$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/725D1810BD0E11EA8CEF0681C4F9AE02.roa File: 725D1810BD0E11EA8CEF0681C4F9AE02.roa (raw, json) Hash identifier: 4K+Xr5cEWGU3CtoxwVoZf3ocwZzyt3Pe/yTV1VWV7A0= Subject key identifier: 7E:C7:0B:35:60:E4:A5:78:78:B5:BE:1A:11:17:A4:6B:5A:F4:40:5A Certificate issuer: /CN=A91B0770/serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Certificate serial: 35D8 Authority key identifier: 1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/725D1810BD0E11EA8CEF0681C4F9AE02.roa Signing time: Thu 30 Apr 2026 15:13:01 +0000 ROA not before: Thu 30 Apr 2026 15:13:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 120.29.232.0/23 maxlen: 24 123.242.240.0/24 maxlen: 24 123.242.241.0/24 maxlen: 24 123.242.242.0/24 maxlen: 24 123.242.243.0/24 maxlen: 24 123.242.248.0/22 maxlen: 24 123.242.252.0/24 maxlen: 24 123.242.253.0/24 maxlen: 24 202.60.60.0/24 maxlen: 24 202.60.61.0/24 maxlen: 24 202.60.62.0/24 maxlen: 24 202.60.63.0/24 maxlen: 24 202.91.136.0/24 maxlen: 24 202.91.137.0/24 maxlen: 24 202.91.138.0/24 maxlen: 24 202.91.139.0/24 maxlen: 24 203.189.176.0/22 maxlen: 24 203.189.180.0/24 maxlen: 24 203.189.181.0/24 maxlen: 24 203.189.182.0/24 maxlen: 24 203.189.183.0/24 maxlen: 24 203.191.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13784 (0x35d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0770, serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Validity Not Before: Apr 30 15:13:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f3717d-30d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:70:f2:7d:c9:df:30:05:27:6a:e2:b7:f4:1d: b9:77:86:62:99:be:4b:30:6f:5e:f2:c6:84:8d:4d: f4:65:65:7e:3d:fe:a5:53:e4:66:58:a7:bc:da:04: d9:e1:fd:aa:50:6a:2f:4c:05:a4:92:c7:a0:bd:c9: b7:7e:d8:7e:29:4f:6a:5d:d3:f4:38:d4:16:a9:ed: 9f:51:77:5a:e0:36:2d:89:11:8d:aa:b1:3a:1d:ec: 5b:ab:c0:31:d9:c3:d2:94:9c:6f:c4:d7:03:c5:1c: 4f:6c:7c:a0:5b:67:13:40:87:43:ab:5e:26:3b:cf: f8:3a:37:a5:bb:ce:f6:1f:2d:8e:a7:d0:e7:07:ed: 7f:d4:c1:26:82:e0:92:fc:cb:32:42:8d:0e:ce:4c: 7c:e5:b3:86:50:eb:54:36:29:70:e6:d1:51:72:b6: fd:49:7f:af:b4:6e:69:bb:11:c7:76:ca:f3:84:38: c4:63:a9:b5:ce:bc:39:c8:44:40:01:dd:6b:46:43: b6:96:75:4f:da:a3:05:6c:ad:02:8f:51:35:e0:c0: 58:0c:43:07:43:24:ed:69:f6:a6:49:f3:fa:09:0d: 22:60:64:5e:42:48:68:4b:19:4d:b4:e8:87:bd:af: bc:e7:d4:35:18:33:ba:93:7c:f0:f7:08:58:b0:07: 28:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:C7:0B:35:60:E4:A5:78:78:B5:BE:1A:11:17:A4:6B:5A:F4:40:5A X509v3 Authority Key Identifier: keyid:1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/725D1810BD0E11EA8CEF0681C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.232.0/23 123.242.240.0/22 123.242.248.0-123.242.253.255 202.60.60.0/22 202.91.136.0/22 203.189.176.0/21 203.191.34.