$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/41B2F448ECE611EA882BEA79C4F9AE02.roa File: 41B2F448ECE611EA882BEA79C4F9AE02.roa (raw, json) Hash identifier: t9xbK/v+vCcRowR5IzNoJzv5HRQYvs/l6FDQqP5dszs= Subject key identifier: 36:43:6E:32:2C:F6:C3:E9:7A:F8:10:7E:70:AE:DE:50:AF:AC:08:F7 Certificate issuer: /CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Certificate serial: 0C27 Authority key identifier: 91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/41B2F448ECE611EA882BEA79C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:25:05 +0000 ROA not before: Sat 19 Jul 2025 02:46:27 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 4818 IP address blocks: 49.124.0.0/15 maxlen: 15 115.164.0.0/16 maxlen: 17 115.164.51.0/24 maxlen: 24 115.164.52.0/24 maxlen: 24 115.164.53.0/24 maxlen: 24 115.164.54.0/24 maxlen: 24 115.164.55.0/24 maxlen: 24 115.164.56.0/24 maxlen: 24 182.62.0.0/15 maxlen: 15 182.63.32.0/20 maxlen: 20 182.63.48.0/20 maxlen: 20 182.63.96.0/20 maxlen: 20 182.63.112.0/20 maxlen: 20 2001:4458::/32 maxlen: 33 2001:4458:4004::/48 maxlen: 48 2001:4458:4005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:42:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA786, serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Validity Not Before: Jul 19 02:46:27 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a48481-a698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:db:5a:e4:5e:3d:fd:6f:a9:c8:a5:d5:54:dd: ac:2d:da:ca:a0:f2:fb:aa:a0:97:ec:86:a6:69:09: 46:f4:67:00:d9:7d:41:20:12:61:18:42:00:48:5c: 6d:58:af:e8:1b:ae:08:f6:0e:a7:0e:41:d9:8c:8c: ce:25:b2:9b:41:7d:65:63:4a:95:00:ba:d6:d6:c5: 89:e5:ea:72:da:94:1c:a2:16:0b:87:58:31:3c:6c: 66:99:c9:15:bc:35:53:d2:c1:b8:6e:f3:bb:65:f5: a5:b0:3c:8f:9a:15:22:9e:b3:ff:27:e3:6c:88:fc: eb:68:81:53:17:b0:80:d3:da:89:d8:37:72:c7:c8: 85:0e:ab:ac:c6:bb:c1:3f:1f:6c:fa:43:95:24:a6: 1c:6c:38:49:2c:72:94:ed:e7:96:17:21:59:bf:d0: 60:2c:a3:e7:7e:94:1f:ed:23:bb:3d:5d:3b:75:89: c0:b8:e3:aa:40:68:30:9b:57:5a:ca:ea:91:bd:6b: 99:06:ab:93:71:d2:52:5a:16:e7:5a:c7:a2:ed:97: 9e:3f:fc:c0:42:7c:c0:0f:79:48:5c:6b:81:dc:c4: 12:47:f4:53:f4:51:18:71:68:85:6d:57:d7:51:c9: df:2c:ce:8b:20:77:92:fe:01:bc:ad:64:ae:ce:1f: 2c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:43:6E:32:2C:F6:C3:E9:7A:F8:10:7E:70:AE:DE:50:AF:AC:08:F7 X509v3 Authority Key Identifier: keyid:91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/41B2F448ECE611EA882BEA79C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.124.0.0/15 115.164.0.0/16 