$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/1DE5F30A87F211ECBEBC5339C4F9AE02.roa File: 1DE5F30A87F211ECBEBC5339C4F9AE02.roa (raw, json) Hash identifier: qFYywIbpjRFT5ByV5zfgerp4DpadK1bWKX1LRe0ll+Y= Subject key identifier: 45:11:C9:82:EF:1D:E8:DC:36:74:18:90:CC:3D:29:DB:F8:55:88:A9 Certificate issuer: /CN=A91BC847/serialNumber=79D66C64A6165A2E4CB37D49700E6C761841C39A Certificate serial: 1494 Authority key identifier: 79:D6:6C:64:A6:16:5A:2E:4C:B3:7D:49:70:0E:6C:76:18:41:C3:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/edZsZKYWWi5Ms31JcA5sdhhBw5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/1DE5F30A87F211ECBEBC5339C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:14:59 +0000 ROA not before: Thu 18 Sep 2025 17:26:07 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17494 IP address blocks: 114.130.128.0/18 maxlen: 24 114.130.224.0/20 maxlen: 24 123.49.0.0/18 maxlen: 24 180.211.128.0/17 maxlen: 24 203.112.192.0/19 maxlen: 24 2407:5000::/32 maxlen: 40 2407:5000:88::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/edZsZKYWWi5Ms31JcA5sdhhBw5o.crl rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/edZsZKYWWi5Ms31JcA5sdhhBw5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/edZsZKYWWi5Ms31JcA5sdhhBw5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5268 (0x1494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC847, serialNumber=79D66C64A6165A2E4CB37D49700E6C761841C39A Validity Not Before: Sep 18 17:26:07 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a48222-a7af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:5a:17:03:6b:64:52:26:8e:40:7a:58:5e:86: 7d:2e:ce:49:69:5b:60:a9:9c:08:86:14:45:17:9e: 42:fd:8a:58:9c:2b:21:a6:77:cf:b1:5f:8c:c9:5f: 62:49:2e:ee:81:db:b9:53:0c:81:d0:50:db:5b:32: 1c:9e:f8:50:9a:09:3d:32:e4:8a:f6:b8:b3:83:79: 62:5d:8f:aa:20:9d:be:94:10:19:55:67:d2:70:32: 74:fb:06:f2:01:ac:67:07:77:75:1e:b3:aa:2e:07: 84:e0:4f:51:18:27:75:7c:20:00:25:aa:6a:4d:a4: 2f:96:dc:c1:1f:61:45:fd:68:c2:32:07:f3:0c:05: 94:5e:6d:6b:99:f5:9b:57:6a:02:0d:ec:3d:77:24: 1b:82:52:63:61:37:54:ce:f8:a3:86:59:e9:ca:34: 72:c6:3a:5b:4e:da:ca:df:8e:22:30:c3:bc:25:f9: 30:e4:89:25:9c:0b:5c:a0:8c:c2:a0:93:b1:14:c9: 53:e8:75:dd:65:19:5c:56:65:25:e7:d8:c2:25:42: 48:85:fc:ea:47:87:ce:44:b9:eb:a3:e9:74:98:d8: 5e:af:7c:82:6b:e6:2d:c0:8e:b4:20:36:36:76:ba: 82:bb:77:c4:2e:1f:42:51:55:d6:04:77:0f:7d:99: 58:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:11:C9:82:EF:1D:E8:DC:36:74:18:90:CC:3D:29:DB:F8:55:88:A9 X509v3 Authority Key Identifier: keyid:79:D6:6C:64:A6:16:5A:2E:4C:B3:7D:49:70:0E:6C:76:18:41:C3:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/edZsZKYWWi5Ms31JcA5sdhhBw5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/edZsZKYWWi5Ms31JcA5sdhhBw5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/1DE5F30A87F211ECBEBC5339C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 