$ rpki-client -vvf rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/067CE6C895C811F09500A713C4F9AE02.roa File: 067CE6C895C811F09500A713C4F9AE02.roa (raw, json) Hash identifier: JhdOJ9Lykz/GZq5gbRC19nNJ2o6yyUCB0MKG5PSJxsk= Subject key identifier: D9:11:5B:78:DF:C8:19:0C:39:97:BD:43:A8:FD:6E:6F:5F:12:2C:17 Certificate issuer: /CN=A91578DF/serialNumber=20FC73827274002EB4E4AEE89E20FD0D173FB285 Certificate serial: 5E Authority key identifier: 20:FC:73:82:72:74:00:2E:B4:E4:AE:E8:9E:20:FD:0D:17:3F:B2:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/067CE6C895C811F09500A713C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:02:21 +0000 ROA not before: Wed 29 Oct 2025 15:09:17 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153765 IP address blocks: 163.227.8.0/23 maxlen: 23 163.227.8.0/24 maxlen: 24 163.227.9.0/24 maxlen: 24 2401:fbe0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.crl rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 07:32:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91578DF, serialNumber=20FC73827274002EB4E4AEE89E20FD0D173FB285 Validity Not Before: Oct 29 15:09:17 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a5a67d-4895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:db:47:6d:17:ea:48:c0:3f:92:05:0e:cc:38: 17:22:43:f5:54:6f:14:47:c9:3d:6f:4a:26:6c:a2: 4e:d8:e2:0d:e8:89:13:72:43:96:9b:c3:87:74:5b: a2:81:64:08:bf:71:87:6a:b6:46:f0:1b:c6:31:19: d8:64:2d:4c:41:52:62:cc:31:4f:b5:fb:7f:0a:40: f0:77:13:4b:2b:45:f8:c5:86:26:8a:58:25:76:0d: 57:80:f5:89:3e:6b:65:bd:00:05:71:17:72:b1:30: fb:d7:6b:0b:3f:4d:62:9c:ed:a0:a8:9c:b2:1c:99: 2d:00:fa:8e:e7:04:73:23:5d:52:40:09:10:87:36: 9d:5b:39:bd:0a:e6:6f:74:40:eb:38:52:f1:79:0b: 6f:a2:db:8b:3e:03:23:0a:69:55:5e:77:65:80:81: 86:8b:d0:9e:2a:52:1c:ce:b1:a9:f5:41:24:84:76: 79:65:3d:99:25:4f:10:e8:8f:60:28:e9:01:02:29: 21:92:6c:da:4a:f8:bd:b8:88:77:46:b7:be:b4:17: 0d:dc:2b:ca:24:84:2e:8e:a5:96:31:6e:55:5c:07: d3:bc:4d:62:a3:3c:00:4f:17:e0:c8:91:61:d8:4a: a9:18:26:5e:f9:5a:d5:02:3a:a5:21:67:d3:5e:fa: 53:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:11:5B:78:DF:C8:19:0C:39:97:BD:43:A8:FD:6E:6F:5F:12:2C:17 X509v3 Authority Key Identifier: keyid:20:FC:73:82:72:74:00:2E:B4:E4:AE:E8:9E:20:FD:0D:17:3F:B2:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/067CE6C895C811F09500A713C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.227.8.0/23 IPv6: 2401:fbe0::/32 Signature Algorithm: sha256WithRSAEncryption 5a:ce:42:48:c4:cf:be:4c:69:48:db:eb:9e:06:b6:76:35:fd: 8b:51:94:d9:2d:ea:fc:48:ee:fe:f7:17:29:50:6a:de:16:14: d9:d1:23:45:29:cf:56:20:5c:e2:3c:65:bd:d8:5e:9b:a8:b6: 9f:36:ee:a7:c0:b4:f3:00:ca:81:8a:9b:e8:9e:c8:d2:0f:d7: 72:c2:78:6f:99:d5:be:80:71:65:ab:d7:31:80:ad:0e:c3:8e: d4:fa:37:af:0c:1c:fe:54:be:f6:5e:35:04:7a:24:82:4a:2e: e3:e6:3e:48:6c:f1:eb:db:37:f7:ac:46:ad:60:8b:7f:ed:1a: 25:dc:5e:e6:d1:77:21:7b:c2:57:46:65:fa:7b:4d:d7:94:8b: e0:76:24:f3:18:5f:57:47:4a:35:aa:39:a3:bb:4f:f0:d5:ca: 3d:e1:6c:2f:2d:87:5c:c0:e3:f0:ac:97:6b:57:7b:e1:fb:23: d4:0d:a4:23:42:63:6a:36:c3:16:80:e9:e0:98:15:94:b8:36: ef:16:d0:93:33:65:d5:fa:e7:af:39:1d:70:8d:e7:91:88:48: 1f:d8:14:49:c1:e4:d8:53:bd:81:37:9c:7d:c1:cd:7d:06:84: 01:bb:1c:1b:db:c6:d1:1c:12:f8:fb:52:32:ed:b6:b7:2a:22: d9:f3:a6:61 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NzhERjExMC8GA1UEBRMoMjBGQzczODI3Mjc0MDAyRUI0RTRBRUU4OUUyMEZEMEQx NzNGQjI4NTAeFw0yNTEwMjkxNTA5MTdaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTVhNjdkLTQ4OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCk20dtF+pIwD+SBQ7MOBciQ/VUbxRHyT1vSiZsok7Y4g3oiRNyQ5abw4d0W6KB ZAi/cYdqtkbwG8YxGdhkLUxBUmLMMU+1+38KQPB3E0srRfjFhiaKWCV2DVeA9Yk+ a2W9AAVxF3KxMPvXaws/TWKc7aConLIcmS0A+o7nBHMjXVJACRCHNp1bOb0K5m90 QOs4UvF5C2+i24s+AyMKaVVed2WAgYaL0J4qUhzOsan1QSSEdnllPZklTxDoj2Ao 6QECKSGSbNpK+L24iHdGt760Fw3cK8okhC6OpZYxblVcB9O8TWKjPABPF+DIkWHY SqkYJl75WtUCOqUhZ9Ne+lOxAgMBAAGjggJvMIICazAdBgNVHQ4EFgQU2RFbeN/I GQw5l71DqP1ub18SLBcwHwYDVR0jBBgwFoAUIPxzgnJ0AC605K7oniD9DRc/soUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3OERGLzA1MUNGMUQ0OTVD NzExRjBBQkUyRkQ1RkM0RjlBRTAyL0lQeHpnbkowQUM2MDVLN29uaUQ5RFJjX3Nv VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVB4emduSjBBQzYwNUs3b25pRDlEUmNfc29VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzhERi8wNTFDRjFENDk1QzcxMUYwQUJFMkZENUZDNEY5QUUwMi8wNjdDRTZDODk1 QzgxMUYwOTUwMEE3MTNDNEY5QUUwMi5yb2EwLgYIKwYBBQUHAQcBAf8EHzAdMAwE AgABMAYDBAGj4wgwDQQCAAIwBwMFACQB++AwDQYJKoZIhvcNAQELBQADggEBAFrO QkjEz75MaUjb654GtnY1/YtRlNkt6vxI7v73FylQat4WFNnRI0Upz1YgXOI8Zb3Y Xpuotp827qfAtPMAyoGKm+ieyNIP13LCeG+Z1b6AcWWr1zGArQ7DjtT6N68MHP5U vvZeNQR6JIJKLuPmPkhs8evbN/esRq1gi3/tGiXcXubRdyF7wldGZfp7TdeUi+B2 JPMYX1dHSjWqOaO7T/DVyj3hbC8th1zA4/Csl2tXe+H7I9QNpCNCY2o2wxaA6eCY FZS4Nu8W0JMzZdX65685HXCN55GISB/YFEnB5NhTvYE3nH3BzX0GhAG7HBvbxtEc Evj7UjLttrcqItnzpmE= -----END CERTIFICATE-----Generated at Sat Mar 28 13:40:57 2026 by rpki-client