$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/64120230B2C211EFA43BF057C4F9AE02.roa File: 64120230B2C211EFA43BF057C4F9AE02.roa (raw, json) Hash identifier: b0f2l7SFJ4lf6D8dKmqlQhXFnbZKoG40QcikDdNJbvM= Subject key identifier: C6:E2:26:C5:7E:8A:19:55:87:E8:0F:53:B0:9A:04:DF:2A:74:74:94 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 01FB Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/64120230B2C211EFA43BF057C4F9AE02.roa Signing time: Fri 01 May 2026 03:36:06 +0000 ROA not before: Fri 01 May 2026 03:36:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1851 IP address blocks: 129.127.0.0/16 maxlen: 16 130.220.0.0/16 maxlen: 16 192.43.227.0/24 maxlen: 24 192.43.228.0/24 maxlen: 24 192.160.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 03:22:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: May 1 03:36:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f41fa6-334d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:67:f1:c4:f5:d6:69:e1:34:0a:e3:e2:56:f3: 34:52:8f:e8:d8:3f:01:7d:1a:13:af:70:cf:99:5e: 53:f2:22:74:1d:8f:28:1b:ac:aa:e6:6e:97:23:48: 9a:1c:87:f0:aa:58:72:29:62:2d:e2:3d:a1:05:f3: 1f:c4:1d:1b:22:58:16:b4:62:4e:ad:16:1c:74:ed: 88:3d:62:a0:a2:23:b3:fa:af:f9:be:2b:b1:eb:a3: 5e:0f:a4:42:cf:43:60:a8:16:96:54:08:12:46:3a: 44:e7:49:83:24:83:ee:6e:99:5a:e5:ef:44:0c:23: 84:67:9a:d4:6a:ac:67:61:b3:81:aa:6d:fc:ec:f3: bf:92:3e:6c:97:80:be:75:56:35:f9:68:f5:a1:8d: 79:86:45:b2:ef:1a:ca:39:d5:08:b8:2e:59:88:75: af:67:85:50:f9:e5:cb:88:4c:f3:33:3c:d4:22:0b: 03:a7:b7:7c:0c:9e:1e:ce:52:f5:56:73:ad:a4:0d: 5b:b0:52:1c:28:85:0c:79:47:23:e6:c7:45:55:bb: 4f:9f:90:73:d5:25:43:1d:24:d0:1f:3d:da:fb:3a: cb:ee:07:88:c5:27:8e:81:22:59:af:cd:e4:08:aa: 33:7b:68:60:10:1f:7c:54:75:03:b3:29:0d:4f:08: 37:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:E2:26:C5:7E:8A:19:55:87:E8:0F:53:B0:9A:04:DF:2A:74:74:94 X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/64120230B2C211EFA43BF057C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 129.127.0.0/16 130.220.0.0/16 192.43.227.0-192.43.228.255 192.160.71.0/24 Signature Algorithm: sha256WithRSAEncryption 09:78:c3:8a:a4:4f:df:ed:5f:b3:09:60:69:55:f1:38:a3:d0: b2:ce:fe:0c:a7:59:93:59:1f:a8:09:a7:c5:fd:9f:e4:00:41: a0:e4:0a:ea:d8:7c:6d:aa:c2:39:02:18:11:c1:0c:dd:f3:ef: 93:cf:62:da:fa:8b:76:e9:0b:32:54:18:9b:d4:6c:66:2f:e7: 65:aa:91:82:cb:47:78:06:b7:61:1a:84:98:d5:fd:c8:97:b6: 40:d9:5b:c4:6a:24:4f:3a:b7:90:4e:5f:cc:55:a9:6f:09:39: 5f:26:58:49:e0:3f:e4:75:fd:3a:80:59:5b:d8:b3:ab:0c:cf: 03:7c:58:71:66:ed:15:8a:22:4e:5b:b2:3c:14:3f:3d:82:03: 0e:e8:09:d5:7b:c4:70:fb:a1:9b:da:b9:37:e8:d6:27:63:01: df:b3:90:10:fa:4a:01:9c:58:c4:72:f7:4a:54:14:89:a7:86: e4:23:6b:f2:eb:97:09:02:cd:31:9e:63:9a:56:82:04:cf:f4: b9:60:4f:83:ce:88:a7:9a:74:74:a5:e7:90:23:c3:5f:02:2f: 0d:6a:61:28:70:73:0b:31:b5:7f:a5:27:fc:a3:18:ed:9b:25: 57:3f:82:c7:11:46:b3:3e:a5:5a:4a:2e:17:a4:c1:7d:66:1b: bc:59:7d:b2 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjYwNTAxMDMzNjA2WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY0MWZhNi0zMzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmfxxPXWaeE0CuPiVvM0Uo/o2D8BfRoTr3DPmV5T8iJ0HY8oG6yq5m6XI0ia HIfwqlhyKWIt4j2hBfMfxB0bIlgWtGJOrRYcdO2IPWKgoiOz+q/5viux66NeD6RC z0NgqBaWVAgSRjpE50mDJIPubpla5e9EDCOEZ5rUaqxnYbOBqm387PO/kj5sl4C+ dVY1+Wj1oY15hkWy7xrKOdUIuC5ZiHWvZ4VQ+eXLiEzzMzzUIgsDp7d8DJ4ezlL1 VnOtpA1bsFIcKIUMeUcj5sdFVbtPn5Bz1SVDHSTQHz3a+zrL7geIxSeOgSJZr83k CKoze2hgEB98VHUDsykNTwg31wIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFMbiJsV+ ihlVh+gPU7CaBN8qdHSUMB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U1QTYvQUFCMzNFNEM1QjNGMTFFRThGMUQzRDZFQzRGOUFFMDIvNjQxMjAyMzBC MkMyMTFFRkE0M0JGMDU3QzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwMAgX8DAwCC3DAMAwQAwCvjAwQAwCvkAwQAwKBHMA0GCSqGSIb3DQEB CwUAA4IBAQAJeMOKpE/f7V+zCWBpVfE4o9Cyzv4Mp1mTWR+oCafF/Z/kAEGg5Arq 2HxtqsI5AhgRwQzd8++Tz2La+ot26QsyVBib1GxmL+dlqpGCy0d4BrdhGoSY1f3I l7ZA2VvEaiRPOreQTl/MValvCTlfJlhJ4D/kdf06gFlb2LOrDM8DfFhxZu0ViiJO W7I8FD89ggMO6AnVe8Rw+6Gb2rk36NYnYwHfs5AQ+koBnFjEcvdKVBSJp4bkI2vy 65cJAs0xnmOaVoIEz/S5YE+DzoinmnR0peeQI8NfAi8NamEocHMLMbV/pSf8oxjt myVXP4LHEUazPqVaSi4XpMF9Zhu8WX2y -----END CERTIFICATE-----Generated at Wed May 13 09:42:43 2026 by rpki-client