$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/999C6728F7FF11F08B2BFA086C6F56BC.roa File: 999C6728F7FF11F08B2BFA086C6F56BC.roa (raw, json) Hash identifier: 5jwoaJRF05ynypppsournA2NpxdgiK2g9i/wb3qUNp4= Subject key identifier: 3C:AD:EC:99:BC:F8:17:57:9C:2A:71:C9:15:0B:0A:C3:D5:D9:DB:49 Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 140F Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/999C6728F7FF11F08B2BFA086C6F56BC.roa Signing time: Mon 02 Mar 2026 17:20:16 +0000 ROA not before: Mon 02 Mar 2026 17:20:16 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 9268 IP address blocks: 119.18.40.0/21 maxlen: 21 2407:600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5135 (0x140f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Mar 2 17:20:16 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a5c6d0-3096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:35:61:47:84:a6:69:fb:33:39:04:cb:c6:33: 84:a2:17:1c:c3:37:ad:5e:58:21:21:9f:0d:20:d4: 88:0a:fc:8f:f4:92:cd:6c:ae:f5:f9:03:a2:19:9f: b1:bb:1f:ed:98:01:40:d1:51:45:09:7a:26:f3:4f: d6:d6:f0:de:aa:fd:12:45:2f:1f:7a:69:c9:2b:4e: fb:c2:2c:2e:53:67:5c:83:0c:c1:9d:68:63:27:8e: f9:a1:4d:bb:bf:dd:f1:09:dc:e2:03:20:37:55:44: a9:66:fc:41:3b:e6:aa:34:20:f8:51:d0:04:82:a6: 49:d3:b0:a3:cb:a0:62:40:b0:04:d5:75:e4:8e:45: af:63:08:44:68:41:4a:72:cb:bf:55:75:aa:f1:09: c4:6e:31:ec:be:64:3b:a9:06:89:81:46:f1:37:e9: 4e:ae:cc:e6:2e:22:90:b8:ff:8b:09:50:8a:03:e4: 56:2a:0d:c0:75:42:83:54:e7:c3:d1:63:6e:31:4c: 14:93:2f:b6:29:3f:bf:2b:af:24:18:fb:f1:48:20: ce:a7:61:c7:49:ed:34:0a:6f:4f:17:e5:ca:21:3d: 67:28:f6:fb:09:78:5a:75:dc:3d:52:f8:50:84:36: 0e:28:4f:18:bc:c7:e4:c6:69:c2:e5:1f:50:ea:57: 79:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:AD:EC:99:BC:F8:17:57:9C:2A:71:C9:15:0B:0A:C3:D5:D9:DB:49 X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/999C6728F7FF11F08B2BFA086C6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 119.18.40.0/21 IPv6: 2407:600::/32 Signature Algorithm: sha256WithRSAEncryption 86:5b:a9:06:a6:50:55:b7:83:11:9b:37:3a:ef:64:52:86:d6: 04:07:6d:cd:84:d1:36:88:66:f8:2b:b1:fc:ed:54:55:c1:38: 56:15:18:c7:a3:31:10:d2:bc:14:fe:1c:ec:fc:22:8d:50:7c: d5:9c:33:a7:b2:ea:76:4b:59:89:f5:32:36:f9:47:16:77:15: d8:c1:26:69:13:c6:32:91:9a:25:de:71:ad:6f:6f:7c:2a:d4: 2d:a0:8f:43:7a:a8:3d:a3:29:7b:08:a2:a9:e3:23:42:c5:af: f8:65:c4:01:fc:d7:dc:c1:95:77:ec:b5:0e:d5:15:fd:95:6d: f5:b1:d4:be:9c:7e:0c:c0:b0:1c:eb:47:aa:77:86:6a:e1:ea: 33:d6:87:92:e6:e3:6e:17:b7:da:2b:e4:a3:8d:3f:e1:49:1b: 85:2c:e1:12:56:f3:91:00:7f:1a:e9:d2:bd:32:52:6a:f3:75: f7:97:5b:58:f3:18:ac:3a:48:fd:ed:9e:ee:21:c4:df:82:41: fc:a2:10:a9:d4:2b:d8:6a:31:5a:29:d3:61:7c:c7:52:30:db: e4:4b:8f:ea:e9:ec:4b:ee:36:3d:8c:77:1c:47:a6:6a:f3:d9: 95:39:07:22:bf:47:a0:16:e8:af:1e:91:c5:e5:76:04:76:db: 91:e3:ab:71 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICFA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjYwMzAyMTcyMDE2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YzZkMC0zMDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6jVhR4SmafszOQTLxjOEohccwzetXlghIZ8NINSICvyP9JLNbK71+QOiGZ+x ux/tmAFA0VFFCXom80/W1vDeqv0SRS8femnJK077wiwuU2dcgwzBnWhjJ475oU27 v93xCdziAyA3VUSpZvxBO+aqNCD4UdAEgqZJ07Cjy6BiQLAE1XXkjkWvYwhEaEFK csu/VXWq8QnEbjHsvmQ7qQaJgUbxN+lOrszmLiKQuP+LCVCKA+RWKg3AdUKDVOfD 0WNuMUwUky+2KT+/K68kGPvxSCDOp2HHSe00Cm9PF+XKIT1nKPb7CXhaddw9UvhQ hDYOKE8YvMfkxmnC5R9Q6ld5pwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDyt7Jm8 +BdXnCpxyRULCsPV2dtJMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjFGQTgvRTg2MUZEM0FBRkQ5MTFFOEIyRUQ0QzdGQzRGOUFFMDIvOTk5QzY3MjhG N0ZGMTFGMDhCMkJGQTA4NkM2RjU2QkMucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQDdxIoMA0EAgACMAcDBQAkBwYAMA0GCSqGSIb3DQEBCwUAA4IBAQCG W6kGplBVt4MRmzc672RShtYEB23NhNE2iGb4K7H87VRVwThWFRjHozEQ0rwU/hzs /CKNUHzVnDOnsup2S1mJ9TI2+UcWdxXYwSZpE8YykZol3nGtb298KtQtoI9Deqg9 oyl7CKKp4yNCxa/4ZcQB/NfcwZV37LUO1RX9lW31sdS+nH4MwLAc60eqd4Zq4eoz 1oeS5uNuF7faK+SjjT/hSRuFLOESVvORAH8a6dK9MlJq83X3l1tY8xisOkj97Z7u IcTfgkH8ohCp1CvYajFaKdNhfMdSMNvkS4/q6exL7jY9jHccR6Zq89mVOQciv0eg FuivHpHF5XYEdtuR46tx -----END CERTIFICATE-----Generated at Thu Mar 26 15:40:21 2026 by rpki-client