114.130.128.0/18 114.130.224.0/20 123.49.0.0/18 180.211.128.0/17 203.112.192.0/19 IPv6: 2407:5000::/32 Signature Algorithm: sha256WithRSAEncryption 82:6d:20:28:6d:4e:6b:f8:3b:7c:bd:ad:f4:01:82:d6:94:47: 79:70:59:f5:92:c7:45:30:64:98:b3:05:19:41:b8:02:30:84: b1:ef:3b:3c:b1:61:ef:af:81:b0:c3:52:e6:df:7b:1d:5d:90: de:39:de:79:78:71:5a:7f:ef:c8:ad:79:15:d8:0e:01:ae:c7: ba:67:7a:cc:f6:30:5a:8d:0b:93:47:14:d3:75:60:85:7a:e8: cc:19:0f:db:d7:4b:3f:dd:a8:a5:d0:25:bc:ee:0a:e6:26:0d: 42:46:4b:1b:bd:85:40:2a:3c:80:13:be:e3:de:11:b9:15:a0: 11:6a:90:41:f4:2e:c6:11:01:20:8b:c0:25:ba:44:40:ca:92: 9c:eb:40:2d:02:7b:35:e0:90:09:28:5d:04:9a:15:52:a2:64: 14:17:f6:ff:1d:92:d0:b4:6f:a8:54:7f:35:bf:d7:ab:9c:39: 44:32:0b:29:e3:4c:5c:f5:f4:5a:18:37:4c:28:36:f9:22:eb: db:1e:8a:89:ef:76:72:ae:50:2b:f0:33:a8:ef:73:73:5b:4a: 08:b7:f7:82:6b:0e:81:b6:fe:9c:bf:a9:2d:9c:36:5a:67:9e: 26:e6:29:30:d2:d8:12:45:45:fd:a3:aa:59:3e:36:f1:c0:aa: 4c:86:83:22 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICFJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM4NDcxMTAvBgNVBAUTKDc5RDY2QzY0QTYxNjVBMkU0Q0IzN0Q0OTcwMEU2Qzc2 MTg0MUMzOUEwHhcNMjUwOTE4MTcyNjA3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODIyMi1hN2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl1oXA2tkUiaOQHpYXoZ9Ls5JaVtgqZwIhhRFF55C/YpYnCshpnfPsV+MyV9i SS7ugdu5UwyB0FDbWzIcnvhQmgk9MuSK9rizg3liXY+qIJ2+lBAZVWfScDJ0+wby AaxnB3d1HrOqLgeE4E9RGCd1fCAAJapqTaQvltzBH2FF/WjCMgfzDAWUXm1rmfWb V2oCDew9dyQbglJjYTdUzvijhlnpyjRyxjpbTtrK344iMMO8Jfkw5IklnAtcoIzC oJOxFMlT6HXdZRlcVmUl59jCJUJIhfzqR4fORLnro+l0mNher3yCa+YtwI60IDY2 drqCu3fELh9CUVXWBHcPfZlYewIDAQABo4IChzCCAoMwHQYDVR0OBBYEFEURyYLv HejcNnQYkMw9Kdv4VYipMB8GA1UdIwQYMBaAFHnWbGSmFlouTLN9SXAObHYYQcOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzg0Ny9BQ0Y5NDM1MjlB RjMxMUU4QUFCNEQ1NURDNEY5QUUwMi9lZFpzWktZV1dpNU1zMzFKY0E1c2RoaEJ3 NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VkWnNaS1lXV2k1TXMzMUpjQTVzZGhoQnc1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM4NDcvQUNGOTQzNTI5QUYzMTFFOEFBQjRENTVEQzRGOUFFMDIvMURFNUYzMEE4 N0YyMTFFQ0JFQkM1MzM5QzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQGcoKAAwQEcoLgAwQGezEAAwQHtNOAAwQFy3DAMA0EAgACMAcDBQAk B1AAMA0GCSqGSIb3DQEBCwUAA4IBAQCCbSAobU5r+Dt8va30AYLWlEd5cFn1ksdF MGSYswUZQbgCMISx7zs8sWHvr4Gww1Lm33sdXZDeOd55eHFaf+/IrXkV2A4Brse6 Z3rM9jBajQuTRxTTdWCFeujMGQ/b10s/3ail0CW87grmJg1CRksbvYVAKjyAE77j 3hG5FaARapBB9C7GEQEgi8AlukRAypKc60AtAns14JAJKF0EmhVSomQUF/b/HZLQ tG+oVH81v9ernDlEMgsp40xc9fRaGDdMKDb5IuvbHoqJ73ZyrlAr8DOo73NzW0oI t/eCaw6Btv6cv6ktnDZaZ54m5ikw0tgSRUX9o6pZPjbxwKpMhoMi -----END CERTIFICATE-----Generated at Mon Mar 2 04:15:12 2026 by rpki-client