$ rpki-client -vvf rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/1495D7EE854B11EAACB2FE39C4F9AE02.roa File: 1495D7EE854B11EAACB2FE39C4F9AE02.roa (raw, json) Hash identifier: 86i08HrYhIHd5/tlQfJiPI8WTmudehhqB9JwGxyXYX8= Subject key identifier: 23:2F:82:D1:AC:C6:E5:75:E9:A1:9E:5A:2E:1C:89:B4:7F:9F:1F:95 Certificate issuer: /CN=A91274A4/serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Certificate serial: 0C6D Authority key identifier: 59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/1495D7EE854B11EAACB2FE39C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:40:44 +0000 ROA not before: Sat 20 Dec 2025 19:15:59 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 23856 IP address blocks: 61.13.192.0/18 maxlen: 18 61.16.48.0/20 maxlen: 20 61.16.48.0/24 maxlen: 24 61.16.49.0/24 maxlen: 24 61.16.50.0/24 maxlen: 24 61.16.52.0/24 maxlen: 24 61.16.53.0/24 maxlen: 24 61.16.64.0/18 maxlen: 18 61.16.72.0/24 maxlen: 24 61.16.101.0/24 maxlen: 24 61.16.110.0/24 maxlen: 24 61.16.116.0/24 maxlen: 24 103.77.140.0/22 maxlen: 22 116.206.204.0/22 maxlen: 22 116.206.207.0/24 maxlen: 24 203.149.192.0/19 maxlen: 19 203.149.196.0/24 maxlen: 24 203.149.224.0/20 maxlen: 20 203.149.225.0/24 maxlen: 24 2407:9880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3181 (0xc6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91274A4, serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Validity Not Before: Dec 20 19:15:59 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47a1c-b6c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cb:fa:de:75:34:ff:47:8d:57:6f:29:d7:96: 49:eb:c3:df:7e:64:a3:72:17:6f:ac:38:98:d5:4d: 76:6a:0c:cc:ce:de:a0:66:1d:41:c4:28:eb:4b:d4: eb:55:5f:50:33:0e:c9:4c:a3:7e:f1:18:3f:57:a6: 58:6c:e1:c4:e5:4e:6b:05:c2:d3:f8:c4:cc:83:37: 45:d9:e9:54:10:62:92:7e:1b:2c:36:26:d9:1d:c1: 9a:48:dc:e6:b8:35:4f:b7:1d:39:dd:6e:f6:49:a4: 2f:35:26:15:72:7e:e2:39:50:ea:34:b5:cc:ea:98: b0:1c:e9:01:11:64:1f:18:4f:dc:7d:df:6b:fa:1c: b7:79:37:f9:37:d2:b5:d9:6f:f7:0b:40:93:56:6d: be:b8:a4:a1:10:d3:8c:75:b2:0c:c5:43:87:ba:71: e0:d1:3c:a8:34:15:96:b0:e8:79:94:4a:93:e7:b6: b7:c3:d3:22:da:96:6c:c8:b1:a8:ba:79:d1:96:9d: fc:88:45:36:2b:dc:02:80:bb:93:56:ab:6f:3d:5e: c2:a3:4d:c5:60:9b:9a:51:f9:5e:dc:fd:93:a5:37: a8:55:e6:f4:e2:be:82:d4:74:96:63:ed:62:49:7c: 9c:d1:a4:97:c3:07:6a:b6:65:f0:ee:53:73:97:04: e7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:2F:82:D1:AC:C6:E5:75:E9:A1:9E:5A:2E:1C:89:B4:7F:9F:1F:95 X509v3 Authority Key Identifier: keyid:59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/1495D7EE854B11EAACB2FE39C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.13.192.0/18 