$ rpki-client -vvf rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/296C92D0F5B611EFB7E6426EC4F9AE02.roa File: 296C92D0F5B611EFB7E6426EC4F9AE02.roa (raw, json) Hash identifier: Pe4pc8GA1B8wkAg55zJbEc7GRq0oJ2fScreCfl3fORA= Subject key identifier: 31:F3:FE:45:DF:71:A3:D2:7D:6E:8B:B7:30:DA:F0:14:9F:1B:EB:2B Certificate issuer: /CN=A91565C6/serialNumber=CD535C7EB31A40A3FDB8AC4D5D577AF9D6C58848 Certificate serial: BF Authority key identifier: CD:53:5C:7E:B3:1A:40:A3:FD:B8:AC:4D:5D:57:7A:F9:D6:C5:88:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/296C92D0F5B611EFB7E6426EC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:59:27 +0000 ROA not before: Fri 28 Feb 2025 09:27:00 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153377 IP address blocks: 163.61.236.0/24 maxlen: 24 163.61.237.0/24 maxlen: 24 2001:df5:2640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91565C6, serialNumber=CD535C7EB31A40A3FDB8AC4D5D577AF9D6C58848 Validity Not Before: Feb 28 09:27:00 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3e3cf-34f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fe:61:c4:b1:ae:9d:8c:95:2f:e0:12:06:38: c7:d5:a3:da:f6:fe:6d:fc:35:eb:d7:5d:31:8f:f1: 85:03:ef:41:fe:90:62:51:a6:3a:71:03:91:0a:29: 95:79:fb:73:3f:ba:2c:6c:84:fe:ff:b5:83:e3:cc: 33:6b:be:9e:9f:c5:68:2d:e3:f9:b9:ad:30:5e:08: 6c:76:10:55:03:7c:7a:9d:79:96:99:23:ca:c9:9b: e5:47:59:b9:d3:c5:d1:24:51:e4:50:08:2e:07:85: c7:87:ec:6d:f4:81:dc:6a:66:b4:4d:94:0b:ca:68: 24:0b:03:46:f5:ba:7f:23:80:7f:c5:f9:12:82:e2: 54:7b:fb:e9:cd:36:70:c3:9e:3e:c1:f6:17:fc:c1: 10:c1:d5:99:cf:c6:76:45:4c:6a:83:50:45:ce:d1: 39:cc:a8:6e:9c:37:90:ae:cc:ed:94:2f:dc:14:c1: 67:52:d1:ce:92:60:4b:dc:3e:57:7a:f7:c1:5f:32: 2f:cb:18:9c:3e:9d:fb:c9:32:62:64:75:ba:12:df: 73:7b:83:06:f1:8a:93:68:74:17:7d:7a:b3:14:8d: 2e:e5:6c:48:6b:ed:60:1d:d0:7e:3b:a4:a4:12:87: 39:9b:94:10:79:a8:5e:32:62:db:0f:18:01:07:b5: b4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:F3:FE:45:DF:71:A3:D2:7D:6E:8B:B7:30:DA:F0:14:9F:1B:EB:2B X509v3 Authority Key Identifier: keyid:CD:53:5C:7E:B3:1A:40:A3:FD:B8:AC:4D:5D:57:7A:F9:D6:C5:88:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/296C92D0F5B611EFB7E6426EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.61.236.0/23 IPv6: 2001:df5:2640::/48 Signature Algorithm: sha256WithRSAEncryption d8:45:fb:9b:fb:32:d1:90:1b:0b:e2:65:d7:92:82:c8:a2:68: 