$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/232F9552F80D11F0AED4E007706F56BC.roa File: 232F9552F80D11F0AED4E007706F56BC.roa (raw, json) Hash identifier: eD9gDioCM5S2wQWIRX8fMwbM0baYsT5u8C/4wCogM+E= Subject key identifier: 39:FB:84:71:BC:16:87:4A:56:26:6E:D0:B1:84:AF:12:59:61:45:63 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 02C7 Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/232F9552F80D11F0AED4E007706F56BC.roa Signing time: Wed 27 May 2026 03:33:16 +0000 ROA not before: Wed 27 May 2026 03:33:16 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 150436 IP address blocks: 101.47.0.0/18 maxlen: 24 101.47.64.0/20 maxlen: 24 101.47.80.0/20 maxlen: 23 101.47.80.0/21 maxlen: 24 101.47.88.0/22 maxlen: 24 101.47.92.0/23 maxlen: 24 101.47.95.0/24 maxlen: 24 101.47.96.0/21 maxlen: 24 101.47.128.0/18 maxlen: 24 101.47.253.0/24 maxlen: 24 150.5.128.0/17 maxlen: 24 163.7.0.0/17 maxlen: 24 163.7.160.0/19 maxlen: 24 163.7.192.0/18 maxlen: 24 202.52.224.0/21 maxlen: 24 202.52.252.0/22 maxlen: 24 203.147.192.0/19 maxlen: 24 2401:4c20::/40 maxlen: 44 2401:4c20:100::/40 maxlen: 40 2401:4c20:200::/40 maxlen: 44 2401:4c20:300::/40 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:23:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 711 (0x2c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: May 27 03:33:16 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1665fc-8875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ba:db:61:9a:45:47:28:8e:cc:be:16:b9:a5: 2a:d9:ea:3f:48:44:28:f6:a5:b5:4b:7c:76:1f:72: 1a:5d:55:d6:c6:60:6d:5a:df:32:06:19:65:d8:89: 9d:89:5b:a4:50:1b:3e:83:f3:13:8d:e6:32:97:3a: 7b:b8:0e:12:f1:aa:21:79:37:43:a0:d3:39:f4:18: 7e:7d:2a:bc:50:39:ea:76:8b:ff:dc:2a:bd:3c:5f: fa:d3:33:6e:47:7a:a8:e6:01:07:d6:66:24:82:40: 01:0c:dd:66:1e:11:05:01:11:3b:9e:da:34:8b:a3: 4e:5d:bf:f7:b2:7e:54:86:43:a3:ca:1e:17:8a:c0: 21:73:4e:7a:23:0a:c5:45:b2:cc:3d:1d:88:39:d4: bb:94:a1:7e:1d:c9:8f:3c:aa:af:6f:1f:97:b7:9a: 98:6b:62:1a:f2:1c:19:6c:9d:04:17:1f:5c:52:30: 2a:a7:5c:11:d9:fa:63:7c:8c:e9:3e:d9:ef:47:f5: 63:f8:9f:9c:b8:71:28:8b:07:59:b8:dc:33:8c:67: 8c:5a:9e:ab:65:c2:56:ab:9e:69:23:94:b6:68:ea: 7c:24:43:3d:e6:b7:6d:a5:51:a8:ec:37:c6:1e:b0: 59:15:54:cb:3d:aa:f7:ad:c7:52:b7:14:5f:03:a1: 85:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:FB:84:71:BC:16:87:4A:56:26:6E:D0:B1:84:AF:12:59:61:45:63 X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/232F9552F80D11F0AED4E007706F56BC.roa