182.62.0.0/15 IPv6: 2001:4458::/32 Signature Algorithm: sha256WithRSAEncryption a5:78:99:e8:ba:68:5b:27:11:b5:72:9e:28:8f:41:c4:46:f5: 81:ad:8c:49:c3:2a:fc:0a:41:87:ab:d7:ad:cf:a1:d2:f7:5a: b4:77:87:1a:38:1f:65:37:20:14:0b:9b:54:a9:1c:bc:04:56: ed:6a:e2:05:9f:5a:a0:e3:ea:50:e5:a0:41:f1:c3:43:12:2e: 41:07:01:26:a3:69:f3:fb:81:55:cd:3f:f9:f5:e0:35:b2:35: 93:81:b1:2d:1a:76:2b:1a:93:01:62:05:3b:17:10:36:c8:d4: 88:04:cd:d5:24:13:53:fd:e1:63:82:b7:c0:e4:9e:d5:1d:83: ba:5a:f6:d3:01:c0:f9:45:bc:cf:30:51:ab:e7:24:68:fd:1d: c8:56:8d:9f:66:26:f0:3a:ee:13:ec:e6:25:0a:c6:74:4e:cf: 73:c3:a8:75:76:e3:42:26:e6:ac:6e:8b:81:f7:b9:d2:d3:59: 92:40:c2:65:c0:19:37:9d:55:5e:43:2a:f7:5c:70:10:bb:e5: bf:cb:8b:e1:21:73:6c:73:43:e5:a2:9c:b5:1d:10:3e:8c:48: 60:64:a8:03:5d:4a:c9:11:49:7f:cf:30:93:36:33:2b:3e:16: 4d:06:42:b2:d9:2d:e7:2a:ed:b9:89:a7:f2:36:b6:60:d1:af: e9:d4:6f:6a -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3ODYxMTAvBgNVBAUTKDkxQzNDOTY2Nzc2RjAxMUZDNTM1MDIxRDg1RjVBRTdC RkJBREE1N0UwHhcNMjUwNzE5MDI0NjI3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODQ4MS1hNjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9ta5F49/W+pyKXVVN2sLdrKoPL7qqCX7IamaQlG9GcA2X1BIBJhGEIASFxt WK/oG64I9g6nDkHZjIzOJbKbQX1lY0qVALrW1sWJ5epy2pQcohYLh1gxPGxmmckV vDVT0sG4bvO7ZfWlsDyPmhUinrP/J+NsiPzraIFTF7CA09qJ2Ddyx8iFDqusxrvB Px9s+kOVJKYcbDhJLHKU7eeWFyFZv9BgLKPnfpQf7SO7PV07dYnAuOOqQGgwm1da yuqRvWuZBquTcdJSWhbnWsei7ZeeP/zAQnzAD3lIXGuB3MQSR/RT9FEYcWiFbVfX UcnfLM6LIHeS/gG8rWSuzh8swwIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFDZDbjIs 9sPpevgQfnCu3lCvrAj3MB8GA1UdIwQYMBaAFJHDyWZ3bwEfxTUCHYX1rnv7raV+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTc4Ni9CMEQ3MjNFRTM1 REExMUVBQUI4ODQ4NEFDNEY5QUUwMi9rY1BKWm5kdkFSX0ZOUUlkaGZXdWVfdXRw WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tjUEpabmR2QVJfRk5RSWRoZld1ZV91dHBYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE3ODYvQjBENzIzRUUzNURBMTFFQUFCODg0ODRBQzRGOUFFMDIvNDFCMkY0NDhF Q0U2MTFFQTg4MkJFQTc5QzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAV BAIAATAPAwMBMXwDAwBzpAMDAbY+MA0EAgACMAcDBQAgAURYMA0GCSqGSIb3DQEB CwUAA4IBAQCleJnoumhbJxG1cp4oj0HERvWBrYxJwyr8CkGHq9etz6HS91q0d4ca OB9lNyAUC5tUqRy8BFbtauIFn1qg4+pQ5aBB8cNDEi5BBwEmo2nz+4FVzT/59eA1 sjWTgbEtGnYrGpMBYgU7FxA2yNSIBM3VJBNT/eFjgrfA5J7VHYO6WvbTAcD5RbzP MFGr5yRo/R3IVo2fZibwOu4T7OYlCsZ0Ts9zw6h1duNCJuasbouB97nS01mSQMJl wBk3nVVeQyr3XHAQu+W/y4vhIXNsc0Plopy1HRA+jEhgZKgDXUrJEUl/zzCTNjMr PhZNBkKy2S3nKu25iafyNrZg0a/p1G9q -----END CERTIFICATE-----Generated at Thu Mar 26 08:35:04 2026 by rpki-client