$ rpki-client -vvf rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/69299E5E451A11F1923B844B97833773.roa File: 69299E5E451A11F1923B844B97833773.roa (raw, json) Hash identifier: ysWt6Cp+OKC3wWhi/72Sc1dGh/s11z7W1OMwrGJbdPY= Subject key identifier: 2C:BF:88:21:73:51:3B:DD:43:11:2D:87:5F:29:2B:85:24:FF:3D:C1 Certificate issuer: /CN=A91D73BB/serialNumber=937A1B5FEB0A293360EA4E8847352E7FD36CC7A5 Certificate serial: 01C6 Authority key identifier: 93:7A:1B:5F:EB:0A:29:33:60:EA:4E:88:47:35:2E:7F:D3:6C:C7:A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/69299E5E451A11F1923B844B97833773.roa Signing time: Fri 01 May 2026 05:26:15 +0000 ROA not before: Fri 01 May 2026 05:26:15 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133045 IP address blocks: 148.195.18.0/24 maxlen: 24 148.195.20.0/22 maxlen: 24 148.195.28.0/22 maxlen: 24 148.195.135.0/24 maxlen: 24 148.195.143.0/24 maxlen: 24 148.195.145.0/24 maxlen: 24 148.195.230.0/24 maxlen: 24 159.73.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.crl rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 04:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D73BB, serialNumber=937A1B5FEB0A293360EA4E8847352E7FD36CC7A5 Validity Not Before: May 1 05:26:15 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69f43977-5fe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:59:3c:af:fe:95:a9:4a:d8:44:54:bb:31:47: be:fb:0c:d2:c1:3e:94:4a:26:b4:b4:f7:a8:be:c7: ff:bd:8a:02:9c:68:88:07:f4:f4:f2:2d:31:1f:40: 43:b9:fc:fe:4b:89:6e:cc:b5:a1:a1:1a:c9:25:e3: fe:a4:a8:1a:de:2e:f5:c8:64:82:65:92:30:e0:47: 84:3e:c6:bf:29:64:21:57:54:5e:ac:b1:87:e3:21: d8:31:66:5d:e7:d0:d6:74:54:bd:50:d0:f3:7e:cc: a1:61:ac:ec:b8:9d:eb:2a:f6:42:28:ea:f8:f0:c9: d2:0e:a7:55:09:9b:92:e6:a7:5e:d5:d4:f2:26:91: ab:e5:86:97:df:df:0a:ab:7b:de:e8:3c:53:43:5f: da:5d:72:51:60:bc:58:a4:70:cf:25:3e:2e:94:72: 47:17:43:a6:86:9b:d9:0f:36:b6:97:7b:55:73:2a: a6:f2:55:57:3d:a6:74:ba:a2:38:f4:c4:58:ee:29: 77:0e:cf:df:f0:28:3b:84:2c:4d:e7:fe:24:f4:d3: 07:4e:2e:9c:17:78:da:f2:f7:57:72:a2:38:d3:99: ea:88:01:90:0b:2b:5c:98:28:4e:15:87:ea:32:9b: 46:f8:b5:1a:6c:81:ab:67:1f:33:ac:ab:b2:54:90: 9e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BF:88:21:73:51:3B:DD:43:11:2D:87:5F:29:2B:85:24:FF:3D:C1 X509v3 Authority Key Identifier: keyid:93:7A:1B:5F:EB:0A:29:33:60:EA:4E:88:47:35:2E:7F:D3:6C:C7:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/69299E5E451A11F1923B844B97833773.roa sbgp-ipAddrBlock: critical IPv4: 148.195.18.0/24 148.195.20.0/22 148.195.28.0/22 148.195.135.0/24 148.195.143.0/24 148.195.145.0/24 148.195.230.0/24 159.