$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/C4F9C4A03CCB11F0A0971A87C4F9AE02.roa File: C4F9C4A03CCB11F0A0971A87C4F9AE02.roa (raw, json) Hash identifier: xczSMNorMxorijTETYqVMRl+7G9ZWnol90a7+eTgAE8= Subject key identifier: B6:76:84:01:4C:77:35:72:85:06:8E:E3:EB:19:2C:BC:61:4B:27:63 Certificate issuer: /CN=A91275FD/serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5 Certificate serial: 283C Authority key identifier: 4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/C4F9C4A03CCB11F0A0971A87C4F9AE02.roa Signing time: Tue 26 May 2026 16:22:20 +0000 ROA not before: Tue 26 May 2026 16:22:20 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 17970 IP address blocks: 43.255.216.0/22 maxlen: 22 61.9.32.0/19 maxlen: 22 61.9.96.0/19 maxlen: 22 61.14.192.0/21 maxlen: 24 103.239.200.0/22 maxlen: 22 202.81.168.0/21 maxlen: 22 202.81.172.0/24 maxlen: 24 202.81.173.0/24 maxlen: 24 202.81.174.0/24 maxlen: 24 202.81.175.0/24 maxlen: 24 203.76.192.0/21 maxlen: 22 203.76.195.0/24 maxlen: 24 203.76.196.0/24 maxlen: 24 219.90.80.0/20 maxlen: 20 219.90.80.0/22 maxlen: 22 219.90.84.0/22 maxlen: 22 219.90.84.0/24 maxlen: 24 219.90.86.0/24 maxlen: 24 219.90.87.0/24 maxlen: 24 219.90.88.0/22 maxlen: 22 219.90.90.0/24 maxlen: 24 219.90.91.0/24 maxlen: 24 219.90.92.0/22 maxlen: 22 219.90.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.crl rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:38:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10300 (0x283c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91275FD, serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5 Validity Not Before: May 26 16:22:20 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a15c8bc-1116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a1:50:a1:33:9b:d2:a4:d2:95:4f:b6:2e:f6: da:0a:81:b8:b0:03:86:ed:39:3a:ff:ff:cf:f6:73: c9:42:41:85:19:27:64:0a:04:fb:7f:92:57:e1:97: da:1a:c3:6e:e3:6d:56:18:c7:0c:f7:5d:52:88:41: 59:39:e6:b1:fc:34:30:1b:7b:91:8e:d5:a6:a6:6f: 9a:97:ea:54:50:45:97:da:98:bf:64:2d:0b:85:95: 04:a5:6f:ee:aa:23:10:da:e7:d0:d5:33:76:80:f8: 3a:de:f0:8b:b2:f4:6b:01:a5:d8:80:f9:b9:73:12: 26:08:2d:f2:17:1a:55:77:6f:a9:ae:54:bf:dd:3f: 31:03:73:f3:8b:5c:c7:e0:4f:0a:ec:8e:03:03:a0: 74:20:9e:76:4b:90:e6:f3:91:be:ed:26:58:ff:51: 7b:33:00:3d:72:8a:61:e5:ee:aa:13:3b:ba:6e:6f: 91:76:c3:95:69:86:6e:22:de:22:0f:9c:fd:9d:68: de:c3:64:90:0a:93:fe:d4:4c:1a:03:54:a1:0f:1a: 0f:94:eb:f5:f2:ff:b3:64:17:31:eb:b2:7c:79:0b: 57:59:e7:b0:ab:12:78:50:80:a1:44:c2:e9:09:1a: 04:95:0c:45:a0:05:a5:06:10:d6:02:9b:0f:61:56: 76:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:76:84:01:4C:77:35:72:85:06:8E:E3:EB:19:2C:BC:61:4B:27:63 X509v3 Authority Key Identifier: