$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/04241E3222F011F0B021396DC4F9AE02.roa File: 04241E3222F011F0B021396DC4F9AE02.roa (raw, json) Hash identifier: pLAC//aFdBXkC+OzNuWnC+5/i1jD9O9sUN9b4OQ+b9w= Subject key identifier: 60:79:D0:8E:AC:3B:2C:45:17:52:B8:DB:42:82:13:E0:6D:DF:20:EF Certificate issuer: /CN=A91BDEEB/serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Certificate serial: E9 Authority key identifier: 6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/04241E3222F011F0B021396DC4F9AE02.roa Signing time: Mon 02 Mar 2026 11:53:57 +0000 ROA not before: Fri 02 May 2025 13:16:12 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 134886 IP address blocks: 163.61.96.0/24 maxlen: 24 163.61.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDEEB, serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Validity Not Before: May 2 13:16:12 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a57a54-4048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b6:45:88:f8:85:9b:a7:71:f9:55:9c:0d:7d: 80:10:47:7c:48:7b:3a:4e:59:b9:35:aa:8c:40:57: bf:a1:b1:eb:e2:be:16:e4:19:94:c2:c1:82:a7:68: 99:30:3e:35:86:53:2b:53:ed:1c:78:62:b7:f7:f6: 91:5f:a7:5e:f5:8a:f4:fe:97:cc:51:dd:bb:9e:bc: 61:b0:13:b7:bd:89:2f:82:ba:8f:88:42:82:2c:5b: b6:93:ee:99:be:1d:20:50:f5:3c:79:f5:73:8a:41: 49:45:be:58:4f:58:42:bd:89:c7:50:f6:59:1f:11: 74:ad:dd:d9:37:8f:cb:0f:5f:dd:d5:21:a7:3d:50: 22:3b:70:f9:52:c8:74:a7:1d:83:fc:9f:cd:7c:4b: 96:1d:cd:7f:a5:78:40:49:00:29:5a:c0:35:51:47: 49:a7:2f:31:50:19:8a:f4:b1:3a:39:e9:7a:c9:78: 9d:90:82:44:b7:c9:97:ae:58:44:44:20:58:a2:9f: ca:fc:a9:8c:fc:f5:ed:5f:c9:5f:17:02:7b:da:68: 4e:30:35:19:77:1e:43:f9:ea:f8:0d:2f:32:a0:88: 59:1f:33:de:4f:46:52:5d:ed:90:b1:86:fa:02:04: d1:1b:e4:7f:71:07:42:d2:43:b5:8e:09:5f:96:10: 31:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:79:D0:8E:AC:3B:2C:45:17:52:B8:DB:42:82:13:E0:6D:DF:20:EF X509v3 Authority Key Identifier: keyid:6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/04241E3222F011F0B021396DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.61.96.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:ab:9c:41:a8:18:1d:aa:ef:fc:87:71:b7:e7:48:52:a7:d2: ab:eb:68:c7:41:24:85:82:c6:19:23:56:11:ac:1d:63:63:92: d6:dd:03:76:34:a2:55:95:e1:7e:a6:de:34:3e:e5:e3:3c:bc: 20:ac:bb:65:78:36:54:2e:ee:29:3c:81:47:8f:a2:ee:68:10: f2:72:3f:de:4e:2c:b2:22:0d:cf:91:a9:e8:32:ef:27:b3:ac: 04:f4:fe:1d:b7:cc:8b:51:1d:40:61:c0:a6:28:a0:50:fb:9e: 9d:63:e8:9b:98:00:49:d8:5a:f7:83:8c:af:fc:5d:09:fc:07: d7:48:a9:14:f8:fe:e4:48:1c:61:a3:01:23:23:b8:9d:57:1f: a2:20:96:6b:e7:9d:d2:55:81:f8:b3:6f:73:07:03:53:64:6d: 99:ec:42:ed:bb:d1:8a:f4:33:e6:18:32:a2:09:d2:45:28:a7: 08:26:6c:42:3f:05:6b:72:2e:7b:a1:1c:71:4d:08:35:42:a9: 89:ad:16:e0:a5:98:ad:8e:d6:33:19:11:e2:c3:33:11:5f:28: 4d:22:ad:98:81:38:30:c2:46:77:46:45:e2:80:8c:0e:e5:ad: db:56:e3:9a:12:0f:0e:ce:e5:79:5b:9c:36:98:26:6e:a2:c7: 1f:03:5e:64 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRFRUIxMTAvBgNVBAUTKDZCNjNBNjBFN0Q3RjUxRDAzODcyOEM2NDI1OTA2MDQ3 MDE2Qzk5MDQwHhcNMjUwNTAyMTMxNjEyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1N2E1NC00MDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLZFiPiFm6dx+VWcDX2AEEd8SHs6Tlm5NaqMQFe/obHr4r4W5BmUwsGCp2iZ MD41hlMrU+0ceGK39/aRX6de9Yr0/pfMUd27nrxhsBO3vYkvgrqPiEKCLFu2k+6Z vh0gUPU8efVzikFJRb5YT1hCvYnHUPZZHxF0rd3ZN4/LD1/d1SGnPVAiO3D5Ush0 px2D/J/NfEuWHc1/pXhASQApWsA1UUdJpy8xUBmK9LE6Oel6yXidkIJEt8mXrlhE RCBYop/K/KmM/PXtX8lfFwJ72mhOMDUZdx5D+er4DS8yoIhZHzPeT0ZSXe2QsYb6 AgTRG+R/cQdC0kO1jglflhAxKQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGB50I6s OyxFF1K420KCE+Bt3yDvMB8GA1UdIwQYMBaAFGtjpg59f1HQOHKMZCWQYEcBbJkE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREVFQi8xRUU3RkE2MEU1 RjQxMUVGQUJEMzlEN0VDNEY5QUUwMi9hMk9tRG4xX1VkQTRjb3hrSlpCZ1J3RnNt UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EyT21EbjFfVWRBNGNveGtKWkJnUndGc21RUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRFRUIvMUVFN0ZBNjBFNUY0MTFFRkFCRDM5RDdFQzRGOUFFMDIvMDQyNDFFMzIy MkYwMTFGMEIwMjEzOTZEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoz1gMA0GCSqGSIb3DQEBCwUAA4IBAQBLq5xBqBgdqu/8h3G350hS p9Kr62jHQSSFgsYZI1YRrB1jY5LW3QN2NKJVleF+pt40PuXjPLwgrLtleDZULu4p PIFHj6LuaBDycj/eTiyyIg3PkanoMu8ns6wE9P4dt8yLUR1AYcCmKKBQ+56dY+ib mABJ2Fr3g4yv/F0J/AfXSKkU+P7kSBxhowEjI7idVx+iIJZr553SVYH4s29zBwNT ZG2Z7ELtu9GK9DPmGDKiCdJFKKcIJmxCPwVrci57oRxxTQg1QqmJrRbgpZitjtYz GRHiwzMRXyhNIq2YgTgwwkZ3RkXigIwO5a3bVuOaEg8OzuV5W5w2mCZuoscfA15k -----END CERTIFICATE-----Generated at Thu Mar 26 12:17:48 2026 by rpki-client