sbgp-ipAddrBlock: critical IPv4: 101.47.0.0-101.47.103.255 101.47.128.0/18 101.47.253.0/24 150.5.128.0/17 163.7.0.0/17 163.7.160.0-163.7.255.255 202.52.224.0/21 202.52.252.0/22 203.147.192.0/19 IPv6: 2401:4c20::/38 Signature Algorithm: sha256WithRSAEncryption 54:02:3a:0b:7a:e1:91:c5:7b:28:7c:50:99:d2:48:24:f6:06: 78:8b:3d:77:a4:cd:c3:a3:d5:be:c9:a2:a4:4b:88:ee:7d:d1: f1:bf:b0:c3:19:2d:26:8d:01:ce:14:0a:97:51:12:ad:55:d2: 2f:b9:15:84:8c:7c:a8:82:78:9c:13:2e:b8:7a:e5:27:78:0e: 13:e7:e5:ba:af:9f:bb:c6:69:fc:ce:2a:79:03:e0:b6:17:bf: 36:03:10:55:14:74:d3:eb:c8:1b:7b:38:5b:94:af:1a:d9:a5: b8:e0:28:29:d2:55:79:27:da:f8:ba:37:5b:3b:e5:32:4e:aa: d3:32:37:fa:64:3b:aa:c3:b8:04:d9:fd:7c:99:36:0f:81:2e: 55:7d:25:e1:fb:94:20:4d:db:45:b5:78:e0:c6:c9:4f:75:41: e0:b0:44:8e:42:a2:57:3e:7a:7b:9d:67:7e:f4:d0:d2:fe:82: de:bf:32:6b:61:86:05:8b:d0:7e:0d:35:c2:d1:19:ea:85:a9: fb:41:af:32:f0:ae:91:7e:c4:dc:b3:f7:87:f5:a0:ff:ff:2c: 3b:24:b2:f9:d8:12:7d:f1:9f:80:6a:99:1b:11:d8:d8:51:1e: cf:a5:53:67:2a:b1:14:91:c0:32:b5:3a:47:cf:46:aa:b6:94: c3:e2:5c:65 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICAscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjYwNTI3MDMzMzE2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE2NjVmYy04ODc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7rbYZpFRyiOzL4WuaUq2eo/SEQo9qW1S3x2H3IaXVXWxmBtWt8yBhll2Imd iVukUBs+g/MTjeYylzp7uA4S8aoheTdDoNM59Bh+fSq8UDnqdov/3Cq9PF/60zNu R3qo5gEH1mYkgkABDN1mHhEFARE7nto0i6NOXb/3sn5UhkOjyh4XisAhc056IwrF RbLMPR2IOdS7lKF+HcmPPKqvbx+Xt5qYa2Ia8hwZbJ0EFx9cUjAqp1wR2fpjfIzp PtnvR/Vj+J+cuHEoiwdZuNwzjGeMWp6rZcJWq55pI5S2aOp8JEM95rdtpVGo7DfG HrBZFVTLPar3rcdStxRfA6GFlwIDAQABo4ICrjCCAqowHQYDVR0OBBYEFDn7hHG8 FodKViZu0LGErxJZYUVjMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MjAvMTYxRDRDMEFFNENBMTFFREE0MTRFMjU5QzRGOUFFMDIvMjMyRjk1NTJG ODBEMTFGMEFFRDRFMDA3NzA2RjU2QkMucm9hMG0GCCsGAQUFBwEHAQH/BF4wXDBK BAIAATBEMAsDAwBlLwMEA2UvYAMEBmUvgAMEAGUv/QMEB5YFgAMEB6MHADALAwQF owegAwMDowADBAPKNOADBALKNPwDBAXLk8AwDgQCAAIwCAMGAiQBTCAAMA0GCSqG SIb3DQEBCwUAA4IBAQBUAjoLeuGRxXsofFCZ0kgk9gZ4iz13pM3Do9W+yaKkS4ju fdHxv7DDGS0mjQHOFAqXURKtVdIvuRWEjHyognicEy64euUneA4T5+W6r5+7xmn8 zip5A+C2F782AxBVFHTT68gbezhblK8a2aW44Cgp0lV5J9r4ujdbO+UyTqrTMjf6 ZDuqw7gE2f18mTYPgS5VfSXh+5QgTdtFtXjgxslPdUHgsESOQqJXPnp7nWd+9NDS /oLevzJrYYYFi9B+DTXC0Rnqhan7Qa8y8K6RfsTcs/eH9aD//yw7JLL52BJ98Z+A apkbEdjYUR7PpVNnKrEUkcAytTpHz0aqtpTD4lxl -----END CERTIFICATE-----Generated at Sat Jun 13 16:23:46 2026 by rpki-client