61.16.48.0-61.16.127.255 103.77.140.0/22 116.206.204.0/22 203.149.192.0-203.149.239.255 IPv6: 2407:9880::/32 Signature Algorithm: sha256WithRSAEncryption 25:5d:84:03:f6:52:50:63:7b:1a:b0:84:cf:e4:13:22:dc:7e: 5e:d5:3a:a4:3b:58:09:40:82:30:a2:13:2b:ed:10:ef:f2:44: 38:17:bf:1f:92:6c:04:89:1d:fc:2a:1b:69:65:ac:dc:2e:bb: 7c:76:a9:02:82:06:5b:de:06:6c:da:d3:6a:13:34:a7:cb:71: e9:7b:e2:37:0b:80:4f:3b:ff:7d:ba:b5:e8:27:09:fd:0c:da: 11:01:57:2f:10:a5:10:9f:55:d4:62:b1:ad:72:98:0c:40:e9: 65:14:e8:a0:01:74:24:ee:7a:4d:03:f8:38:e6:90:26:60:39: 4a:a4:7f:cc:ca:82:c4:ff:6a:f6:e4:3c:0b:c4:59:ab:96:54: c8:5e:5b:74:35:3d:61:60:bc:90:71:54:ef:1b:66:2e:f2:2f: 32:12:29:6a:5b:19:aa:e9:94:2c:e0:99:fc:a9:71:83:ea:e5: 79:e5:05:24:9b:9f:eb:1c:26:e4:3d:0a:2d:e6:ca:63:c8:c2: 26:d3:8b:54:57:3d:9f:82:92:97:b9:29:06:31:b6:00:47:bd: 00:4d:67:e5:14:8c:11:b3:be:f2:d4:39:bb:22:8e:1e:93:bc: 79:17:1a:81:eb:a7:39:bd:11:bb:06:f5:56:99:e7:0b:d1:07: aa:f2:2d:17 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICDG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc0QTQxMTAvBgNVBAUTKDU5NTY2NUZGODVFNEU0NzczNzFGNzU0MUY3MjA5REMy NDRFNjBDQTUwHhcNMjUxMjIwMTkxNTU5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2ExYy1iNmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMv63nU0/0eNV28p15ZJ68PffmSjchdvrDiY1U12agzMzt6gZh1BxCjrS9Tr VV9QMw7JTKN+8Rg/V6ZYbOHE5U5rBcLT+MTMgzdF2elUEGKSfhssNibZHcGaSNzm uDVPtx053W72SaQvNSYVcn7iOVDqNLXM6piwHOkBEWQfGE/cfd9r+hy3eTf5N9K1 2W/3C0CTVm2+uKShENOMdbIMxUOHunHg0TyoNBWWsOh5lEqT57a3w9Mi2pZsyLGo unnRlp38iEU2K9wCgLuTVqtvPV7Co03FYJuaUfle3P2TpTeoVeb04r6C1HSWY+1i SXyc0aSXwwdqtmXw7lNzlwTnMQIDAQABo4IClzCCApMwHQYDVR0OBBYEFCMvgtGs xuV16aGeWi4cibR/nx+VMB8GA1UdIwQYMBaAFFlWZf+F5OR3Nx91QfcgncJE5gyl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzRBNC9EREJFNDIwQTMw RjAxMUVBOTg1OUFFNTNDNEY5QUUwMi9XVlpsXzRYazVIYzNIM1ZCOXlDZHdrVG1E S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dWWmxfNFhrNUhjM0gzVkI5eUNkd2tUbURLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc0QTQvRERCRTQyMEEzMEYwMTFFQTk4NTlBRTUzQzRGOUFFMDIvMTQ5NUQ3RUU4 NTRCMTFFQUFDQjJGRTM5QzRGOUFFMDIucm9hMFYGCCsGAQUFBwEHAQH/BEcwRTA0 BAIAATAuAwQGPQ3AMAwDBAQ9EDADBAc9EAADBAJnTYwDBAJ0zswwDAMEBsuVwAME BMuV4DANBAIAAjAHAwUAJAeYgDANBgkqhkiG9w0BAQsFAAOCAQEAJV2EA/ZSUGN7 GrCEz+QTItx+XtU6pDtYCUCCMKITK+0Q7/JEOBe/H5JsBIkd/CobaWWs3C67fHap AoIGW94GbNrTahM0p8tx6XviNwuATzv/fbq16CcJ/QzaEQFXLxClEJ9V1GKxrXKY DEDpZRTooAF0JO56TQP4OOaQJmA5SqR/zMqCxP9q9uQ8C8RZq5ZUyF5bdDU9YWC8 kHFU7xtmLvIvMhIpalsZqumULOCZ/Klxg+rleeUFJJuf6xwm5D0KLebKY8jCJtOL VFc9n4KSl7kpBjG2AEe9AE1n5RSMEbO+8tQ5uyKOHpO8eRcageunOb0Ruwb1Vpnn C9EHqvItFw== -----END CERTIFICATE-----Generated at Mon Mar 2 05:59:03 2026 by rpki-client