$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/AA872C46B89711F0A8B6AF18C4F9AE02.roa File: AA872C46B89711F0A8B6AF18C4F9AE02.roa (raw, json) Hash identifier: C7ISQMI2YUWGDcETbnoxIdSRbBndgICKgPooEzMBTeI= Subject key identifier: E3:66:29:50:9D:AE:EF:09:A5:A4:27:20:50:51:22:79:5F:E5:E5:77 Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0BF9 Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/AA872C46B89711F0A8B6AF18C4F9AE02.roa Signing time: Thu 02 Apr 2026 20:23:07 +0000 ROA not before: Thu 02 Apr 2026 20:23:07 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 9304 IP address blocks: 61.15.92.0/23 maxlen: 24 61.15.98.0/23 maxlen: 24 61.15.100.0/22 maxlen: 24 61.15.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3065 (0xbf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172, serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Apr 2 20:23:07 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69ced02a-5ce8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:87:42:c9:fd:db:73:33:9a:c8:85:f6:b7:cd: 3f:81:ff:05:fc:d8:af:6d:d1:04:93:0a:50:a4:75: e6:69:6a:31:b2:c2:eb:08:cc:8d:41:39:33:51:ad: c5:41:4b:bd:9d:29:63:14:de:62:48:2f:e6:67:b2: 28:06:0a:26:73:2e:ab:c6:3e:40:51:52:f9:81:8e: 6f:1e:62:d5:62:de:37:29:91:57:4f:99:15:b0:ea: 2c:3e:be:ca:97:59:b8:47:9c:92:22:e8:c0:4d:66: 25:c1:fd:4a:37:07:ae:63:e6:9a:c7:ca:ec:e8:47: aa:14:84:e8:74:14:a2:c7:3c:ac:32:ca:f1:56:22: 8c:38:2c:aa:1e:7f:3c:8b:58:49:2a:54:3e:c4:79: 26:ad:40:61:a5:35:f8:f2:36:82:1c:2d:84:32:a7: 4c:dd:8d:76:f6:fc:7e:f0:03:63:c9:e0:4b:bc:00: b7:12:cf:a5:e6:bb:e7:da:3e:f0:47:27:60:2f:4b: b0:be:d2:f7:74:d6:0a:8a:e7:bf:47:61:1d:fd:f7: 78:2c:eb:85:44:7d:05:a6:ed:73:31:3d:0d:6a:25: 69:df:84:51:09:71:de:0b:7f:c5:1e:67:b9:c1:68: 00:e8:3f:9a:ee:3f:e1:03:65:a5:8c:c5:41:7f:9c: f3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:66:29:50:9D:AE:EF:09:A5:A4:27:20:50:51:22:79:5F:E5:E5:77 X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/AA872C46B89711F0A8B6AF18C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.15.92.0/23 61.15.98.0-61.15.103.255 61.15.110.0/23 Signature Algorithm: sha256WithRSAEncryption 30:6c:7a:24:fb:41:1a:7f:5a:ed:82:c7:b7:1c:7b:02:a1:91: ef:15:31:be:44:f2:6e:61:e7:8a:26:b0:00:e4:4b:64:8a:86: de:9f:55:38:8b:ba:81:f2:23:ca:c0:ae:dc:cb:08:d9:a0:03: 10:c7:2e:6b:f4:10:65:7c:93:4f:6c:f2:30:4c:bc:fc:73:19: 0a:1f:73:6c:b7:1b:1a:48:07:88:a5:d3:11:78:5d:92:2b:b7: 57:35:80:7e:83:a5:44:11:47:90:73:43:dc:ba:e8:e4:c6:9e: bc:42:4c:51:12:02:7a:73:36:a6:52:49:42:a9:8b:d1:95:3b: d5:86:a5:48:8d:27:55:f6:8b:e3:5e:ce:10:c9:e9:8d:8a:df: 20:f2:3f:8b:c2:9f:8e:0a:79:54:d5:f9:8e:4a:f8:36:d7:c0: 19:1e:8a:74:39:53:44:98:f7:ed:9c:00:f8:1c:5e:90:2b:fa: f6:4a:58:2a:b0:a2:d6:a3:d0:18:df:53:a9:92:82:c8:fb:8e: d3:3c:d4:cd:fa:c5:aa:04:6e:dc:de:c7:8e:17:42:68:f5:4e: 7f:58:a4:08:53:c0:22:3e:b5:39:b5:d2:21:f0:6c:55:34:f4: b5:78:5d:c9:2c:3f:3f:87:0f:4f:7e:4d:3b:88:71:35:b5:af: 2b:fc:94:4d -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICC/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjYwNDAyMjAyMzA3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlZDAyYS01Y2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYdCyf3bczOayIX2t80/gf8F/NivbdEEkwpQpHXmaWoxssLrCMyNQTkzUa3F QUu9nSljFN5iSC/mZ7IoBgomcy6rxj5AUVL5gY5vHmLVYt43KZFXT5kVsOosPr7K l1m4R5ySIujATWYlwf1KNweuY+aax8rs6EeqFITodBSixzysMsrxViKMOCyqHn88 i1hJKlQ+xHkmrUBhpTX48jaCHC2EMqdM3Y129vx+8ANjyeBLvAC3Es+l5rvn2j7w RydgL0uwvtL3dNYKiue/R2Ed/fd4LOuFRH0Fpu1zMT0NaiVp34RRCXHeC3/FHme5 wWgA6D+a7j/hA2WljMVBf5zzZwIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFONmKVCd ru8JpaQnIFBRInlf5eV3MB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvQUE4NzJDNDZC ODk3MTFGMEE4QjZBRjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQBPQ9cMAwDBAE9D2IDBAM9D2ADBAE9D24wDQYJKoZIhvcNAQELBQAD ggEBADBseiT7QRp/Wu2Cx7ccewKhke8VMb5E8m5h54omsADkS2SKht6fVTiLuoHy I8rArtzLCNmgAxDHLmv0EGV8k09s8jBMvPxzGQofc2y3GxpIB4il0xF4XZIrt1c1 gH6DpUQRR5BzQ9y66OTGnrxCTFESAnpzNqZSSUKpi9GVO9WGpUiNJ1X2i+NezhDJ 6Y2K3yDyP4vCn44KeVTV+Y5K+DbXwBkeinQ5U0SY9+2cAPgcXpAr+vZKWCqwotaj 0BjfU6mSgsj7jtM81M36xaoEbtzex44XQmj1Tn9YpAhTwCI+tTm10iHwbFU09LV4 XcksPz+HD09+TTuIcTW1ryv8lE0= -----END CERTIFICATE-----Generated at Fri Apr 17 14:16:54 2026 by rpki-client