$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBC9F/7FD96BF60D8011F1920B3A0E243D8C67/4CCA7C1E34E511F1AF14078F91833773.roa File: 4CCA7C1E34E511F1AF14078F91833773.roa (raw, json) Hash identifier: IjUm+BH6SUivx0UO20wJhS2k8Pz3XHEgptYkjotxwWg= Subject key identifier: 14:4B:64:B5:FC:16:39:A9:8B:98:08:6D:BE:9A:02:67:56:9A:0F:EF Certificate issuer: /CN=A91FBC9F/serialNumber=9A925E868C26AE3CE7E08CED6FC3112F640F2CCF Certificate serial: 28 Authority key identifier: 9A:92:5E:86:8C:26:AE:3C:E7:E0:8C:ED:6F:C3:11:2F:64:0F:2C:CF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mpJehowmrjzn4Iztb8MRL2QPLM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBC9F/7FD96BF60D8011F1920B3A0E243D8C67/4CCA7C1E34E511F1AF14078F91833773.roa Signing time: Fri 10 Apr 2026 13:58:07 +0000 ROA not before: Fri 10 Apr 2026 13:58:07 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 135651 IP address blocks: 151.158.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBC9F/7FD96BF60D8011F1920B3A0E243D8C67/mpJehowmrjzn4Iztb8MRL2QPLM8.crl rsync://rpki.apnic.net/member_repository/A91FBC9F/7FD96BF60D8011F1920B3A0E243D8C67/mpJehowmrjzn4Iztb8MRL2QPLM8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mpJehowmrjzn4Iztb8MRL2QPLM8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 02:50:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBC9F, serialNumber=9A925E868C26AE3CE7E08CED6FC3112F640F2CCF Validity Not Before: Apr 10 13:58:07 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d901ee-8791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:96:8a:2d:ec:ff:aa:f0:bc:6c:cd:88:c9:34: dc:20:59:66:a7:0d:f1:b6:09:c4:8f:cc:a4:cd:6e: 80:8d:79:0d:cd:04:e4:d6:8f:c3:c4:66:78:22:4a: 05:88:c8:50:e0:51:ec:60:b8:01:3f:13:b7:ba:25: e9:fb:ed:35:a8:20:4f:d9:79:23:d7:a9:e3:e8:ea: 19:88:f8:c1:43:2e:d1:25:fd:83:92:64:2b:b7:b9: ab:be:97:3c:4b:be:32:c2:9b:2e:f8:58:60:d0:ff: dd:23:c8:a4:98:a1:af:09:f2:cd:47:9a:c8:64:75: ce:be:e0:ca:8c:fa:7c:71:7f:40:56:4c:f3:f6:ff: 58:66:bc:49:b9:d4:23:35:81:fc:86:e9:ba:0f:60: 64:24:ec:be:a0:95:99:be:f9:76:b5:85:0b:7b:2e: c0:18:b7:99:a0:21:27:ca:6d:97:6f:6b:4d:e1:0e: 60:56:c3:a0:9a:1d:8f:35:f9:5a:ca:be:db:4e:53: b4:59:3c:ae:b8:df:25:99:1a:73:b5:a1:30:53:d5: 2f:5a:fd:6f:51:66:36:98:9d:75:90:75:13:c6:6e: 03:54:6e:72:bd:f9:90:9d:61:34:75:80:68:ae:a5: 76:6e:02:23:96:b2:c7:ba:54:d4:a2:af:8f:0d:e4: f6:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:4B:64:B5:FC:16:39:A9:8B:98:08:6D:BE:9A:02:67:56:9A:0F:EF X509v3 Authority Key Identifier: keyid:9A:92:5E:86:8C:26:AE:3C:E7:E0:8C:ED:6F:C3:11:2F:64:0F:2C:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBC9F/7FD96BF60D8011F1920B3A0E243D8C67/mpJehowmrjzn4Iztb8MRL2QPLM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mpJehowmrjzn4Iztb8MRL2QPLM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBC9F/7FD96BF60D8011F1920B3A0E243D8C67/4CCA7C1E34E511F1AF14078F91833773.roa