$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4E6/F9FB90B8175311F0AAF61D57C4F9AE02/5E68E50A175411F09318BD57C4F9AE02.roa File: 5E68E50A175411F09318BD57C4F9AE02.roa (raw, json) Hash identifier: NNWgzGNZzKFhyR9UQaPLuskwOBvWx8bjhp6pV23mdH0= Subject key identifier: 4B:79:C7:B5:B4:E6:31:C0:C3:19:C7:5B:DF:1C:C0:F0:F1:81:3D:38 Certificate issuer: /CN=A911B4E6/serialNumber=CEBBF2BCAFB95727E12CD8B6DF5116B8A16C9049 Certificate serial: A8 Authority key identifier: CE:BB:F2:BC:AF:B9:57:27:E1:2C:D8:B6:DF:51:16:B8:A1:6C:90:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zrvyvK-5VyfhLNi231EWuKFskEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4E6/F9FB90B8175311F0AAF61D57C4F9AE02/5E68E50A175411F09318BD57C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:02:42 +0000 ROA not before: Thu 08 May 2025 18:19:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153746 IP address blocks: 163.223.214.0/23 maxlen: 23 163.223.214.0/24 maxlen: 24 163.223.215.0/24 maxlen: 24 2001:df5:4c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4E6/F9FB90B8175311F0AAF61D57C4F9AE02/zrvyvK-5VyfhLNi231EWuKFskEk.crl rsync://rpki.apnic.net/member_repository/A911B4E6/F9FB90B8175311F0AAF61D57C4F9AE02/zrvyvK-5VyfhLNi231EWuKFskEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zrvyvK-5VyfhLNi231EWuKFskEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4E6, serialNumber=CEBBF2BCAFB95727E12CD8B6DF5116B8A16C9049 Validity Not Before: May 8 18:19:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3e492-356e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cb:aa:97:f9:d3:2f:6f:9c:6f:b3:05:eb:9d: bb:ff:b2:d8:b0:02:a1:db:1f:3d:8b:04:70:3d:0e: c5:fb:48:64:0d:aa:3a:ce:1e:6a:a8:93:5a:65:c7: 04:bf:58:00:21:5e:83:38:a9:a9:ac:c5:e9:ff:f1: 38:c1:80:3b:59:89:a9:f6:47:af:bf:b5:d2:22:c6: 22:4b:8f:3a:cb:24:b5:11:e3:df:ea:7e:36:68:f0: 05:47:de:a1:65:1e:fe:d6:63:3f:8d:43:5a:35:77: f5:89:4c:f2:22:80:80:bd:c9:88:fd:4b:a0:4c:45: d6:b4:c1:9c:41:cc:7b:89:7a:e9:46:00:a0:69:af: 66:2b:35:ce:a2:80:2d:90:ec:26:8e:15:02:b5:09: d9:c9:9f:35:67:e1:b1:3d:0e:5e:e9:d8:1e:56:7b: 52:f5:90:0a:b6:0a:51:d2:d3:54:25:86:db:55:2d: f9:fb:6a:16:85:02:a6:a4:94:f0:69:04:4f:25:9a: 23:46:06:ca:3c:fe:da:44:35:a1:a9:84:a9:f5:a8: f7:cc:75:eb:3c:2c:73:64:14:f6:2a:c5:0b:d7:ca: 15:40:c7:6f:6f:30:25:92:9d:da:e4:30:ca:65:fb: 44:2e:e0:53:68:c2:b1:de:07:b3:e4:30:4e:98:8b: 26:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:79:C7:B5:B4:E6:31:C0:C3:19:C7:5B:DF:1C:C0:F0:F1:81:3D:38 X509v3 Authority Key Identifier: keyid:CE:BB:F2:BC:AF:B9:57:27:E1:2C:D8:B6:DF:51:16:B8:A1:6C:90:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4E6/F9FB90B8175311F0AAF61D57C4F9AE02/zrvyvK-5VyfhLNi231EWuKFskEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zrvyvK-5VyfhLNi231EWuKFskEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4E6/F9FB90B8175311F0AAF61D57C4F9AE02/5E68E50A175411F09318BD57C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.214.0/23 IPv6: 2001:df5:4c40::/48 Signature Algorithm: sha256WithRSAEncryption ac:7f:c6:b8:2c:7e:12:08:81:1f:5e:10:6a:96:cb:99:69:ca: e5:ff:7e:37:ff:af:76:b5:99:e5:29:75:c0:0e:56:35:2a:53: 5f:65:79:7b:97:e6:76:ae:12:ab:ee:3f:ba:ce:d2:fd:49:4b: 19:8f:31:a0:18:fc:be:5a:f3:23:b6:62:2b:dc:c0:90:46:2a: bc:53:c0:fa:39:9d:e6:53:79:55:e5:8b:8c:4c:1c:c3:26:d3: b2:e1:f5:f0:c3:97:30:40:95:d3:2f:c8:5f:c2:8f:e6:19:fb: 67:e0:0a:fa:c6:c1:69:c5:fd:c5:e0:73:3c:c8:fd:9c:2d:e2: 1c:73:2c:28:cc:16:33:45:0d:24:3e:55:d2:5f:3b:82:ac:91: 13:a5:23:2b:58:37:e1:1d:73:d9:9f:5b:c0:70:b4:cb:4d:aa: a7:5b:dc:5e:b5:09:e5:cc:cf:91:27:1f:5f:c9:04:39:a5:9e: 01:1e:58:c4:be:8c:cc:19:20:a6:62:fa:0e:0f:f3:01:31:95: 46:ef:d9:d0:95:4b:9f:87:1a:6d:e5:1a:9c:48:ba:60:ae:0f: 1f:2e:29:9f:de:56:c1:f9:d5:02:69:0a:8c:8a:a8:27:ad:24: d3:68:82:9a:00:a2:82:fe:09:24:6f:ad:1e:7a:a0:49:cd:e2: 90:c8:ea:81 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RTYxMTAvBgNVBAUTKENFQkJGMkJDQUZCOTU3MjdFMTJDRDhCNkRGNTExNkI4 QTE2QzkwNDkwHhcNMjUwNTA4MTgxOTIzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTQ5Mi0zNTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cuql/nTL2+cb7MF6527/7LYsAKh2x89iwRwPQ7F+0hkDao6zh5qqJNaZccE v1gAIV6DOKmprMXp//E4wYA7WYmp9kevv7XSIsYiS486yyS1EePf6n42aPAFR96h ZR7+1mM/jUNaNXf1iUzyIoCAvcmI/UugTEXWtMGcQcx7iXrpRgCgaa9mKzXOooAt kOwmjhUCtQnZyZ81Z+GxPQ5e6dgeVntS9ZAKtgpR0tNUJYbbVS35+2oWhQKmpJTw aQRPJZojRgbKPP7aRDWhqYSp9aj3zHXrPCxzZBT2KsUL18oVQMdvbzAlkp3a5DDK ZftELuBTaMKx3gez5DBOmIsmgQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFEt5x7W0 5jHAwxnHW98cwPDxgT04MB8GA1UdIwQYMBaAFM678ryvuVcn4SzYtt9RFrihbJBJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFNi9GOUZCOTBCODE3 NTMxMUYwQUFGNjFENTdDNEY5QUUwMi96cnZ5dkstNVZ5ZmhMTmkyMzFFV3VLRnNr RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pydnl2Sy01VnlmaExOaTIzMUVXdUtGc2tFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0RTYvRjlGQjkwQjgxNzUzMTFGMEFBRjYxRDU3QzRGOUFFMDIvNUU2OEU1MEEx NzU0MTFGMDkzMThCRDU3QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBo9/WMA8EAgACMAkDBwAgAQ31TEAwDQYJKoZIhvcNAQELBQADggEB AKx/xrgsfhIIgR9eEGqWy5lpyuX/fjf/r3a1meUpdcAOVjUqU19leXuX5nauEqvu P7rO0v1JSxmPMaAY/L5a8yO2YivcwJBGKrxTwPo5neZTeVXli4xMHMMm07Lh9fDD lzBAldMvyF/Cj+YZ+2fgCvrGwWnF/cXgczzI/Zwt4hxzLCjMFjNFDSQ+VdJfO4Ks kROlIytYN+Edc9mfW8BwtMtNqqdb3F61CeXMz5EnH1/JBDmlngEeWMS+jMwZIKZi +g4P8wExlUbv2dCVS5+HGm3lGpxIumCuDx8uKZ/eVsH51QJpCoyKqCetJNNogpoA ooL+CSRvrR56oEnN4pDI6oE= -----END CERTIFICATE-----Generated at Mon Mar 2 11:45:17 2026 by rpki-client