96:4f:d3:42:30:86:03:6b:12:5c:80:74:d2:03:80:ee:c0:d0: 00:ae:86:ce:40:86:06:e8:7c:db:4d:ae:9c:06:47:41:ca:73: 41:d0:b9:0b:87:42:24:ad:45:a0:8d:19:92:94:be:09:f7:0d: cc:11:85:4c:ca:00:ad:9d:7e:19:ec:3e:d7:38:e0:ce:0e:bf: 8c:77:ec:b0:e3:0e:ec:d4:67:45:0e:02:f4:ac:f9:e0:f5:0a: 09:8b:9a:ac:ba:c3:67:c0:0f:3a:26:a7:1d:93:9d:94:3b:b5: 5d:64:ed:8e:91:a7:0f:9d:35:3b:20:06:be:50:01:e2:da:ce: fa:17:1b:3b:93:07:7d:4e:3f:a6:e4:8b:90:71:6d:f8:ef:6d: 4f:aa:e1:e7:a8:09:ab:b8:49:54:0a:9d:a1:73:81:c0:7e:e2: b7:44:91:d5:c5:2f:59:50:25:fa:d5:2f:71:d8:36:20:b3:2a: 94:95:46:04:ba:19:6c:52:1b:00:2e:9f:bd:f4:76:fe:ef:b5: 60:5a:b2:f2:96:31:12:ab:e3:50:7e:3f:f0:6e:0e:32:33:b7: a8:e5:ef:de:df:c4:63:b0:0d:31:3c:f7:cc:c3:6f:fb:72:9d: 91:e5:d6:eb -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY1QzYxMTAvBgNVBAUTKENENTM1QzdFQjMxQTQwQTNGREI4QUM0RDVENTc3QUY5 RDZDNTg4NDgwHhcNMjUwMjI4MDkyNzAwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTNjZi0zNGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4f5hxLGunYyVL+ASBjjH1aPa9v5t/DXr110xj/GFA+9B/pBiUaY6cQORCimV eftzP7osbIT+/7WD48wza76en8VoLeP5ua0wXghsdhBVA3x6nXmWmSPKyZvlR1m5 08XRJFHkUAguB4XHh+xt9IHcama0TZQLymgkCwNG9bp/I4B/xfkSguJUe/vpzTZw w54+wfYX/MEQwdWZz8Z2RUxqg1BFztE5zKhunDeQrsztlC/cFMFnUtHOkmBL3D5X evfBXzIvyxicPp37yTJiZHW6Et9ze4MG8YqTaHQXfXqzFI0u5WxIa+1gHdB+O6Sk Eoc5m5QQeaheMmLbDxgBB7W0cwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFDHz/kXf caPSfW6LtzDa8BSfG+srMB8GA1UdIwQYMBaAFM1TXH6zGkCj/bisTV1XevnWxYhI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjVDNi9EMjY1QjBDNkY0 MUYxMUVGODE3MDg4NjhDNEY5QUUwMi96Vk5jZnJNYVFLUDl1S3hOWFZkNi1kYkZp RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pWTmNmck1hUUtQOXVLeE5YVmQ2LWRiRmlFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTY1QzYvRDI2NUIwQzZGNDFGMTFFRjgxNzA4ODY4QzRGOUFFMDIvMjk2QzkyRDBG NUI2MTFFRkI3RTY0MjZFQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBoz3sMA8EAgACMAkDBwAgAQ31JkAwDQYJKoZIhvcNAQELBQADggEB ANhF+5v7MtGQGwviZdeSgsiiaJZP00IwhgNrElyAdNIDgO7A0ACuhs5AhgbofNtN rpwGR0HKc0HQuQuHQiStRaCNGZKUvgn3DcwRhUzKAK2dfhnsPtc44M4Ov4x37LDj DuzUZ0UOAvSs+eD1CgmLmqy6w2fADzompx2TnZQ7tV1k7Y6Rpw+dNTsgBr5QAeLa zvoXGzuTB31OP6bki5BxbfjvbU+q4eeoCau4SVQKnaFzgcB+4rdEkdXFL1lQJfrV L3HYNiCzKpSVRgS6GWxSGwAun730dv7vtWBasvKWMRKr41B+P/BuDjIzt6jl797f xGOwDTE898zDb/tynZHl1us= -----END CERTIFICATE-----Generated at Mon Mar 2 06:32:30 2026 by rpki-client