$ rpki-client -vvf rpki.apnic.net/member_repository/A91AD34B/B3DB51D2DF3511EFA58D653BC4F9AE02/1FCC4B16E78911EF99A1A729C4F9AE02.roa File: 1FCC4B16E78911EF99A1A729C4F9AE02.roa (raw, json) Hash identifier: PRVzq//uzMGZ8IiaKeDZIuoo5BorBUfI/nvh7f2OTz8= Subject key identifier: 56:FB:A5:B7:02:C9:E7:45:8C:96:58:72:17:95:0D:9E:3C:A9:9F:1E Certificate issuer: /CN=A91AD34B/serialNumber=64CB6EA7D7D0E51F4D42B2D6847274ABB0736598 Certificate serial: 0100 Authority key identifier: 64:CB:6E:A7:D7:D0:E5:1F:4D:42:B2:D6:84:72:74:AB:B0:73:65:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMtup9fQ5R9NQrLWhHJ0q7BzZZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AD34B/B3DB51D2DF3511EFA58D653BC4F9AE02/1FCC4B16E78911EF99A1A729C4F9AE02.roa Signing time: Thu 05 Mar 2026 05:42:57 +0000 ROA not before: Thu 05 Mar 2026 05:42:57 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 152900 IP address blocks: 163.61.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AD34B/B3DB51D2DF3511EFA58D653BC4F9AE02/ZMtup9fQ5R9NQrLWhHJ0q7BzZZg.crl rsync://rpki.apnic.net/member_repository/A91AD34B/B3DB51D2DF3511EFA58D653BC4F9AE02/ZMtup9fQ5R9NQrLWhHJ0q7BzZZg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMtup9fQ5R9NQrLWhHJ0q7BzZZg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:50:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AD34B, serialNumber=64CB6EA7D7D0E51F4D42B2D6847274ABB0736598 Validity Not Before: Mar 5 05:42:57 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a917e0-a323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6a:45:ac:d2:b4:33:b8:92:87:c0:44:c2:4b: 14:5f:48:52:de:9f:24:66:00:8d:84:ab:a3:0e:73: 93:16:0a:5b:c2:49:a3:2f:28:1f:8f:63:c1:f1:cb: 27:18:50:f9:ea:50:e4:59:ad:9c:d2:c5:cf:a7:56: d1:31:22:ec:d0:8f:93:71:c8:e5:97:88:a0:b5:38: ac:26:ce:70:71:c9:3d:58:24:fd:84:bf:8d:25:76: 77:b7:c7:3b:1e:22:29:af:4b:20:40:da:b3:0e:aa: a1:fc:45:2d:c7:aa:21:0e:03:75:4f:59:cd:63:6d: 69:b9:88:96:81:8d:3e:ff:17:43:a0:43:c2:aa:36: 4d:44:55:52:50:03:a4:2f:87:13:23:15:3c:2e:66: b6:0c:82:a5:51:c0:59:cf:2d:3b:f4:bc:db:2a:88: 40:d5:bc:62:85:78:db:a2:e7:b7:a7:bf:14:a7:20: ed:25:4b:61:0e:59:91:e1:6f:62:8f:1d:a5:51:ac: 88:ac:0c:bb:72:41:fe:fa:36:d2:c5:1b:ab:52:cd: 51:08:c8:a1:dd:ab:4e:b5:88:29:52:b2:9c:c5:6a: 26:7c:a0:a0:fb:54:7b:79:44:0f:fc:ed:43:04:fa: 1a:5d:57:c6:57:b0:8c:a4:06:e9:29:a1:d9:02:2a: ea:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:FB:A5:B7:02:C9:E7:45:8C:96:58:72:17:95:0D:9E:3C:A9:9F:1E X509v3 Authority Key Identifier: keyid:64:CB:6E:A7:D7:D0:E5:1F:4D:42:B2:D6:84:72:74:AB:B0:73:65:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AD34B/B3DB51D2DF3511EFA58D653BC4F9AE02/ZMtup9fQ5R9NQrLWhHJ0q7BzZZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMtup9fQ5R9NQrLWhHJ0q7BzZZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AD34B/B3DB51D2DF3511EFA58D653BC4F9AE02/1FCC4B16E78911EF99A1A729C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.61.44.