$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/89283C80809211EB938F4016C4F9AE02.roa File: 89283C80809211EB938F4016C4F9AE02.roa (raw, json) Hash identifier: PcG2tLkQnz4RBEfZ0X23N/B46sxcJ2UvagoPDeV/SG0= Subject key identifier: 40:C5:66:C3:42:7E:17:29:F3:CF:87:33:56:5C:DD:B9:E2:0F:EB:39 Certificate issuer: /CN=A91F89C1/serialNumber=CA32D511462AB42618A88DBA05869AFEBEA0E51A Certificate serial: 06FF Authority key identifier: CA:32:D5:11:46:2A:B4:26:18:A8:8D:BA:05:86:9A:FE:BE:A0:E5:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjLVEUYqtCYYqI26BYaa_r6g5Ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/89283C80809211EB938F4016C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:57:29 +0000 ROA not before: Thu 24 Jul 2025 23:03:40 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132321 IP address blocks: 150.191.0.0/16 maxlen: 16 150.191.0.0/17 maxlen: 17 150.191.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.crl rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjLVEUYqtCYYqI26BYaa_r6g5Ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1791 (0x6ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89C1, serialNumber=CA32D511462AB42618A88DBA05869AFEBEA0E51A Validity Not Before: Jul 24 23:03:40 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a429a9-4dc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f7:86:f7:17:3e:5f:33:7a:cf:19:d4:e8:80: 52:9b:f4:6d:e3:4f:19:26:55:31:c7:15:7a:ca:2b: b1:ed:d7:91:ef:f2:31:b7:d4:e2:fd:e1:66:b6:f4: 5e:81:9b:4d:f9:f5:2e:58:34:d3:6d:76:cd:88:09: f3:4f:32:3c:af:d4:71:be:2f:00:d4:ff:29:81:ff: 95:1d:ab:81:6f:bf:21:22:9b:4f:c0:2b:11:85:20: 72:f5:bd:bf:ef:79:1d:ee:53:86:ea:86:70:a6:7d: 20:26:e7:02:87:a4:5e:59:03:2e:df:80:e8:c0:75: 1b:6e:f6:6e:b8:b3:a0:a2:51:71:9c:bb:42:f9:83: 6c:8b:ab:f9:85:d7:01:31:e4:97:cf:81:74:50:17: eb:9a:b8:30:d2:b2:8a:5c:5e:28:ad:c3:1f:89:f3: b5:19:bf:ae:4d:ff:04:b1:dc:9d:6b:7e:bb:f5:3f: 11:11:a3:ee:84:62:42:e1:68:65:b3:d4:9d:c4:52: f2:49:c3:ae:03:a6:2b:77:8f:49:bb:47:53:10:56: f7:74:32:4a:6c:15:ba:c8:40:8b:ee:17:0a:45:3f: 1d:da:0e:12:06:a9:7d:c8:c9:cd:8d:68:68:4f:22: 57:35:3a:9d:dd:26:21:a7:b2:1d:f5:b7:33:67:1f: 04:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:C5:66:C3:42:7E:17:29:F3:CF:87:33:56:5C:DD:B9:E2:0F:EB:39 X509v3 Authority Key Identifier: keyid:CA:32:D5:11:46:2A:B4:26:18:A8:8D:BA:05:86:9A:FE:BE:A0:E5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjLVEUYqtCYYqI26BYaa_r6g5Ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/89283C80809211EB938F4016C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 