$ rpki-client -vvf rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/5CFC71B62C1411F181024EDD95833773.roa File: 5CFC71B62C1411F181024EDD95833773.roa (raw, json) Hash identifier: LYiVw5NI1fHfAhRD4kDH03PrbWWGXq/pUB/N2JrOxvc= Subject key identifier: D4:9A:7D:E2:DC:3C:2C:4B:FD:FE:B7:6C:3D:D1:43:44:EF:A4:85:7C Certificate issuer: /CN=A91304A9/serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A Certificate serial: 72 Authority key identifier: 3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/5CFC71B62C1411F181024EDD95833773.roa Signing time: Mon 30 Mar 2026 09:24:24 +0000 ROA not before: Mon 30 Mar 2026 09:24:24 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17984 IP address blocks: 63.222.64.0/24 maxlen: 24 63.222.144.0/21 maxlen: 21 63.222.144.0/24 maxlen: 24 63.222.145.0/24 maxlen: 24 63.222.146.0/24 maxlen: 24 63.222.147.0/24 maxlen: 24 63.222.148.0/24 maxlen: 24 63.222.149.0/24 maxlen: 24 63.222.150.0/24 maxlen: 24 63.222.151.0/24 maxlen: 24 63.222.152.0/21 maxlen: 21 63.222.152.0/24 maxlen: 24 63.222.153.0/24 maxlen: 24 63.222.154.0/24 maxlen: 24 63.222.155.0/24 maxlen: 24 63.222.156.0/24 maxlen: 24 63.222.157.0/24 maxlen: 24 63.222.158.0/24 maxlen: 24 63.222.159.0/24 maxlen: 24 63.222.160.0/21 maxlen: 21 63.222.160.0/24 maxlen: 24 63.222.161.0/24 maxlen: 24 63.222.162.0/24 maxlen: 24 63.222.163.0/24 maxlen: 24 63.222.164.0/24 maxlen: 24 63.222.165.0/24 maxlen: 24 63.222.166.0/24 maxlen: 24 63.222.167.0/24 maxlen: 24 63.223.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:59:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91304A9, serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A Validity Not Before: Mar 30 09:24:24 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69ca4148-d858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:e3:da:d8:72:33:fd:a4:f9:04:6b:d4:0c:82: e2:c9:ca:70:b7:53:a6:a6:23:59:a7:2f:95:77:29: fc:83:7b:87:99:d1:c4:e0:96:85:e5:5b:a0:dd:2f: 98:e0:23:39:c2:40:80:35:c9:29:3e:d8:84:b5:1a: b8:a6:b9:86:aa:c3:ec:5a:b6:fe:f7:68:19:4a:38: 96:6c:3f:a8:f3:3a:b4:01:73:62:ea:ba:6f:d1:4c: 24:fc:08:1a:14:d4:be:59:0c:fe:28:85:18:98:4d: ff:4e:69:ed:69:4b:10:49:fc:52:f3:73:0a:58:01: 3e:60:05:e8:8a:a2:28:1b:3b:ab:cd:d6:4e:f9:a8: 0d:2a:cb:fe:16:0e:63:b9:9c:ac:e2:46:a4:d0:d8: ea:06:46:ff:ac:af:46:20:fd:c7:23:fd:a4:b8:4e: c1:ba:ed:de:0f:20:26:2e:72:17:7e:d4:6d:0f:27: 37:69:33:9d:49:7f:a1:5e:05:a6:20:9c:63:b1:38: d9:a7:94:df:d2:53:9b:33:16:59:25:30:26:c1:fc: c1:be:df:c4:22:a0:d2:a4:ea:ec:e2:b2:b6:96:a7: c3:39:6c:49:b0:7c:ce:f6:d5:91:9a:b9:f2:a8:77: 53:30:02:f4:98:70:e4:df:35:f4:ed:f1:36:be:6c: 9b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:9A:7D:E2:DC:3C:2C:4B:FD:FE:B7:6C:3D:D1:43:44:EF:A4:85:7C X509v3 Authority Key Identifier: keyid:3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/5CFC71B62C1411F181024EDD95833773.roa sbgp-ipAddrBlock: critical IPv4: 63.222.64.0/24 63.222.144.0-63.222.167.255 63.223.44.