$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa File: 01A59B2EB72111EC9885AF51C4F9AE02.roa (raw, json) Hash identifier: Eo53N7WI4SB/215kE2iQ/8tsmE6ERU72JMSY1b3oTi8= Subject key identifier: FF:33:E2:76:81:7B:0E:3E:90:44:E1:A0:B5:D1:64:C7:F2:9E:AC:C4 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 617C Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa Signing time: Thu 16 Apr 2026 20:25:40 +0000 ROA not before: Thu 16 Apr 2026 20:25:40 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 24462 IP address blocks: 118.143.60.0/24 maxlen: 24 118.143.96.96/32 maxlen: 32 118.143.96.97/32 maxlen: 32 118.143.96.98/32 maxlen: 32 118.143.96.99/32 maxlen: 32 118.143.96.108/32 maxlen: 32 118.143.96.109/32 maxlen: 32 118.143.96.110/32 maxlen: 32 118.143.96.111/32 maxlen: 32 118.143.96.152/32 maxlen: 32 118.143.96.153/32 maxlen: 32 118.143.96.154/32 maxlen: 32 118.143.119.0/24 maxlen: 24 118.143.137.0/24 maxlen: 24 118.143.138.0/24 maxlen: 24 118.143.142.0/24 maxlen: 24 118.143.159.0/24 maxlen: 24 118.143.170.0/24 maxlen: 24 210.0.224.0/24 maxlen: 24 218.188.80.0/24 maxlen: 24 218.189.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:25:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24956 (0x617c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Apr 16 20:25:40 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69e145c4-97cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ce:1b:63:ae:34:a4:fd:06:1c:d3:6f:0b:03: 5e:81:7e:bb:40:4b:54:4c:f4:85:bb:ba:0d:bf:8d: 27:8e:75:90:58:fe:5f:09:46:32:fe:ef:e8:1f:6a: fe:2d:6f:33:1c:11:9b:f2:0d:a9:da:2c:fa:5c:75: 13:56:10:d9:ad:73:78:ca:a4:ad:75:7c:78:f0:25: d4:f9:c9:2e:f0:8c:d0:19:16:13:af:9c:b6:a4:0b: 19:0a:17:43:e1:6a:8d:e9:ea:9d:9b:c1:bc:9b:b7: 5c:7a:48:0f:e3:9a:39:f3:2c:59:18:74:cd:2f:a0: 25:76:f7:a4:7f:bb:52:e5:43:89:53:4c:a3:dc:09: 6e:d0:30:0f:53:cc:16:64:92:8c:f3:7d:3e:51:64: 0a:a8:82:97:81:86:de:48:20:ad:7f:e2:26:b9:68: 11:86:73:91:e3:c4:80:10:d5:32:1e:cb:79:a4:78: e4:b1:db:54:b2:31:83:24:5d:f5:c2:dd:00:72:f4: f6:5a:dd:7b:b3:5c:63:cb:3b:43:b6:13:b8:d3:c7: 6c:d2:71:1a:6d:ad:96:c6:7a:34:05:7d:3a:54:81: db:6c:45:ee:3b:23:8b:b7:f0:d4:03:16:03:3b:c3: 5d:2f:48:e0:ca:d5:f3:53:e4:d0:08:63:c4:b4:24: bf:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:33:E2:76:81:7B:0E:3E:90:44:E1:A0:B5:D1:64:C7:F2:9E:AC:C4 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 118.143.60.0/24 118.143.96.96/30 