keyid:4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/C4F9C4A03CCB11F0A0971A87C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.255.216.0/22 61.9.32.0/19 61.9.96.0/19 61.14.192.0/21 103.239.200.0/22 202.81.168.0/21 203.76.192.0/21 219.90.80.0/20 Signature Algorithm: sha256WithRSAEncryption 97:0e:eb:e6:0c:dc:91:a4:37:a7:e8:8c:3f:08:23:bf:49:c7: 19:13:c2:2f:33:e2:fe:ce:61:6d:fd:43:9b:f7:97:5c:52:a7: 70:d4:c0:ed:89:75:f4:7f:cb:7c:07:77:f0:c9:15:8d:0c:34: ad:2e:3e:dd:50:66:30:bb:f6:53:15:d1:9b:54:6b:da:65:ef: 1b:85:f6:01:f4:2c:da:cf:03:fd:da:d1:7e:94:68:25:2a:33: f7:cc:24:a0:0c:fb:c5:8f:cf:80:21:46:e6:30:94:6d:c1:82: 3c:19:58:04:39:01:b2:55:af:e5:a6:b6:14:e7:cf:63:78:85: 5c:b5:f1:44:39:fa:3c:0b:a7:6d:90:d9:ea:de:ec:5d:3e:5b: fa:8d:f2:33:56:89:f8:9d:ea:31:ed:44:82:dd:cd:d5:3d:b2: b6:1e:ce:5d:ed:cf:2a:d3:3d:e5:db:57:8a:95:cc:c1:e8:69: 48:30:37:8f:11:cf:fc:f6:c2:cc:13:02:02:59:98:b6:38:96: ed:81:18:7c:2b:e8:9e:eb:8a:c4:fc:38:87:48:f4:63:e4:4a: b9:10:00:4b:cc:fb:6c:3f:98:ac:69:a5:91:44:5f:86:5d:05: e5:bc:51:37:55:ad:17:fd:86:35:8f:20:ee:df:3b:dc:a3:2f: de:54:6d:23 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgICKDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1RkQxMTAvBgNVBAUTKDRFMTBGMTNGMjk1RkJGMkIzNTlDODREREQxNjUxQkM4 NTFBQThBRjUwHhcNMjYwNTI2MTYyMjIwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE1YzhiYy0xMTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqFQoTOb0qTSlU+2LvbaCoG4sAOG7Tk6///P9nPJQkGFGSdkCgT7f5JX4Zfa GsNu421WGMcM911SiEFZOeax/DQwG3uRjtWmpm+al+pUUEWX2pi/ZC0LhZUEpW/u qiMQ2ufQ1TN2gPg63vCLsvRrAaXYgPm5cxImCC3yFxpVd2+prlS/3T8xA3Pzi1zH 4E8K7I4DA6B0IJ52S5Dm85G+7SZY/1F7MwA9coph5e6qEzu6bm+RdsOVaYZuIt4i D5z9nWjew2SQCpP+1EwaA1ShDxoPlOv18v+zZBcx67J8eQtXWeewqxJ4UIChRMLp CRoElQxFoAWlBhDWApsPYVZ2lwIDAQABo4ICijCCAoYwHQYDVR0OBBYEFLZ2hAFM dzVyhQaO4+sZLLxhSydjMB8GA1UdIwQYMBaAFE4Q8T8pX78rNZyE3dFlG8hRqor1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVGRC9FMUVGRDlCNkRF Q0UxMUU0QTE0RjAwNjhDNEY5QUUwMi9UaER4UHlsZnZ5czFuSVRkMFdVYnlGR3Fp dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RoRHhQeWxmdnlzMW5JVGQwV1VieUZHcWl2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc1RkQvRTFFRkQ5QjZERUNFMTFFNEExNEYwMDY4QzRGOUFFMDIvQzRGOUM0QTAz Q0NCMTFGMEEwOTcxQTg3QzRGOUFFMDIucm9hMEkGCCsGAQUFBwEHAQH/BDowODA2 BAIAATAwAwQCK//YAwQFPQkgAwQFPQlgAwQDPQ7AAwQCZ+/IAwQDylGoAwQDy0zA AwQE21pQMA0GCSqGSIb3DQEBCwUAA4IBAQCXDuvmDNyRpDen6Iw/CCO/SccZE8Iv M+L+zmFt/UOb95dcUqdw1MDtiXX0f8t8B3fwyRWNDDStLj7dUGYwu/ZTFdGbVGva Ze8bhfYB9CzazwP92tF+lGglKjP3zCSgDPvFj8+AIUbmMJRtwYI8GVgEOQGyVa/l prYU589jeIVctfFEOfo8C6dtkNnq3uxdPlv6jfIzVon4neox7USC3c3VPbK2Hs5d 7c8q0z3l21eKlczB6GlIMDePEc/89sLMEwICWZi2OJbtgRh8K+ie64rE/DiHSPRj 5Eq5EABLzPtsP5isaaWRRF+GXQXlvFE3Va0X/YY1jyDu3zvcoy/eVG0j -----END CERTIFICATE-----Generated at Sat Jun 13 21:24:31 2026 by rpki-client