:21:ae:a3:fa:b1: 20:22:64:3e:6e:d6:80:8d:da:31:fe:1c:16:e3:e4: af:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:69:BF:40:0D:E8:00:01:09:02:A6:5B:13:14:EF:E1:2C:06:CF:1F X509v3 Authority Key Identifier: keyid:99:5D:70:A9:7F:56:B2:E0:00:BA:CA:6E:CA:43:73:E6:20:7B:B9:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA850/2DBC4948ED2711F0B397D379446F56BC/mV1wqX9WsuAAuspuykNz5iB7uY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mV1wqX9WsuAAuspuykNz5iB7uY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA850/2DBC4948ED2711F0B397D379446F56BC/CE6915C0ED3A11F0A5B7B5054B6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 192.58.99.0/24 Signature Algorithm: sha256WithRSAEncryption a2:e0:0b:3f:e6:94:0a:d3:b5:d0:23:53:a5:44:12:06:56:22: 3f:61:ee:e9:36:63:26:6e:ec:cf:ae:9f:b0:25:c2:43:1c:8c: 59:61:bc:7e:b2:69:8f:6b:76:72:19:6d:83:51:1b:88:ed:dd: d8:e2:18:a5:7b:e5:df:30:95:4f:86:86:74:b9:cf:88:5e:50: 4c:c7:3e:05:68:be:e1:ce:05:44:52:de:30:d2:51:a6:89:7f: 21:13:31:71:a8:b1:92:d1:18:1d:7e:20:49:05:14:e8:9a:c4: 2e:08:31:14:96:e0:2e:4b:27:59:70:de:1b:55:a2:72:26:41: d7:de:b6:6d:74:c2:f1:25:2c:25:bb:03:c7:63:d6:6e:b4:87: 06:4e:a0:38:74:26:c8:f7:04:25:be:6d:84:b0:ac:da:c1:23: 16:58:de:34:d2:68:71:d6:2a:fb:4e:26:8c:e2:2c:c8:03:96: 64:2c:cf:12:93:c0:9c:20:6b:bc:ea:69:38:0c:93:3f:ca:27: 7f:c8:a8:c7:75:ba:f2:b1:21:da:57:59:0f:d8:05:2b:12:48: 06:0e:cc:8d:fd:be:f0:3f:49:9f:1c:d8:0f:cd:0f:33:a1:e4: 7c:e9:8a:a5:99:6a:cf:39:96:64:11:f0:4d:13:93:e3:b9:25: 53:61:74:b5 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTg1MDExMC8GA1UEBRMoOTk1RDcwQTk3RjU2QjJFMDAwQkFDQTZFQ0E0MzczRTYy MDdCQjk4RDAeFw0yNjAxMDkwOTA4NDdaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTVhNDNmLWYzYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCylzlvgxwJthp1GOBQLwdDBIQ7jG3eoXInz21ungxNUDwZQLlBbWUcfm/Sj+Od KNhIABjvlcegOaiL3WYYBcm7QFg3TJLC//m2226TSJq5EEi//COg4pB2XcJypWtb /U/nv3sF8oYOdEl8pck2SLTZZvPrgf2euG/lDs2OqGKUj/mTkFUPBYQIvzK25CzK TafZ9p18p+W2agQvkOV5FiwK89TjM8zaTHEh7aIC2gFleVXvlhvxW+3/SqU43w2L n9z7B7iNfvVCO/tZw8+hTAPflDhd61zQBkhm5/OCgyakrYv2BBz9Bmpm6BQhrqP6 sSAiZD5u1oCN2jH+HBbj5K8JAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU7mm/QA3o AAEJAqZbExTv4SwGzx8wHwYDVR0jBBgwFoAUmV1wqX9WsuAAuspuykNz5iB7uY0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBODUwLzJEQkM0OTQ4RUQy NzExRjBCMzk3RDM3OTQ0NkY1NkJDL21WMXdxWDlXc3VBQXVzcHV5a056NWlCN3VZ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbVYxd3FYOVdzdUFBdXNwdXlrTno1aUI3dVkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTg1MC8yREJDNDk0OEVEMjcxMUYwQjM5N0QzNzk0NDZGNTZCQy9DRTY5MTVDMEVE M0ExMUYwQTVCN0I1MDU0QjZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADAOmMwDQYJKoZIhvcNAQELBQADggEBAKLgCz/mlArTtdAjU6VEEgZW Ij9h7uk2YyZu7M+un7AlwkMcjFlhvH6yaY9rdnIZbYNRG4jt3djiGKV75d8wlU+G hnS5z4heUEzHPgVovuHOBURS3jDSUaaJfyETMXGosZLRGB1+IEkFFOiaxC4IMRSW 4C5LJ1lw3htVonImQdfetm10wvElLCW7A8dj1m60hwZOoDh0Jsj3BCW+bYSwrNrB IxZY3jTSaHHWKvtOJoziLMgDlmQszxKTwJwga7zqaTgMkz/KJ3/IqMd1uvKxIdpX WQ/YBSsSSAYOzI39vvA/SZ8c2A/NDzOh5HzpiqWZas85lmQR8E0Tk+O5JVNhdLU= -----END CERTIFICATE-----Generated at Mon Mar 2 18:44:59 2026 by rpki-client