$ rpki-client -vvf rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/9BB3FAB6CCB511EE8612FB18C4F9AE02.roa File: 9BB3FAB6CCB511EE8612FB18C4F9AE02.roa (raw, json) Hash identifier: CZCiFwljilvMJvt94AUk+cDZYd5AEqR+L8VAnnEflzY= Subject key identifier: DA:2C:DE:07:7F:83:34:E2:74:EC:47:4D:48:16:25:E0:5C:A5:E8:06 Certificate issuer: /CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Certificate serial: 0289 Authority key identifier: C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/9BB3FAB6CCB511EE8612FB18C4F9AE02.roa Signing time: Thu 09 Apr 2026 02:36:23 +0000 ROA not before: Thu 09 Apr 2026 02:36:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8075 IP address blocks: 155.60.224.0/24 maxlen: 24 155.60.225.0/24 maxlen: 24 155.60.226.0/24 maxlen: 24 155.60.227.0/24 maxlen: 24 155.60.228.0/24 maxlen: 24 155.60.229.0/24 maxlen: 24 155.60.230.0/24 maxlen: 24 155.60.231.0/24 maxlen: 24 155.60.232.0/24 maxlen: 24 155.60.233.0/24 maxlen: 24 155.60.234.0/24 maxlen: 24 155.60.235.0/24 maxlen: 24 155.60.236.0/24 maxlen: 24 155.60.237.0/24 maxlen: 24 155.60.238.0/24 maxlen: 24 155.60.239.0/24 maxlen: 24 155.60.240.0/24 maxlen: 24 155.60.241.0/24 maxlen: 24 155.60.242.0/24 maxlen: 24 155.60.243.0/24 maxlen: 24 155.60.244.0/24 maxlen: 24 155.60.245.0/24 maxlen: 24 155.60.246.0/24 maxlen: 24 155.60.247.0/24 maxlen: 24 155.60.248.0/24 maxlen: 24 155.60.249.0/24 maxlen: 24 155.60.250.0/24 maxlen: 24 155.60.251.0/24 maxlen: 24 155.60.252.0/24 maxlen: 24 155.60.253.0/24 maxlen: 24 155.60.254.0/24 maxlen: 24 155.60.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 649 (0x289) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EBC8, serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Validity Not Before: Apr 9 02:36:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d710a6-af38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9f:0f:fb:22:89:c6:a5:c9:0e:bb:39:b4:d7: 0a:dc:72:19:2e:55:cd:9e:08:aa:cf:e8:2b:34:a1: ff:cf:ee:0e:21:10:90:f3:52:cd:4f:00:b3:1a:2f: 57:71:55:83:a4:9d:77:5f:7c:2f:ce:be:e9:69:3f: ef:a2:d4:51:75:fd:7b:b0:f2:7f:4d:48:78:a6:14: 16:e7:db:33:6b:3e:bf:79:d3:c8:54:d0:41:12:8b: ba:1e:12:ae:91:1b:c0:14:99:64:a7:27:af:1b:66: 3c:c1:1b:47:93:b1:fc:23:72:97:28:d7:52:e9:a8: 20:d5:4c:1c:7b:da:3f:a8:ee:eb:26:e0:61:d6:f0: 36:0d:8f:ae:67:0c:7f:2b:19:58:b8:92:3a:d3:42: bf:85:6e:43:a0:7f:b4:d0:6c:81:ae:13:f9:cd:38: e3:e1:7e:ea:7f:42:c3:16:fa:79:0a:87:bf:62:5f: a3:a7:bf:a2:8d:39:04:ae:0e:94:c9:12:94:cd:1b: 39:89:24:a0:80:b9:b0:a1:54:f4:c0:be:df:57:ea: c3:0f:e1:b6:23:f3:f4:b1:0f:45:af:50:a6:6c:89: 2b:d6:67:f3:ae:05:98:fd:3c:5b:aa:91:70:76:5f: c6:1b:54:a8:a4:bd:c6:ca:8a:5f:a3:6b:8c:6a:1b: cc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:2C:DE:07:7F:83:34:E2:74:EC:47:4D:48:16:25:E0:5C:A5:E8:06 X509v3 Authority Key Identifier: keyid:C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/9BB3FAB6CCB511EE8612FB18C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 155.60.224.0/19 Signature Algorithm: sha256WithRSAEncryption 08:70:80:18:9e:c6:e9:8e:d7:71:6e:aa:ff:43:c5:26:72:d3: fe:10:d4:e9:ed:9e:0a:e3:dd:17:79:d9:28:b4:db:61:4a:bf: 89:25:59:e2:72:5d:b5:ce:5f:b5:5b:13:97:42:6d:96:9d:26: 5b:b9:20:8f:a4:d6:92:f3:17:f5:1c:5f:34:a7:2f:21:9a:e8: ad:fb:1c:ac:06:29:ce:b4:ec:f4:ab:a4:5d:35:65:a3:94:c3: cb:b3:51:05:ad:a4:7d:29:48:bf:4e:4a:14:1f:bf:7b:55:eb: 52:5b:c7:66:35:80:ae:e6:af:95:80:0f:7f:c9:1e:ca:a2:f5: 09:64:0e:a1:ca:96:bf:25:de:50:77:60:bf:28:cc:d1:6b:f6: af:23:bd:e2:47:bc:5e:9c:f4:bc:7b:93:06:c4:09:a3:c2:64: 1c:d8:c8:c2:16:3f:ac:20:f5:93:98:3b:c6:41:f2:4f:a8:c3: 65:6c:b9:07:cb:d3:2a:75:59:f6:df:e2:20:f2:fc:79:fa:46: 96:1e:8a:0c:fc:73:02:0e:52:43:ba:30:ba:78:0f:8f:22:1d: eb:7b:4c:65:b6:45:b2:20:d8:6c:b1:85:cd:1b:b4:8a:c7:89: 4c:e8:ae:80:c3:b4:6d:94:cb:c2:ec:c0:66:ec:78:b2:5f:01: 43:e8:ce:ac -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVCQzgxMTAvBgNVBAUTKEM2MjE4NDgxNTFGNzk3QkY3MjMxMDdGMTRENjJDNjdB MjEzQTUzRTMwHhcNMjYwNDA5MDIzNjIzWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ3MTBhNi1hZjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtp8P+yKJxqXJDrs5tNcK3HIZLlXNngiqz+grNKH/z+4OIRCQ81LNTwCzGi9X cVWDpJ13X3wvzr7paT/votRRdf17sPJ/TUh4phQW59szaz6/edPIVNBBEou6HhKu kRvAFJlkpyevG2Y8wRtHk7H8I3KXKNdS6agg1Uwce9o/qO7rJuBh1vA2DY+uZwx/ KxlYuJI600K/hW5DoH+00GyBrhP5zTjj4X7qf0LDFvp5Coe/Yl+jp7+ijTkErg6U yRKUzRs5iSSggLmwoVT0wL7fV+rDD+G2I/P0sQ9Fr1CmbIkr1mfzrgWY/TxbqpFw dl/GG1SopL3Gyopfo2uMahvMaQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNos3gd/ gzTidOxHTUgWJeBcpegGMB8GA1UdIwQYMBaAFMYhhIFR95e/cjEH8U1ixnohOlPj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUJDOC81ODk4MjBDMkVG MDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3OXlNUWZ4VFdMR2VpRTZV LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpR0VnVkgzbDc5eU1RZnhUV0xHZWlFNlUtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVCQzgvNTg5ODIwQzJFRjAyMTFFRDhDMkREOTFGQzRGOUFFMDIvOUJCM0ZBQjZD Q0I1MTFFRTg2MTJGQjE4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFmzzgMA0GCSqGSIb3DQEBCwUAA4IBAQAIcIAYnsbpjtdxbqr/Q8Um ctP+ENTp7Z4K490XedkotNthSr+JJVnicl21zl+1WxOXQm2WnSZbuSCPpNaS8xf1 HF80py8hmuit+xysBinOtOz0q6RdNWWjlMPLs1EFraR9KUi/TkoUH797VetSW8dm NYCu5q+VgA9/yR7KovUJZA6hypa/Jd5Qd2C/KMzRa/avI73iR7xenPS8e5MGxAmj wmQc2MjCFj+sIPWTmDvGQfJPqMNlbLkHy9MqdVn23+Ig8vx5+kaWHooM/HMCDlJD ujC6eA+PIh3re0xltkWyINhssYXNG7SKx4lM6K6Aw7RtlMvC7MBm7HiyXwFD6M6s -----END CERTIFICATE-----Generated at Fri Apr 17 08:08:01 2026 by rpki-client