$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/53BDA2F60F1A11E9B3F2A713C4F9AE02.roa File: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (raw, json) Hash identifier: 8sR59Lp6fQc79JgAgqC1t1+yUKy4/xiWteMrpfGnLFs= Subject key identifier: 44:14:3C:15:AA:BE:1F:7F:89:67:05:21:F2:6E:83:CD:DC:29:30:97 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 11F3 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/53BDA2F60F1A11E9B3F2A713C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:00:47 +0000 ROA not before: Tue 18 Nov 2025 17:06:17 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133058 IP address blocks: 158.140.152.0/24 maxlen: 24 158.140.153.0/24 maxlen: 24 158.140.154.0/24 maxlen: 24 158.140.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4595 (0x11f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Nov 18 17:06:17 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a470bf-2c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:90:59:7b:14:08:f8:a9:ab:d1:22:df:ca:26: e1:0a:bc:c0:cb:33:50:40:92:ae:8c:c3:15:14:7d: 58:95:6a:9e:71:9b:ae:81:33:68:ab:a6:87:5b:d9: 00:bf:de:89:dd:de:48:3f:05:53:5b:67:2e:bb:1b: 05:82:38:fa:94:e1:8a:84:ee:59:f4:77:01:e3:1d: d8:2b:44:79:81:84:f6:f8:a6:d6:f4:bc:b2:ff:02: 4e:5b:13:06:9d:b7:9a:ef:27:10:a5:8b:02:52:e2: 13:ba:5f:63:89:2b:1c:60:c5:fa:37:ac:03:9a:e6: 69:f5:27:98:59:35:1d:6d:5c:da:8f:32:86:9f:42: 26:63:95:03:bd:1a:61:f4:c5:63:0e:04:45:1a:15: 7c:09:29:c5:95:25:bb:36:5f:8d:07:d4:33:44:87: 5f:34:0a:b9:2e:a2:bb:df:05:55:94:7d:54:27:cb: 7e:b4:19:04:19:2f:cc:e5:f0:33:0f:3a:8c:79:b0: 60:e3:62:d1:da:04:e0:05:91:36:e2:43:f5:c8:a3: 17:f9:db:53:ed:44:bc:6f:51:a1:bc:60:5d:5a:73: 9c:a5:30:56:54:d6:f1:31:52:a2:04:83:60:1d:c8: 4e:68:c9:df:53:d0:2b:d8:81:f9:36:84:f2:82:9a: dc:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:14:3C:15:AA:BE:1F:7F:89:67:05:21:F2:6E:83:CD:DC:29:30:97 X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/53BDA2F60F1A11E9B3F2A713C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 158.140.152.0/22 Signature Algorithm: sha256WithRSAEncryption 09:50:5a:89:16:eb:d8:9c:1d:26:41:43:3f:96:b0:e1:e3:5e: 47:59:f3:56:21:26:f5:07:78:7b:85:b0:c0:1e:a2:33:41:bd: 4f:74:de:f6:1c:d8:8c:b5:c2:47:01:7d:5c:38:c0:21:d7:d8: f2:05:0e:1e:3a:ab:1c:7b:3f:5d:f7:59:d2:93:65:0d:a8:67: e2:d2:73:da:a4:d7:15:8d:6c:8a:fb:1a:bf:25:3b:9d:69:e2: 9c:45:08:27:c3:cb:48:32:da:40:9f:9e:6e:06:88:83:87:cd: d9:cd:51:9f:69:92:a8:d0:84:2f:11:ec:93:61:3a:75:51:77: 89:b7:15:a5:a4:37:1a:d4:0f:ae:a5:a4:64:25:76:82:53:29: 42:ae:5d:58:f7:63:49:d2:bd:25:60:95:23:8f:c4:46:48:53: 66:aa:e6:14:a6:3d:ad:b4:53:0b:94:ea:78:5e:59:ed:2f:dd: 60:3a:50:08:9f:e2:b1:9f:b1:66:c7:98:5a:45:bc:2e:b7:31: 59:1e:ba:9b:d7:71:38:d8:f2:b6:32:72:9a:a4:8c:11:f2:25: b6:92:65:50:c7:b6:6f:50:69:cd:2a:98:84:64:e1:24:9c:3f: 93:38:39:f8:31:8a:a9:9a:7d:15:11:01:fc:56:a6:ae:fd:5f: fb:2a:80:d7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjUxMTE4MTcwNjE3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzBiZi0yYzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpBZexQI+Kmr0SLfyibhCrzAyzNQQJKujMMVFH1YlWqecZuugTNoq6aHW9kA v96J3d5IPwVTW2cuuxsFgjj6lOGKhO5Z9HcB4x3YK0R5gYT2+KbW9Lyy/wJOWxMG nbea7ycQpYsCUuITul9jiSscYMX6N6wDmuZp9SeYWTUdbVzajzKGn0ImY5UDvRph 9MVjDgRFGhV8CSnFlSW7Nl+NB9QzRIdfNAq5LqK73wVVlH1UJ8t+tBkEGS/M5fAz DzqMebBg42LR2gTgBZE24kP1yKMX+dtT7US8b1GhvGBdWnOcpTBWVNbxMVKiBINg HchOaMnfU9Ar2IH5NoTygprcLQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEQUPBWq vh9/iWcFIfJug83cKTCXMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY3QkIvQkRGQkYxODYwRTNFMTFFOTgzNkY0MDE0QzRGOUFFMDIvNTNCREEyRjYw RjFBMTFFOUIzRjJBNzEzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCnoyYMA0GCSqGSIb3DQEBCwUAA4IBAQAJUFqJFuvYnB0mQUM/lrDh 415HWfNWISb1B3h7hbDAHqIzQb1PdN72HNiMtcJHAX1cOMAh19jyBQ4eOqscez9d 91nSk2UNqGfi0nPapNcVjWyK+xq/JTudaeKcRQgnw8tIMtpAn55uBoiDh83ZzVGf aZKo0IQvEeyTYTp1UXeJtxWlpDca1A+upaRkJXaCUylCrl1Y92NJ0r0lYJUjj8RG SFNmquYUpj2ttFMLlOp4XlntL91gOlAIn+Kxn7Fmx5haRbwutzFZHrqb13E42PK2 MnKapIwR8iW2kmVQx7ZvUGnNKpiEZOEknD+TODn4MYqpmn0VEQH8Vqau/V/7KoDX -----END CERTIFICATE-----Generated at Mon Mar 2 10:39:37 2026 by rpki-client