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption 52:a3:4d:05:e9:0c:b0:d8:84:d0:6a:6b:da:6f:18:12:7f:45: f1:e5:d8:ed:88:8e:56:59:e8:7b:94:71:e2:ad:f5:55:0f:03: b8:6a:6f:e9:9b:01:c4:3e:e7:03:eb:7c:1a:51:6e:71:79:7f: ce:20:ab:16:6e:5f:72:5a:49:b3:73:28:f2:43:1d:18:b1:f4: 9e:09:a2:c8:26:26:53:c0:ef:d3:15:82:29:42:4c:0d:04:40: 4f:bb:33:94:5f:f4:c8:c9:c8:4f:da:19:1d:2a:31:ca:83:60: ca:a6:40:bb:3d:f3:67:0f:bf:90:c8:a7:8d:ca:55:18:fa:1f: 55:8a:6c:df:31:d3:aa:54:31:c3:75:97:13:d0:8c:fa:83:1f: de:ec:58:d2:c7:16:38:b1:f3:81:45:2e:ea:44:2f:9c:06:84: a5:44:df:a8:2f:a6:2a:97:67:2c:94:63:ec:2b:6f:fc:1e:05: df:89:e8:d6:6a:fd:8a:1b:62:c3:4f:4a:70:f6:ac:42:c5:7f: 53:2f:e2:24:5c:0c:f4:9b:1f:63:cc:8f:dc:66:62:fc:a5:70: 7f:e2:a1:a0:53:09:fc:13:3a:3f:97:85:2c:ea:39:a6:fd:d4: a4:fe:15:b7:a8:7a:7d:d9:aa:b3:b5:c0:a5:f3:4d:e4:64:e1: 01:d6:5d:73 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDczQkIxMTAvBgNVBAUTKDkzN0ExQjVGRUIwQTI5MzM2MEVBNEU4ODQ3MzUyRTdG RDM2Q0M3QTUwHhcNMjYwNTAxMDUyNjE1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY0Mzk3Ny01ZmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVk8r/6VqUrYRFS7MUe++wzSwT6USia0tPeovsf/vYoCnGiIB/T08i0xH0BD ufz+S4luzLWhoRrJJeP+pKga3i71yGSCZZIw4EeEPsa/KWQhV1RerLGH4yHYMWZd 59DWdFS9UNDzfsyhYazsuJ3rKvZCKOr48MnSDqdVCZuS5qde1dTyJpGr5YaX398K q3ve6DxTQ1/aXXJRYLxYpHDPJT4ulHJHF0OmhpvZDza2l3tVcyqm8lVXPaZ0uqI4 9MRY7il3Ds/f8Cg7hCxN5/4k9NMHTi6cF3ja8vdXcqI405nqiAGQCytcmChOFYfq MptG+LUabIGrZx8zrKuyVJCecwIDAQABo4ICiTCCAoUwHQYDVR0OBBYEFCy/iCFz UTvdQxEth18pK4Uk/z3BMB8GA1UdIwQYMBaAFJN6G1/rCikzYOpOiEc1Ln/TbMel MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzNCQi83RUQ1NzU4NkUx OEQxMUVFOTkwRkVDNEZDNEY5QUUwMi9rM29iWC1zS0tUTmc2azZJUnpVdWY5TnN4 NlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2szb2JYLXNLS1ROZzZrNklSelV1ZjlOc3g2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDczQkIvN0VENTc1ODZFMThEMTFFRTk5MEZFQzRGQzRGOUFFMDIvNjkyOTlFNUU0 NTFBMTFGMTkyM0I4NDRCOTc4MzM3NzMucm9hMEgGCCsGAQUFBwEHAQH/BDkwNzA1 BAIAATAvAwQAlMMSAwQClMMUAwQClMMcAwQAlMOHAwQAlMOPAwQAlMORAwQAlMPm AwMAn0kwDQYJKoZIhvcNAQELBQADggEBAFKjTQXpDLDYhNBqa9pvGBJ/RfHl2O2I jlZZ6HuUceKt9VUPA7hqb+mbAcQ+5wPrfBpRbnF5f84gqxZuX3JaSbNzKPJDHRix 9J4JosgmJlPA79MVgilCTA0EQE+7M5Rf9MjJyE/aGR0qMcqDYMqmQLs982cPv5DI p43KVRj6H1WKbN8x06pUMcN1lxPQjPqDH97sWNLHFjix84FFLupEL5wGhKVE36gv piqXZyyUY+wrb/weBd+J6NZq/YobYsNPSnD2rELFf1Mv4iRcDPSbH2PMj9xmYvyl cH/ioaBTCfwTOj+XhSzqOab91KT+Fbeoen3ZqrO1wKXzTeRk4QHWXXM= -----END CERTIFICATE-----Generated at Wed May 13 12:25:33 2026 by rpki-client