$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa File: 8FFA8D36FF0C11EA854DE24CC4F9AE02.roa (raw, json) Hash identifier: HsPsvuGBK9SogOUxERs+Vgxk5WHq5QMJFgIZK/a9Ad0= Subject key identifier: 5D:7A:43:82:B5:D2:60:11:67:F3:DC:38:00:4A:D0:7D:0C:2C:FB:09 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 6180 Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa Signing time: Thu 16 Apr 2026 20:25:48 +0000 ROA not before: Thu 16 Apr 2026 20:25:48 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 55355 IP address blocks: 118.143.194.0/24 maxlen: 24 118.143.207.0/24 maxlen: 24 118.143.209.0/24 maxlen: 24 218.188.96.0/24 maxlen: 24 218.188.97.0/24 maxlen: 24 218.188.98.0/24 maxlen: 24 218.188.99.0/24 maxlen: 24 218.188.100.0/24 maxlen: 24 218.188.101.0/24 maxlen: 24 218.188.102.0/24 maxlen: 24 218.189.10.0/24 maxlen: 24 218.189.124.0/24 maxlen: 24 218.189.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:25:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24960 (0x6180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Apr 16 20:25:48 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69e145cc-7511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:51:a6:5c:b9:ed:0e:d5:e7:15:e7:5c:e6:de: 95:0a:b0:1c:e5:8a:69:df:da:cc:a0:15:ae:9b:3b: 4a:67:ec:50:b2:cc:97:fe:9f:78:a4:7c:94:62:8c: b6:99:e3:4e:0f:ba:1a:f4:bf:13:a7:b3:79:bf:e2: 86:31:15:b8:d3:e4:07:a2:00:aa:b6:d2:c3:5f:21: 6b:71:a3:9b:ae:77:54:54:0d:f6:9a:7a:64:33:ec: a8:e3:58:92:2e:dd:6e:8c:0f:98:06:f3:7e:d4:6d: f9:f6:62:f1:65:2b:13:ef:a8:25:42:a0:6a:8b:b4: 71:4a:c6:f7:60:de:03:30:89:84:11:c7:ca:a4:dc: 44:8d:51:f8:b3:22:71:4d:bf:04:05:ae:86:ea:69: b8:71:a3:dd:95:1e:78:f6:f8:01:5e:40:cf:9b:f6: 29:89:1e:81:3c:d2:43:73:f1:36:7e:49:fb:b9:84: e1:db:5e:c9:16:96:4e:b6:ee:69:b1:87:ea:ca:51: c7:b1:7a:ca:2d:4e:fa:ad:c6:79:67:f4:da:8f:72: 5d:0e:2d:6d:75:d0:db:b3:a5:54:86:0b:c5:80:7c: ab:c8:96:4b:4a:a2:2e:23:30:8c:01:60:0a:9c:03: b6:98:21:00:ce:63:7a:18:8f:a1:e4:dc:b7:e1:0d: 8e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:7A:43:82:B5:D2:60:11:67:F3:DC:38:00:4A:D0:7D:0C:2C:FB:09 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 118.143.194.0/24 118.143.207.0/24 118.143.209.0/24 218.188.96.0-218.188.102.255 218.189.10.0/24 218.189.124.0/23 Signature Algorithm: sha256WithRSAEncryption 97:af:f2:26:42:15:2e:a9:19:ba:8d:a8:b7:54:ab:60:b1:45: ee:53:fc:46:60:42:a0:48:d1:88:85:c9:b9:94:fa:3d:3b:eb: 90:6e:1b:4f:d2:0b:a1:81:48:90:54:2d:c9:46:cb:4f:88:e4: 18:d6:41:4f:8a:bc:c0:a6:f3:ed:ae:ab:a6:86:33:49:88:ba: cd:07:90:ab:dc:9e:9b:bd:9f:b0:52:a5:8c:bc:ca:09:8f:f8: e2:b8:2c:52:e0:01:eb:1c:82:b4:b5:fa:31:7e:86:e3:90:7e: c4:d9:97:9b:e0:8a:5e:46:ba:b4:18:9c:32:2f:c6:29:cf:7f: 55:22:b5:79:6a:33:52:49:4f:3a:f5:ee:22:c6:df:4e:fc:09: b5:33:9e:5b:d6:8a:26:f2:b7:26:a1:6f:6c:7c:df:a6:66:79: 02:2f:6c:7e:dc:07:d4:9d:fe:91:f5:7f:54:00:18:f6:bf:40: 42:78:5f:6b:eb:ef:90:9c:dc:cf:61:f6:88:ae:f7:33:3e:cc: ad:cc:ff:24:51:74:ae:5f:d9:2a:46:67:42:73:b1:0c:df:da: 47:88:c5:57:6d:b8:d6:9b:87:67:a2:e2:6e:f5:a9:f3:87:07: e9:d0:37:1b:03:fd:00:08:b8:81:b5:2d:2e:6c:d9:a1:99:38: b6:ab:7c:6c -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICYYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjYwNDE2MjAyNTQ4WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUxNDVjYy03NTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslGmXLntDtXnFedc5t6VCrAc5Ypp39rMoBWumztKZ+xQssyX/p94pHyUYoy2 meNOD7oa9L8Tp7N5v+KGMRW40+QHogCqttLDXyFrcaObrndUVA32mnpkM+yo41iS Lt1ujA+YBvN+1G359mLxZSsT76glQqBqi7RxSsb3YN4DMImEEcfKpNxEjVH4syJx Tb8EBa6G6mm4caPdlR549vgBXkDPm/YpiR6BPNJDc/E2fkn7uYTh217JFpZOtu5p sYfqylHHsXrKLU76rcZ5Z/Taj3JdDi1tddDbs6VUhgvFgHyryJZLSqIuIzCMAWAK nAO2mCEAzmN6GI+h5Ny34Q2ObwIDAQABo4IChjCCAoIwHQYDVR0OBBYEFF16Q4K1 0mARZ/PcOABK0H0MLPsJMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvOEZGQThEMzZG RjBDMTFFQTg1NERFMjRDQzRGOUFFMDIucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAy BAIAATAsAwQAdo/CAwQAdo/PAwQAdo/RMAwDBAXavGADBADavGYDBADavQoDBAHa vXwwDQYJKoZIhvcNAQELBQADggEBAJev8iZCFS6pGbqNqLdUq2CxRe5T/EZgQqBI 0YiFybmU+j0765BuG0/SC6GBSJBULclGy0+I5BjWQU+KvMCm8+2uq6aGM0mIus0H kKvcnpu9n7BSpYy8ygmP+OK4LFLgAescgrS1+jF+huOQfsTZl5vgil5GurQYnDIv xinPf1UitXlqM1JJTzr17iLG3078CbUznlvWiibytyahb2x836ZmeQIvbH7cB9Sd /pH1f1QAGPa/QEJ4X2vr75Cc3M9h9oiu9zM+zK3M/yRRdK5f2SpGZ0JzsQzf2keI xVdtuNabh2ei4m71qfOHB+nQNxsD/QAIuIG1LS5s2aGZOLarfGw= -----END CERTIFICATE-----Generated at Fri Apr 17 16:21:59 2026 by rpki-client