$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/F3425EF0684D11F0B2D5FA37C4F9AE02.roa File: F3425EF0684D11F0B2D5FA37C4F9AE02.roa (raw, json) Hash identifier: mxN9FUgEsQ1oH5qDsiIxOtC6D7VY+j2tsQqSbxY8iiQ= Subject key identifier: DC:79:18:E5:77:5C:7D:74:41:6E:B9:9B:7F:CC:13:A0:C5:4F:B2:B1 Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0BF7 Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/F3425EF0684D11F0B2D5FA37C4F9AE02.roa Signing time: Thu 02 Apr 2026 20:23:03 +0000 ROA not before: Thu 02 Apr 2026 20:23:03 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 213607 IP address blocks: 61.15.96.0/24 maxlen: 24 61.15.108.0/24 maxlen: 24 203.168.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3063 (0xbf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172, serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Apr 2 20:23:03 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69ced026-6b4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e8:51:58:24:39:cb:79:4e:b1:10:05:be:cb: 52:e5:ee:8e:74:ef:92:b7:57:47:47:be:62:f1:0d: 4c:f8:ab:7c:74:45:d0:cf:73:ec:ff:88:e2:96:18: 7f:68:1f:14:07:06:6c:13:eb:0b:61:d5:40:23:22: 87:6a:b3:11:9c:f3:67:83:04:d9:4e:8c:92:9a:3c: fb:7a:77:39:a7:48:bf:f4:57:38:4a:6e:41:f0:a3: 7d:5c:b2:2b:01:d8:81:c5:dd:86:36:e6:4b:8f:e7: ba:d4:49:bf:77:39:07:a5:04:43:9f:9f:b7:a0:cd: ef:99:2b:7c:64:43:59:c0:c0:a4:c3:33:3f:72:fd: ef:8e:e6:5c:9e:19:b0:bf:22:61:1f:92:93:93:f1: 7b:cb:78:84:a1:d2:14:76:f0:ec:e2:24:7a:9b:39: 60:a1:af:fc:e3:d0:7d:35:1a:fb:09:fb:f1:a9:cd: 1e:15:8f:5f:65:17:f2:d5:0d:a7:72:d0:56:10:2a: d7:cd:80:d7:08:ac:a6:6c:7e:9b:80:e9:7f:d8:b3: 55:84:80:e7:da:c3:0d:b8:4e:4e:8c:c3:7c:3f:0a: dd:46:29:00:b2:8f:1b:1c:e2:08:f8:73:46:d6:8a: ed:e1:09:1c:e8:c2:b2:5b:e2:e1:2c:ab:d2:98:d4: 86:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:79:18:E5:77:5C:7D:74:41:6E:B9:9B:7F:CC:13:A0:C5:4F:B2:B1 X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/F3425EF0684D11F0B2D5FA37C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.15.96.0/24 61.15.108.0/24 203.168.239.0/24 Signature Algorithm: sha256WithRSAEncryption 85:e8:aa:eb:a1:dc:66:e6:17:9c:d5:c9:0c:cb:02:6a:92:8e: 3e:77:7d:64:b4:f8:e2:99:91:8d:e1:8e:0b:87:8d:8b:b5:44: 5f:6d:10:e9:03:2a:a6:dd:ad:6c:9d:c4:f6:d2:11:6d:ec:f8: ec:ea:4b:a0:58:85:ab:2d:5c:ef:b8:1b:27:8f:88:13:50:c2: d6:54:c7:89:7a:69:f4:a4:7e:13:62:d0:6d:9b:15:63:1c:f9: de:5c:ae:21:c8:00:d5:b5:e8:1d:1a:41:b8:75:74:ee:e8:80: a3:9c:46:5a:02:14:56:4d:0f:82:ac:d1:75:c5:da:19:03:7b: c2:f1:0d:2e:7f:68:44:59:2f:a9:59:da:67:b0:e2:42:14:42: 5a:2a:fa:6e:b3:c4:b0:f3:fa:e5:d0:cb:3c:21:02:3b:10:b5: db:9c:71:37:e7:e7:58:1a:cc:ed:ee:36:5c:ab:52:bd:e8:0c: 9f:b7:d8:ef:68:32:6c:37:3d:d8:53:47:5b:b1:16:6f:10:cc: 94:b1:c2:1a:ab:54:35:fd:37:6c:72:ae:15:a4:2f:71:bf:a2: 4a:a6:bd:5d:58:10:86:65:ad:1e:87:f6:68:44:32:bb:93:1c: e8:eb:8c:b2:e6:82:71:4f:7b:f5:52:5e:75:12:b4:42:54:0b: 1e:78:7d:c0 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICC/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjYwNDAyMjAyMzAzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlZDAyNi02YjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+hRWCQ5y3lOsRAFvstS5e6OdO+St1dHR75i8Q1M+Kt8dEXQz3Ps/4jilhh/ aB8UBwZsE+sLYdVAIyKHarMRnPNngwTZToySmjz7enc5p0i/9Fc4Sm5B8KN9XLIr AdiBxd2GNuZLj+e61Em/dzkHpQRDn5+3oM3vmSt8ZENZwMCkwzM/cv3vjuZcnhmw vyJhH5KTk/F7y3iEodIUdvDs4iR6mzlgoa/849B9NRr7Cfvxqc0eFY9fZRfy1Q2n ctBWECrXzYDXCKymbH6bgOl/2LNVhIDn2sMNuE5OjMN8PwrdRikAso8bHOII+HNG 1ort4Qkc6MKyW+LhLKvSmNSGKwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFNx5GOV3 XH10QW65m3/ME6DFT7KxMB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvRjM0MjVFRjA2 ODREMTFGMEIyRDVGQTM3QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAPQ9gAwQAPQ9sAwQAy6jvMA0GCSqGSIb3DQEBCwUAA4IBAQCF6Krr odxm5hec1ckMywJqko4+d31ktPjimZGN4Y4Lh42LtURfbRDpAyqm3a1sncT20hFt 7Pjs6kugWIWrLVzvuBsnj4gTUMLWVMeJemn0pH4TYtBtmxVjHPneXK4hyADVtegd GkG4dXTu6ICjnEZaAhRWTQ+CrNF1xdoZA3vC8Q0uf2hEWS+pWdpnsOJCFEJaKvpu s8Sw8/rl0Ms8IQI7ELXbnHE35+dYGszt7jZcq1K96Ayft9jvaDJsNz3YU0dbsRZv EMyUscIaq1Q1/Tdscq4VpC9xv6JKpr1dWBCGZa0eh/ZoRDK7kxzo64yy5oJxT3v1 Ul51ErRCVAseeH3A -----END CERTIFICATE-----Generated at Fri Apr 17 16:59:59 2026 by rpki-client