$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/1DE5F30A87F211ECBEBC5339C4F9AE02.roa File: 1DE5F30A87F211ECBEBC5339C4F9AE02.roa (raw, json) Hash identifier: 3JrsTAYAGHynUAu7FXh7i6mKx20TisYQ8rxOPDDqL30= Subject key identifier: 61:5D:82:0D:62:78:06:6D:B7:B3:43:74:55:8B:E9:B4:3A:90:CB:48 Certificate issuer: /CN=A91BC847/serialNumber=79D66C64A6165A2E4CB37D49700E6C761841C39A Certificate serial: 14AC Authority key identifier: 79:D6:6C:64:A6:16:5A:2E:4C:B3:7D:49:70:0E:6C:76:18:41:C3:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/edZsZKYWWi5Ms31JcA5sdhhBw5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/1DE5F30A87F211ECBEBC5339C4F9AE02.roa Signing time: Tue 31 Mar 2026 06:08:14 +0000 ROA not before: Tue 31 Mar 2026 06:08:14 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17494 IP address blocks: 114.130.128.0/18 maxlen: 24 114.130.224.0/20 maxlen: 24 123.49.0.0/18 maxlen: 24 180.211.128.0/17 maxlen: 24 203.112.192.0/19 maxlen: 24 2407:5000::/32 maxlen: 40 2407:5000:88::/48 maxlen: 48 2407:5000:6002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/edZsZKYWWi5Ms31JcA5sdhhBw5o.crl rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/edZsZKYWWi5Ms31JcA5sdhhBw5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/edZsZKYWWi5Ms31JcA5sdhhBw5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5292 (0x14ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC847, serialNumber=79D66C64A6165A2E4CB37D49700E6C761841C39A Validity Not Before: Mar 31 06:08:14 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69cb64cd-b253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:52:98:24:04:76:0a:22:36:9a:6c:a7:61:df: d6:de:b5:28:3a:01:47:a7:2d:18:3e:13:04:10:9a: 67:c1:bf:3d:e8:de:31:d5:6a:ee:4b:8a:f1:12:9c: 25:cd:62:15:d8:c7:1d:bc:13:22:d7:65:24:33:39: cb:b6:ac:fb:a6:9e:b4:5d:5d:0d:87:44:23:a8:0f: 0c:b1:f2:8d:6f:c5:cd:5e:51:5f:c2:ec:25:f0:48: 45:24:7e:72:5a:c5:61:4c:ab:c5:eb:50:27:8d:a5: d2:f5:61:93:ae:80:21:d0:ff:c2:ab:93:7f:33:6f: 06:84:a1:33:4c:8f:68:65:f7:00:32:89:ff:3c:7f: 81:31:e6:1d:e2:17:6a:43:06:8b:79:94:bc:12:80: 1e:cf:5d:80:93:49:7c:12:6a:30:57:b9:0c:ef:c4: 38:56:54:49:ec:31:5d:ac:f1:d8:05:dd:4f:34:a8: d9:f2:e1:3a:f7:33:59:36:f8:88:db:a5:10:f8:f1: b8:e7:99:1a:3e:22:74:95:be:52:d0:28:43:df:0f: 8f:a2:b5:4e:17:f6:75:b1:ed:f6:b4:78:23:72:ad: 65:3c:f0:96:ae:90:a0:7e:5a:69:39:ad:ba:dd:dd: d4:02:e6:06:a4:f6:27:b1:05:a8:38:ca:d8:01:10: 1f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:5D:82:0D:62:78:06:6D:B7:B3:43:74:55:8B:E9:B4:3A:90:CB:48 X509v3 Authority Key Identifier: keyid:79:D6:6C:64:A6:16:5A:2E:4C:B3:7D:49:70:0E:6C:76:18:41:C3:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/edZsZKYWWi5Ms31JcA5sdhhBw5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/edZsZKYWWi5Ms31JcA5sdhhBw5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/1DE5F30A87F211ECBEBC5339C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 