$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/64541796EA9411F0ABDAFDB7536F56BC.roa File: 64541796EA9411F0ABDAFDB7536F56BC.roa (raw, json) Hash identifier: OkHIKPC1SltJpg/ZqWAgSiMnqQEYYaN0YWkTLj8aA2g= Subject key identifier: 00:0E:A0:94:CA:CE:FA:84:D3:A5:EB:D0:A4:A6:7F:80:F8:B6:C4:43 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3C35 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/64541796EA9411F0ABDAFDB7536F56BC.roa Signing time: Sun 01 Mar 2026 21:26:50 +0000 ROA not before: Tue 06 Jan 2026 00:12:31 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 139648 IP address blocks: 61.107.200.0/22 maxlen: 24 119.59.0.0/20 maxlen: 20 119.59.0.0/24 maxlen: 24 119.59.1.0/24 maxlen: 24 119.59.2.0/24 maxlen: 24 119.59.3.0/24 maxlen: 24 119.59.4.0/24 maxlen: 24 119.59.5.0/24 maxlen: 24 119.59.6.0/24 maxlen: 24 119.59.7.0/24 maxlen: 24 119.59.8.0/24 maxlen: 24 119.59.9.0/24 maxlen: 24 119.59.10.0/24 maxlen: 24 119.59.11.0/24 maxlen: 24 119.59.12.0/24 maxlen: 24 119.59.13.0/24 maxlen: 24 119.59.14.0/24 maxlen: 24 119.59.15.0/24 maxlen: 24 119.59.16.0/24 maxlen: 24 119.59.17.0/24 maxlen: 24 119.59.19.0/24 maxlen: 24 119.59.20.0/24 maxlen: 24 119.59.21.0/24 maxlen: 24 119.59.22.0/24 maxlen: 24 119.59.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15413 (0x3c35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Jan 6 00:12:31 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4af1a-f77a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0c:36:2c:0b:1b:71:8a:20:29:65:0c:d5:a1: ad:f2:3f:73:b2:03:dc:c4:20:bb:05:45:0b:74:e1: 36:e7:30:4c:ba:6e:f0:22:8f:d9:da:aa:40:0f:83: 45:94:6a:37:7c:77:cf:05:cd:ff:24:9c:55:a8:99: 03:4b:b8:d3:82:46:79:10:3d:cd:45:09:43:db:d1: e5:6f:2e:6e:79:29:33:2d:df:96:e7:1d:72:95:17: dd:47:92:65:2a:71:d0:65:45:2e:50:00:a9:18:b7: bc:8c:c2:1b:2c:0d:3c:3d:5b:c9:2f:3d:f7:19:86: 89:37:ae:03:4a:f3:8b:f9:1c:28:80:b2:9d:97:68: bd:ab:8f:9a:10:68:a9:4a:bc:7d:f9:45:79:86:b0: 2d:31:34:32:a0:6d:f9:ea:c5:99:89:23:40:10:16: 6e:6a:fb:79:e1:bf:6f:8d:cd:32:5b:d0:09:86:00: eb:c4:d0:eb:bc:73:c1:ee:b7:fc:16:4c:ea:05:86: a7:4e:85:9b:48:1a:51:4c:8c:8d:82:e0:b9:b9:44: 3a:8c:0c:cc:b2:3e:6b:fa:b3:0a:dc:24:f4:6b:97: 2b:75:1b:4b:da:d3:17:18:1f:cd:50:e5:85:8b:78: e4:71:d9:16:5b:9d:e5:41:44:4b:81:6f:32:70:41: 61:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:0E:A0:94:CA:CE:FA:84:D3:A5:EB:D0:A4:A6:7F:80:F8:B6:C4:43 