118.143.96.108/30 118.143.96.152-118.143.96.154 118.143.119.0/24 118.143.137.0-118.143.138.255 118.143.142.0/24 118.143.159.0/24 118.143.170.0/24 210.0.224.0/24 218.188.80.0/24 218.189.74.0/24 Signature Algorithm: sha256WithRSAEncryption 61:f6:42:d7:60:89:be:b9:a2:6d:70:c2:6a:05:64:c4:98:9e: 8c:8c:1e:5e:a4:4d:cb:2f:67:95:82:91:06:2a:44:fc:62:b4: 48:93:54:ea:a2:30:5c:79:04:9f:e0:a9:6d:e2:20:c6:7f:64: 6e:68:f1:e9:aa:14:71:9e:eb:2c:44:1e:91:b4:00:75:82:e5: 0c:7e:dc:b2:60:16:2d:34:bc:6f:e2:90:99:a9:96:ae:08:44: cb:9a:9f:c0:94:d6:0e:9f:7b:1f:25:f7:b5:05:aa:a1:fd:4b: 24:b9:56:04:5c:0a:48:d1:0f:33:bb:7c:87:3c:00:69:7c:19: df:fc:59:55:31:b1:49:e4:63:be:3e:cf:2b:8e:45:bf:67:78: d2:37:cc:16:d1:57:fa:58:ee:d3:7d:b3:c1:3b:7d:51:3d:55: 3a:7b:76:a3:4a:4a:43:57:7e:08:3f:a7:c2:9a:b3:17:98:8e: a8:4d:b7:d8:ce:10:b3:93:84:c6:90:18:d3:33:aa:e1:92:9c: f1:ff:62:5d:9e:95:17:06:c4:23:85:af:7f:c3:c6:8c:8b:b9: d0:76:cb:48:6a:2f:90:98:1c:f8:3c:1e:3d:b3:e3:ed:a3:a9: f5:6c:1d:ca:12:cb:9a:52:7b:fa:cb:ae:2d:d3:ff:97:4a:da: 47:ac:59:02 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICYXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjYwNDE2MjAyNTQwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUxNDVjNC05N2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo84bY640pP0GHNNvCwNegX67QEtUTPSFu7oNv40njnWQWP5fCUYy/u/oH2r+ LW8zHBGb8g2p2iz6XHUTVhDZrXN4yqStdXx48CXU+cku8IzQGRYTr5y2pAsZChdD 4WqN6eqdm8G8m7dcekgP45o58yxZGHTNL6Aldvekf7tS5UOJU0yj3Alu0DAPU8wW ZJKM830+UWQKqIKXgYbeSCCtf+ImuWgRhnOR48SAENUyHst5pHjksdtUsjGDJF31 wt0AcvT2Wt17s1xjyztDthO408ds0nEaba2Wxno0BX06VIHbbEXuOyOLt/DUAxYD O8NdL0jgytXzU+TQCGPEtCS/lwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFP8z4naB ew4+kEThoLXRZMfynqzEMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvMDFBNTlCMkVC NzIxMTFFQzk4ODVBRjUxQzRGOUFFMDIucm9hMHUGCCsGAQUFBwEHAQH/BGYwZDBi BAIAATBcAwQAdo88AwUCdo9gYAMFAnaPYGwwDgMFA3aPYJgDBQB2j2CaAwQAdo93 MAwDBAB2j4kDBAB2j4oDBAB2j44DBAB2j58DBAB2j6oDBADSAOADBADavFADBADa vUowDQYJKoZIhvcNAQELBQADggEBAGH2Qtdgib65om1wwmoFZMSYnoyMHl6kTcsv Z5WCkQYqRPxitEiTVOqiMFx5BJ/gqW3iIMZ/ZG5o8emqFHGe6yxEHpG0AHWC5Qx+ 3LJgFi00vG/ikJmplq4IRMuan8CU1g6fex8l97UFqqH9SyS5VgRcCkjRDzO7fIc8 AGl8Gd/8WVUxsUnkY74+zyuORb9neNI3zBbRV/pY7tN9s8E7fVE9VTp7dqNKSkNX fgg/p8KasxeYjqhNt9jOELOThMaQGNMzquGSnPH/Yl2elRcGxCOFr3/DxoyLudB2 y0hqL5CYHPg8Hj2z4+2jqfVsHcoSy5pSe/rLri3T/5dK2kesWQI= -----END CERTIFICATE-----Generated at Fri Apr 17 13:36:47 2026 by rpki-client