$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa File: FD6881C4438111ECBC63AC7BC4F9AE02.roa (raw, json) Hash identifier: hx35jyyp1hLI/8+v9mtESWTe3NrKWza9qfhoh3XL0rk= Subject key identifier: B6:7A:87:C0:7B:89:FB:E5:AF:7A:74:F3:BE:84:9E:47:0B:74:7F:B5 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 083D Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa Signing time: Mon 16 Mar 2026 09:09:17 +0000 ROA not before: Mon 16 Mar 2026 09:09:17 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 62610 IP address blocks: 129.227.143.0/24 maxlen: 24 156.59.73.0/24 maxlen: 24 156.59.123.0/24 maxlen: 24 156.59.146.0/24 maxlen: 24 156.59.184.0/24 maxlen: 24 162.128.82.0/24 maxlen: 24 162.128.83.0/24 maxlen: 24 162.128.84.0/24 maxlen: 24 162.128.85.0/24 maxlen: 24 162.128.86.0/24 maxlen: 24 162.128.87.0/24 maxlen: 24 162.128.88.0/24 maxlen: 24 162.128.89.0/24 maxlen: 24 162.128.90.0/24 maxlen: 24 162.128.91.0/24 maxlen: 24 162.128.92.0/24 maxlen: 24 162.128.93.0/24 maxlen: 24 162.128.94.0/24 maxlen: 24 162.128.95.0/24 maxlen: 24 162.128.215.0/24 maxlen: 24 162.128.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2109 (0x83d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Mar 16 09:09:17 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69b7c8bd-d7a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:67:86:2f:dd:ac:7f:54:ce:cf:74:da:5e:81: 0d:ce:29:c2:54:b4:09:14:00:d5:8f:b7:c0:92:e1: 37:89:c7:dc:a5:5d:4a:e6:aa:60:3a:e1:8b:83:a3: af:fb:c6:5c:a7:41:b3:10:e0:c7:36:d7:df:9f:ec: 9f:fd:3e:ef:73:76:9c:c6:5f:3d:34:db:61:b4:8b: c5:9a:af:de:38:33:82:39:e2:7e:5c:2f:5a:8e:57: ab:2f:c4:b9:4c:a8:8e:fe:df:d1:fc:47:30:7a:f2: 76:b4:3c:ff:ce:c6:a4:ad:84:f4:4a:6d:e0:e1:e5: 54:93:33:73:36:ed:6f:3b:51:5c:0a:96:24:6e:9c: f6:e0:26:a2:e9:22:da:1d:0d:70:f9:81:ba:f1:64: 8a:84:fb:dc:fe:25:1a:55:d0:f7:b8:e7:bc:74:80: e9:10:85:78:09:82:ce:32:2f:3d:00:87:05:2f:3a: 35:0e:5c:8e:7c:a4:79:36:c7:3a:1b:54:11:d5:ac: e1:7b:33:ac:53:21:7c:44:98:fb:2a:0d:78:2d:4e: 7b:dc:14:30:fc:3c:32:b0:59:9f:00:17:13:0c:fc: fe:ed:0a:ad:b2:cd:81:4f:63:a1:6f:2b:c6:49:3d: 17:96:6a:0b:8e:86:25:9d:9b:8f:8a:d0:6e:4d:68: 3e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:7A:87:C0:7B:89:FB:E5:AF:7A:74:F3:BE:84:9E:47:0B:74:7F:B5 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 129.227.143.0/24 156.59.73.0/24 156.59.123.0/24 156.59.146.0/24 156.59.184.0/24 162.128.82.0-162.128.95.255 162.128.215.0-162.128.216.255 Signature Algorithm: sha256WithRSAEncryption 3d:62:70:6f:12:83:66:52:4e:10:79:e8:7f:e3:61:a9:54:92: 5c:96:e5:73:01:5d:fc:b8:17:5c:55:6f:9e:c4:df:7a:df:6d: 7d:89:24:91:e6:e7:ab:ad:d8:a5:d4:4c:01:54:34:f4:7a:b4: f5:46:62:97:b7:35:45:21:3c:db:b5:70:bf:f5:31:be:59:83: b1:40:76:e8:24:23:1f:35:60:d7:43:2f:94:03:98:01:35:01: 6f:b8:74:06:c3:4d:7a:a4:a8:d7:8e:c7:d5:21:ea:3d:4f:18: e0:6b:f2:7c:76:39:7f:53:1d:dd:b6:04:c4:3e:97:0a:e7:a1: 5f:2b:d0:d6:70:f3:bb:84:9a:6b:7c:22:84:12:20:e8:3e:92: 4f:2b:05:09:6b:41:35:01:90:78:0a:ee:2a:ee:27:62:a1:74: d1:c6:ef:df:40:7c:67:a0:cc:bf:49:0e:1d:62:61:73:21:33: 6e:10:ea:42:24:08:27:07:ed:9b:76:24:48:74:0d:45:56:7c: b3:6e:53:a8:47:46:be:d5:84:0d:f9:b8:41:d9:cc:22:af:30: 55:a5:eb:15:3e:b7:7f:c4:7d:fd:c3:c7:3e:05:11:ef:11:af: b1:f5:81:b6:88:ae:80:6f:26:d8:d1:54:79:d4:4a:d7:20:77: a2:75:8a:b2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICCD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjYwMzE2MDkwOTE3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI3YzhiZC1kN2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2eGL92sf1TOz3TaXoENzinCVLQJFADVj7fAkuE3icfcpV1K5qpgOuGLg6Ov +8Zcp0GzEODHNtffn+yf/T7vc3acxl89NNthtIvFmq/eODOCOeJ+XC9ajlerL8S5 TKiO/t/R/EcwevJ2tDz/zsakrYT0Sm3g4eVUkzNzNu1vO1FcCpYkbpz24Cai6SLa HQ1w+YG68WSKhPvc/iUaVdD3uOe8dIDpEIV4CYLOMi89AIcFLzo1DlyOfKR5Nsc6 G1QR1azhezOsUyF8RJj7Kg14LU573BQw/DwysFmfABcTDPz+7Qqtss2BT2OhbyvG ST0XlmoLjoYlnZuPitBuTWg+QwIDAQABo4IClDCCApAwHQYDVR0OBBYEFLZ6h8B7 ifvlr3p0876EnkcLdH+1MB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvRkQ2ODgxQzQ0 MzgxMTFFQ0JDNjNBQzdCQzRGOUFFMDIucm9hMFMGCCsGAQUFBwEHAQH/BEQwQjBA BAIAATA6AwQAgeOPAwQAnDtJAwQAnDt7AwQAnDuSAwQAnDu4MAwDBAGigFIDBAWi gEAwDAMEAKKA1wMEAKKA2DANBgkqhkiG9w0BAQsFAAOCAQEAPWJwbxKDZlJOEHno f+NhqVSSXJblcwFd/LgXXFVvnsTfet9tfYkkkebnq63YpdRMAVQ09Hq09UZil7c1 RSE827Vwv/UxvlmDsUB26CQjHzVg10MvlAOYATUBb7h0BsNNeqSo147H1SHqPU8Y 4GvyfHY5f1Md3bYExD6XCuehXyvQ1nDzu4Saa3wihBIg6D6STysFCWtBNQGQeAru Ku4nYqF00cbv30B8Z6DMv0kOHWJhcyEzbhDqQiQIJwftm3YkSHQNRVZ8s25TqEdG vtWEDfm4QdnMIq8wVaXrFT63f8R9/cPHPgUR7xGvsfWBtoiugG8m2NFUedRK1yB3 onWKsg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:40:04 2026 by rpki-client