$ rpki-client -vvf rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/1495D7EE854B11EAACB2FE39C4F9AE02.roa File: 1495D7EE854B11EAACB2FE39C4F9AE02.roa (raw, json) Hash identifier: 91pBfBg++OiSpm3dXFfKRY31Pfjw1Y5YqIqUFxD8Hhs= Subject key identifier: F1:AB:82:A2:59:BD:36:5A:F0:52:0E:B3:95:B3:C2:A3:C2:10:EF:34 Certificate issuer: /CN=A91274A4/serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Certificate serial: 0C8B Authority key identifier: 59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/1495D7EE854B11EAACB2FE39C4F9AE02.roa Signing time: Mon 20 Apr 2026 09:04:25 +0000 ROA not before: Mon 20 Apr 2026 09:04:25 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 23856 IP address blocks: 61.13.192.0/18 maxlen: 18 61.16.48.0/20 maxlen: 20 61.16.48.0/24 maxlen: 24 61.16.49.0/24 maxlen: 24 61.16.50.0/24 maxlen: 24 61.16.52.0/24 maxlen: 24 61.16.53.0/24 maxlen: 24 61.16.64.0/18 maxlen: 18 61.16.64.0/24 maxlen: 24 61.16.72.0/24 maxlen: 24 61.16.101.0/24 maxlen: 24 61.16.110.0/24 maxlen: 24 61.16.116.0/24 maxlen: 24 103.77.140.0/22 maxlen: 22 116.206.204.0/22 maxlen: 22 116.206.207.0/24 maxlen: 24 203.149.192.0/19 maxlen: 19 203.149.196.0/24 maxlen: 24 203.149.224.0/20 maxlen: 20 203.149.225.0/24 maxlen: 24 2407:9880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3211 (0xc8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91274A4, serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Validity Not Before: Apr 20 09:04:25 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69e5ec19-aed5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c9:77:87:b4:5b:77:7b:0b:0f:d5:82:11:6b: 25:51:6e:07:84:3b:27:30:ef:4a:d1:b8:1f:29:69: 97:eb:ac:f3:e0:40:53:b2:b1:b6:ce:5c:f8:c1:fd: f1:ee:97:03:db:43:fa:c4:ea:2e:6b:b3:69:bf:0d: 3e:51:ce:00:4f:68:17:35:12:e6:48:d2:4d:c8:da: 30:6f:ae:6c:45:96:23:0f:75:db:19:0c:3b:4d:d0: 31:cb:5f:b0:6f:e7:16:cd:cf:c0:60:21:8d:ee:d4: 8d:c4:6a:bf:2f:be:26:78:06:c3:16:59:49:7e:c9: af:a9:ee:09:67:e2:43:9c:e7:3f:a7:02:b8:28:d7: 7a:0b:39:fd:29:ae:d0:0e:67:ed:2a:72:08:e9:36: 80:e4:2e:bb:22:cd:ac:1f:6b:32:94:f9:58:51:a1: 4a:8d:05:fe:16:dd:f1:49:25:85:d3:be:05:66:47: d7:a5:f0:c3:f7:54:1c:ce:8f:3c:21:28:d9:7a:bf: 1e:8d:3a:47:37:c6:b9:98:94:50:6e:1a:d9:5e:57: 19:87:f8:4c:1d:4b:48:16:03:d5:d1:32:a6:cb:f3: 4a:54:9c:88:12:59:e7:72:e5:ae:da:5f:99:5a:66: c3:97:d7:46:22:5f:f8:3b:a9:35:36:ca:96:b8:8a: 4b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:AB:82:A2:59:BD:36:5A:F0:52:0E:B3:95:B3:C2:A3:C2:10:EF:34 X509v3 Authority Key Identifier: keyid:59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/1495D7EE854B11EAACB2FE39C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.13.192.0/18 