114.130.128.0/18 114.130.224.0/20 123.49.0.0/18 180.211.128.0/17 203.112.192.0/19 IPv6: 2407:5000::/32 Signature Algorithm: sha256WithRSAEncryption 29:8f:c9:d8:4e:bc:75:59:e9:94:26:9b:5b:be:b8:98:8e:e6: ef:cf:d0:49:18:81:7d:21:61:3b:bc:52:3d:c8:2f:2f:cf:2f: b7:86:1f:a4:76:5c:c1:e4:c0:e4:64:61:57:f3:60:22:9e:f0: ec:7e:28:bb:69:e7:b0:bc:e3:e6:7c:bf:4b:84:94:b9:1a:1d: 81:73:cb:69:28:8f:c3:18:f3:bd:44:f1:17:d6:09:6b:13:58: 95:03:00:1a:b4:b9:91:d1:a1:b9:4d:84:76:e8:be:11:08:b3: 2c:54:7e:37:65:c8:18:02:4b:ff:07:95:22:9c:1c:9c:52:bd: d7:e6:44:31:3d:e1:09:20:73:9d:92:7b:64:a2:15:d3:bb:b5: b3:5c:c8:bc:4a:8c:ec:cc:82:06:b3:af:08:84:de:a7:dc:1d: bf:a2:41:b7:46:ad:39:9c:50:7e:9e:7d:fa:67:1c:60:8b:0e: b2:ec:8e:76:d3:82:fa:2e:f4:fa:44:7c:1d:91:91:2c:3d:73: 41:82:46:c7:fe:61:38:8f:04:41:2d:e7:15:26:48:6f:b3:1c: 9e:7a:ac:12:26:f7:00:b2:b2:b5:f7:73:9d:6b:35:63:bc:49: 41:4e:8c:25:86:7b:5b:88:95:2f:d3:22:76:12:c2:49:f4:dd: 10:38:4c:39 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICFKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM4NDcxMTAvBgNVBAUTKDc5RDY2QzY0QTYxNjVBMkU0Q0IzN0Q0OTcwMEU2Qzc2 MTg0MUMzOUEwHhcNMjYwMzMxMDYwODE0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiNjRjZC1iMjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn1KYJAR2CiI2mmynYd/W3rUoOgFHpy0YPhMEEJpnwb896N4x1WruS4rxEpwl zWIV2McdvBMi12UkMznLtqz7pp60XV0Nh0QjqA8MsfKNb8XNXlFfwuwl8EhFJH5y WsVhTKvF61AnjaXS9WGTroAh0P/Cq5N/M28GhKEzTI9oZfcAMon/PH+BMeYd4hdq QwaLeZS8EoAez12Ak0l8EmowV7kM78Q4VlRJ7DFdrPHYBd1PNKjZ8uE69zNZNviI 26UQ+PG455kaPiJ0lb5S0ChD3w+PorVOF/Z1se32tHgjcq1lPPCWrpCgflppOa26 3d3UAuYGpPYnsQWoOMrYARAfFQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFGFdgg1i eAZtt7NDdFWL6bQ6kMtIMB8GA1UdIwQYMBaAFHnWbGSmFlouTLN9SXAObHYYQcOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzg0Ny9BQ0Y5NDM1MjlB RjMxMUU4QUFCNEQ1NURDNEY5QUUwMi9lZFpzWktZV1dpNU1zMzFKY0E1c2RoaEJ3 NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VkWnNaS1lXV2k1TXMzMUpjQTVzZGhoQnc1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM4NDcvQUNGOTQzNTI5QUYzMTFFOEFBQjRENTVEQzRGOUFFMDIvMURFNUYzMEE4 N0YyMTFFQ0JFQkM1MzM5QzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQGcoKAAwQEcoLgAwQGezEAAwQHtNOAAwQFy3DAMA0EAgACMAcDBQAk B1AAMA0GCSqGSIb3DQEBCwUAA4IBAQApj8nYTrx1WemUJptbvriYjubvz9BJGIF9 IWE7vFI9yC8vzy+3hh+kdlzB5MDkZGFX82AinvDsfii7aeewvOPmfL9LhJS5Gh2B c8tpKI/DGPO9RPEX1glrE1iVAwAatLmR0aG5TYR26L4RCLMsVH43ZcgYAkv/B5Ui nBycUr3X5kQxPeEJIHOdkntkohXTu7WzXMi8SozszIIGs68IhN6n3B2/okG3Rq05 nFB+nn36Zxxgiw6y7I5204L6LvT6RHwdkZEsPXNBgkbH/mE4jwRBLecVJkhvsxye eqwSJvcAsrK193OdazVjvElBTowlhntbiJUv0yJ2EsJJ9N0QOEw5 -----END CERTIFICATE-----Generated at Fri Apr 17 14:05:27 2026 by rpki-client