$ rpki-client -vvf rpki.apnic.net/member_repository/A91A423D/B9769BD8B09511F08C152778C4F9AE02/DEE9FAB2B0A011F0B752B713C4F9AE02.roa File: DEE9FAB2B0A011F0B752B713C4F9AE02.roa (raw, json) Hash identifier: N9DbzZhWjh9222Zzdpzo8MyanGXgo1s4o7cCfBAxME8= Subject key identifier: AC:B7:71:8F:1F:42:6C:D3:BD:5A:F4:1D:A6:84:24:6D:8E:A5:FD:9C Certificate issuer: /CN=A91A423D/serialNumber=3CCEEB9D2059CFE9F6085677D4B7FA264F533A0F Certificate serial: 79 Authority key identifier: 3C:CE:EB:9D:20:59:CF:E9:F6:08:56:77:D4:B7:FA:26:4F:53:3A:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PM7rnSBZz-n2CFZ31Lf6Jk9TOg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A423D/B9769BD8B09511F08C152778C4F9AE02/DEE9FAB2B0A011F0B752B713C4F9AE02.roa Signing time: Wed 27 May 2026 08:40:50 +0000 ROA not before: Wed 27 May 2026 08:40:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 154316 IP address blocks: 161.229.192.0/20 maxlen: 20 161.229.192.0/24 maxlen: 24 161.229.193.0/24 maxlen: 24 161.229.194.0/24 maxlen: 24 161.229.195.0/24 maxlen: 24 161.229.196.0/24 maxlen: 24 161.229.197.0/24 maxlen: 24 161.229.198.0/24 maxlen: 24 161.229.199.0/24 maxlen: 24 161.229.200.0/24 maxlen: 24 161.229.201.0/24 maxlen: 24 161.229.202.0/24 maxlen: 24 161.229.203.0/24 maxlen: 24 161.229.204.0/24 maxlen: 24 161.229.205.0/24 maxlen: 24 161.229.206.0/24 maxlen: 24 161.229.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A423D/B9769BD8B09511F08C152778C4F9AE02/PM7rnSBZz-n2CFZ31Lf6Jk9TOg8.crl rsync://rpki.apnic.net/member_repository/A91A423D/B9769BD8B09511F08C152778C4F9AE02/PM7rnSBZz-n2CFZ31Lf6Jk9TOg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PM7rnSBZz-n2CFZ31Lf6Jk9TOg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A423D, serialNumber=3CCEEB9D2059CFE9F6085677D4B7FA264F533A0F Validity Not Before: May 27 08:40:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a16ae11-4e73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:26:d5:4a:a5:6d:b6:82:44:d9:e2:e9:77:9c: 6b:dd:44:3d:f1:27:59:b2:0a:ad:02:11:65:aa:b7: 0d:40:5d:ae:6d:7b:70:d1:00:8b:66:24:fc:34:18: 2b:c9:0e:99:de:16:38:89:c9:96:53:91:e9:97:94: b4:06:3c:90:52:d0:88:73:5e:a9:7b:48:fb:07:46: 8c:6e:49:ea:d0:5d:ca:53:b3:f5:8c:87:ea:c6:ef: 13:a5:92:dd:b6:7f:68:c1:53:63:ca:9a:fa:76:84: 57:c4:b5:91:85:d9:04:8d:c8:df:8c:ed:98:92:51: 4d:00:b2:82:31:12:91:1b:5d:4b:79:40:79:20:3e: 0f:b7:56:89:e0:34:bc:58:b2:f0:b9:d5:11:a6:99: 75:ea:b9:a7:26:0d:38:21:8d:03:91:00:26:6d:23: 2b:a2:65:5a:cc:7b:f4:45:71:87:b6:02:53:68:45: ce:b7:48:76:3c:70:35:9e:7b:d7:b1:12:d8:5b:04: 21:a9:e4:3f:7f:0c:20:6a:37:6b:a0:34:84:9e:76: 75:40:e0:d1:6b:55:eb:71:4b:c9:d4:81:95:e6:8a: 16:73:08:17:2f:c1:80:34:63:a3:84:27:f1:c1:6f: f3:83:fa:fd:0c:04:d7:78:fe:11:09:87:e5:00:66: 06:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B7:71:8F:1F:42:6C:D3:BD:5A:F4:1D:A6:84:24:6D:8E:A5:FD:9C X509v3 Authority Key Identifier: keyid:3C:CE:EB:9D:20:59:CF:E9:F6:08:56:77:D4:B7:FA:26:4F:53:3A:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A423D/B9769BD8B09511F08C152778C4F9AE02/PM7rnSBZz-n2CFZ31Lf6Jk9TOg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PM7rnSBZz-n2CFZ31Lf6Jk9TOg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A423D/B9769BD8B09511F08C152778C4F9AE02/DEE9FAB2B0A011F0B752B713C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.229.192.0/20 Signature Algorithm: sha256WithRSAEncryption 6c:6f:e1:c1:88:30:41:85:e5:b9:fd:ae:10:c6:49:bb:84:ee: 34:15:08:e2:97:8e:d2:ad:1d:b8:a8:fa:37:28:df:ca:4b:51: e5:3e:6d:bb:4e:29:ca:66:eb:4a:dc:53:c4:38:0c:b2:00:c3: eb:f1:df:1a:83:d0:19:f1:fc:b2:b9:95:6f:12:23:4d:38:15: 33:a4:3c:82:36:4b:d2:95:63:d1:b6:6b:3f:5b:48:01:9c:a3: 94:8a:ca:d3:a7:1e:a8:25:34:06:00:d8:ea:ec:e2:fb:06:79: 54:96:e4:55:a7:1b:25:f4:59:9d:1c:f3:a4:bf:5b:5d:27:f7: 55:40:4c:f9:d3:df:32:f9:0f:91:1b:5e:a6:1c:95:8a:57:55: 4f:c5:87:5b:c9:c9:5a:bc:cc:79:0e:d9:89:d1:c6:e3:c3:5c: ec:a8:2a:fe:7b:9a:d8:da:8e:85:21:08:7d:9a:d8:7b:4c:e9: d8:f9:39:9a:20:54:11:52:46:81:fb:c9:5e:0b:0e:6d:a7:77: 22:ea:97:71:7d:50:d3:9b:77:86:e1:6f:f3:1d:87:2e:22:98: 15:91:b8:7c:f4:90:cc:96:f4:b1:f0:e1:1a:5b:6a:e7:3e:93: ff:f7:1b:26:02:72:c6:cf:07:db:ea:cd:1e:2f:6e:6b:56:f4: 4c:b7:79:19 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDIzRDExMC8GA1UEBRMoM0NDRUVCOUQyMDU5Q0ZFOUY2MDg1Njc3RDRCN0ZBMjY0 RjUzM0EwRjAeFw0yNjA1MjcwODQwNDlaFw0yNzA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMTZhZTExLTRlNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRJtVKpW22gkTZ4ul3nGvdRD3xJ1myCq0CEWWqtw1AXa5te3DRAItmJPw0GCvJ DpneFjiJyZZTkemXlLQGPJBS0IhzXql7SPsHRoxuSerQXcpTs/WMh+rG7xOlkt22 f2jBU2PKmvp2hFfEtZGF2QSNyN+M7ZiSUU0AsoIxEpEbXUt5QHkgPg+3VongNLxY svC51RGmmXXquacmDTghjQORACZtIyuiZVrMe/RFcYe2AlNoRc63SHY8cDWee9ex EthbBCGp5D9/DCBqN2ugNISednVA4NFrVetxS8nUgZXmihZzCBcvwYA0Y6OEJ/HB b/OD+v0MBNd4/hEJh+UAZgZZAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUrLdxjx9C bNO9WvQdpoQkbY6l/ZwwHwYDVR0jBBgwFoAUPM7rnSBZz+n2CFZ31Lf6Jk9TOg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0MjNEL0I5NzY5QkQ4QjA5 NTExRjA4QzE1Mjc3OEM0RjlBRTAyL1BNN3JuU0Jaei1uMkNGWjMxTGY2Sms5VE9n OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUE03cm5TQlp6LW4yQ0ZaMzFMZjZKazlUT2c4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDIzRC9COTc2OUJEOEIwOTUxMUYwOEMxNTI3NzhDNEY5QUUwMi9ERUU5RkFCMkIw QTAxMUYwQjc1MkI3MTNDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBASh5cAwDQYJKoZIhvcNAQELBQADggEBAGxv4cGIMEGF5bn9rhDGSbuE 7jQVCOKXjtKtHbio+jco38pLUeU+bbtOKcpm60rcU8Q4DLIAw+vx3xqD0Bnx/LK5 lW8SI004FTOkPII2S9KVY9G2az9bSAGco5SKytOnHqglNAYA2Ors4vsGeVSW5FWn GyX0WZ0c86S/W10n91VATPnT3zL5D5EbXqYclYpXVU/Fh1vJyVq8zHkO2YnRxuPD XOyoKv57mtjajoUhCH2a2HtM6dj5OZogVBFSRoH7yV4LDm2ndyLql3F9UNObd4bh b/Mdhy4imBWRuHz0kMyW9LHw4Rpbauc+k//3GyYCcsbPB9vqzR4vbmtW9Ey3eRk= -----END CERTIFICATE-----Generated at Wed Jun 17 12:06:04 2026 by rpki-client