$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/DD4D220864E911F1A579DE837247A888.roa File: DD4D220864E911F1A579DE837247A888.roa (raw, json) Hash identifier: PJ+VFRJhizzcvscQoOveECXitMEMv9OUrx+KwqGg0n0= Subject key identifier: 65:A5:A0:F8:EE:06:29:22:48:D0:93:CF:E8:25:23:E6:C6:03:E3:99 Certificate issuer: /CN=A91BDEEB/serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Certificate serial: 0127 Authority key identifier: 6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/DD4D220864E911F1A579DE837247A888.roa Signing time: Wed 10 Jun 2026 16:31:43 +0000 ROA not before: Wed 10 Jun 2026 16:31:43 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 133661 IP address blocks: 163.61.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 06:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDEEB, serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Validity Not Before: Jun 10 16:31:43 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=6a29916f-5c0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:78:3c:39:9f:4e:ae:62:b2:fa:0e:38:5a:8e: 09:94:15:d3:62:1a:04:3e:48:54:7d:46:bc:ec:3a: 96:24:ef:aa:ec:21:ee:e9:bc:1d:8a:fa:96:c2:8e: 30:98:30:d2:80:65:b7:04:00:7e:8d:e1:11:9b:db: 58:ef:8f:c7:57:79:a1:3c:b3:33:18:19:e7:8d:19: b6:2e:2a:1d:1e:31:ee:ad:fc:bb:21:16:24:ef:61: 16:60:37:6e:6a:14:37:0d:5a:20:ec:3f:65:75:e6: bc:b5:59:02:fe:1c:42:9a:44:73:f5:87:64:81:37: 30:1c:34:5c:ae:e6:0a:be:24:dd:ee:2a:7e:3f:c1: 83:6c:6d:dd:fa:e1:1f:4e:d1:35:a9:f5:fe:be:8c: 4c:bb:be:42:23:fd:30:fc:f1:ed:b1:eb:fb:13:2a: b5:44:a0:3e:9f:c6:ce:07:6a:0e:98:14:9f:75:ee: 83:77:2d:b5:f9:f8:2c:41:81:a2:79:76:87:20:d3: a4:00:fe:a8:50:49:9e:af:77:5f:e7:f0:cc:b7:09: 5f:e0:06:f0:1f:46:a3:80:c5:9d:bb:00:1d:de:4c: ef:b1:2c:03:8b:71:c8:7d:fb:8a:07:47:4a:b8:84: 97:0c:d5:a6:4d:1a:08:16:a5:33:24:78:64:58:4c: 42:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A5:A0:F8:EE:06:29:22:48:D0:93:CF:E8:25:23:E6:C6:03:E3:99 X509v3 Authority Key Identifier: keyid:6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/DD4D220864E911F1A579DE837247A888.roa sbgp-ipAddrBlock: critical IPv4: 163.61.97.0/24 Signature Algorithm: sha256WithRSAEncryption 61:8e:0e:dc:fb:21:1b:b4:b7:4d:c5:32:cb:ee:02:ef:d4:87: 99:bd:37:b6:a6:fd:c6:f5:6d:23:7c:fa:a8:cf:79:ae:d1:5d: 10:9d:57:c1:2d:71:73:79:d6:07:98:31:68:24:6d:d8:af:e9: 5c:c3:c1:4a:06:b3:02:72:de:df:bb:09:c6:f0:b2:59:c3:0b: bc:79:bd:4e:ea:5a:9d:bb:d9:fe:80:29:7d:2f:b3:f3:1f:08: dd:c2:1d:cf:bc:7e:c4:e8:71:00:a8:3e:ba:d4:b2:e4:fe:05: 00:f8:b7:ca:48:e3:74:1e:92:06:87:9d:87:4a:4a:f8:85:0c: dc:a9:11:10:ed:40:28:57:4f:34:8e:7f:f6:bd:3c:9f:b7:12: dc:30:e9:e7:46:f2:18:2a:22:94:b3:95:3b:ce:8f:19:ab:af: 44:43:bb:92:80:58:d2:51:2f:21:d7:d9:94:ae:1c:9a:42:0b: f8:2c:f0:af:03:be:19:75:0e:ee:7c:fc:8b:4e:26:c1:3d:d3: 41:c5:ce:29:74:a8:67:53:2b:17:59:ba:78:e4:85:42:6b:a2: ad:5f:57:06:5f:24:2d:a8:4c:89:5b:0e:ad:f0:4f:8b:a5:e0: 87:48:93:ff:05:51:2d:cb:ee:6c:e6:54:3b:ec:d4:a6:7a:ec: 40:54:69:76 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRFRUIxMTAvBgNVBAUTKDZCNjNBNjBFN0Q3RjUxRDAzODcyOEM2NDI1OTA2MDQ3 MDE2Qzk5MDQwHhcNMjYwNjEwMTYzMTQzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02YTI5OTE2Zi01YzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxng8OZ9OrmKy+g44Wo4JlBXTYhoEPkhUfUa87DqWJO+q7CHu6bwdivqWwo4w mDDSgGW3BAB+jeERm9tY74/HV3mhPLMzGBnnjRm2LiodHjHurfy7IRYk72EWYDdu ahQ3DVog7D9ldea8tVkC/hxCmkRz9YdkgTcwHDRcruYKviTd7ip+P8GDbG3d+uEf TtE1qfX+voxMu75CI/0w/PHtsev7Eyq1RKA+n8bOB2oOmBSfde6Ddy21+fgsQYGi eXaHINOkAP6oUEmer3df5/DMtwlf4AbwH0ajgMWduwAd3kzvsSwDi3HIffuKB0dK uISXDNWmTRoIFqUzJHhkWExClwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGWloPju BikiSNCTz+glI+bGA+OZMB8GA1UdIwQYMBaAFGtjpg59f1HQOHKMZCWQYEcBbJkE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREVFQi8xRUU3RkE2MEU1 RjQxMUVGQUJEMzlEN0VDNEY5QUUwMi9hMk9tRG4xX1VkQTRjb3hrSlpCZ1J3RnNt UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EyT21EbjFfVWRBNGNveGtKWkJnUndGc21RUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRFRUIvMUVFN0ZBNjBFNUY0MTFFRkFCRDM5RDdFQzRGOUFFMDIvREQ0RDIyMDg2 NEU5MTFGMUE1NzlERTgzNzI0N0E4ODgucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoz1hMA0GCSqGSIb3DQEBCwUAA4IBAQBhjg7c+yEbtLdNxTLL7gLv 1IeZvTe2pv3G9W0jfPqoz3mu0V0QnVfBLXFzedYHmDFoJG3Yr+lcw8FKBrMCct7f uwnG8LJZwwu8eb1O6lqdu9n+gCl9L7PzHwjdwh3PvH7E6HEAqD661LLk/gUA+LfK SON0HpIGh52HSkr4hQzcqREQ7UAoV080jn/2vTyftxLcMOnnRvIYKiKUs5U7zo8Z q69EQ7uSgFjSUS8h19mUrhyaQgv4LPCvA74ZdQ7ufPyLTibBPdNBxc4pdKhnUysX Wbp45IVCa6KtX1cGXyQtqEyJWw6t8E+LpeCHSJP/BVEty+5s5lQ77NSmeuxAVGl2 -----END CERTIFICATE-----Generated at Sat Jun 13 18:52:35 2026 by rpki-client