61.16.48.0-61.16.127.255 103.77.140.0/22 116.206.204.0/22 203.149.192.0-203.149.239.255 IPv6: 2407:9880::/32 Signature Algorithm: sha256WithRSAEncryption e8:e2:63:5a:f6:06:33:29:35:38:3a:e9:be:30:64:8a:6e:2b: dd:c0:9c:b4:3e:4f:53:d7:b4:9d:2d:c6:2e:92:7a:d9:74:c1: a0:87:a2:c0:2a:69:6c:e4:d9:d8:c6:a7:53:dc:82:dd:bf:46: 7b:02:5f:c7:a3:4d:0b:26:f6:67:35:e0:9f:f7:cf:c0:b4:72: 71:0e:70:fb:90:ab:e5:eb:0e:e7:dd:39:48:02:52:68:8f:ba: e6:7b:11:25:fd:1d:64:6f:01:3e:68:f5:70:b9:a6:be:c7:22: d1:f5:94:cc:a0:c6:a4:79:ea:0c:5e:9a:3a:19:ee:80:ec:92: 90:13:19:33:18:30:85:d0:3f:8b:27:be:32:d7:00:a9:e2:99: b3:df:05:03:f5:d4:ba:d5:e0:1c:70:66:7c:ed:a9:0b:ae:31: aa:18:b8:0a:c5:ef:b5:dd:11:f5:f4:37:75:ef:2f:79:52:89: 28:87:3f:28:c6:46:10:ed:d0:8f:25:9b:75:d6:eb:3a:d3:39: 74:82:52:87:ba:75:8d:7f:0c:ae:97:25:a8:44:8a:70:5e:b4: a5:5e:96:49:09:a0:0e:5a:5d:ad:e2:a5:c7:c6:4d:4a:4b:5c: 97:4b:02:80:00:3e:02:7a:70:58:d5:02:c5:16:a1:19:b7:c1: 59:19:60:b1 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICDIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc0QTQxMTAvBgNVBAUTKDU5NTY2NUZGODVFNEU0NzczNzFGNzU0MUY3MjA5REMy NDRFNjBDQTUwHhcNMjYwNDIwMDkwNDI1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU1ZWMxOS1hZWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsl3h7Rbd3sLD9WCEWslUW4HhDsnMO9K0bgfKWmX66zz4EBTsrG2zlz4wf3x 7pcD20P6xOoua7Npvw0+Uc4AT2gXNRLmSNJNyNowb65sRZYjD3XbGQw7TdAxy1+w b+cWzc/AYCGN7tSNxGq/L74meAbDFllJfsmvqe4JZ+JDnOc/pwK4KNd6Czn9Ka7Q DmftKnII6TaA5C67Is2sH2sylPlYUaFKjQX+Ft3xSSWF074FZkfXpfDD91Qczo88 ISjZer8ejTpHN8a5mJRQbhrZXlcZh/hMHUtIFgPV0TKmy/NKVJyIElnncuWu2l+Z WmbDl9dGIl/4O6k1NsqWuIpLyQIDAQABo4IClzCCApMwHQYDVR0OBBYEFPGrgqJZ vTZa8FIOs5WzwqPCEO80MB8GA1UdIwQYMBaAFFlWZf+F5OR3Nx91QfcgncJE5gyl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzRBNC9EREJFNDIwQTMw RjAxMUVBOTg1OUFFNTNDNEY5QUUwMi9XVlpsXzRYazVIYzNIM1ZCOXlDZHdrVG1E S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dWWmxfNFhrNUhjM0gzVkI5eUNkd2tUbURLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc0QTQvRERCRTQyMEEzMEYwMTFFQTk4NTlBRTUzQzRGOUFFMDIvMTQ5NUQ3RUU4 NTRCMTFFQUFDQjJGRTM5QzRGOUFFMDIucm9hMFYGCCsGAQUFBwEHAQH/BEcwRTA0 BAIAATAuAwQGPQ3AMAwDBAQ9EDADBAc9EAADBAJnTYwDBAJ0zswwDAMEBsuVwAME BMuV4DANBAIAAjAHAwUAJAeYgDANBgkqhkiG9w0BAQsFAAOCAQEA6OJjWvYGMyk1 ODrpvjBkim4r3cCctD5PU9e0nS3GLpJ62XTBoIeiwCppbOTZ2ManU9yC3b9GewJf x6NNCyb2ZzXgn/fPwLRycQ5w+5Cr5esO5905SAJSaI+65nsRJf0dZG8BPmj1cLmm vsci0fWUzKDGpHnqDF6aOhnugOySkBMZMxgwhdA/iye+MtcAqeKZs98FA/XUutXg HHBmfO2pC64xqhi4CsXvtd0R9fQ3de8veVKJKIc/KMZGEO3QjyWbddbrOtM5dIJS h7p1jX8MrpclqESKcF60pV6WSQmgDlpdreKlx8ZNSktcl0sCgAA+AnpwWNUCxRah GbfBWRlgsQ== -----END CERTIFICATE-----Generated at Wed May 13 07:29:11 2026 by rpki-client