$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD60C/188F1172973D11EFA5196058C4F9AE02/AC8EE79E975B11EFB1D18E82C4F9AE02.roa File: AC8EE79E975B11EFB1D18E82C4F9AE02.roa (raw, json) Hash identifier: E/UjcIn0wlrlZQH9DRKC67zkHtOeFvf1WN6PywtlyRM= Subject key identifier: 70:21:9F:B4:AC:7C:94:CA:DB:E2:DB:AF:DD:DA:EB:54:1C:8B:52:3D Certificate issuer: /CN=A91CD60C/serialNumber=E72376339DBD5D302A59CCFA77AC09CD1723954D Certificate serial: 012A Authority key identifier: E7:23:76:33:9D:BD:5D:30:2A:59:CC:FA:77:AC:09:CD:17:23:95:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5yN2M529XTAqWcz6d6wJzRcjlU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD60C/188F1172973D11EFA5196058C4F9AE02/AC8EE79E975B11EFB1D18E82C4F9AE02.roa Signing time: Tue 05 May 2026 06:37:58 +0000 ROA not before: Tue 05 May 2026 06:37:58 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 56190 IP address blocks: 202.51.128.0/24 maxlen: 24 202.51.129.0/24 maxlen: 24 202.51.130.0/24 maxlen: 24 202.51.131.0/24 maxlen: 24 202.51.132.0/24 maxlen: 24 202.51.133.0/24 maxlen: 24 202.51.134.0/24 maxlen: 24 202.51.135.0/24 maxlen: 24 202.51.136.0/24 maxlen: 24 202.51.137.0/24 maxlen: 24 202.51.138.0/24 maxlen: 24 202.51.139.0/24 maxlen: 24 202.51.140.0/24 maxlen: 24 202.51.141.0/24 maxlen: 24 202.51.142.0/24 maxlen: 24 202.51.143.0/24 maxlen: 24 202.51.144.0/24 maxlen: 24 202.51.145.0/24 maxlen: 24 202.51.146.0/24 maxlen: 24 202.51.147.0/24 maxlen: 24 202.51.148.0/24 maxlen: 24 202.51.149.0/24 maxlen: 24 202.51.150.0/24 maxlen: 24 202.51.151.0/24 maxlen: 24 202.51.152.0/24 maxlen: 24 202.51.153.0/24 maxlen: 24 202.51.154.0/24 maxlen: 24 202.51.155.0/24 maxlen: 24 202.51.156.0/24 maxlen: 24 202.51.157.0/24 maxlen: 24 202.51.158.0/24 maxlen: 24 202.51.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD60C/188F1172973D11EFA5196058C4F9AE02/5yN2M529XTAqWcz6d6wJzRcjlU0.crl rsync://rpki.apnic.net/member_repository/A91CD60C/188F1172973D11EFA5196058C4F9AE02/5yN2M529XTAqWcz6d6wJzRcjlU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5yN2M529XTAqWcz6d6wJzRcjlU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD60C, serialNumber=E72376339DBD5D302A59CCFA77AC09CD1723954D Validity Not Before: May 5 06:37:58 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69f99046-ca71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4e:21:e0:dd:91:a5:ad:e1:78:f7:bb:c3:4e: cd:cb:0c:25:19:c2:22:0d:d7:7a:fa:e7:ae:af:88: 13:53:e3:37:ed:93:b7:40:c0:46:f9:3e:22:49:ae: 37:d2:4d:ec:ed:a9:92:a5:c4:25:b6:e7:4b:6f:4a: b9:61:92:10:08:ab:6b:56:6b:ff:97:9d:2a:1d:d7: 1a:e7:ba:00:2c:18:4c:a5:41:8f:a5:21:b6:11:ce: d2:ef:b0:b8:1e:cf:6b:ee:76:3b:6c:4f:13:db:0d: 43:92:58:a4:4b:f4:58:10:a3:15:61:8e:2c:89:66: ff:ef:35:f6:fd:2d:8f:f3:65:71:b8:7c:f0:14:ce: bc:ec:1e:93:0a:dd:bf:79:55:81:95:24:7e:78:27: af:00:b3:39:f4:a1:83:93:10:66:d5:9e:e5:1a:8e: 45:1f:a5:98:47:36:aa:c1:db:31:cf:91:f5:22:82: d2:98:a6:e5:fd:86:36:3a:4b:25:fb:18:30:1f:08: fb:12:07:a6:16:d2:5d:58:0f:6f:d3:9c:1d:0a:cc: 43:7b:bd:ac:e0:fd:fe:fe:97:78:88:d4:0d:32:08: 3f:5f:7f:c2:33:62:a7:8b:15:7a:e2:c4:65:ee:e9: 