$ rpki-client -vvf rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/B2EA4BAA29EB11F1A56364AEA0833773.roa File: B2EA4BAA29EB11F1A56364AEA0833773.roa (raw, json) Hash identifier: SFh1ah0wSEcelj/ZujwegnhnJcy7Jkl3pHyETC3qbPI= Subject key identifier: B2:39:9C:33:D3:A9:55:91:93:C3:29:F8:38:FD:2C:3B:4A:5C:BC:05 Certificate issuer: /CN=A91304A9/serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A Certificate serial: 49 Authority key identifier: 3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/B2EA4BAA29EB11F1A56364AEA0833773.roa Signing time: Fri 27 Mar 2026 15:20:09 +0000 ROA not before: Fri 27 Mar 2026 15:20:09 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17676 IP address blocks: 63.223.70.0/24 maxlen: 24 63.223.99.0/24 maxlen: 24 63.223.117.0/24 maxlen: 24 63.223.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 17:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91304A9, serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A Validity Not Before: Mar 27 15:20:09 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69c6a029-ee43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b4:a4:52:d0:cf:d3:0d:e9:48:51:23:9f:be: 26:ae:26:bd:32:e9:57:a1:f8:f8:51:33:46:cc:2d: 2a:20:85:59:59:38:e6:ec:43:6b:ba:70:bc:7d:aa: 86:d4:5d:b8:3f:2a:e9:f4:b8:25:06:e7:18:db:c0: bc:15:41:ea:22:53:e4:25:59:91:6b:ed:bf:c8:a1: 5f:57:1a:f3:11:d7:58:7a:dc:37:47:76:3b:ac:66: 8f:76:74:e1:25:35:07:6d:2e:40:9a:09:27:7d:16: c4:8a:6c:40:28:7b:6d:79:4b:1c:96:d6:ce:8c:b0: 1f:02:2c:f3:30:ee:f9:e6:5a:22:d9:0c:8d:9d:3d: 6d:40:4d:fa:7d:66:7e:77:9d:39:6e:d5:1b:2e:18: b0:69:c9:ff:a6:78:11:0c:e1:16:72:ab:7e:ef:2b: e3:3a:0e:52:4d:ca:f0:0f:d1:fc:be:f8:26:f7:1f: 65:d3:76:f0:66:2b:0b:f6:ed:7a:fd:59:a7:76:46: bb:3b:df:ab:5d:c2:b0:4d:48:03:6e:fb:9f:29:4b: c1:b1:01:02:97:84:9a:6f:88:ac:c8:e4:68:76:18: f7:ae:8a:aa:d3:51:c6:1d:5d:9e:39:ec:be:bb:af: 6a:40:c1:c6:82:55:1e:41:8f:06:55:98:9e:73:5d: b3:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:39:9C:33:D3:A9:55:91:93:C3:29:F8:38:FD:2C:3B:4A:5C:BC:05 X509v3 Authority Key Identifier: keyid:3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/B2EA4BAA29EB11F1A56364AEA0833773.roa sbgp-ipAddrBlock: critical IPv4: 63.223.70.0/24 63.223.99.0/24 63.223.117.0/24 63.223.123.0/24 Signature Algorithm: sha256WithRSAEncryption b9:fe:0c:1e:ca:66:49:f5:ab:48:2a:5d:ff:e6:31:55:ef:9f: