$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa File: 01A59B2EB72111EC9885AF51C4F9AE02.roa (raw, json) Hash identifier: 6W5RZ8iNRVSsSS/c55qq1CjJR8MOUGy0O9ZIoemI6yA= Subject key identifier: 3E:37:EB:1E:7B:E5:9F:57:A3:0D:CB:71:8D:EA:07:96:C3:AA:CF:92 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 6148 Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:39:25 +0000 ROA not before: Sat 17 May 2025 20:23:59 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24462 IP address blocks: 118.143.60.0/24 maxlen: 24 118.143.96.96/32 maxlen: 32 118.143.96.97/32 maxlen: 32 118.143.96.98/32 maxlen: 32 118.143.96.99/32 maxlen: 32 118.143.96.108/32 maxlen: 32 118.143.96.109/32 maxlen: 32 118.143.96.110/32 maxlen: 32 118.143.96.111/32 maxlen: 32 118.143.96.152/32 maxlen: 32 118.143.96.153/32 maxlen: 32 118.143.96.154/32 maxlen: 32 118.143.119.0/24 maxlen: 24 118.143.137.0/24 maxlen: 24 118.143.138.0/24 maxlen: 24 118.143.142.0/24 maxlen: 24 118.143.159.0/24 maxlen: 24 118.143.170.0/24 maxlen: 24 210.0.224.0/24 maxlen: 24 218.188.80.0/24 maxlen: 24 218.189.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24904 (0x6148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: May 17 20:23:59 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a487dd-3411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a7:1f:a8:71:20:16:d3:5a:e3:b9:0b:c7:19: e4:ef:8b:c1:75:b9:d1:5e:2a:8d:a1:56:39:0f:5f: 0a:24:56:88:ad:ec:89:30:2d:69:ae:f3:e2:b8:29: cf:30:d2:ac:06:36:9b:6c:7f:3b:47:6a:6b:80:6b: c6:7d:6c:be:d2:78:6f:58:30:1f:2f:c6:57:2e:5e: 43:ed:b4:7a:0c:26:09:f7:25:69:0e:d2:af:79:ba: 4c:4f:94:16:03:55:99:70:b4:83:4d:a0:a1:f0:fe: 13:30:03:c3:fc:50:33:b9:63:a3:79:47:15:62:6b: 89:4e:62:be:db:b1:f5:b1:97:e7:d0:55:13:71:36: 7a:26:74:cf:10:56:53:21:ad:b6:db:f5:17:84:74: a3:66:6b:e4:69:81:62:9a:17:6b:d4:22:35:80:a9: 36:34:86:96:93:5e:da:2f:cc:54:9a:8a:ed:21:07: f2:68:de:75:ee:f5:7b:4c:95:28:02:e5:8e:d7:e1: 8c:aa:65:90:28:e9:a7:62:13:ee:dd:bd:2c:cb:cd: db:03:62:ae:53:ad:1e:e5:0f:36:d6:2b:2a:c5:a8: ad:28:8f:7d:b9:92:b3:90:04:43:82:8b:1b:0b:50: 28:d2:2d:6b:2a:7b:30:8a:d5:c3:7d:91:53:57:52: 08:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:37:EB:1E:7B:E5:9F:57:A3:0D:CB:71:8D:EA:07:96:C3:AA:CF:92 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 118.143.60.0/24 118.143.96.96/30 118.143.96.108/30 118.143.96.152-118.143.96.154 