$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/99D9487EEAFE11EE9EFB1977C4F9AE02.roa File: 99D9487EEAFE11EE9EFB1977C4F9AE02.roa (raw, json) Hash identifier: r+rDJahzPixxAjzmqTUPn62dEH8A/VX/HpNcCWFF9+8= Subject key identifier: 77:66:C1:05:8C:FC:99:F2:B8:E4:CB:24:AC:D5:57:27:A3:7E:1C:B6 Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 0379 Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/99D9487EEAFE11EE9EFB1977C4F9AE02.roa Signing time: Fri 05 Jun 2026 02:33:42 +0000 ROA not before: Fri 05 Jun 2026 02:33:42 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 151487 IP address blocks: 123.108.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 889 (0x379) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550, serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: Jun 5 02:33:42 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a223586-6c55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4e:1e:20:47:83:0c:46:11:1a:8f:ca:e7:bb: 25:8f:50:2d:6a:46:37:1b:d3:bd:b8:c4:00:02:ac: 98:b5:46:13:0a:89:cb:41:1c:50:4d:5c:f9:b4:25: de:c0:fa:15:48:66:cd:fa:31:52:87:ae:13:ee:33: fd:f4:08:db:6d:9d:2f:77:f4:40:0d:27:8c:5e:89: 22:f0:e6:d9:17:d2:43:11:5a:28:7d:2c:ed:17:3b: a6:b1:73:ba:ee:fa:7f:23:8f:48:fa:4a:a5:30:95: f2:4b:98:0b:5f:84:6e:23:62:d9:ea:ef:5f:8f:c3: 2a:56:f3:0d:a8:17:5f:ca:ce:2d:96:cd:42:96:32: e6:e9:cb:c2:f3:03:5f:81:49:81:e5:a5:06:87:2c: 3c:34:ae:75:e3:c3:4a:1e:c1:95:93:9c:88:0a:09: 93:5d:99:1f:25:cd:1a:b0:13:02:27:54:36:dc:9d: f2:46:d5:10:e8:1d:0d:45:ea:7b:67:32:a6:5f:d9: 9c:25:53:12:39:22:34:16:65:83:88:98:6e:b5:b5: fc:5a:80:d0:9c:17:28:7e:39:ed:b9:7b:a1:ea:ec: fa:6c:7c:db:a1:59:62:27:c8:92:39:20:c1:49:e7: dd:b4:e4:b3:71:a8:01:8e:aa:ac:12:43:5d:af:73: 14:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:66:C1:05:8C:FC:99:F2:B8:E4:CB:24:AC:D5:57:27:A3:7E:1C:B6 X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/99D9487EEAFE11EE9EFB1977C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.108.70.0/24 Signature Algorithm: sha256WithRSAEncryption 23:c3:9f:2d:cf:f4:50:e9:3c:de:1e:11:73:98:38:2e:47:f9: ec:d6:e7:8e:1f:e9:e7:72:72:f4:7d:e5:2e:c4:2d:cc:e4:b3: af:cd:53:62:ad:57:e8:d3:fa:06:36:8f:11:a0:43:cc:4b:c1: 10:56:be:16:31:d5:b9:d9:da:72:e3:1b:2d:d3:30:4e:6e:ad: b8:8b:5c:ec:5f:36:a5:9f:d6:60:58:cd:87:7b:eb:71:32:b8: 78:e2:e4:0f:a5:31:1e:b5:31:51:f9:cc:97:46:57:20:64:da: f2:8c:85:ad:17:eb:9f:92:9d:82:f5:0b:47:c4:83:10:62:86: dc:42:dd:55:48:78:2e:3f:63:c3:cb:c9:72:dd:2b:e1:d1:23: 73:c6:8b:19:d3:a1:06:47:27:80:72:06:43:96:ec:4a:d9:50: 45:9b:d7:e8:f9:1b:2a:77:cc:a5:db:3d:90:07:19:63:bf:54: 87:81:64:7e:51:23:75:29:10:c8:11:22:bc:67:13:01:ed:27: 6f:9f:7c:70:71:2d:64:ef:52:fe:81:7b:08:b1:c4:08:d7:b3: 98:93:9e:a5:86:6c:48:ca:f7:ba:39:86:f4:6c:54:b6:73:7c: 34:90:59:aa:3f:3d:4d:67:dd:9c:4d:19:f7:a4:a6:40:62:a9: a3:f5:4d:f1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjYwNjA1MDIzMzQyWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyMzU4Ni02YzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsE4eIEeDDEYRGo/K57slj1AtakY3G9O9uMQAAqyYtUYTConLQRxQTVz5tCXe wPoVSGbN+jFSh64T7jP99AjbbZ0vd/RADSeMXoki8ObZF9JDEVoofSztFzumsXO6 7vp/I49I+kqlMJXyS5gLX4RuI2LZ6u9fj8MqVvMNqBdfys4tls1CljLm6cvC8wNf gUmB5aUGhyw8NK5148NKHsGVk5yICgmTXZkfJc0asBMCJ1Q23J3yRtUQ6B0NRep7 ZzKmX9mcJVMSOSI0FmWDiJhutbX8WoDQnBcofjntuXuh6uz6bHzboVliJ8iSOSDB SefdtOSzcagBjqqsEkNdr3MUwwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHdmwQWM /JnyuOTLJKzVVyejfhy2MB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvOTlEOTQ4N0VF QUZFMTFFRTlFRkIxOTc3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAe2xGMA0GCSqGSIb3DQEBCwUAA4IBAQAjw58tz/RQ6TzeHhFzmDgu R/ns1ueOH+nncnL0feUuxC3M5LOvzVNirVfo0/oGNo8RoEPMS8EQVr4WMdW52dpy 4xst0zBObq24i1zsXzaln9ZgWM2He+txMrh44uQPpTEetTFR+cyXRlcgZNryjIWt F+ufkp2C9QtHxIMQYobcQt1VSHguP2PDy8ly3Svh0SNzxosZ06EGRyeAcgZDluxK 2VBFm9fo+Rsqd8yl2z2QBxljv1SHgWR+USN1KRDIESK8ZxMB7Sdvn3xwcS1k71L+ gXsIscQI17OYk56lhmxIyve6OYb0bFS2c3w0kFmqPz1NZ92cTRn3pKZAYqmj9U3x -----END CERTIFICATE-----Generated at Sat Jun 13 08:32:08 2026 by rpki-client