$ rpki-client -vvf rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/230E492ECB6711F0991B7E4FC4F9AE02.roa File: 230E492ECB6711F0991B7E4FC4F9AE02.roa (raw, json) Hash identifier: tNXsHZohUwAzxEAZYS9aP/mod2gm0YLp4U1BMbJHsAQ= Subject key identifier: 9A:40:4E:12:A5:61:1F:91:D2:A9:24:07:72:36:9F:67:E6:9C:5D:2F Certificate issuer: /CN=A912598D/serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Certificate serial: E7 Authority key identifier: 9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/230E492ECB6711F0991B7E4FC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:11:35 +0000 ROA not before: Tue 13 Jan 2026 05:26:42 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 4651 IP address blocks: 61.19.0.0/24 maxlen: 24 61.19.1.0/24 maxlen: 24 61.19.2.0/24 maxlen: 24 61.19.4.0/24 maxlen: 24 61.19.7.0/24 maxlen: 24 61.19.9.0/24 maxlen: 24 61.19.14.0/24 maxlen: 24 122.155.224.0/24 maxlen: 24 122.155.225.0/24 maxlen: 24 122.155.226.0/24 maxlen: 24 122.155.227.0/24 maxlen: 24 122.155.228.0/24 maxlen: 24 122.155.229.0/24 maxlen: 24 122.155.230.0/24 maxlen: 24 122.155.232.0/24 maxlen: 24 122.155.236.0/24 maxlen: 24 122.155.237.0/24 maxlen: 24 122.155.238.0/24 maxlen: 24 122.155.243.0/24 maxlen: 24 122.155.244.0/22 maxlen: 24 202.47.253.0/24 maxlen: 24 2001:c38:5000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912598D, serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Validity Not Before: Jan 13 05:26:42 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48f66-04a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:8c:25:9e:d2:ef:8a:05:76:2d:20:c8:a2:97: b2:60:d8:58:a0:a2:43:f5:df:3a:53:e8:62:00:0e: d8:18:38:12:96:77:3c:81:c9:39:83:86:ed:1d:97: 97:55:5d:1b:f3:1f:d8:67:5a:c6:15:aa:12:22:14: 99:81:79:0b:3d:52:2d:51:59:a6:fc:64:b5:62:00: a8:04:98:a1:33:7c:33:be:ce:9a:d1:e2:3e:e4:41: b3:3d:ca:10:9d:49:a9:ae:83:0a:21:c5:de:a2:ea: 8c:a9:64:c0:e6:cf:ff:6e:17:48:f7:8c:44:63:1b: 12:52:7e:52:66:43:ec:2b:c2:3e:ec:37:8f:1f:9b: 51:85:fd:c7:0f:4c:ff:ca:7b:9c:72:17:16:15:92: 7f:bf:54:74:71:3d:b1:53:5f:43:12:24:5f:48:d5: ce:01:46:1d:9e:84:a4:69:59:2a:35:66:4d:b0:53: 4a:b2:92:a3:2e:a0:bc:2f:d1:0a:56:08:86:c6:b3: b5:27:ae:f1:6c:00:63:e3:c7:f5:25:0b:fe:80:e6: 4b:ba:57:6f:a0:a1:7c:3f:3b:5c:d4:a3:18:c0:24: cb:1b:28:45:3d:08:3c:cb:5d:64:c1:e0:bc:95:ac: f9:57:2a:1d:5d:52:2d:42:c4:17:30:f3:23:20:d5: 20:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:40:4E:12:A5:61:1F:91:D2:A9:24:07:72:36:9F:67:E6:9C:5D:2F X509v3 Authority Key Identifier: keyid:9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/230E492ECB6711F0991B7E4FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.19.0.0-61.19.2.255 61.19.4.0/24 61.19.7.0/24 61.19.9.0/24 61.19.14.0/24 122.155.224.0-122.155.230.255 