118.143.119.0/24 118.143.137.0-118.143.138.255 118.143.142.0/24 118.143.159.0/24 118.143.170.0/24 210.0.224.0/24 218.188.80.0/24 218.189.74.0/24 Signature Algorithm: sha256WithRSAEncryption 31:74:7b:f0:26:de:f7:7f:b1:04:7a:84:9d:82:16:3c:75:4f: 74:9d:b0:3d:2b:01:bd:e1:81:7d:f4:48:78:ff:80:07:95:e7: 30:dc:5a:77:07:2f:9f:83:10:a5:7a:a6:84:9c:18:a8:3f:cf: bc:bc:03:e1:75:52:dc:fb:f5:8b:43:ab:7f:4a:d6:97:9c:2d: e9:1f:1e:da:87:9f:ef:10:6d:e3:ac:20:95:fd:e4:90:64:64: be:a9:aa:5d:01:12:28:c7:e8:7f:81:28:ee:8b:4a:55:08:8d: 6e:07:2b:5d:4f:ee:2e:5c:92:8d:46:2c:a1:35:6a:b2:22:5c: ce:5c:8a:03:56:de:ce:49:5d:61:13:2e:c0:f9:6b:0e:3b:c1: ac:09:76:ff:13:72:91:85:22:15:d5:bd:53:e9:ad:b7:1c:f5: a9:87:e3:05:7f:07:05:1f:f4:85:25:7c:0b:ad:1c:f4:3a:51: 92:fe:4f:a5:75:4b:2b:c5:fb:e1:34:76:e5:d7:75:ce:59:d1: 53:e2:bc:5a:86:63:3b:27:66:7e:bd:74:79:ca:c8:f5:a1:38: f0:e7:24:c1:66:53:14:30:1e:8b:fb:66:7b:ff:96:d8:6f:32: 6d:f9:cb:48:c1:2d:18:31:f9:db:b5:c4:38:c4:37:74:e7:86: 72:ed:3f:17 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICYUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNTE3MjAyMzU5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODdkZC0zNDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApacfqHEgFtNa47kLxxnk74vBdbnRXiqNoVY5D18KJFaIreyJMC1prvPiuCnP MNKsBjabbH87R2prgGvGfWy+0nhvWDAfL8ZXLl5D7bR6DCYJ9yVpDtKvebpMT5QW A1WZcLSDTaCh8P4TMAPD/FAzuWOjeUcVYmuJTmK+27H1sZfn0FUTcTZ6JnTPEFZT Ia222/UXhHSjZmvkaYFimhdr1CI1gKk2NIaWk17aL8xUmortIQfyaN517vV7TJUo AuWO1+GMqmWQKOmnYhPu3b0sy83bA2KuU60e5Q821isqxaitKI99uZKzkARDgosb C1Ao0i1rKnswitXDfZFTV1IIeQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFD436x57 5Z9Xow3LcY3qB5bDqs+SMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvMDFBNTlCMkVC NzIxMTFFQzk4ODVBRjUxQzRGOUFFMDIucm9hMHUGCCsGAQUFBwEHAQH/BGYwZDBi BAIAATBcAwQAdo88AwUCdo9gYAMFAnaPYGwwDgMFA3aPYJgDBQB2j2CaAwQAdo93 MAwDBAB2j4kDBAB2j4oDBAB2j44DBAB2j58DBAB2j6oDBADSAOADBADavFADBADa vUowDQYJKoZIhvcNAQELBQADggEBADF0e/Am3vd/sQR6hJ2CFjx1T3SdsD0rAb3h gX30SHj/gAeV5zDcWncHL5+DEKV6poScGKg/z7y8A+F1Utz79YtDq39K1pecLekf HtqHn+8QbeOsIJX95JBkZL6pql0BEijH6H+BKO6LSlUIjW4HK11P7i5cko1GLKE1 arIiXM5cigNW3s5JXWETLsD5aw47wawJdv8TcpGFIhXVvVPprbcc9amH4wV/BwUf 9IUlfAutHPQ6UZL+T6V1SyvF++E0duXXdc5Z0VPivFqGYzsnZn69dHnKyPWhOPDn JMFmUxQwHov7Znv/lthvMm35y0jBLRgx+du1xDjEN3TnhnLtPxc= -----END CERTIFICATE-----Generated at Mon Mar 2 05:42:31 2026 by rpki-client