$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4DBF/C1456050844011F0A570BC49C4F9AE02/72966E18019F11F1812044E0666F56BC.roa File: 72966E18019F11F1812044E0666F56BC.roa (raw, json) Hash identifier: u+qbVowvdxjMxvJonhb+j3Cw0O9VVP0RG0wUl0S5BLo= Subject key identifier: 97:96:EB:69:C2:76:01:89:FD:57:5C:C1:A1:BA:BB:DA:45:7C:11:0C Certificate issuer: /CN=A91A4DBF/serialNumber=0CA3162124EE64629643FF29EB311072D9128533 Certificate serial: 89 Authority key identifier: 0C:A3:16:21:24:EE:64:62:96:43:FF:29:EB:31:10:72:D9:12:85:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKMWISTuZGKWQ_8p6zEQctkShTM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4DBF/C1456050844011F0A570BC49C4F9AE02/72966E18019F11F1812044E0666F56BC.roa Signing time: Sat 11 Apr 2026 13:29:01 +0000 ROA not before: Sat 11 Apr 2026 13:29:01 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154173 IP address blocks: 203.174.23.0/24 maxlen: 24 2001:df6:90c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4DBF/C1456050844011F0A570BC49C4F9AE02/DKMWISTuZGKWQ_8p6zEQctkShTM.crl rsync://rpki.apnic.net/member_repository/A91A4DBF/C1456050844011F0A570BC49C4F9AE02/DKMWISTuZGKWQ_8p6zEQctkShTM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKMWISTuZGKWQ_8p6zEQctkShTM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 07:20:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4DBF, serialNumber=0CA3162124EE64629643FF29EB311072D9128533 Validity Not Before: Apr 11 13:29:01 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69da4c9d-af99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7c:5e:61:bc:55:33:5b:64:91:2b:a9:7b:49: 13:df:7a:39:28:24:58:33:f7:a5:5c:bf:d3:2b:b4: 12:5d:ec:60:bb:9c:6a:d9:cd:25:cf:6c:cc:53:6c: e6:f1:f3:31:7f:ec:fd:30:44:60:77:6f:08:23:ee: ab:2f:39:7f:64:9b:90:13:ba:ce:28:47:0d:7f:19: 81:13:3d:39:38:fd:af:2b:5e:73:49:4f:92:68:54: f8:29:8f:4b:0d:75:c3:24:77:cf:2b:b1:62:0b:7f: b9:ad:0a:66:1a:7a:5f:a2:be:4d:f3:29:3e:e2:70: 12:b5:42:26:83:92:dc:a5:15:47:48:09:b2:1c:b9: 9d:18:57:33:80:7b:d0:eb:74:3c:df:91:c0:5e:f7: 09:42:f5:1c:dd:bf:6f:10:ec:23:8f:3a:16:1a:b1: ea:b3:f7:3e:dd:7f:97:97:bc:af:9f:92:e8:e7:bc: bb:87:06:78:27:ec:02:ff:20:5a:3f:d9:e3:99:d8: fa:8f:0e:88:35:fd:0b:fc:65:15:e7:17:b8:25:ee: cc:56:ee:52:3d:d1:e9:08:2a:90:ac:bd:f6:1b:8d: 75:8e:2f:67:b5:d2:d7:0a:ab:cc:90:e6:13:f6:1c: d0:fc:83:17:38:bd:31:6c:da:c6:72:34:a1:d3:a8: 7c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:96:EB:69:C2:76:01:89:FD:57:5C:C1:A1:BA:BB:DA:45:7C:11:0C X509v3 Authority Key Identifier: keyid:0C:A3:16:21:24:EE:64:62:96:43:FF:29:EB:31:10:72:D9:12:85:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4DBF/C1456050844011F0A570BC49C4F9AE02/DKMWISTuZGKWQ_8p6zEQctkShTM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKMWISTuZGKWQ_8p6zEQctkShTM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4DBF/C1456050844011F0A570BC49C4F9AE02/72966E18019F11F1812044E0666F56BC.roa