$ rpki-client -vvf rpki.apnic.net/member_repository/A91665DC/C66C26D8653911F18E895AE18947A888/407DE8A2653B11F19447D4298B47A888.roa File: 407DE8A2653B11F19447D4298B47A888.roa (raw, json) Hash identifier: 4uGgyHi+pahZitNop8GwY6mUioENqBPhA9aD2Qxg/D0= Subject key identifier: 82:BB:C2:D2:0E:38:2A:3D:15:4E:88:7F:06:BA:A9:A0:E8:28:D4:61 Certificate issuer: /CN=A91665DC/serialNumber=FEB9535D9E4171D87A8BF6F6CB61D231BF2F362C Certificate serial: 04 Authority key identifier: FE:B9:53:5D:9E:41:71:D8:7A:8B:F6:F6:CB:61:D2:31:BF:2F:36:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_rlTXZ5Bcdh6i_b2y2HSMb8vNiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91665DC/C66C26D8653911F18E895AE18947A888/407DE8A2653B11F19447D4298B47A888.roa Signing time: Thu 11 Jun 2026 02:15:31 +0000 ROA not before: Thu 11 Jun 2026 02:15:31 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 154526 IP address blocks: 163.128.4.0/23 maxlen: 24 2402:5020::/32 maxlen: 32 2402:5020::/36 maxlen: 36 2402:5020:1000::/36 maxlen: 36 2402:5020:2000::/36 maxlen: 36 2402:5020:3000::/36 maxlen: 36 2402:5020:4000::/36 maxlen: 36 2402:5020:5000::/36 maxlen: 36 2402:5020:6000::/36 maxlen: 36 2402:5020:7000::/36 maxlen: 36 2402:5020:8000::/36 maxlen: 36 2402:5020:9000::/36 maxlen: 36 2402:5020:a000::/36 maxlen: 36 2402:5020:b000::/36 maxlen: 36 2402:5020:c000::/36 maxlen: 36 2402:5020:d000::/36 maxlen: 36 2402:5020:e000::/36 maxlen: 36 2402:5020:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91665DC/C66C26D8653911F18E895AE18947A888/_rlTXZ5Bcdh6i_b2y2HSMb8vNiw.crl rsync://rpki.apnic.net/member_repository/A91665DC/C66C26D8653911F18E895AE18947A888/_rlTXZ5Bcdh6i_b2y2HSMb8vNiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_rlTXZ5Bcdh6i_b2y2HSMb8vNiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 09:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91665DC, serialNumber=FEB9535D9E4171D87A8BF6F6CB61D231BF2F362C Validity Not Before: Jun 11 02:15:31 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=6a2a1a43-0dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:41:a1:97:d4:06:b3:b3:13:8b:cd:c0:e7:1d: ca:ef:82:ec:84:f9:9a:e0:53:2f:18:42:65:0c:0e: f4:1b:b5:33:72:4d:16:d2:22:07:8b:7b:af:f6:39: 88:c5:6f:02:93:bc:58:dd:8f:0c:e7:79:9d:a2:c6: 40:53:fd:ca:35:29:2e:39:07:9f:b3:65:9b:c4:80: c0:29:9d:1b:d7:8b:82:86:3a:7b:94:63:c8:8a:78: e2:75:ac:8b:fc:86:23:54:cb:c5:1f:bf:12:e9:ba: d1:19:6b:41:56:a8:08:cb:dd:56:12:ef:e8:61:d1: 19:38:fa:06:36:a5:3b:01:fc:ad:4a:07:38:9c:27: d5:a6:dc:40:9b:a8:7e:8b:f1:4c:de:74:a8:7a:b1: 4c:5b:2e:a7:cf:9b:7e:be:1f:ec:35:9a:0a:3d:19: 55:f3:dd:9c:b0:b8:f4:98:e2:b9:be:4a:4a:43:0a: 1a:c6:0e:22:f3:b5:99:4d:d7:df:2e:17:d6:f5:c7: 96:2d:e7:d5:23:36:83:48:63:90:2d:da:68:61:8c: 5d:84:1d:13:ca:fc:d8:d8:60:8e:e5:3a:1e:0b:83: ee:6a:75:98:64:80:03:e7:a2:81:79:c4:43:fe:a5: ab:2e:a3:a8:29:d3:2c:e3:b7:41:f0:e3:91:88:ae: d2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:BB:C2:D2:0E:38:2A:3D:15:4E:88:7F:06:BA:A9:A0:E8:28:D4:61 