$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4E6/F9FB90B8175311F0AAF61D57C4F9AE02/5E68E50A175411F09318BD57C4F9AE02.roa File: 5E68E50A175411F09318BD57C4F9AE02.roa (raw, json) Hash identifier: eH1wM+wRYnXUxuQ4RnmT4QdaFVHNLHxpHC9QEvFzpB8= Subject key identifier: 9F:4A:48:A5:11:78:A2:1D:C9:59:9A:FE:65:37:4F:56:5E:54:CE:46 Certificate issuer: /CN=A911B4E6/serialNumber=CEBBF2BCAFB95727E12CD8B6DF5116B8A16C9049 Certificate serial: BD Authority key identifier: CE:BB:F2:BC:AF:B9:57:27:E1:2C:D8:B6:DF:51:16:B8:A1:6C:90:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zrvyvK-5VyfhLNi231EWuKFskEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4E6/F9FB90B8175311F0AAF61D57C4F9AE02/5E68E50A175411F09318BD57C4F9AE02.roa Signing time: Fri 03 Apr 2026 06:42:35 +0000 ROA not before: Fri 03 Apr 2026 06:42:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 153746 IP address blocks: 163.223.214.0/23 maxlen: 23 163.223.214.0/24 maxlen: 24 163.223.215.0/24 maxlen: 24 2001:df5:4c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4E6/F9FB90B8175311F0AAF61D57C4F9AE02/zrvyvK-5VyfhLNi231EWuKFskEk.crl rsync://rpki.apnic.net/member_repository/A911B4E6/F9FB90B8175311F0AAF61D57C4F9AE02/zrvyvK-5VyfhLNi231EWuKFskEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zrvyvK-5VyfhLNi231EWuKFskEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4E6, serialNumber=CEBBF2BCAFB95727E12CD8B6DF5116B8A16C9049 Validity Not Before: Apr 3 06:42:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69cf615b-88ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ec:9d:02:1c:a0:d0:32:a4:04:be:66:f1:51: 1b:68:ef:b6:b2:51:f9:b4:eb:6b:ee:96:2c:79:37: e0:3c:79:4f:61:b8:6b:b2:01:ed:e4:32:cb:6b:f0: ed:20:80:60:ac:e2:21:39:f4:19:2d:a8:74:34:c2: c0:6e:cc:49:62:5b:f7:3f:b1:56:c0:09:ae:c8:03: d2:4d:5b:31:a6:77:ee:a2:7b:1e:e6:40:bd:55:a6: 08:1c:21:54:bc:37:1f:9b:e6:af:e8:0f:1a:4f:e3: f1:a3:be:cb:16:6d:9b:cf:06:d6:05:82:3d:62:6e: 7b:cf:ed:07:58:91:d7:54:90:5c:d5:92:96:a1:e9: 04:1a:6a:09:7f:d0:d8:e8:8e:1a:6a:e0:dc:28:7a: 4e:5d:3f:a1:e9:be:b2:e7:0b:c9:a8:0a:2e:ef:0e: 1a:52:ca:f5:4b:8c:55:e4:68:ec:db:17:63:9d:14: 58:ce:b0:8e:51:db:fb:c2:e9:b5:64:4d:7d:8f:8b: 7d:6b:c8:a5:7b:2b:cf:61:bf:00:19:c9:67:2a:11: 82:39:6e:71:7b:a0:44:15:c2:51:9a:75:2e:c7:16: 21:d4:15:ae:7b:bc:d3:c0:e0:08:71:21:7e:5f:ea: 67:71:25:01:c7:c0:a6:34:10:fc:71:e8:32:da:2e: a1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:4A:48:A5:11:78:A2:1D:C9:59:9A:FE:65:37:4F:56:5E:54:CE:46 X509v3 Authority Key Identifier: keyid:CE:BB:F2:BC:AF:B9:57:27:E1:2C:D8:B6:DF:51:16:B8:A1:6C:90:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4E6/F9FB90B8175311F0AAF61D57C4F9AE02/zrvyvK-5VyfhLNi231EWuKFskEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zrvyvK-5VyfhLNi231EWuKFskEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4E6/F9FB90B8175311F0AAF61D57C4F9AE02/5E68E50A175411F09318BD57C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.214.0/23 