$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/5C9E3A00E83111F0B570A08B79EE528E.roa File: 5C9E3A00E83111F0B570A08B79EE528E.roa (raw, json) Hash identifier: ME2B8uuD8K+ZGXPv64QmrsnI4TiGRtKbpWpIh4aJJVc= Subject key identifier: 36:4B:95:33:DA:24:23:C3:D6:F8:AE:F8:F2:81:2B:90:E3:90:AE:57 Certificate issuer: /CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Certificate serial: 0611 Authority key identifier: FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/5C9E3A00E83111F0B570A08B79EE528E.roa Signing time: Thu 30 Apr 2026 23:30:26 +0000 ROA not before: Thu 30 Apr 2026 23:30:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2697 IP address blocks: 202.41.64.0/19 maxlen: 24 202.41.96.0/20 maxlen: 24 202.141.128.0/19 maxlen: 24 2001:e30:1100::/40 maxlen: 40 2001:e30:1111::/48 maxlen: 48 2001:e30:1200::/40 maxlen: 40 2001:e30:1300::/40 maxlen: 40 2001:e30:1400::/40 maxlen: 40 2001:e30:1500::/40 maxlen: 40 2001:e30:1600::/40 maxlen: 40 2001:e30:1800::/40 maxlen: 40 2001:e30:187c::/48 maxlen: 48 2001:e30:1a00::/40 maxlen: 40 2001:e30:1b00::/40 maxlen: 40 2001:e30:1b06::/48 maxlen: 48 2001:e30:1c1e::/48 maxlen: 48 2001:e30:1e00::/40 maxlen: 40 2001:e30:1f00::/40 maxlen: 40 2001:e30:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:07:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1553 (0x611) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91853D3, serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Validity Not Before: Apr 30 23:30:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f3e612-8e36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1e:8a:38:d3:7c:4d:46:1f:f1:ae:d6:93:42: f8:cd:4c:63:89:66:10:0d:8b:c7:8a:bf:4d:1b:eb: 40:9c:fe:42:10:8f:c0:24:48:9d:90:5f:39:a5:cd: 9f:35:a4:7c:b0:af:a3:7e:f4:2b:b2:6f:90:ba:c3: fe:f7:8c:af:1e:00:d9:a3:2b:3c:0f:65:8a:d3:c0: 2d:4b:9b:37:7a:ea:b1:25:18:9f:f2:db:c6:a9:23: fe:82:4a:cb:f9:b8:d0:05:ae:fd:34:cc:f2:87:87: c6:93:58:13:81:59:78:7a:ee:67:f9:e4:93:bb:25: c7:f1:f6:dc:c6:6c:28:57:db:23:05:8c:73:c0:45: 0e:57:12:fc:55:1f:67:23:db:d1:17:a9:79:7a:7c: 97:57:5b:a2:fd:2a:c9:59:a2:68:bc:14:1d:b5:b9: 50:7b:5d:31:da:1c:40:d9:9a:a1:83:24:d0:01:ff: 55:3b:fd:00:c6:8c:c3:20:f3:d1:9c:0f:65:d3:e3: 9f:ea:0e:92:c9:bd:d0:e3:53:9a:d2:49:ba:c8:9b: 9b:28:91:8c:de:85:c4:1e:f6:96:58:cc:91:01:ee: d8:37:36:16:4b:ce:c9:13:e0:aa:bc:62:ca:66:28: c1:50:02:e9:d1:03:54:09:61:d6:c6:3c:d7:54:39: 21:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:4B:95:33:DA:24:23:C3:D6:F8:AE:F8:F2:81:2B:90:E3:90:AE:57 X509v3 Authority Key Identifier: keyid:FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/5C9E3A00E83111F0B570A08B79EE528E.roa sbgp-ipAddrBlock: critical IPv4: 202.41.64.0-202.41.111.255 202.141.128.0/19 IPv6: 2001:e30:1100::-2001:e30:16ff:ffff:ffff:ffff:ffff:ffff 