150.191.0.0/16 Signature Algorithm: sha256WithRSAEncryption 25:b5:21:d3:82:9b:b0:a2:3d:7b:35:aa:e7:91:85:eb:04:68: e2:37:cb:72:54:d1:1d:83:a4:3f:74:5b:ba:17:4d:79:19:8f: 26:2a:fa:85:4c:43:72:b4:92:db:2f:d6:8b:f1:cc:16:b9:0d: 45:ed:9f:7d:95:53:ab:d6:9b:64:88:e3:34:0a:af:c5:40:8b: 5c:db:85:bf:5b:c9:a5:b1:84:4f:6c:a2:5e:a4:38:bc:93:9e: 65:64:7e:41:12:22:98:0e:4b:99:c2:ee:12:93:df:05:b8:4b: 5e:9e:39:74:8c:b9:cc:ae:b5:c9:57:bc:18:f5:64:21:6b:5c: 26:24:ac:60:2e:ab:88:73:55:26:cc:65:02:dc:3e:a6:55:ce: a9:0a:36:cb:d3:40:54:e8:04:e0:14:41:be:33:29:fc:50:83: 44:d2:c6:51:3e:7d:16:86:9e:e2:41:ec:39:46:f2:68:f8:a5: 8b:bd:92:0d:f6:02:1d:f6:99:b7:8c:56:2f:a3:fe:53:20:a5: 21:9a:ec:61:a6:90:c9:7b:31:c9:07:08:dc:d3:7c:77:ac:35: a5:7a:2c:6d:51:5d:8c:cb:19:7e:1a:0a:b0:14:37:cd:c8:73: 5c:d0:30:da:3d:c9:6b:59:72:e3:3c:4e:73:66:aa:7d:77:b9: 6d:c6:11:6c -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICBv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QzExMTAvBgNVBAUTKENBMzJENTExNDYyQUI0MjYxOEE4OERCQTA1ODY5QUZF QkVBMEU1MUEwHhcNMjUwNzI0MjMwMzQwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjlhOS00ZGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/eG9xc+XzN6zxnU6IBSm/Rt408ZJlUxxxV6yiux7deR7/Ixt9Ti/eFmtvRe gZtN+fUuWDTTbXbNiAnzTzI8r9Rxvi8A1P8pgf+VHauBb78hIptPwCsRhSBy9b2/ 73kd7lOG6oZwpn0gJucCh6ReWQMu34DowHUbbvZuuLOgolFxnLtC+YNsi6v5hdcB MeSXz4F0UBfrmrgw0rKKXF4orcMfifO1Gb+uTf8Esdyda3679T8REaPuhGJC4Whl s9SdxFLyScOuA6Yrd49Ju0dTEFb3dDJKbBW6yECL7hcKRT8d2g4SBql9yMnNjWho TyJXNTqd3SYhp7Id9bczZx8EfQIDAQABo4ICXzCCAlswHQYDVR0OBBYEFEDFZsNC fhcp88+HM1Zc3bniD+s5MB8GA1UdIwQYMBaAFMoy1RFGKrQmGKiNugWGmv6+oOUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlDMS8xM0VENjgwMjgw ODYxMUVCQjRDNkQxMTZDNEY5QUUwMi95akxWRVVZcXRDWVlxSTI2QllhYV9yNmc1 Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lqTFZFVVlxdENZWXFJMjZCWWFhX3I2ZzVSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjg5QzEvMTNFRDY4MDI4MDg2MTFFQkI0QzZEMTE2QzRGOUFFMDIvODkyODNDODA4 MDkyMTFFQjkzOEY0MDE2QzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAlr8wDQYJKoZIhvcNAQELBQADggEBACW1IdOCm7CiPXs1queRhesE aOI3y3JU0R2DpD90W7oXTXkZjyYq+oVMQ3K0ktsv1ovxzBa5DUXtn32VU6vWm2SI 4zQKr8VAi1zbhb9byaWxhE9sol6kOLyTnmVkfkESIpgOS5nC7hKT3wW4S16eOXSM ucyutclXvBj1ZCFrXCYkrGAuq4hzVSbMZQLcPqZVzqkKNsvTQFToBOAUQb4zKfxQ g0TSxlE+fRaGnuJB7DlG8mj4pYu9kg32Ah32mbeMVi+j/lMgpSGa7GGmkMl7MckH CNzTfHesNaV6LG1RXYzLGX4aCrAUN83Ic1zQMNo9yWtZcuM8TnNmqn13uW3GEWw= -----END CERTIFICATE-----Generated at Mon Mar 2 15:08:43 2026 by rpki-client