IPv6: 2001:df5:4c40::/48 Signature Algorithm: sha256WithRSAEncryption 06:49:97:4a:18:04:ab:84:30:a7:11:1b:93:51:7f:86:8d:78: 99:d7:c3:e0:29:02:62:98:d6:f9:cd:9a:18:4e:59:5a:eb:ed: 72:65:c3:b1:06:bf:5c:78:aa:13:2d:65:ce:88:3b:97:1e:57: 16:14:9e:3f:35:05:f2:ce:11:a5:48:12:d7:2d:07:df:e4:7c: f5:3a:18:3b:40:02:86:c7:8d:b0:e0:fb:61:ca:5b:5c:8d:59: a0:41:3c:99:6a:24:c0:31:c4:ac:84:af:ff:60:d7:6b:1f:44: 94:17:bd:49:37:e6:1c:74:e5:7c:58:16:4a:7c:a1:a7:4a:22: 70:7f:99:1a:ce:d5:06:28:b2:55:46:95:38:ed:33:ea:46:42: 7d:c4:f6:2d:c2:fc:09:2b:30:51:94:77:c7:2a:31:8d:19:2d: 61:b6:f5:cc:4d:37:ff:45:e0:39:5f:2e:0d:e7:5b:00:23:93: 3f:eb:27:d3:c1:b3:9a:0f:30:e9:88:41:b9:16:85:53:02:53: 27:f4:d1:0c:21:15:3c:9d:e8:b2:10:e6:cd:5b:8b:19:fd:b0: ae:29:dc:d0:d5:f2:e7:1a:1f:48:39:5f:55:ff:07:3f:70:61: 34:d4:2d:4e:d3:9b:da:ef:89:3e:58:93:e7:4e:17:00:c6:8c: e9:84:6c:3b -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RTYxMTAvBgNVBAUTKENFQkJGMkJDQUZCOTU3MjdFMTJDRDhCNkRGNTExNkI4 QTE2QzkwNDkwHhcNMjYwNDAzMDY0MjM1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmNjE1Yi04OGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueydAhyg0DKkBL5m8VEbaO+2slH5tOtr7pYseTfgPHlPYbhrsgHt5DLLa/Dt IIBgrOIhOfQZLah0NMLAbsxJYlv3P7FWwAmuyAPSTVsxpnfuonse5kC9VaYIHCFU vDcfm+av6A8aT+Pxo77LFm2bzwbWBYI9Ym57z+0HWJHXVJBc1ZKWoekEGmoJf9DY 6I4aauDcKHpOXT+h6b6y5wvJqAou7w4aUsr1S4xV5Gjs2xdjnRRYzrCOUdv7wum1 ZE19j4t9a8ileyvPYb8AGclnKhGCOW5xe6BEFcJRmnUuxxYh1BWue7zTwOAIcSF+ X+pncSUBx8CmNBD8cegy2i6h2QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFJ9KSKUR eKIdyVma/mU3T1ZeVM5GMB8GA1UdIwQYMBaAFM678ryvuVcn4SzYtt9RFrihbJBJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFNi9GOUZCOTBCODE3 NTMxMUYwQUFGNjFENTdDNEY5QUUwMi96cnZ5dkstNVZ5ZmhMTmkyMzFFV3VLRnNr RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pydnl2Sy01VnlmaExOaTIzMUVXdUtGc2tFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0RTYvRjlGQjkwQjgxNzUzMTFGMEFBRjYxRDU3QzRGOUFFMDIvNUU2OEU1MEEx NzU0MTFGMDkzMThCRDU3QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBo9/WMA8EAgACMAkDBwAgAQ31TEAwDQYJKoZIhvcNAQELBQADggEB AAZJl0oYBKuEMKcRG5NRf4aNeJnXw+ApAmKY1vnNmhhOWVrr7XJlw7EGv1x4qhMt Zc6IO5ceVxYUnj81BfLOEaVIEtctB9/kfPU6GDtAAobHjbDg+2HKW1yNWaBBPJlq JMAxxKyEr/9g12sfRJQXvUk35hx05XxYFkp8oadKInB/mRrO1QYoslVGlTjtM+pG Qn3E9i3C/AkrMFGUd8cqMY0ZLWG29cxNN/9F4DlfLg3nWwAjkz/rJ9PBs5oPMOmI QbkWhVMCUyf00QwhFTyd6LIQ5s1bixn9sK4p3NDV8ucaH0g5X1X/Bz9wYTTULU7T m9rviT5Yk+dOFwDGjOmEbDs= -----END CERTIFICATE-----Generated at Fri Apr 17 20:56:37 2026 by rpki-client