ab:3f:d9:e4:e3:5b:d8:27:2f:65:40:f0:5e:9f:0a:18:bb:23: d1:63:05:ad:23:0d:db:b1:8f:f4:f7:e5:2e:68:d0:21:c6:de: 58:9d:b9:94:ab:9d:d8:88:26:75:db:20:8a:05:ed:18:1f:b2: a5:55:dc:d3:5b:58:18:91:fd:88:87:e0:8a:b3:c0:fe:27:3e: 5d:9e:95:33:a2:7a:71:25:3c:7d:9f:34:de:bd:bc:0e:f1:90: 96:e1:92:4f:75:e9:9b:45:56:b5:ec:72:af:ef:e1:fe:5c:2f: cb:0d:0f:37:f0:49:2c:52:43:cf:5c:b8:60:e8:37:f6:c3:5e: 82:a9:e8:25:e1:79:31:e0:83:ad:5b:85:49:d8:49:b2:f4:d8: ea:ae:54:60:7b:85:d9:eb:49:16:b2:8f:60:ba:0d:b3:60:f2: 3b:ff:e4:f1:dd:41:dc:28:0f:5a:cc:44:9d:8a:5f:80:87:8b: ee:f6:bf:5e:14:a9:ba:ec:39:58:2d:8e:a1:16:53:de:de:55: f0:06:e9:53:9e:90:b6:f2:d9:e0:23:bb:32:fd:60:6a:fc:36: 55:1f:c1:a8:d2:83:13:d2:1e:81:13:9e:3e:31:a1:96:4b:69: 3e:b7:bf:84 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MDRBOTExMC8GA1UEBRMoM0Q3QjE1QkQ3N0Q5Qjk3NEUzNzM1OERBNzU0REZFQTky OTFFNjgzQTAeFw0yNjAzMjcxNTIwMDlaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YzZhMDI5LWVlNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDctKRS0M/TDelIUSOfviauJr0y6Veh+PhRM0bMLSoghVlZOObsQ2u6cLx9qobU Xbg/Kun0uCUG5xjbwLwVQeoiU+QlWZFr7b/IoV9XGvMR11h63DdHdjusZo92dOEl NQdtLkCaCSd9FsSKbEAoe215SxyW1s6MsB8CLPMw7vnmWiLZDI2dPW1ATfp9Zn53 nTlu1RsuGLBpyf+meBEM4RZyq37vK+M6DlJNyvAP0fy++Cb3H2XTdvBmKwv27Xr9 Wad2Rrs736tdwrBNSANu+58pS8GxAQKXhJpviKzI5Gh2GPeuiqrTUcYdXZ457L67 r2pAwcaCVR5BjwZVmJ5zXbMzAgMBAAGjggJyMIICbjAdBgNVHQ4EFgQUsjmcM9Op VZGTwyn4OP0sO0pcvAUwHwYDVR0jBBgwFoAUPXsVvXfZuXTjc1jadU3+qSkeaDow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMwNEE5L0ZEMzcyRTRBMjk0 NTExRjFBN0FBM0VCRDg0RUU1MjhFL1BYc1Z2WGZadVhUamMxamFkVTMtcVNrZWFE by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUFhzVnZYZlp1WFRqYzFqYWRVMy1xU2tlYURvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDRBOS9GRDM3MkU0QTI5NDUxMUYxQTdBQTNFQkQ4NEVFNTI4RS9CMkVBNEJBQTI5 RUIxMUYxQTU2MzY0QUVBMDgzMzc3My5yb2EwMQYIKwYBBQUHAQcBAf8EIjAgMB4E AgABMBgDBAA/30YDBAA/32MDBAA/33UDBAA/33swDQYJKoZIhvcNAQELBQADggEB ALn+DB7KZkn1q0gqXf/mMVXvn6s/2eTjW9gnL2VA8F6fChi7I9FjBa0jDduxj/T3 5S5o0CHG3liduZSrndiIJnXbIIoF7RgfsqVV3NNbWBiR/YiH4IqzwP4nPl2elTOi enElPH2fNN69vA7xkJbhkk916ZtFVrXscq/v4f5cL8sNDzfwSSxSQ89cuGDoN/bD XoKp6CXheTHgg61bhUnYSbL02OquVGB7hdnrSRayj2C6DbNg8jv/5PHdQdwoD1rM RJ2KX4CHi+72v14UqbrsOVgtjqEWU97eVfAG6VOekLby2eAjuzL9YGr8NlUfwajS gxPSHoETnj4xoZZLaT63v4Q= -----END CERTIFICATE-----Generated at Sat Mar 28 19:00:22 2026 by rpki-client