122.155.232.0/24 122.155.236.0-122.155.238.255 122.155.243.0-122.155.247.255 202.47.253.0/24 IPv6: 2001:c38:5000::/48 Signature Algorithm: sha256WithRSAEncryption 06:de:6d:e2:b3:32:ad:4e:a8:ef:3b:40:51:14:08:6e:a0:8b: db:23:a1:4d:8c:33:b0:9d:53:14:72:25:c5:18:aa:16:57:be: bc:cb:5d:bc:b9:a7:3c:34:8f:85:b0:ef:b8:46:16:0f:09:34: a9:11:57:7f:d7:1f:cc:2d:96:67:3d:70:de:25:c3:d0:f3:c1: 92:ef:cc:ef:93:87:80:a0:ee:d3:79:27:b0:52:f3:71:65:1f: 3f:86:2b:13:28:f6:06:c8:2a:df:ff:8c:95:7a:8a:e8:86:e9: db:95:22:3a:a9:3f:a0:48:3b:3e:8a:40:ba:c6:34:51:39:af: cd:fa:ac:d7:fe:f6:b6:02:30:c0:61:39:6b:4e:05:86:31:53: 27:14:18:33:fc:0d:04:34:ae:9c:5d:b7:b1:50:50:4b:31:a7: d6:32:52:08:31:0d:fa:f0:d8:1f:9b:9b:49:9c:08:26:e1:15: f4:14:49:57:ef:26:e3:17:4e:8b:7f:3a:58:9e:1f:d2:0c:cc: 84:e0:97:06:dc:9e:2d:d9:ba:cc:b6:1c:35:c5:78:83:99:10: 6b:d7:2b:ba:bf:08:9d:8b:43:4b:e9:b4:3d:ea:b9:1c:84:00: d9:19:df:e6:c0:3d:69:b8:b8:04:f4:3f:ba:7b:51:e1:c2:0d: fe:c3:b7:a2 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU5OEQxMTAvBgNVBAUTKDlBM0E2N0VERENEMDk3NzUzM0E5QTBCOEM0OUY0QzAx MDBDODUzOTEwHhcNMjYwMTEzMDUyNjQyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGY2Ni0wNGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmowlntLvigV2LSDIopeyYNhYoKJD9d86U+hiAA7YGDgSlnc8gck5g4btHZeX VV0b8x/YZ1rGFaoSIhSZgXkLPVItUVmm/GS1YgCoBJihM3wzvs6a0eI+5EGzPcoQ nUmproMKIcXeouqMqWTA5s//bhdI94xEYxsSUn5SZkPsK8I+7DePH5tRhf3HD0z/ ynucchcWFZJ/v1R0cT2xU19DEiRfSNXOAUYdnoSkaVkqNWZNsFNKspKjLqC8L9EK VgiGxrO1J67xbABj48f1JQv+gOZLuldvoKF8Pztc1KMYwCTLGyhFPQg8y11kweC8 laz5VyodXVItQsQXMPMjINUgWwIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFJpAThKl YR+R0qkkB3I2n2fmnF0vMB8GA1UdIwQYMBaAFJo6Z+3c0Jd1M6mguMSfTAEAyFOR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTk4RC9CODg1MzFDQUM4 RUMxMUYwQTM0NEFCNDVDNEY5QUUwMi9tanBuN2R6UWwzVXpxYUM0eEo5TUFRRElV NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qcG43ZHpRbDNVenFhQzR4SjlNQVFESVU1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU5OEQvQjg4NTMxQ0FDOEVDMTFGMEEzNDRBQjQ1QzRGOUFFMDIvMjMwRTQ5MkVD QjY3MTFGMDk5MUI3RTRGQzRGOUFFMDIucm9hMIGFBggrBgEFBQcBBwEB/wR2MHQw YQQCAAEwWzALAwMAPRMDBAA9EwIDBAA9EwQDBAA9EwcDBAA9EwkDBAA9Ew4wDAME BXqb4AMEAHqb5gMEAHqb6DAMAwQCepvsAwQAepvuMAwDBAB6m/MDBAN6m/ADBADK L/0wDwQCAAIwCQMHACABDDhQADANBgkqhkiG9w0BAQsFAAOCAQEABt5t4rMyrU6o 7ztAURQIbqCL2yOhTYwzsJ1TFHIlxRiqFle+vMtdvLmnPDSPhbDvuEYWDwk0qRFX f9cfzC2WZz1w3iXD0PPBku/M75OHgKDu03knsFLzcWUfP4YrEyj2Bsgq3/+MlXqK 6Ibp25UiOqk/oEg7PopAusY0UTmvzfqs1/72tgIwwGE5a04FhjFTJxQYM/wNBDSu nF23sVBQSzGn1jJSCDEN+vDYH5ubSZwIJuEV9BRJV+8m4xdOi386WJ4f0gzMhOCX BtyeLdm6zLYcNcV4g5kQa9crur8InYtDS+m0Peq5HIQA2Rnf5sA9abi4BPQ/untR 4cIN/sO3og== -----END CERTIFICATE-----Generated at Mon Mar 2 11:17:10 2026 by rpki-client