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/64541796EA9411F0ABDAFDB7536F56BC.roa sbgp-ipAddrBlock: critical IPv4: 61.107.200.0/22 119.59.0.0-119.59.17.255 119.59.19.0-119.59.23.255 Signature Algorithm: sha256WithRSAEncryption 2c:1a:a0:22:e0:21:aa:56:6a:cb:42:65:06:08:23:36:eb:2e: d2:89:75:10:aa:e2:9c:f6:56:92:7c:aa:db:11:28:59:58:21: af:61:b9:fd:4d:f8:fb:ab:16:bd:02:52:0e:52:78:00:0e:6e: 68:9f:84:1e:c0:bb:36:4f:1d:88:5e:5c:37:bb:4b:d6:a2:22: c3:c4:36:33:03:a7:68:6c:d4:22:c4:18:53:89:05:22:27:c9: b5:5f:97:4c:6f:f9:f6:2c:5e:30:16:b0:00:fe:29:84:cd:ae: 45:2d:76:3f:be:5c:98:2d:97:9d:7d:cb:ed:cd:c9:84:2d:9a: 0d:d4:ff:ba:8a:f2:b9:c1:ca:f9:c6:57:e4:3f:42:66:b6:ed: 6a:8a:84:f4:70:81:04:e3:88:9e:f2:d6:b7:20:79:5c:fa:74: 4c:c3:5f:29:e2:28:78:5b:55:e9:5f:64:bf:69:47:82:4e:96: 69:5f:fe:2e:ed:d1:63:0f:3a:4f:99:05:49:cd:93:75:0c:80: a2:6a:65:91:86:28:d2:7e:7a:d0:54:3f:e2:71:1e:1a:20:37: f3:e7:0f:08:cd:54:12:3f:ce:52:f6:34:c5:25:da:36:c5:97: 30:e5:ac:c3:c9:1a:73:e8:53:3c:c6:2d:b5:81:d1:6f:97:45: bb:e5:33:02 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICPDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjYwMTA2MDAxMjMxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWYxYS1mNzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAw2LAsbcYogKWUM1aGt8j9zsgPcxCC7BUULdOE25zBMum7wIo/Z2qpAD4NF lGo3fHfPBc3/JJxVqJkDS7jTgkZ5ED3NRQlD29Hlby5ueSkzLd+W5x1ylRfdR5Jl KnHQZUUuUACpGLe8jMIbLA08PVvJLz33GYaJN64DSvOL+RwogLKdl2i9q4+aEGip Srx9+UV5hrAtMTQyoG356sWZiSNAEBZuavt54b9vjc0yW9AJhgDrxNDrvHPB7rf8 FkzqBYanToWbSBpRTIyNguC5uUQ6jAzMsj5r+rMK3CT0a5crdRtL2tMXGB/NUOWF i3jkcdkWW53lQURLgW8ycEFhuwIDAQABo4ICezCCAncwHQYDVR0OBBYEFAAOoJTK zvqE06Xr0KSmf4D4tsRDMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvNjQ1NDE3OTZF QTk0MTFGMEFCREFGREI3NTM2RjU2QkMucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAn BAIAATAhAwQCPWvIMAsDAwB3OwMEAXc7EDAMAwQAdzsTAwQDdzsQMA0GCSqGSIb3 DQEBCwUAA4IBAQAsGqAi4CGqVmrLQmUGCCM26y7SiXUQquKc9laSfKrbEShZWCGv Ybn9Tfj7qxa9AlIOUngADm5on4QewLs2Tx2IXlw3u0vWoiLDxDYzA6dobNQixBhT iQUiJ8m1X5dMb/n2LF4wFrAA/imEza5FLXY/vlyYLZedfcvtzcmELZoN1P+6ivK5 wcr5xlfkP0Jmtu1qioT0cIEE44ie8ta3IHlc+nRMw18p4ih4W1XpX2S/aUeCTpZp X/4u7dFjDzpPmQVJzZN1DICiamWRhijSfnrQVD/icR4aIDfz5w8IzVQSP85S9jTF Jdo2xZcw5azDyRpz6FM8xi21gdFvl0W75TMC -----END CERTIFICATE-----Generated at Mon Mar 2 01:52:27 2026 by rpki-client