$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa File: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (raw, json) Hash identifier: +tOM25MCKNoZft+0ItL3rfD0x3Jm3+5ljYXYPQKuHQA= Subject key identifier: 15:57:CC:B8:F6:5F:C6:CD:99:D2:80:DA:E1:E7:FD:22:CF:67:3F:50 Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Certificate serial: E9 Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa Signing time: Mon 09 Mar 2026 05:42:45 +0000 ROA not before: Mon 09 Mar 2026 05:42:45 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 152565 IP address blocks: 163.61.38.0/23 maxlen: 23 163.61.38.0/24 maxlen: 24 163.61.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158491, serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Validity Not Before: Mar 9 05:42:45 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ae5dd5-df86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e6:9b:1f:60:ca:35:07:83:22:0f:8b:2a:d7: 2e:54:05:92:d6:a7:4a:27:5a:63:1b:7a:c4:86:4e: 6d:72:a7:78:13:c8:10:a3:dc:84:86:2b:2e:d0:41: cc:17:5c:43:58:de:df:4e:56:b5:ad:21:a8:62:91: 53:9b:03:3e:8f:bc:73:05:b2:3f:5b:65:57:49:b3: 4b:a2:b1:26:fd:57:c4:03:1f:c8:df:04:bc:36:08: 8b:19:05:39:cf:4b:d4:c4:93:67:af:36:5f:34:e8: 98:3b:89:f5:bc:b3:d6:a3:d0:59:a1:2f:43:59:6a: 15:b0:76:d0:f6:6d:ae:2b:96:30:9b:d4:b6:a2:de: 4b:29:6a:f4:88:20:5a:1d:d6:bc:cb:0f:6f:e7:c6: 2e:56:9e:52:43:dd:e2:4e:ce:f0:10:4c:b4:09:94: 43:81:59:02:85:28:fb:ec:f9:49:12:d4:33:de:e7: 00:e0:66:76:fd:7c:96:3b:4c:b9:1f:17:27:17:e0: a7:a6:f1:1d:3c:2c:ea:cc:cf:f6:d0:14:03:45:d8: d8:9d:0c:c7:1d:20:12:74:51:bf:ca:32:43:bc:fd: aa:1d:ec:62:6d:f6:6d:d5:9f:e9:00:b9:eb:47:67: df:1b:f0:73:76:aa:3a:c9:b1:e1:42:91:4f:99:a7: 1d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:57:CC:B8:F6:5F:C6:CD:99:D2:80:DA:E1:E7:FD:22:CF:67:3F:50 X509v3 Authority Key Identifier: keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.61.38.0/23 Signature Algorithm: sha256WithRSAEncryption 27:12:fe:e8:9a:20:c2:9a:41:3c:0c:49:4c:d3:aa:4e:bf:24: b1:ae:4d:a3:15:6f:93:a3:7c:0a:1f:af:ac:3b:af:40:96:02: 77:25:e4:49:17:c8:de:a4:8c:3b:c0:b3:22:fc:45:b2:b1:3f: 9a:bd:3c:ac:29:8c:f1:44:7f:8e:c2:a7:b9:10:a6:5e:e5:66: e5:51:aa:1a:4f:48:5f:91:4c:13:de:4e:36:3c:56:e6:c6:06: e6:49:a6:fa:fa:e1:58:49:b6:b6:7a:46:17:ca:7a:6b:04:53: ae:7e:4b:0c:ee:8b:1f:a7:dc:03:d3:f9:5c:d0:4d:f5:1f:bc: e0:72:04:5f:34:ee:32:58:53:17:1f:61:0b:2e:22:d2:14:eb: 69:81:48:72:c2:87:09:f7:36:68:af:07:38:3f:25:17:84:0f: ca:a1:ce:d2:39:47:a5:5b:e4:e8:0c:e9:3b:92:df:c0:a3:31: 7c:dc:72:91:cb:26:d1:27:f9:78:2e:c6:f4:b7:3e:9e:f0:93: 96:17:b5:56:ad:70:1a:3d:56:5d:45:ec:e5:18:ab:5e:99:44: f6:ab:13:19:64:28:82:01:a3:c4:42:e5:dc:2f:2f:20:fa:c8: db:eb:ec:97:dd:0d:50:49:fb:e1:d4:5b:b7:99:65:85:e5:7e: 12:a1:a2:35 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg0OTExMTAvBgNVBAUTKDYxRjhDN0VCQTdCNTVFNzFCMkU2QjE3NzQwOTE0MjUx RDg4Q0YwQTYwHhcNMjYwMzA5MDU0MjQ1WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFlNWRkNS1kZjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvuabH2DKNQeDIg+LKtcuVAWS1qdKJ1pjG3rEhk5tcqd4E8gQo9yEhisu0EHM F1xDWN7fTla1rSGoYpFTmwM+j7xzBbI/W2VXSbNLorEm/VfEAx/I3wS8NgiLGQU5 z0vUxJNnrzZfNOiYO4n1vLPWo9BZoS9DWWoVsHbQ9m2uK5Ywm9S2ot5LKWr0iCBa Hda8yw9v58YuVp5SQ93iTs7wEEy0CZRDgVkChSj77PlJEtQz3ucA4GZ2/XyWO0y5 HxcnF+CnpvEdPCzqzM/20BQDRdjYnQzHHSASdFG/yjJDvP2qHexibfZt1Z/pALnr R2ffG/Bzdqo6ybHhQpFPmacdwwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBVXzLj2 X8bNmdKA2uHn/SLPZz9QMB8GA1UdIwQYMBaAFGH4x+untV5xsuaxd0CRQlHYjPCm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODQ5MS82MERBNTNGQURG QTUxMUVGOEJENDlGODdDNEY5QUUwMi9ZZmpINjZlMVhuR3k1ckYzUUpGQ1VkaU04 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lmakg2NmUxWG5HeTVyRjNRSkZDVWRpTThLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg0OTEvNjBEQTUzRkFERkE1MTFFRjhCRDQ5Rjg3QzRGOUFFMDIvNUZEREVFMUNF MzQyMTFFRjhFQTBDQTc3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoz0mMA0GCSqGSIb3DQEBCwUAA4IBAQAnEv7omiDCmkE8DElM06pO vySxrk2jFW+To3wKH6+sO69AlgJ3JeRJF8jepIw7wLMi/EWysT+avTysKYzxRH+O wqe5EKZe5WblUaoaT0hfkUwT3k42PFbmxgbmSab6+uFYSba2ekYXynprBFOufksM 7osfp9wD0/lc0E31H7zgcgRfNO4yWFMXH2ELLiLSFOtpgUhywocJ9zZorwc4PyUX hA/Koc7SOUelW+ToDOk7kt/AozF83HKRyybRJ/l4Lsb0tz6e8JOWF7VWrXAaPVZd RezlGKtemUT2qxMZZCiCAaPEQuXcLy8g+sjb6+yX3Q1QSfvh1Fu3mWWF5X4SoaI1 -----END CERTIFICATE-----Generated at Thu Mar 26 16:25:56 2026 by rpki-client