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:d4:bb:4c:07:5c:0a:ab:fa:0c:38:04:f0:49:38:95:6e:36: dd:03:28:4f:d8:dc:74:cd:b9:c7:b6:23:ff:e5:25:a7:0e:11: 7f:2d:a5:24:0d:72:98:ef:46:fa:fc:21:1f:93:f0:86:1d:89: 96:0e:5b:13:67:1c:4f:fe:fc:d1:d6:1e:e4:84:f2:56:3c:3f: ea:81:5c:1e:6f:ba:07:20:60:6b:b8:e2:e9:8b:c9:8c:a7:99: a4:2c:96:ee:a5:20:3e:ba:e8:09:b5:12:e2:57:c0:d2:d0:0b: 3e:d4:ec:11:ed:e2:f0:ac:04:02:6b:22:33:1c:15:27:7c:4e: 7c:86:ce:30:98:22:07:2d:f4:00:1b:93:e2:74:a6:36:11:03: 70:39:56:5e:88:fe:aa:e9:3b:0a:96:e4:c5:ef:f3:00:8c:af: 1e:14:15:a9:24:2d:3c:a4:0d:af:70:ae:e6:95:f8:04:58:f0: ec:eb:b7:7b:14:f5:3b:5e:6d:15:1b:71:ed:8f:5c:d4:30:00: e3:50:cd:77:93:0a:cb:f7:b9:b5:97:4b:1c:e7:a2:14:6f:9a: dc:11:ae:a0:e0:71:1f:61:9f:57:09:a2:f9:84:bb:83:09:63: 1f:3b:d3:85:c9:86:19:8b:3d:f6:cd:f4:f7:4d:62:24:d5:fd: d0:5f:0d:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MDRBOTExMC8GA1UEBRMoM0Q3QjE1QkQ3N0Q5Qjk3NEUzNzM1OERBNzU0REZFQTky OTFFNjgzQTAeFw0yNjAzMzAwOTI0MjRaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5Y2E0MTQ4LWQ4NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCM49rYcjP9pPkEa9QMguLJynC3U6amI1mnL5V3KfyDe4eZ0cTgloXlW6DdL5jg IznCQIA1ySk+2IS1GrimuYaqw+xatv73aBlKOJZsP6jzOrQBc2Lqum/RTCT8CBoU 1L5ZDP4ohRiYTf9Oae1pSxBJ/FLzcwpYAT5gBeiKoigbO6vN1k75qA0qy/4WDmO5 nKziRqTQ2OoGRv+sr0Yg/ccj/aS4TsG67d4PICYuchd+1G0PJzdpM51Jf6FeBaYg nGOxONmnlN/SU5szFlklMCbB/MG+38QioNKk6uzisraWp8M5bEmwfM721ZGaufKo d1MwAvSYcOTfNfTt8Ta+bJtNAgMBAAGjggJ0MIICcDAdBgNVHQ4EFgQU1Jp94tw8 LEv9/rdsPdFDRO+khXwwHwYDVR0jBBgwFoAUPXsVvXfZuXTjc1jadU3+qSkeaDow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMwNEE5L0ZEMzcyRTRBMjk0 NTExRjFBN0FBM0VCRDg0RUU1MjhFL1BYc1Z2WGZadVhUamMxamFkVTMtcVNrZWFE by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUFhzVnZYZlp1WFRqYzFqYWRVMy1xU2tlYURvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDRBOS9GRDM3MkU0QTI5NDUxMUYxQTdBQTNFQkQ4NEVFNTI4RS81Q0ZDNzFCNjJD MTQxMUYxODEwMjRFREQ5NTgzMzc3My5yb2EwMwYIKwYBBQUHAQcBAf8EJDAiMCAE AgABMBoDBAA/3kAwDAMEBD/ekAMEAz/eoAMEAD/fLDANBgkqhkiG9w0BAQsFAAOC AQEAfNS7TAdcCqv6DDgE8Ek4lW423QMoT9jcdM25x7Yj/+Ulpw4Rfy2lJA1ymO9G +vwhH5Pwhh2Jlg5bE2ccT/780dYe5ITyVjw/6oFcHm+6ByBga7ji6YvJjKeZpCyW 7qUgPrroCbUS4lfA0tALPtTsEe3i8KwEAmsiMxwVJ3xOfIbOMJgiBy30ABuT4nSm NhEDcDlWXoj+quk7Cpbkxe/zAIyvHhQVqSQtPKQNr3Cu5pX4BFjw7Ou3exT1O15t FRtx7Y9c1DAA41DNd5MKy/e5tZdLHOeiFG+a3BGuoOBxH2GfVwmi+YS7gwljHzvT hcmGGYs99s30901iJNX90F8N0Q== -----END CERTIFICATE-----Generated at Fri Apr 17 15:07:25 2026 by rpki-client