2001:e30:1800::/40 2001:e30:1a00::/39 2001:e30:1c1e::/48 2001:e30:1e00::-2001:e30:20ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a0:ec:3f:c3:27:4e:d5:59:0c:e0:ad:ad:ba:da:a7:59:79:27: 6c:88:31:7c:38:6c:e4:23:43:06:b1:65:f9:b8:d8:02:0e:1f: f8:ec:63:99:7c:22:d3:f9:f6:01:00:bc:f2:32:6b:c9:3f:a7: 42:a0:46:f8:8f:d9:05:5c:d2:cc:f0:53:86:db:78:16:15:37: 1e:f1:6f:34:65:fb:2c:e9:96:d0:b7:31:12:96:4d:f2:36:a9: f4:4c:f1:ea:67:b1:2e:9a:a6:fa:ba:2c:91:28:00:a2:80:84: f8:2a:11:0e:a5:3c:9e:2a:bc:b8:4f:c6:db:54:0d:2a:04:3a: 48:f0:ca:71:f9:ac:2e:ef:55:c1:c0:7a:91:d3:16:4b:fe:77: 07:ee:27:a9:fd:6c:3f:13:d6:da:cc:95:8d:ff:f7:b5:24:e1: 50:bd:f8:10:57:1a:f1:9b:98:c1:6b:94:65:5e:d8:74:6e:b3: a6:fe:39:c9:9e:85:bd:20:75:78:78:2e:a7:3a:4e:59:a0:ac: 57:c0:62:97:f7:2a:cf:59:8e:b5:b6:f6:af:7a:12:32:41:4b: 38:a5:2e:75:a9:39:9d:17:cd:e1:4e:84:33:57:e1:30:14:9e: 32:55:db:ad:ae:10:85:e4:37:0f:03:73:e3:b5:2b:cc:b0:76: 01:b8:60:22 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICBhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzRDMxMTAvBgNVBAUTKEZBMDQ1QzYzMDJCODczRTg4MzY1RkE5QTAyMTQ5OUI0 RjNDNTg2ODgwHhcNMjYwNDMwMjMzMDI2WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYzZTYxMi04ZTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0B6KONN8TUYf8a7Wk0L4zUxjiWYQDYvHir9NG+tAnP5CEI/AJEidkF85pc2f NaR8sK+jfvQrsm+QusP+94yvHgDZoys8D2WK08AtS5s3euqxJRif8tvGqSP+gkrL +bjQBa79NMzyh4fGk1gTgVl4eu5n+eSTuyXH8fbcxmwoV9sjBYxzwEUOVxL8VR9n I9vRF6l5enyXV1ui/SrJWaJovBQdtblQe10x2hxA2ZqhgyTQAf9VO/0AxozDIPPR nA9l0+Of6g6Syb3Q41Oa0km6yJubKJGM3oXEHvaWWMyRAe7YNzYWS87JE+CqvGLK ZijBUALp0QNUCWHWxjzXVDkhUwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFDZLlTPa JCPD1viu+PKBK5DjkK5XMB8GA1UdIwQYMBaAFPoEXGMCuHPog2X6mgIUmbTzxYaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTNEMy82RUMwRTM2ODAw MEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMtaURaZnFhQWhTWnRQUEZo b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nUmNZd0s0Yy1pRFpmcWFBaFNadFBQRmhvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODUzRDMvNkVDMEUzNjgwMDBBMTFFQzhDMjg3MjUyQzRGOUFFMDIvNUM5RTNBMDBF ODMxMTFGMEI1NzBBMDhCNzlFRTUyOEUucm9hMHIGCCsGAQUFBwEHAQH/BGMwYTAa BAIAATAUMAwDBAbKKUADBATKKWADBAXKjYAwQwQCAAIwPTAQAwYAIAEOMBEDBgAg AQ4wFgMGACABDjAYAwYBIAEOMBoDBwAgAQ4wHB4wEAMGASABDjAeAwYAIAEOMCAw DQYJKoZIhvcNAQELBQADggEBAKDsP8MnTtVZDOCtrbrap1l5J2yIMXw4bOQjQwax Zfm42AIOH/jsY5l8ItP59gEAvPIya8k/p0KgRviP2QVc0szwU4bbeBYVNx7xbzRl +yzpltC3MRKWTfI2qfRM8epnsS6apvq6LJEoAKKAhPgqEQ6lPJ4qvLhPxttUDSoE OkjwynH5rC7vVcHAepHTFkv+dwfuJ6n9bD8T1trMlY3/97Uk4VC9+BBXGvGbmMFr lGVe2HRus6b+Ocmehb0gdXh4Lqc6TlmgrFfAYpf3Ks9ZjrW29q96EjJBSzilLnWp OZ0XzeFOhDNX4TAUnjJV262uEIXkNw8Dc+O1K8ywdgG4YCI= -----END CERTIFICATE-----Generated at Wed May 13 08:21:36 2026 by rpki-client