$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa File: 9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa (raw, json) Hash identifier: gUZ5KM8AqgTVECxg/OBb4oxOhMvuse7V54QYYUpmz54= Subject key identifier: 95:61:FD:E5:6F:41:3D:66:E0:8A:DF:9D:BF:A2:63:95:F5:BC:B0:50 Certificate issuer: /CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Certificate serial: 0989 Authority key identifier: DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa Signing time: Thu 30 Apr 2026 20:26:28 +0000 ROA not before: Thu 30 Apr 2026 20:26:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45918 IP address blocks: 116.193.10.0/23 maxlen: 23 116.193.12.0/23 maxlen: 23 116.193.14.0/23 maxlen: 23 116.193.14.0/24 maxlen: 24 116.193.15.0/24 maxlen: 24 2401:9100::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2441 (0x989) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8530, serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Validity Not Before: Apr 30 20:26:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f3baf3-9f96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cd:c9:ab:67:b8:c1:99:97:d8:58:23:55:67: 93:25:61:9c:9d:d5:3a:8a:b5:6a:ef:ba:2d:55:57: e7:d3:d8:61:17:d6:28:5e:04:1f:68:76:57:df:6a: 83:78:4d:90:d8:cc:53:30:a8:fb:d8:92:5a:e1:d9: ab:d6:56:ac:cf:1a:41:15:6d:3a:cd:34:da:63:71: e1:55:cf:df:98:d6:16:cc:1f:8c:a8:81:db:f7:56: 00:25:03:c4:45:d1:b5:db:56:fd:65:19:2e:fe:ad: 04:89:a2:89:5d:81:39:86:ee:13:8d:3f:ba:96:fe: f3:80:59:55:17:00:99:c8:5e:48:b0:fb:ea:07:99: 3f:00:eb:c7:a0:a3:c2:0d:9c:72:f3:c8:44:a8:c6: f9:e9:e4:bc:fb:0c:b4:df:af:da:ea:95:55:6e:6b: 32:d4:a1:71:b4:5d:e0:98:18:49:da:ae:9e:aa:ab: cb:0d:e3:30:f2:9e:1f:aa:c5:d6:52:9e:04:aa:29: c2:db:64:55:ec:26:77:f4:68:fc:09:8f:83:ff:14: dd:57:ce:c8:23:72:52:41:f2:24:73:60:e2:0a:e1: c7:12:2f:29:6a:da:42:d6:6b:51:41:e2:2f:b7:2d: d5:e7:b0:be:ee:da:8a:5a:56:9d:5c:99:c4:0c:c6: ad:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:61:FD:E5:6F:41:3D:66:E0:8A:DF:9D:BF:A2:63:95:F5:BC:B0:50 X509v3 Authority Key Identifier: keyid:DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.193.10.0-116.193.15.255 IPv6: 2401:9100::/32 Signature Algorithm: sha256WithRSAEncryption 19:ee:a9:47:6c:fb:b9:96:fb:98:fa:08:7b:e0:43:47:da:f3: 6b:5b:83:77:c9:e5:d7:17:c0:02:17:06:28:c2:f5:10:c1:59: 81:4f:d8:03:fd:ea:81:1f:00:59:2b:cd:c8:c3:a7:50:ce:4d: 28:77:ac:02:02:a8:08:2d:51:b5:82:0f:bd:1e:34:aa:26:e8: 43:30:49:85:ad:78:87:32:1c:34:bf:f9:e1:ed:74:4a:c3:28: b5:a9:68:8c:33:02:3f:0e:d8:86:f0:b8:fd:dd:5d:f7:8e:6a: ff:4d:59:46:4e:3b:a5:a9:c6:f0:82:d5:1f:71:ed:f3:42:f9: cd:25:ab:40:cd:02:39:b9:58:f7:12:8a:aa:a1:14:fc:85:0a: 67:8f:87:6b:db:78:eb:0c:6d:e8:87:13:cf:5c:e1:b8:13:f7: 37:0b:18:ec:e1:ea:dd:42:a0:31:31:cb:6b:ff:dd:36:15:0f: 35:c4:ba:87:77:29:fd:7d:5b:79:c1:0d:bb:01:f1:ab:bf:6c: c0:7d:c2:d1:66:e6:d5:8e:f1:02:79:a4:c3:c1:fc:a2:6a:a3: 46:7b:cd:73:e2:b7:c1:be:d1:1e:cb:1f:24:46:81:0a:53:31: 6b:bb:e1:29:7d:9a:9d:2a:ee:20:95:d1:d3:66:75:40:69:d5: b3:6c:76:a1 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICCYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1MzAxMTAvBgNVBAUTKERGOEE0RTYxMTdCQ0EzNjg5NDBENjhFOTg1NDc5OEI5 NjY2MDlERDQwHhcNMjYwNDMwMjAyNjI4WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYzYmFmMy05Zjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAss3Jq2e4wZmX2FgjVWeTJWGcndU6irVq77otVVfn09hhF9YoXgQfaHZX32qD eE2Q2MxTMKj72JJa4dmr1laszxpBFW06zTTaY3HhVc/fmNYWzB+MqIHb91YAJQPE RdG121b9ZRku/q0EiaKJXYE5hu4TjT+6lv7zgFlVFwCZyF5IsPvqB5k/AOvHoKPC DZxy88hEqMb56eS8+wy036/a6pVVbmsy1KFxtF3gmBhJ2q6eqqvLDeMw8p4fqsXW Up4EqinC22RV7CZ39Gj8CY+D/xTdV87II3JSQfIkc2DiCuHHEi8patpC1mtRQeIv ty3V57C+7tqKWladXJnEDMatPwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFJVh/eVv QT1m4Irfnb+iY5X1vLBQMB8GA1UdIwQYMBaAFN+KTmEXvKNolA1o6YVHmLlmYJ3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODUzMC8xOEY2NkQ4NkIx RTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8yaVVEV2pwaFVlWXVXWmdu ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0cE9ZUmU4bzJpVURXanBoVWVZdVdaZ25kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzg1MzAvMThGNjZEODZCMUU2MTFFQUFBOTEzMzVBQzRGOUFFMDIvOUJEMzBDNUVC MUU3MTFFQTg2RUZGRDVFQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAU BAIAATAOMAwDBAF0wQoDBAR0wQAwDQQCAAIwBwMFACQBkQAwDQYJKoZIhvcNAQEL BQADggEBABnuqUds+7mW+5j6CHvgQ0fa82tbg3fJ5dcXwAIXBijC9RDBWYFP2AP9 6oEfAFkrzcjDp1DOTSh3rAICqAgtUbWCD70eNKom6EMwSYWteIcyHDS/+eHtdErD KLWpaIwzAj8O2IbwuP3dXfeOav9NWUZOO6WpxvCC1R9x7fNC+c0lq0DNAjm5WPcS iqqhFPyFCmePh2vbeOsMbeiHE89c4bgT9zcLGOzh6t1CoDExy2v/3TYVDzXEuod3 Kf19W3nBDbsB8au/bMB9wtFm5tWO8QJ5pMPB/KJqo0Z7zXPit8G+0R7LHyRGgQpT MWu74Sl9mp0q7iCV0dNmdUBp1bNsdqE= -----END CERTIFICATE-----Generated at Wed May 13 04:12:09 2026 by rpki-client