$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa File: 9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa (raw, json) Hash identifier: ISRaG9a9Sa5mePLF4QeZyjlrv6bwojaMAIwz4H3ynxU= Subject key identifier: 00:04:11:65:6B:4D:A9:80:2A:CD:BD:AA:12:89:AC:1A:2B:E3:07:A3 Certificate issuer: /CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Certificate serial: 0966 Authority key identifier: DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:51:35 +0000 ROA not before: Tue 10 Jun 2025 20:46:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45918 IP address blocks: 116.193.10.0/23 maxlen: 23 116.193.12.0/23 maxlen: 23 116.193.14.0/23 maxlen: 23 116.193.14.0/24 maxlen: 24 116.193.15.0/24 maxlen: 24 2401:9100::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2406 (0x966) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8530, serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Validity Not Before: Jun 10 20:46:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a42847-a409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1b:27:df:c3:5a:39:1a:a1:b4:2b:75:29:e8: 6b:cc:83:fa:12:8f:a7:a4:ca:ec:c8:4e:a3:e7:de: 1e:c7:4a:13:ec:8f:31:12:ee:ce:26:ba:e2:63:f1: 23:4b:6f:95:3c:7b:0e:3b:b3:48:f8:4f:70:7c:b6: 31:7a:d2:f3:fd:76:88:57:5d:bf:44:c1:ba:25:e3: 4b:c0:e6:9b:51:75:c6:21:83:b7:22:99:30:92:62: d7:e5:12:73:86:32:e4:ed:30:fa:f8:95:61:6d:18: f0:b7:d3:c4:b8:b8:01:7a:76:23:e0:78:74:87:25: 52:df:88:0a:ab:53:74:f0:17:f5:ca:66:87:4e:bb: 3c:fe:30:26:e0:6a:e0:c4:29:34:a2:34:33:6e:dc: bb:06:59:a9:29:22:80:96:3d:a4:37:99:f6:c6:f1: f8:3f:c3:76:05:b1:5f:9d:65:68:3e:e7:e5:a4:33: 36:72:f4:d6:f6:00:69:81:61:15:38:9a:5e:c7:e3: 59:8e:1c:e9:12:6b:8d:bf:4b:55:76:63:38:73:b3: 1e:b4:d3:d3:67:d1:a4:63:6f:5b:77:58:e8:ae:eb: b4:19:63:7c:4d:46:6b:be:0b:38:f8:45:4a:44:df: 07:80:8f:65:2b:dd:5c:85:9b:d8:37:bf:d9:a0:48: 26:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:04:11:65:6B:4D:A9:80:2A:CD:BD:AA:12:89:AC:1A:2B:E3:07:A3 X509v3 Authority Key Identifier: keyid:DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.193.10.0-116.193.15.255 IPv6: 2401:9100::/32 Signature Algorithm: sha256WithRSAEncryption a2:cf:53:3b:85:99:00:fb:06:16:88:f8:91:56:ff:63:f4:1a: 96:47:58:38:b2:51:d9:ac:23:b3:04:d7:c2:7f:79:ac:e9:89: d5:38:5e:8e:85:b5:35:67:20:c7:6f:90:b3:56:20:6f:9c:4c: da:9b:41:fd:ee:04:ad:94:98:dd:5f:60:44:62:94:7c:51:58: 80:fe:bb:66:5e:8d:f7:c4:1f:f3:a9:0f:e9:b8:35:e2:39:69: 21:22:24:14:c3:72:cb:2e:02:56:e7:19:f0:ce:d6:0d:53:fe: e7:c2:bc:81:1c:19:1d:ec:50:24:c5:89:b3:21:8e:6b:70:e5: 63:6d:33:bf:ef:3c:62:b5:db:f6:d2:9a:e0:c1:20:ce:21:ec: 89:7e:3e:b9:10:b4:f7:2c:ec:cd:7c:b7:23:a4:fa:a6:5f:f0: 3a:5a:0f:3b:cb:7b:ae:80:ab:28:9e:cd:7e:4a:0b:d2:51:6f: 63:31:ac:dc:58:ef:5d:8f:a1:3c:3a:51:94:a7:44:99:15:a6: 56:65:f8:65:aa:13:d7:47:51:b4:ce:d5:96:5a:d1:28:72:17: a5:43:fd:d3:bc:32:57:fb:61:81:4d:ad:0b:ad:2a:5f:27:fd: fe:5c:26:fc:f1:1a:ac:6f:45:b0:a4:6f:98:66:eb:69:5a:8c: ec:0a:4f:2a -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICCWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1MzAxMTAvBgNVBAUTKERGOEE0RTYxMTdCQ0EzNjg5NDBENjhFOTg1NDc5OEI5 NjY2MDlERDQwHhcNMjUwNjEwMjA0NjMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mjg0Ny1hNDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxsn38NaORqhtCt1KehrzIP6Eo+npMrsyE6j594ex0oT7I8xEu7OJrriY/Ej S2+VPHsOO7NI+E9wfLYxetLz/XaIV12/RMG6JeNLwOabUXXGIYO3IpkwkmLX5RJz hjLk7TD6+JVhbRjwt9PEuLgBenYj4Hh0hyVS34gKq1N08Bf1ymaHTrs8/jAm4Grg xCk0ojQzbty7BlmpKSKAlj2kN5n2xvH4P8N2BbFfnWVoPuflpDM2cvTW9gBpgWEV OJpex+NZjhzpEmuNv0tVdmM4c7MetNPTZ9GkY29bd1joruu0GWN8TUZrvgs4+EVK RN8HgI9lK91chZvYN7/ZoEgm2wIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFAAEEWVr TamAKs29qhKJrBor4wejMB8GA1UdIwQYMBaAFN+KTmEXvKNolA1o6YVHmLlmYJ3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODUzMC8xOEY2NkQ4NkIx RTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8yaVVEV2pwaFVlWXVXWmdu ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0cE9ZUmU4bzJpVURXanBoVWVZdVdaZ25kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzg1MzAvMThGNjZEODZCMUU2MTFFQUFBOTEzMzVBQzRGOUFFMDIvOUJEMzBDNUVC MUU3MTFFQTg2RUZGRDVFQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAU BAIAATAOMAwDBAF0wQoDBAR0wQAwDQQCAAIwBwMFACQBkQAwDQYJKoZIhvcNAQEL BQADggEBAKLPUzuFmQD7BhaI+JFW/2P0GpZHWDiyUdmsI7ME18J/eazpidU4Xo6F tTVnIMdvkLNWIG+cTNqbQf3uBK2UmN1fYERilHxRWID+u2ZejffEH/OpD+m4NeI5 aSEiJBTDcssuAlbnGfDO1g1T/ufCvIEcGR3sUCTFibMhjmtw5WNtM7/vPGK12/bS muDBIM4h7Il+PrkQtPcs7M18tyOk+qZf8DpaDzvLe66AqyiezX5KC9JRb2MxrNxY 712PoTw6UZSnRJkVplZl+GWqE9dHUbTO1ZZa0ShyF6VD/dO8Mlf7YYFNrQutKl8n /f5cJvzxGqxvRbCkb5hm62lajOwKTyo= -----END CERTIFICATE-----Generated at Thu Mar 26 08:55:54 2026 by rpki-client