X509v3 Authority Key Identifier: keyid:FE:B9:53:5D:9E:41:71:D8:7A:8B:F6:F6:CB:61:D2:31:BF:2F:36:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91665DC/C66C26D8653911F18E895AE18947A888/_rlTXZ5Bcdh6i_b2y2HSMb8vNiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_rlTXZ5Bcdh6i_b2y2HSMb8vNiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91665DC/C66C26D8653911F18E895AE18947A888/407DE8A2653B11F19447D4298B47A888.roa sbgp-ipAddrBlock: critical IPv4: 163.128.4.0/23 IPv6: 2402:5020::/32 Signature Algorithm: sha256WithRSAEncryption 1e:aa:4d:de:52:1e:61:9c:4e:95:3f:87:c1:7c:c0:6f:63:d6: 07:50:dc:46:83:ed:f9:06:7c:d7:5f:87:5c:b9:36:19:b4:9e: 5a:cd:d0:06:3d:a8:bd:14:fa:6d:ed:75:dc:69:23:ef:24:d1: 54:ab:fd:b1:1b:52:21:1f:27:3f:07:b9:35:e9:2d:39:70:05: af:cf:66:05:f0:d1:13:88:d2:56:d9:bb:66:6c:57:c9:80:d9: be:f7:2a:82:37:2d:a2:96:45:93:42:06:7b:ce:1b:53:a7:54: 39:66:b9:cc:5f:ca:97:2f:b1:45:10:6c:84:0f:22:94:9f:da: 8a:d7:d6:05:ff:4f:0d:54:9e:49:2d:94:92:1b:a0:76:40:28: af:59:91:b7:e5:53:54:e9:a4:30:c9:bd:0b:fa:73:33:8e:d0: 91:ae:d7:91:31:68:4d:f1:ce:2b:18:d7:84:34:a0:1f:42:95: f9:ea:2f:a5:fc:32:26:db:43:77:af:5d:b3:15:4d:8b:de:3d: 73:24:9e:e2:48:b8:f2:1e:06:6e:c1:36:ef:41:21:00:de:8d: b2:15:da:45:5c:08:a9:f4:97:2c:a3:3a:eb:6a:8e:f3:1b:24: fb:e3:79:bb:8f:af:a0:69:5b:a6:f2:85:f6:5c:ea:07:14:ad: 20:d8:0a:bb -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NjVEQzExMC8GA1UEBRMoRkVCOTUzNUQ5RTQxNzFEODdBOEJGNkY2Q0I2MUQyMzFC RjJGMzYyQzAeFw0yNjA2MTEwMjE1MzFaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMmExYTQzLTBkZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCXQaGX1AazsxOLzcDnHcrvguyE+ZrgUy8YQmUMDvQbtTNyTRbSIgeLe6/2OYjF bwKTvFjdjwzneZ2ixkBT/co1KS45B5+zZZvEgMApnRvXi4KGOnuUY8iKeOJ1rIv8 hiNUy8UfvxLputEZa0FWqAjL3VYS7+hh0Rk4+gY2pTsB/K1KBzicJ9Wm3ECbqH6L 8UzedKh6sUxbLqfPm36+H+w1mgo9GVXz3ZywuPSY4rm+SkpDChrGDiLztZlN198u F9b1x5Yt59UjNoNIY5At2mhhjF2EHRPK/NjYYI7lOh4Lg+5qdZhkgAPnooF5xEP+ pasuo6gp0yzjt0Hw45GIrtLTAgMBAAGjggJvMIICazAdBgNVHQ4EFgQUgrvC0g44 Kj0VToh/BrqpoOgo1GEwHwYDVR0jBBgwFoAU/rlTXZ5Bcdh6i/b2y2HSMb8vNiww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY2NURDL0M2NkMyNkQ4NjUz OTExRjE4RTg5NUFFMTg5NDdBODg4L19ybFRYWjVCY2RoNmlfYjJ5MkhTTWI4dk5p dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX3JsVFhaNUJjZGg2aV9iMnkySFNNYjh2Tml3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NjVEQy9DNjZDMjZEODY1MzkxMUYxOEU4OTVBRTE4OTQ3QTg4OC80MDdERThBMjY1 M0IxMUYxOTQ0N0Q0Mjk4QjQ3QTg4OC5yb2EwLgYIKwYBBQUHAQcBAf8EHzAdMAwE AgABMAYDBAGjgAQwDQQCAAIwBwMFACQCUCAwDQYJKoZIhvcNAQELBQADggEBAB6q Td5SHmGcTpU/h8F8wG9j1gdQ3EaD7fkGfNdfh1y5Nhm0nlrN0AY9qL0U+m3tddxp I+8k0VSr/bEbUiEfJz8HuTXpLTlwBa/PZgXw0ROI0lbZu2ZsV8mA2b73KoI3LaKW RZNCBnvOG1OnVDlmucxfypcvsUUQbIQPIpSf2orX1gX/Tw1UnkktlJIboHZAKK9Z kbflU1TppDDJvQv6czOO0JGu15ExaE3xzisY14Q0oB9ClfnqL6X8MibbQ3evXbMV TYvePXMknuJIuPIeBm7BNu9BIQDejbIV2kVcCKn0lyyjOutqjvMbJPvjebuPr6Bp W6byhfZc6gcUrSDYCrs= -----END CERTIFICATE-----Generated at Sun Jun 14 03:38:03 2026 by rpki-client