$ rpki-client -vvf rpki.apnic.net/member_repository/A912DE06/669DB572491F11F1835932CA9E833773/A66886B4491F11F193C776FB9E833773.roa File: A66886B4491F11F193C776FB9E833773.roa (raw, json) Hash identifier: AM5l48c14FagzjhiVljacWktMvN3ORmA7Ru/n9zKl8c= Subject key identifier: 79:83:95:4C:0C:9E:23:B5:3C:CD:F5:C1:48:89:55:2A:78:78:C3:56 Certificate issuer: /CN=A912DE06/serialNumber=4690C106AEB83C74D7BDF3A4E7993C09812BACFC Certificate serial: 02 Authority key identifier: 46:90:C1:06:AE:B8:3C:74:D7:BD:F3:A4:E7:99:3C:09:81:2B:AC:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RpDBBq64PHTXvfOk55k8CYErrPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DE06/669DB572491F11F1835932CA9E833773/A66886B4491F11F193C776FB9E833773.roa Signing time: Wed 06 May 2026 07:46:11 +0000 ROA not before: Wed 06 May 2026 07:46:11 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45753 IP address blocks: 111.68.0.0/21 maxlen: 21 111.68.0.0/24 maxlen: 24 111.68.1.0/24 maxlen: 24 111.68.2.0/24 maxlen: 24 111.68.3.0/24 maxlen: 24 111.68.4.0/24 maxlen: 24 111.68.5.0/24 maxlen: 24 111.68.6.0/24 maxlen: 24 111.68.7.0/24 maxlen: 24 111.68.8.0/22 maxlen: 22 111.68.8.0/24 maxlen: 24 111.68.9.0/24 maxlen: 24 111.68.10.0/24 maxlen: 24 111.68.11.0/24 maxlen: 24 111.68.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DE06/669DB572491F11F1835932CA9E833773/RpDBBq64PHTXvfOk55k8CYErrPw.crl rsync://rpki.apnic.net/member_repository/A912DE06/669DB572491F11F1835932CA9E833773/RpDBBq64PHTXvfOk55k8CYErrPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RpDBBq64PHTXvfOk55k8CYErrPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 09:21:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DE06, serialNumber=4690C106AEB83C74D7BDF3A4E7993C09812BACFC Validity Not Before: May 6 07:46:11 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69faf1c3-c8c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8a:ff:72:6a:98:36:d2:2e:b0:4e:bb:00:f6: 76:74:7e:5c:42:46:32:7a:40:22:be:5e:f1:25:fc: b4:00:cf:cc:da:12:e3:8f:99:b7:50:0b:0d:cf:47: 9b:7d:00:64:2b:4f:52:74:8f:91:0c:3e:eb:ac:50: 2b:93:14:3d:e7:af:07:9f:ce:ee:72:06:f8:f0:78: 52:77:e2:0b:e4:51:07:12:66:20:c2:65:49:38:e9: ab:5a:5b:2f:0c:3d:56:f8:d6:00:a4:4e:0d:e7:57: f4:b5:6c:de:cf:1c:db:d2:82:20:cd:d7:5c:f9:37: b6:b2:90:9a:39:95:25:9d:78:9c:af:b0:11:d6:5d: 1b:33:a2:7a:44:15:36:ef:60:2f:ee:49:44:8b:8d: 89:30:56:7a:f2:e9:96:2e:ec:4e:99:16:d2:26:61: b1:67:4d:7d:d5:d6:e2:32:4a:63:b3:0d:de:2a:b6: 6c:46:73:da:19:79:0b:0c:5c:f1:ee:fa:6f:18:ca: 6c:99:c6:15:1f:76:06:27:7d:58:08:3c:6b:0f:d9: 51:76:f5:99:7c:4d:37:da:d4:c6:89:34:cd:e1:72: 95:4e:82:a2:0f:94:e0:06:31:fa:54:e8:d9:58:00: 1a:3c:79:71:06:ea:db:4d:52:65:09:b8:22:1f:63: 26:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:83:95:4C:0C:9E:23:B5:3C:CD:F5:C1:48:89:55:2A:78:78:C3:56 X509v3 Authority Key Identifier: keyid:46:90:C1:06:AE:B8:3C:74:D7:BD:F3:A4:E7:99:3C:09:81:2B:AC:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DE06/669DB572491F11F1835932CA9E833773/RpDBBq64PHTXvfOk55k8CYErrPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RpDBBq64PHTXvfOk55k8CYErrPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DE06/669DB572491F11F1835932CA9E833773/A66886B4491F11F193C776FB9E833773.roa sbgp-ipAddrBlock: critical IPv4: 111.68.0.0-111.68.12.255 Signature Algorithm: sha256WithRSAEncryption b5:e2:0e:87:dd:aa:42:f8:6a:a7:78:e5:bd:f3:47:88:70:15: cf:a2:62:b3:2c:a6:b7:cf:e8:ed:5d:60:7b:af:56:c6:e2:84: 6b:01:be:0b:05:88:3e:aa:e4:82:d6:50:79:74:84:62:1d:d3: 79:db:e2:79:1f:8b:9a:48:31:11:08:9a:f6:69:2f:5a:4a:a2: 88:d4:29:f5:43:5a:a2:92:95:bc:8c:54:a6:3d:be:1c:7f:85: e8:56:cb:d1:91:18:bf:18:03:93:fb:d9:9a:b4:52:ec:2f:e1: 01:06:db:e0:fa:84:e2:77:b3:f0:d8:14:02:90:6f:bd:df:c1: dc:29:fd:52:f8:00:62:c9:f9:ba:6d:6f:5c:f9:93:a4:fd:f1: b8:67:b8:a4:2b:18:26:5a:a9:d7:0c:fa:b3:71:a4:6e:09:44: a3:cb:e5:4d:7e:6a:16:2d:d0:a9:a9:8b:98:0b:c9:bc:bb:7f: d5:ef:c1:ef:cb:f4:c6:ef:51:4e:25:9c:81:9c:94:b6:ae:85: b3:23:20:70:e8:ee:42:9e:d2:bc:1d:52:08:f6:88:43:60:36: 31:68:98:d1:72:92:fb:f8:a8:9f:4f:57:df:9f:c5:57:89:0b: 8d:e0:e8:d1:11:42:53:40:c9:b8:03:74:f8:ff:18:d2:19:94: 45:0a:66:a8 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy REUwNjExMC8GA1UEBRMoNDY5MEMxMDZBRUI4M0M3NEQ3QkRGM0E0RTc5OTNDMDk4 MTJCQUNGQzAeFw0yNjA1MDYwNzQ2MTFaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZmFmMWMzLWM4YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXiv9yapg20i6wTrsA9nZ0flxCRjJ6QCK+XvEl/LQAz8zaEuOPmbdQCw3PR5t9 AGQrT1J0j5EMPuusUCuTFD3nrwefzu5yBvjweFJ34gvkUQcSZiDCZUk46ataWy8M PVb41gCkTg3nV/S1bN7PHNvSgiDN11z5N7aykJo5lSWdeJyvsBHWXRszonpEFTbv YC/uSUSLjYkwVnry6ZYu7E6ZFtImYbFnTX3V1uIySmOzDd4qtmxGc9oZeQsMXPHu +m8YymyZxhUfdgYnfVgIPGsP2VF29Zl8TTfa1MaJNM3hcpVOgqIPlOAGMfpU6NlY ABo8eXEG6ttNUmUJuCIfYyYZAgMBAAGjggJnMIICYzAdBgNVHQ4EFgQUeYOVTAye I7U8zfXBSIlVKnh4w1YwHwYDVR0jBBgwFoAURpDBBq64PHTXvfOk55k8CYErrPww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJERTA2LzY2OURCNTcyNDkx RjExRjE4MzU5MzJDQTlFODMzNzczL1JwREJCcTY0UEhUWHZmT2s1NWs4Q1lFcnJQ dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUnBEQkJxNjRQSFRYdmZPazU1azhDWUVyclB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REUwNi82NjlEQjU3MjQ5MUYxMUYxODM1OTMyQ0E5RTgzMzc3My9BNjY4ODZCNDQ5 MUYxMUYxOTNDNzc2RkI5RTgzMzc3My5yb2EwJgYIKwYBBQUHAQcBAf8EFzAVMBME AgABMA0wCwMDAm9EAwQAb0QMMA0GCSqGSIb3DQEBCwUAA4IBAQC14g6H3apC+Gqn eOW980eIcBXPomKzLKa3z+jtXWB7r1bG4oRrAb4LBYg+quSC1lB5dIRiHdN52+J5 H4uaSDERCJr2aS9aSqKI1Cn1Q1qikpW8jFSmPb4cf4XoVsvRkRi/GAOT+9matFLs L+EBBtvg+oTid7Pw2BQCkG+938HcKf1S+ABiyfm6bW9c+ZOk/fG4Z7ikKxgmWqnX DPqzcaRuCUSjy+VNfmoWLdCpqYuYC8m8u3/V78Hvy/TG71FOJZyBnJS2roWzIyBw 6O5CntK8HVII9ohDYDYxaJjRcpL7+KifT1ffn8VXiQuN4OjREUJTQMm4A3T4/xjS GZRFCmao -----END CERTIFICATE-----Generated at Wed May 13 16:14:52 2026 by rpki-client