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:a5:84:47:e5:99:f2:36:f7:64:90:c0:0e:19:ec:e0:ca:df: 2f:8e:74:c6:96:3b:08:d9:2b:c0:9a:d9:79:93:14:38:66:50: bd:88:13:04:4d:54:f4:92:35:2f:f8:7e:90:4a:6d:61:3f:29: 8c:5c:e1:94:6e:30:8a:c9:04:00:c9:06:dd:78:40:d8:12:31: 4d:f0:68:09:b4:64:5a:bb:35:fa:30:eb:44:87:07:90:bd:75: 0f:fe:0e:83:31:58:3b:8f:35:5b:99:a3:11:0b:4f:eb:17:14: fe:e0:9c:f5:12:18:62:d1:9a:41:4d:15:e1:d5:12:86:86:66: ff:15:87:82:d5:5f:1f:11:8a:c2:2d:f2:38:45:5a:ac:ac:40: 7a:8c:97:47:de:69:d4:35:85:ed:41:b5:06:31:42:54:c5:70: 4c:53:14:ed:c8:ee:58:21:fc:f4:93:93:6c:91:6d:52:b7:da: 43:6c:20:98:71:44:b5:6e:27:c6:4a:1b:c5:c5:db:89:2d:c6: 04:a5:de:f9:4c:46:18:bf:b5:0a:24:3b:41:1a:0e:fe:36:85: 17:a0:9e:66:df:f8:31:98:1d:5a:d6:44:3a:58:2a:f1:fb:0f: 6d:a3:4e:d3:d2:80:ae:b1:0a:b0:d6:20:68:96:67:0e:0d:30: 95:40:44:39 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgICNdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NzAxMTAvBgNVBAUTKDFENjIyNUFEOTQzRUNBMzg5RkE0QjY2QzE5NzQzNTFF MzRDNDI4RkIwHhcNMjYwNDMwMTUxMzAxWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYzNzE3ZC0zMGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3DyfcnfMAUnauK39B25d4Zimb5LMG9e8saEjU30ZWV+Pf6lU+RmWKe82gTZ 4f2qUGovTAWkksegvcm3fth+KU9qXdP0ONQWqe2fUXda4DYtiRGNqrE6Hexbq8Ax 2cPSlJxvxNcDxRxPbHygW2cTQIdDq14mO8/4Ojelu872Hy2Op9DnB+1/1MEmguCS /MsyQo0Ozkx85bOGUOtUNilw5tFRcrb9SX+vtG5puxHHdsrzhDjEY6m1zrw5yERA Ad1rRkO2lnVP2qMFbK0Cj1E14MBYDEMHQyTtafamSfP6CQ0iYGReQkhoSxlNtOiH va+859Q1GDO6k3zw9whYsAcoiwIDAQABo4ICjDCCAogwHQYDVR0OBBYEFH7HCzVg 5KV4eLW+GhEXpGta9EBaMB8GA1UdIwQYMBaAFB1iJa2UPso4n6S2bBl0NR40xCj7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc3MC9DMzM2ODNCNjFE OEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlqaWZwTFpzR1hRMUhqVEVL UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXSWxyWlEteWppZnBMWnNHWFExSGpURUtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3NzAvQzMzNjgzQjYxRDhFMTFFMjhBOUI1N0VEMDhCMDJDRDIvNzI1RDE4MTBC RDBFMTFFQThDRUYwNjgxQzRGOUFFMDIucm9hMEsGCCsGAQUFBwEHAQH/BDwwOjA4 BAIAATAyAwQBeB3oAwQCe/LwMAwDBAN78vgDBAF78vwDBALKPDwDBALKW4gDBAPL vbADBAHLvyIwDQYJKoZIhvcNAQELBQADggEBAJ2lhEflmfI292SQwA4Z7ODK3y+O dMaWOwjZK8Ca2XmTFDhmUL2IEwRNVPSSNS/4fpBKbWE/KYxc4ZRuMIrJBADJBt14 QNgSMU3waAm0ZFq7Nfow60SHB5C9dQ/+DoMxWDuPNVuZoxELT+sXFP7gnPUSGGLR mkFNFeHVEoaGZv8Vh4LVXx8RisIt8jhFWqysQHqMl0feadQ1he1BtQYxQlTFcExT FO3I7lgh/PSTk2yRbVK32kNsIJhxRLVuJ8ZKG8XF24ktxgSl3vlMRhi/tQokO0Ea Dv42hRegnmbf+DGYHVrWRDpYKvH7D22jTtPSgK6xCrDWIGiWZw4NMJVARDk= -----END CERTIFICATE-----Generated at Wed May 13 09:30:27 2026 by rpki-client