sbgp-ipAddrBlock: critical IPv4: 151.158.206.0/24 Signature Algorithm: sha256WithRSAEncryption 20:9c:bf:c3:37:c6:5c:23:f4:40:65:cb:49:16:fe:08:4a:a8: 85:f0:02:5d:7c:63:ec:04:27:46:a1:e7:2c:84:c0:52:d5:65: df:51:96:5a:ff:d0:1e:89:10:6b:38:c0:4f:a6:96:ca:fe:42: fa:4f:9a:aa:13:d6:dc:6f:9d:3b:8f:26:87:12:56:86:66:0b: 93:fe:71:be:fb:ab:8a:0b:0e:2a:05:a7:85:92:48:83:14:4b: 2f:93:cf:3a:42:18:56:49:f1:3a:39:0c:af:0f:5c:2c:92:85: 32:3b:21:fc:df:3d:8e:86:69:31:cd:4c:33:5d:25:f4:99:33: 52:51:61:87:3f:2b:bc:25:7a:20:83:9a:5f:3b:3c:d2:5f:e6: e9:11:a1:a7:5b:ed:a7:b1:92:98:64:c5:6c:d5:69:12:8d:af: 1d:59:72:12:ad:71:80:06:8c:7c:bc:0b:48:bf:8f:e0:7f:bd: 8b:ac:84:ea:cb:93:6e:08:30:dc:ae:52:12:d8:e3:aa:ec:7a: 06:0d:24:28:d5:bb:62:7f:11:4c:55:26:32:ec:f8:1e:2f:9f: ab:87:a0:7e:b9:35:f4:5b:02:25:5f:ad:0f:ab:e5:5c:68:f8: 36:45:df:a7:fa:01:da:57:45:44:31:b1:2b:7c:a3:ef:73:a5: 14:2c:39:36 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkM5RjExMC8GA1UEBRMoOUE5MjVFODY4QzI2QUUzQ0U3RTA4Q0VENkZDMzExMkY2 NDBGMkNDRjAeFw0yNjA0MTAxMzU4MDdaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZDkwMWVlLTg3OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJloot7P+q8LxszYjJNNwgWWanDfG2CcSPzKTNboCNeQ3NBOTWj8PEZngiSgWI yFDgUexguAE/E7e6Jen77TWoIE/ZeSPXqePo6hmI+MFDLtEl/YOSZCu3uau+lzxL vjLCmy74WGDQ/90jyKSYoa8J8s1Hmshkdc6+4MqM+nxxf0BWTPP2/1hmvEm51CM1 gfyG6boPYGQk7L6glZm++Xa1hQt7LsAYt5mgISfKbZdva03hDmBWw6CaHY81+VrK vttOU7RZPK643yWZGnO1oTBT1S9a/W9RZjaYnXWQdRPGbgNUbnK9+ZCdYTR1gGiu pXZuAiOWsse6VNSir48N5PbBAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUFEtktfwW OamLmAhtvpoCZ1aaD+8wHwYDVR0jBBgwFoAUmpJehowmrjzn4Iztb8MRL2QPLM8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCQzlGLzdGRDk2QkY2MEQ4 MDExRjE5MjBCM0EwRTI0M0Q4QzY3L21wSmVob3dtcmp6bjRJenRiOE1STDJRUExN OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvbXBKZWhvd21yanpuNEl6dGI4TVJMMlFQTE04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkM5Ri83RkQ5NkJGNjBEODAxMUYxOTIwQjNBMEUyNDNEOEM2Ny80Q0NBN0MxRTM0 RTUxMUYxQUYxNDA3OEY5MTgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACXns4wDQYJKoZIhvcNAQELBQADggEBACCcv8M3xlwj9EBly0kW/ghK qIXwAl18Y+wEJ0ah5yyEwFLVZd9Rllr/0B6JEGs4wE+mlsr+QvpPmqoT1txvnTuP JocSVoZmC5P+cb77q4oLDioFp4WSSIMUSy+TzzpCGFZJ8To5DK8PXCyShTI7Ifzf PY6GaTHNTDNdJfSZM1JRYYc/K7wleiCDml87PNJf5ukRoadb7aexkphkxWzVaRKN rx1ZchKtcYAGjHy8C0i/j+B/vYushOrLk24IMNyuUhLY46rsegYNJCjVu2J/EUxV JjLs+B4vn6uHoH65NfRbAiVfrQ+r5Vxo+DZF36f6AdpXRUQxsSt8o+9zpRQsOTY= -----END CERTIFICATE-----Generated at Sun Apr 19 12:10:10 2026 by rpki-client