sbgp-ipAddrBlock: critical IPv4: 203.174.23.0/24 IPv6: 2001:df6:90c0::/48 Signature Algorithm: sha256WithRSAEncryption 0a:fb:20:af:70:94:74:06:01:90:b7:b0:87:c2:0d:90:2c:df: 13:0e:0f:d7:9c:cf:cc:57:86:99:df:2d:ff:72:67:5a:cf:d9: 6e:f9:c0:46:b3:f0:1c:b7:36:23:1e:a9:48:e2:fa:0e:4e:f9: 75:71:97:d2:c7:23:74:e5:e1:5d:5b:c2:50:58:5a:bf:4c:b2: be:e1:ff:8f:0d:82:36:6b:c4:a5:5f:82:ca:1f:4d:a2:83:c5: 82:80:26:e4:cd:c4:20:0a:f9:c3:c4:25:8a:30:55:db:f1:a5: 95:8d:6b:a7:e4:80:ec:0f:bc:8c:24:67:69:56:72:b9:f8:9c: 54:ba:49:89:46:f8:40:3b:d4:e0:cf:b3:f5:4b:e1:8a:9f:bf: 82:20:3a:62:33:99:db:d6:8f:cc:6e:4c:ff:b3:16:f3:df:ee: c3:26:fd:59:d1:be:fa:a9:21:c7:9e:da:66:a1:24:ea:0f:5c: a0:b6:31:ac:b5:c7:a1:17:eb:31:38:70:f0:cc:36:90:eb:55: b9:f8:ac:0b:29:1e:d7:1f:ef:79:db:1f:24:32:17:d6:22:f1: fe:fc:23:7f:d8:9f:42:73:8c:78:b9:1f:9c:aa:8d:98:5d:1e: b4:22:12:00:f6:89:08:aa:0d:9c:89:34:bb:c9:f2:52:48:5e: 27:12:bf:b5 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTREQkYxMTAvBgNVBAUTKDBDQTMxNjIxMjRFRTY0NjI5NjQzRkYyOUVCMzExMDcy RDkxMjg1MzMwHhcNMjYwNDExMTMyOTAxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWRhNGM5ZC1hZjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznxeYbxVM1tkkSupe0kT33o5KCRYM/elXL/TK7QSXexgu5xq2c0lz2zMU2zm 8fMxf+z9MERgd28II+6rLzl/ZJuQE7rOKEcNfxmBEz05OP2vK15zSU+SaFT4KY9L DXXDJHfPK7FiC3+5rQpmGnpfor5N8yk+4nAStUImg5LcpRVHSAmyHLmdGFczgHvQ 63Q835HAXvcJQvUc3b9vEOwjjzoWGrHqs/c+3X+Xl7yvn5Lo57y7hwZ4J+wC/yBa P9njmdj6jw6INf0L/GUV5xe4Je7MVu5SPdHpCCqQrL32G411ji9ntdLXCqvMkOYT 9hzQ/IMXOL0xbNrGcjSh06h8XwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFJeW62nC dgGJ/VdcwaG6u9pFfBEMMB8GA1UdIwQYMBaAFAyjFiEk7mRilkP/KesxEHLZEoUz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNERCRi9DMTQ1NjA1MDg0 NDAxMUYwQTU3MEJDNDlDNEY5QUUwMi9ES01XSVNUdVpHS1dRXzhwNnpFUWN0a1No VE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RLTVdJU1R1WkdLV1FfOHA2ekVRY3RrU2hUTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTREQkYvQzE0NTYwNTA4NDQwMTFGMEE1NzBCQzQ5QzRGOUFFMDIvNzI5NjZFMTgw MTlGMTFGMTgxMjA0NEUwNjY2RjU2QkMucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAy64XMA8EAgACMAkDBwAgAQ32kMAwDQYJKoZIhvcNAQELBQADggEB AAr7IK9wlHQGAZC3sIfCDZAs3xMOD9ecz8xXhpnfLf9yZ1rP2W75wEaz8By3NiMe qUji+g5O+XVxl9LHI3Tl4V1bwlBYWr9Msr7h/48NgjZrxKVfgsofTaKDxYKAJuTN xCAK+cPEJYowVdvxpZWNa6fkgOwPvIwkZ2lWcrn4nFS6SYlG+EA71ODPs/VL4Yqf v4IgOmIzmdvWj8xuTP+zFvPf7sMm/VnRvvqpIcee2mahJOoPXKC2May1x6EX6zE4 cPDMNpDrVbn4rAspHtcf73nbHyQyF9Yi8f78I3/Yn0JzjHi5H5yqjZhdHrQiEgD2 iQiqDZyJNLvJ8lJIXicSv7U= -----END CERTIFICATE-----Generated at Sun Apr 19 14:07:36 2026 by rpki-client