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:7b:15:16:d8:88:3c:5d:ad:cb:cb:a3:48:ac:64:0a:c2:f5: b9:31:e7:49:21:91:a1:d6:bc:5e:a4:f7:6e:22:5c:a5:87:c3: 02:bd:fa:25:c5:7e:75:83:7f:93:5c:db:0f:4c:9f:72:73:be: f9:e6:9b:dc:4e:fd:64:3b:44:7f:a6:ce:f0:ae:5e:76:a9:58: d6:a7:47:82:55:33:08:44:6c:ff:b1:08:1e:20:5a:50:d6:e2: 14:6c:a7:db:53:aa:7c:2d:6d:59:7c:4d:1a:9d:a8:c1:d0:0a: 70:68:c1:cc:2c:4a:a6:86:99:ab:ce:86:92:33:b6:af:9f:a0: 0d:13:fa:09:f0:81:48:03:c2:3d:72:ec:b2:00:43:eb:01:23: 55:85:74:61:17:a2:fa:a9:93:18:1d:39:c7:83:0e:e1:ba:75: 0e:cd:9c:2d:58:4b:8a:56:f0:c0:11:fb:80:3a:8b:65:38:b3: e8:81:7f:fd:50:b0:5c:0d:eb:4b:82:b9:f5:fc:f5:4d:e2:98: 73:06:01:21:83:df:01:3d:c4:67:54:02:7f:93:e8:a6:a6:c1: 16:6b:85:94:04:16:5c:da:a2:cc:49:f1:48:7e:26:25:4a:3d: 9a:ee:fa:37:da:0f:29:2c:f8:a3:ce:1a:54:92:28:17:a9:2c: 18:ca:a7:4a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUQzNEIxMTAvBgNVBAUTKDY0Q0I2RUE3RDdEMEU1MUY0RDQyQjJENjg0NzI3NEFC QjA3MzY1OTgwHhcNMjYwMzA1MDU0MjU3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE5MTdlMC1hMzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmpFrNK0M7iSh8BEwksUX0hS3p8kZgCNhKujDnOTFgpbwkmjLygfj2PB8csn GFD56lDkWa2c0sXPp1bRMSLs0I+Tccjll4igtTisJs5wcck9WCT9hL+NJXZ3t8c7 HiIpr0sgQNqzDqqh/EUtx6ohDgN1T1nNY21puYiWgY0+/xdDoEPCqjZNRFVSUAOk L4cTIxU8Lma2DIKlUcBZzy079LzbKohA1bxihXjboue3p78UpyDtJUthDlmR4W9i jx2lUayIrAy7ckH++jbSxRurUs1RCMih3atOtYgpUrKcxWomfKCg+1R7eUQP/O1D BPoaXVfGV7CMpAbpKaHZAirqnQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFb7pbcC yedFjJZYcheVDZ48qZ8eMB8GA1UdIwQYMBaAFGTLbqfX0OUfTUKy1oRydKuwc2WY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRDM0Qi9CM0RCNTFEMkRG MzUxMUVGQTU4RDY1M0JDNEY5QUUwMi9aTXR1cDlmUTVSOU5RckxXaEhKMHE3Qnpa WmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pNdHVwOWZRNVI5TlFyTFdoSEowcTdCelpaZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUQzNEIvQjNEQjUxRDJERjM1MTFFRkE1OEQ2NTNCQzRGOUFFMDIvMUZDQzRCMTZF Nzg5MTFFRjk5QTFBNzI5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoz0sMA0GCSqGSIb3DQEBCwUAA4IBAQBPexUW2Ig8Xa3Ly6NIrGQK wvW5MedJIZGh1rxepPduIlylh8MCvfolxX51g3+TXNsPTJ9yc7755pvcTv1kO0R/ ps7wrl52qVjWp0eCVTMIRGz/sQgeIFpQ1uIUbKfbU6p8LW1ZfE0anajB0ApwaMHM LEqmhpmrzoaSM7avn6ANE/oJ8IFIA8I9cuyyAEPrASNVhXRhF6L6qZMYHTnHgw7h unUOzZwtWEuKVvDAEfuAOotlOLPogX/9ULBcDetLgrn1/PVN4phzBgEhg98BPcRn VAJ/k+impsEWa4WUBBZc2qLMSfFIfiYlSj2a7vo32g8pLPijzhpUkigXqSwYyqdK -----END CERTIFICATE-----Generated at Thu Mar 26 10:38:52 2026 by rpki-client