$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/491E49AECDCA11ED8F57D386C4F9AE02.roa File: 491E49AECDCA11ED8F57D386C4F9AE02.roa (raw, json) Hash identifier: AAS+jxhp2xik0OYMSPq+B01L4sPGFryRO2dGHyui2mE= Subject key identifier: 6C:BA:98:50:66:04:D0:7D:EC:07:2E:8D:94:78:A7:60:2A:B9:70:0E Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 3614 Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/491E49AECDCA11ED8F57D386C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:23:42 +0000 ROA not before: Tue 04 Nov 2025 14:30:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 18049 IP address blocks: 61.71.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13844 (0x3614) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Nov 4 14:30:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4842e-90f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ef:03:f9:b3:f1:6b:68:f2:1f:73:dd:f4:56: b4:18:e0:b7:65:54:7c:0a:2e:a3:b5:cb:66:ee:f5: 51:2f:6d:b3:ac:cc:ca:bb:3e:9c:72:7d:a5:4e:75: a2:e9:0b:a8:6a:c6:17:e5:10:5f:ec:3c:39:f9:b9: 33:a8:d8:9c:af:19:fa:f6:ec:51:30:c5:a4:38:37: ac:32:e6:e1:4c:d3:c6:64:55:d8:53:5b:cc:5c:43: 8c:8c:63:5f:7f:a8:af:7c:77:eb:b3:01:9c:52:f1: e9:05:cb:58:19:60:95:4d:fe:f4:a2:6a:35:a5:af: fc:96:ec:26:ff:da:7b:9b:6a:bc:0a:ee:3d:e7:06: 33:96:19:dd:70:ec:83:16:b1:87:0e:d0:b6:53:73: 90:fc:44:99:2c:c5:35:0f:ce:9c:6c:82:1d:8e:39: 31:88:f3:eb:b4:2c:8f:e2:d0:76:c0:65:f1:63:72: fc:8c:c4:f5:07:b8:af:b0:f5:c2:86:8c:9b:de:e5: f3:22:79:d3:89:83:37:89:98:f8:9c:9b:43:dc:f4: 29:a5:fb:d9:12:b0:df:b8:b8:40:18:33:fc:5e:ae: ea:69:bc:85:b2:29:b5:f6:7c:f3:df:d7:b4:05:83: b6:91:f2:8e:aa:0e:b0:9d:de:2a:5f:5d:4d:a5:c6: d9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:BA:98:50:66:04:D0:7D:EC:07:2E:8D:94:78:A7:60:2A:B9:70:0E X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/491E49AECDCA11ED8F57D386C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.71.0.0/19 Signature Algorithm: sha256WithRSAEncryption 60:3f:fb:34:1c:9d:bf:ca:e2:a3:b5:f5:85:d3:08:5a:48:5e: 72:ae:00:b3:9b:82:61:e7:87:37:d3:73:da:f1:13:70:6e:6a: 16:f9:a2:23:ed:62:a4:fa:2b:d2:08:36:03:c6:96:53:37:20: 88:88:35:49:72:ea:25:77:d7:a2:6c:01:6b:69:1f:d1:c5:81: a6:b8:a8:01:98:d3:04:b8:1b:1f:44:5c:e0:c6:fc:fc:1d:1d: 12:c4:9a:c0:65:5d:65:52:e0:40:ec:94:cb:45:c6:6c:0c:3d: b8:44:f1:7d:2b:8d:b3:06:66:e0:cd:d5:10:e6:ba:f2:09:b6: 0e:ee:b6:e8:f0:7c:28:7f:c3:1e:17:0c:b5:7f:6e:8d:4c:3c: 99:ca:4f:b2:37:a0:40:60:c5:8e:e7:fb:91:83:aa:8a:b4:6d: e5:2b:bf:6d:f4:a4:67:da:fd:16:b3:ee:07:cf:6a:4c:d5:9e: 49:3b:e1:17:1d:41:cf:bb:a0:98:87:23:ca:cb:89:d2:08:9c: 66:d6:f0:f1:a3:b5:7e:00:72:59:d8:86:6b:d8:72:7a:f6:0a: c9:03:a9:88:d5:1e:f7:74:d1:29:d7:c2:49:c2:36:23:f4:a9: 40:64:e2:97:ec:4c:59:32:85:a5:71:a1:01:50:66:74:26:6f: fb:8d:26:7e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjUxMTA0MTQzMDIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODQyZS05MGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwe8D+bPxa2jyH3Pd9Fa0GOC3ZVR8Ci6jtctm7vVRL22zrMzKuz6ccn2lTnWi 6QuoasYX5RBf7Dw5+bkzqNicrxn69uxRMMWkODesMubhTNPGZFXYU1vMXEOMjGNf f6ivfHfrswGcUvHpBctYGWCVTf70omo1pa/8luwm/9p7m2q8Cu495wYzlhndcOyD FrGHDtC2U3OQ/ESZLMU1D86cbIIdjjkxiPPrtCyP4tB2wGXxY3L8jMT1B7ivsPXC hoyb3uXzInnTiYM3iZj4nJtD3PQppfvZErDfuLhAGDP8Xq7qabyFsim19nzz39e0 BYO2kfKOqg6wnd4qX11NpcbZJwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGy6mFBm BNB97AcujZR4p2AquXAOMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZGNDcvQjRBODZDMzgxRDg0MTFFMjk2OUZDNURBMDhCMDJDRDIvNDkxRTQ5QUVD RENBMTFFRDhGNTdEMzg2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFPUcAMA0GCSqGSIb3DQEBCwUAA4IBAQBgP/s0HJ2/yuKjtfWF0wha SF5yrgCzm4Jh54c303Pa8RNwbmoW+aIj7WKk+ivSCDYDxpZTNyCIiDVJcuold9ei bAFraR/RxYGmuKgBmNMEuBsfRFzgxvz8HR0SxJrAZV1lUuBA7JTLRcZsDD24RPF9 K42zBmbgzdUQ5rryCbYO7rbo8Hwof8MeFwy1f26NTDyZyk+yN6BAYMWO5/uRg6qK tG3lK79t9KRn2v0Ws+4Hz2pM1Z5JO+EXHUHPu6CYhyPKy4nSCJxm1vDxo7V+AHJZ 2IZr2HJ69grJA6mI1R73dNEp18JJwjYj9KlAZOKX7ExZMoWlcaEBUGZ0Jm/7jSZ+ -----END CERTIFICATE-----Generated at Mon Mar 2 11:55:18 2026 by rpki-client