90:f2:15:d7:be:49:d8:b8:89:10:3a:93:c8:a4:8b: 6b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:21:9F:B4:AC:7C:94:CA:DB:E2:DB:AF:DD:DA:EB:54:1C:8B:52:3D X509v3 Authority Key Identifier: keyid:E7:23:76:33:9D:BD:5D:30:2A:59:CC:FA:77:AC:09:CD:17:23:95:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD60C/188F1172973D11EFA5196058C4F9AE02/5yN2M529XTAqWcz6d6wJzRcjlU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5yN2M529XTAqWcz6d6wJzRcjlU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD60C/188F1172973D11EFA5196058C4F9AE02/AC8EE79E975B11EFB1D18E82C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.51.128.0/19 Signature Algorithm: sha256WithRSAEncryption b6:5a:a3:94:8d:8b:fc:45:56:5d:3e:11:07:3d:a5:91:47:ea: 88:4d:8f:6a:30:af:d4:ee:18:0e:16:8c:a7:04:29:15:7a:5c: 21:91:16:6b:be:c3:50:05:c1:06:8b:23:1c:fe:fe:81:32:e3: c3:e9:fd:47:23:12:42:f3:68:74:e8:24:7d:30:5b:0c:7d:db: 16:dd:eb:8d:79:e2:0a:dd:67:65:aa:cb:be:da:8d:08:b8:8f: da:6b:1f:c2:37:4b:88:ef:47:6d:b4:b6:32:0c:67:fa:86:a8: 52:4e:66:92:a3:e1:fc:b0:17:43:92:28:6e:85:e1:62:90:20: 1e:fa:ab:1f:43:a3:73:02:13:8d:3b:8f:60:ec:4d:0a:0c:f3: 28:f1:5c:8b:0e:69:9f:84:f4:fc:72:7f:1d:54:13:cc:26:84: 06:de:98:19:bd:d5:21:7b:06:0b:c2:d8:c0:14:dc:ff:5f:64: e7:9d:b6:e1:be:99:07:c9:5a:12:80:52:0b:6f:7f:54:dc:56: 14:dd:08:36:ed:cf:9c:a2:d3:05:4c:c4:6c:8a:45:d8:8f:29: e7:06:2b:0c:18:63:63:22:da:cf:1a:42:2f:16:bd:8b:ef:81: ab:d6:af:13:81:68:85:08:d2:9c:b3:bf:c1:bd:9b:70:6d:bf: 0d:e6:65:92 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q2MEMxMTAvBgNVBAUTKEU3MjM3NjMzOURCRDVEMzAyQTU5Q0NGQTc3QUMwOUNE MTcyMzk1NEQwHhcNMjYwNTA1MDYzNzU4WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY5OTA0Ni1jYTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuE4h4N2Rpa3hePe7w07NywwlGcIiDdd6+ueur4gTU+M37ZO3QMBG+T4iSa43 0k3s7amSpcQltudLb0q5YZIQCKtrVmv/l50qHdca57oALBhMpUGPpSG2Ec7S77C4 Hs9r7nY7bE8T2w1DklikS/RYEKMVYY4siWb/7zX2/S2P82VxuHzwFM687B6TCt2/ eVWBlSR+eCevALM59KGDkxBm1Z7lGo5FH6WYRzaqwdsxz5H1IoLSmKbl/YY2Oksl +xgwHwj7EgemFtJdWA9v05wdCsxDe72s4P3+/pd4iNQNMgg/X3/CM2KnixV64sRl 7umQ8hXXvknYuIkQOpPIpItriQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHAhn7Ss fJTK2+Lbr93a61Qci1I9MB8GA1UdIwQYMBaAFOcjdjOdvV0wKlnM+nesCc0XI5VN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDYwQy8xODhGMTE3Mjk3 M0QxMUVGQTUxOTYwNThDNEY5QUUwMi81eU4yTTUyOVhUQXFXY3o2ZDZ3SnpSY2ps VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV5TjJNNTI5WFRBcVdjejZkNndKelJjamxVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Q2MEMvMTg4RjExNzI5NzNEMTFFRkE1MTk2MDU4QzRGOUFFMDIvQUM4RUU3OUU5 NzVCMTFFRkIxRDE4RTgyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFyjOAMA0GCSqGSIb3DQEBCwUAA4IBAQC2WqOUjYv8RVZdPhEHPaWR R+qITY9qMK/U7hgOFoynBCkVelwhkRZrvsNQBcEGiyMc/v6BMuPD6f1HIxJC82h0 6CR9MFsMfdsW3euNeeIK3Wdlqsu+2o0IuI/aax/CN0uI70dttLYyDGf6hqhSTmaS o+H8sBdDkihuheFikCAe+qsfQ6NzAhONO49g7E0KDPMo8VyLDmmfhPT8cn8dVBPM JoQG3pgZvdUhewYLwtjAFNz/X2TnnbbhvpkHyVoSgFILb39U3FYU3Qg27c+cotMF TMRsikXYjynnBisMGGNjItrPGkIvFr2L74Gr1q8TgWiFCNKcs7/BvZtwbb8N5mWS -----END CERTIFICATE-----Generated at Wed May 13 13:59:00 2026 by rpki-client