$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/F61502A4C0F511EA854EE45FC4F9AE02.roa File: F61502A4C0F511EA854EE45FC4F9AE02.roa (raw, json) Hash identifier: 1ObA6vWWZfou57i0NqJQ0Vk2OQ0dMJY2iFn6E5+aKSY= Subject key identifier: FB:A4:3B:59:38:F6:B5:22:7B:6D:48:05:B9:C4:0E:89:68:C2:80:14 Certificate issuer: /CN=A91BC6DD/serialNumber=4FDD1C93A13CBA91B4F8B7F2C6518F48BA170BAD Certificate serial: 091F Authority key identifier: 4F:DD:1C:93:A1:3C:BA:91:B4:F8:B7:F2:C6:51:8F:48:BA:17:0B:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T90ck6E8upG0-LfyxlGPSLoXC60.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/F61502A4C0F511EA854EE45FC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:04:26 +0000 ROA not before: Mon 12 May 2025 21:18:15 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 10098 IP address blocks: 49.213.0.0/21 maxlen: 21 49.213.0.0/24 maxlen: 24 49.213.1.0/24 maxlen: 24 49.213.2.0/24 maxlen: 24 49.213.3.0/24 maxlen: 24 49.213.4.0/24 maxlen: 24 49.213.5.0/24 maxlen: 24 49.213.6.0/24 maxlen: 24 49.213.7.0/24 maxlen: 24 202.123.64.0/19 maxlen: 19 202.123.64.0/24 maxlen: 24 202.123.65.0/24 maxlen: 24 202.123.66.0/24 maxlen: 24 202.123.68.0/24 maxlen: 24 202.123.69.0/24 maxlen: 24 202.123.70.0/24 maxlen: 24 202.123.72.0/24 maxlen: 24 202.123.74.0/24 maxlen: 24 202.123.75.0/24 maxlen: 24 202.123.76.0/24 maxlen: 24 202.123.77.0/24 maxlen: 24 202.123.80.0/24 maxlen: 24 202.123.81.0/24 maxlen: 24 202.123.84.0/24 maxlen: 24 202.123.85.0/24 maxlen: 24 202.123.87.0/24 maxlen: 24 202.123.89.0/24 maxlen: 24 202.123.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/T90ck6E8upG0-LfyxlGPSLoXC60.crl rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/T90ck6E8upG0-LfyxlGPSLoXC60.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T90ck6E8upG0-LfyxlGPSLoXC60.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2335 (0x91f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC6DD, serialNumber=4FDD1C93A13CBA91B4F8B7F2C6518F48BA170BAD Validity Not Before: May 12 21:18:15 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4476a-161c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:92:a9:29:5f:a9:aa:84:60:89:81:e4:76:2b: 7b:d5:01:15:0c:18:ea:c4:db:f9:b7:04:f1:95:e6: a1:5f:a6:bf:95:06:39:7c:4f:3d:8e:e5:58:c3:5b: 53:34:60:42:a8:f7:fd:5e:d3:01:28:69:14:48:66: a4:6c:3f:fc:54:28:6d:8c:78:d6:12:62:25:ff:a3: c2:ab:ed:8b:f0:a9:f0:a6:0b:be:9c:91:60:c5:22: 2d:33:ef:88:c4:f9:fe:27:90:4c:a1:63:12:c7:18: ef:63:da:12:fc:c9:fa:01:02:a5:68:49:87:c2:88: 50:43:5b:60:9a:20:f2:e8:2b:8b:f5:c0:c1:7e:47: d9:66:41:7b:9c:f9:36:bb:cb:fc:49:35:27:24:45: 1c:98:4f:91:9c:3a:06:cd:0d:10:56:0c:1b:be:1c: bb:89:ff:1c:0b:7e:71:00:7d:37:1c:e8:38:5a:b4: fe:8f:04:99:b7:f6:62:f5:e6:ed:bc:a5:41:a4:21: eb:f3:09:dd:b9:60:0b:5b:9d:6a:45:17:c6:fa:ae: 24:f4:2e:1c:db:68:b0:c4:70:9e:aa:36:f9:3c:83: 78:47:db:68:c7:fc:a7:44:0f:74:9a:c6:2d:22:40: fb:0d:3b:b8:62:10:75:b3:88:29:ca:ab:74:c2:89: f2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A4:3B:59:38:F6:B5:22:7B:6D:48:05:B9:C4:0E:89:68:C2:80:14 X509v3 Authority Key Identifier: keyid:4F:DD:1C:93:A1:3C:BA:91:B4:F8:B7:F2:C6:51:8F:48:BA:17:0B:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/T90ck6E8upG0-LfyxlGPSLoXC60.