$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/965254F8278811F09217002CC4F9AE02.roa File: 965254F8278811F09217002CC4F9AE02.roa (raw, json) Hash identifier: 0RhsOifNGasCmCxCAJFq65+7Iqu3gbPwoj7AcEDMVxI= Subject key identifier: 49:28:B3:EB:71:F2:56:05:B1:32:E9:B2:53:11:5F:C0:74:E4:FB:B3 Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: EF Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/965254F8278811F09217002CC4F9AE02.roa Signing time: Wed 25 Mar 2026 06:44:02 +0000 ROA not before: Wed 25 Mar 2026 06:44:02 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 150696 IP address blocks: 163.61.138.0/24 maxlen: 24 2001:df5:1740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:44:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: Mar 25 06:44:02 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c38432-b1ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:75:cb:fd:47:50:76:fc:06:2e:36:66:e2:5e: 7b:d7:1d:d8:5a:8b:d7:79:98:84:91:65:72:76:a0: 2f:a3:d6:ac:c8:a3:dd:62:11:b5:c7:30:5d:9e:22: 81:5b:9d:dd:d9:33:cc:84:70:37:64:c4:08:df:87: d1:73:5b:44:08:ef:15:13:39:fe:46:fe:a6:1f:fd: 40:8d:48:1e:cb:70:71:0e:aa:60:1e:1d:b4:bb:52: b5:0e:b1:91:6c:39:4b:65:5b:87:a3:57:63:d6:fe: 0a:eb:22:5d:ad:ae:0d:14:ad:59:72:30:7d:1e:61: ce:c4:7c:0a:01:fe:e2:3e:9d:23:28:d8:b4:f0:7e: e7:ca:fa:46:a1:a3:26:ea:8d:91:b6:db:15:bb:82: d4:cf:c2:a0:ce:ed:97:b6:83:af:3c:7c:66:99:d3: 92:ff:19:6b:22:c9:23:60:0c:e6:32:74:01:2e:0e: 7a:51:60:e4:a3:88:cf:cc:ad:98:73:33:8c:74:8e: 58:26:a6:76:7c:4b:19:e6:47:6d:b2:68:51:30:4a: 2f:5d:89:2f:0d:57:42:30:08:c1:a5:8a:3a:17:40: 6c:1b:76:23:08:3b:61:96:e5:67:85:91:87:9c:7e: 99:c9:eb:ae:d9:a4:1c:3d:6b:1c:42:57:64:c6:76: 74:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:28:B3:EB:71:F2:56:05:B1:32:E9:B2:53:11:5F:C0:74:E4:FB:B3 X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/965254F8278811F09217002CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.61.138.0/24 IPv6: 2001:df5:1740::/48 Signature Algorithm: sha256WithRSAEncryption 7f:14:54:11:d2:6a:c7:02:70:19:bd:d2:23:f7:46:92:61:4e: 15:3a:41:18:4e:85:b4:a2:ce:c9:39:01:2d:d7:7a:1e:32:19: bf:30:e1:0a:b6:7c:c9:e4:8d:c6:6b:2b:c5:a8:b4:ff:d0:c1: 28:93:d6:6d:b1:ee:74:3c:92:18:62:70:40:5d:f8:89:fc:2c: ec:51:69:a9:36:4e:d7:16:db:c4:d3:ee:8a:61:aa:3a:33:74: bf:d2:f5:cb:44:57:9a:e9:9e:f2:09:f7:3d:10:4f:33:ef:44: 93:75:ee:fe:e3:e6:2e:5a:b8:8d:4a:cc:e3:85:61:c8:d9:7d: 6a:dc:c3:48:c8:dd:a5:94:0b:84:1d:a2:7e:e9:8e:17:53:e4: c0:6f:0c:ca:40:4f:3a:2b:ce:90:db:92:b2:aa:d7:a0:a3:bf: de:39:bc:b6:f8:6b:88:0e:88:76:9e:0c:05:86:1b:3d:05:af: ad:10:3c:b3:c6:b0:58:85:c9:0a:d5:a4:5a:4d:ba:99:8d:32: 4f:64:07:cf:a5:d6:df:e4:eb:02:45:aa:6e:92:4f:59:04:4b: 1a:48:4d:12:91:9c:b7:23:58:48:ad:87:2d:ca:3b:7c:e9:73: b6:07:f1:fb:54:9d:97:4b:fb:77:62:dd:79:c8:75:42:a6:7d: a9:3b:41:7a -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI2OEMxMTAvBgNVBAUTKEEyMjg4Rjg5NjRENjE2OUE4Nzk1RjJGNEVGMDVFMEQ1 RTZFMTNCMDkwHhcNMjYwMzI1MDY0NDAyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWMzODQzMi1iMWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXXL/UdQdvwGLjZm4l571x3YWovXeZiEkWVydqAvo9asyKPdYhG1xzBdniKB W53d2TPMhHA3ZMQI34fRc1tECO8VEzn+Rv6mH/1AjUgey3BxDqpgHh20u1K1DrGR bDlLZVuHo1dj1v4K6yJdra4NFK1ZcjB9HmHOxHwKAf7iPp0jKNi08H7nyvpGoaMm 6o2RttsVu4LUz8Kgzu2XtoOvPHxmmdOS/xlrIskjYAzmMnQBLg56UWDko4jPzK2Y czOMdI5YJqZ2fEsZ5kdtsmhRMEovXYkvDVdCMAjBpYo6F0BsG3YjCDthluVnhZGH nH6Zyeuu2aQcPWscQldkxnZ0ZwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFEkos+tx 8lYFsTLpslMRX8B05PuzMB8GA1UdIwQYMBaAFKIoj4lk1haah5Xy9O8F4NXm4TsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjY4Qy8xN0QxMDNBOEVB QjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0ZwcUhsZkwwN3dYZzFlYmhP d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkI2OEMvMTdEMTAzQThFQUIyMTFFRjg0NkYxMzM3QzRGOUFFMDIvOTY1MjU0Rjgy Nzg4MTFGMDkyMTcwMDJDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAoz2KMA8EAgACMAkDBwAgAQ31F0AwDQYJKoZIhvcNAQELBQADggEB AH8UVBHSascCcBm90iP3RpJhThU6QRhOhbSizsk5AS3Xeh4yGb8w4Qq2fMnkjcZr K8WotP/QwSiT1m2x7nQ8khhicEBd+In8LOxRaak2TtcW28TT7ophqjozdL/S9ctE V5rpnvIJ9z0QTzPvRJN17v7j5i5auI1KzOOFYcjZfWrcw0jI3aWUC4Qdon7pjhdT 5MBvDMpATzorzpDbkrKq16Cjv945vLb4a4gOiHaeDAWGGz0Fr60QPLPGsFiFyQrV pFpNupmNMk9kB8+l1t/k6wJFqm6ST1kESxpITRKRnLcjWEithy3KO3zpc7YH8ftU nZdL+3di3XnIdUKmfak7QXo= -----END CERTIFICATE-----Generated at Thu Mar 26 07:17:00 2026 by rpki-client