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T90ck6E8upG0-LfyxlGPSLoXC60.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/F61502A4C0F511EA854EE45FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.213.0.0/21 202.123.64.0/19 Signature Algorithm: sha256WithRSAEncryption 8e:5b:c1:5e:24:60:6f:37:3f:d9:fe:e7:54:46:82:d8:ae:56: a0:84:00:36:af:c2:93:85:e1:26:8e:1f:03:86:43:c2:c6:7b: 93:08:d9:ea:84:7c:88:bf:48:a9:0f:a3:ea:4f:c8:64:f9:85: c6:6d:3f:cd:1c:f1:9c:aa:25:8b:7f:3d:9e:d1:3d:32:d0:59: 1b:ae:1c:01:21:d4:aa:13:0a:bc:63:2b:a0:a2:aa:d2:0a:e8: 0b:3f:4d:80:06:e4:56:21:4b:a4:a3:4c:ee:eb:88:70:f6:d9: a4:41:2a:52:e6:b8:63:c6:34:39:5c:94:56:59:bf:e6:60:b4: 95:1d:3e:d7:00:08:1e:ac:a6:b2:d3:88:2b:a7:76:54:ee:f5: c8:15:a8:b5:73:72:ce:38:9c:85:8d:f7:a1:09:1e:65:25:d9: 0a:8e:07:e9:7a:48:23:16:bd:68:68:07:92:b2:32:4f:8c:5d: 8f:ea:65:e3:03:ff:bd:4e:57:e2:8b:8b:6f:89:43:92:71:07: a1:c5:0a:3a:48:cb:0b:a0:69:28:34:eb:fd:1c:46:d4:13:d9: e0:95:69:93:0d:13:49:39:55:30:ff:0b:93:06:56:f9:7c:da: 58:ec:82:d3:da:14:18:00:1a:b4:5a:74:86:0e:77:e5:5a:2e: b0:6e:c8:f5 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2REQxMTAvBgNVBAUTKDRGREQxQzkzQTEzQ0JBOTFCNEY4QjdGMkM2NTE4RjQ4 QkExNzBCQUQwHhcNMjUwNTEyMjExODE1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDc2YS0xNjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJKpKV+pqoRgiYHkdit71QEVDBjqxNv5twTxleahX6a/lQY5fE89juVYw1tT NGBCqPf9XtMBKGkUSGakbD/8VChtjHjWEmIl/6PCq+2L8Knwpgu+nJFgxSItM++I xPn+J5BMoWMSxxjvY9oS/Mn6AQKlaEmHwohQQ1tgmiDy6CuL9cDBfkfZZkF7nPk2 u8v8STUnJEUcmE+RnDoGzQ0QVgwbvhy7if8cC35xAH03HOg4WrT+jwSZt/Zi9ebt vKVBpCHr8wnduWALW51qRRfG+q4k9C4c22iwxHCeqjb5PIN4R9tox/ynRA90msYt IkD7DTu4YhB1s4gpyqt0wonyvQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFPukO1k4 9rUie21IBbnEDolowoAUMB8GA1UdIwQYMBaAFE/dHJOhPLqRtPi38sZRj0i6Fwut MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzZERC9GM0ZCOTA1NkMw RjQxMUVBQjA1REZDNUVDNEY5QUUwMi9UOTBjazZFOHVwRzAtTGZ5eGxHUFNMb1hD NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Q5MGNrNkU4dXBHMC1MZnl4bEdQU0xvWEM2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2REQvRjNGQjkwNTZDMEY0MTFFQUIwNURGQzVFQzRGOUFFMDIvRjYxNTAyQTRD MEY1MTFFQTg1NEVFNDVGQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQDMdUAAwQFyntAMA0GCSqGSIb3DQEBCwUAA4IBAQCOW8FeJGBvNz/Z /udURoLYrlaghAA2r8KTheEmjh8DhkPCxnuTCNnqhHyIv0ipD6PqT8hk+YXGbT/N HPGcqiWLfz2e0T0y0FkbrhwBIdSqEwq8YyugoqrSCugLP02ABuRWIUuko0zu64hw 9tmkQSpS5rhjxjQ5XJRWWb/mYLSVHT7XAAgerKay04grp3ZU7vXIFai1c3LOOJyF jfehCR5lJdkKjgfpekgjFr1oaAeSsjJPjF2P6mXjA/+9Tlfii4tviUOScQehxQo6 SMsLoGkoNOv9HEbUE9nglWmTDRNJOVUw/wuTBlb5fNpY7ILT2hQYABq0WnSGDnfl Wi6wbsj1 -----END CERTIFICATE-----Generated at Thu Mar 26 05:35:35 2026 by rpki-client