$ rpki-client -vvf rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/3FEFA562483D11EC82E81112C4F9AE02.roa File: 3FEFA562483D11EC82E81112C4F9AE02.roa (raw, json) Hash identifier: pMo/am4pbVZVWLjF2BRkcuubhLlI+aH0WTEo1tPr5yU= Subject key identifier: 04:70:7B:B4:BF:A3:2E:DC:1F:A3:1B:A9:3B:EA:91:73:2B:F2:0E:36 Certificate issuer: /CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Certificate serial: 3564 Authority key identifier: BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/3FEFA562483D11EC82E81112C4F9AE02.roa Signing time: Tue 26 May 2026 15:13:01 +0000 ROA not before: Tue 26 May 2026 15:13:01 +0000 ROA not after: Sun 31 Oct 2027 00:00:00 +0000 asID: 45344 IP address blocks: 210.48.216.0/24 maxlen: 24 210.48.217.0/24 maxlen: 24 210.48.218.0/24 maxlen: 24 210.48.219.0/24 maxlen: 24 210.48.220.0/24 maxlen: 24 210.48.221.0/24 maxlen: 24 210.48.222.0/24 maxlen: 24 210.48.223.0/24 maxlen: 24 2001:df0:18::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13668 (0x3564) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C65E8, serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Validity Not Before: May 26 15:13:01 2026 GMT Not After : Oct 31 00:00:00 2027 GMT Subject: CN=6a15b87d-dffc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a3:68:5e:79:8f:63:22:8e:34:4b:62:86:2a: f9:81:19:b4:35:1f:bf:02:90:45:f2:8a:2c:18:92: 30:d0:41:93:48:f0:00:ad:51:b2:2d:7d:d0:3f:14: 86:2d:05:08:2c:95:ac:10:8d:25:59:53:0f:58:6d: 6e:8a:bb:9e:1c:d0:69:37:42:f4:76:31:4c:f6:04: cb:b8:31:9e:62:32:74:d7:aa:e4:00:53:ab:1c:c5: b1:90:c7:64:65:04:6b:4e:44:f0:48:2f:e8:20:f3: 87:be:e4:8e:fc:d8:eb:f9:42:60:80:96:d8:78:35: 20:cf:ce:53:dd:d0:e6:99:0a:9b:f4:11:f9:66:e1: 25:12:2b:72:e4:ae:be:9c:53:db:bf:15:c8:fc:84: bc:1d:1c:f1:98:69:cf:0a:86:c7:94:a0:ff:97:8d: 75:81:f1:d4:07:5d:3f:2e:30:07:19:ec:67:b9:03: 08:ca:33:e1:36:53:77:40:75:46:aa:08:c1:42:dd: 93:a4:7a:5c:fe:97:64:8c:7f:af:f5:cc:d3:37:91: f6:17:4f:69:81:e2:e1:c9:52:72:c4:b1:d8:94:9f: 51:af:4d:ed:e0:77:89:bc:24:9b:2e:0a:f6:f9:7e: fe:aa:68:9e:3f:5f:23:70:a2:b0:15:4d:53:66:4e: d9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:70:7B:B4:BF:A3:2E:DC:1F:A3:1B:A9:3B:EA:91:73:2B:F2:0E:36 X509v3 Authority Key Identifier: keyid:BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/3FEFA562483D11EC82E81112C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 210.48.216.0/21 IPv6: 2001:df0:18::/48 Signature Algorithm: sha256WithRSAEncryption 73:c9:bb:12:c1:aa:06:ea:13:1e:fc:ef:dd:f6:1d:e0:79:f5: 12:5f:66:45:92:1d:2b:da:44:fe:5d:11:ad:09:d5:63:81:e4: 64:30:8e:f6:cd:af:11:fd:b4:8c:47:3b:65:0e:85:36:c6:fa: 41:25:aa:fa:62:8e:77:83:78:7a:3b:55:cd:f7:f5:cf:2b:cc: a2:19:0e:df:30:50:fa:8c:30:34:b2:ee:f1:16:5f:13:11:ef: 6a:b8:47:a2:c3:e8:c5:3f:5d:2b:37:f1:f3:cd:57:54:5f:6f: e4:98:b0:8d:1e:36:d7:b1:cb:b7:b9:65:ad:a9:c1:30:fe:24: 3e:26:cb:b5:4b:0e:ed:b0:f9:52:4c:4b:f8:bf:5a:07:cb:a2: 46:9f:0f:df:65:0c:b6:09:7c:0d:e9:a7:ea:5e:37:8c:cc:a2: 64:25:93:47:6d:63:80:43:b0:cc:f6:de:33:40:50:18:50:f1: 03:eb:4a:5e:df:3b:a1:50:2e:d4:bd:62:f6:0d:07:2d:43:3c: 70:2b:f6:4c:48:f6:b6:be:1e:65:e2:32:31:64:07:ae:b9:3e: ca:de:19:59:a4:a9:b9:14:fb:60:aa:46:0b:d8:4e:9c:6a:8f: d1:ad:f1:b1:56:51:89:6d:9a:3e:5e:22:2a:ce:5d:ab:fa:52: 41:c6:8a:18 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICNWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1RTgxMTAvBgNVBAUTKEJDRENFOEIwNkYwNTk2MjM0MDMwMEM5QzQ3NDdCNUEy NTFBMjE5QzQwHhcNMjYwNTI2MTUxMzAxWhcNMjcxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE1Yjg3ZC1kZmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKNoXnmPYyKONEtihir5gRm0NR+/ApBF8oosGJIw0EGTSPAArVGyLX3QPxSG LQUILJWsEI0lWVMPWG1uirueHNBpN0L0djFM9gTLuDGeYjJ016rkAFOrHMWxkMdk ZQRrTkTwSC/oIPOHvuSO/Njr+UJggJbYeDUgz85T3dDmmQqb9BH5ZuElEity5K6+ nFPbvxXI/IS8HRzxmGnPCobHlKD/l411gfHUB10/LjAHGexnuQMIyjPhNlN3QHVG qgjBQt2TpHpc/pdkjH+v9czTN5H2F09pgeLhyVJyxLHYlJ9Rr03t4HeJvCSbLgr2 +X7+qmieP18jcKKwFU1TZk7ZAwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFARwe7S/ oy7cH6MbqTvqkXMr8g42MB8GA1UdIwQYMBaAFLzc6LBvBZYjQDAMnEdHtaJRohnE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjVFOC9BMUYyM0E2NDFE OTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4RmxpTkFNQXljUjBlMW9sR2lH Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOem9zRzhGbGlOQU1BeWNSMGUxb2xHaUdjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1RTgvQTFGMjNBNjQxRDk5MTFFMjk1RUI1Mjg2MDhCMDJDRDIvM0ZFRkE1NjI0 ODNEMTFFQzgyRTgxMTEyQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQD0jDYMA8EAgACMAkDBwAgAQ3wABgwDQYJKoZIhvcNAQELBQADggEB AHPJuxLBqgbqEx787932HeB59RJfZkWSHSvaRP5dEa0J1WOB5GQwjvbNrxH9tIxH O2UOhTbG+kElqvpijneDeHo7Vc339c8rzKIZDt8wUPqMMDSy7vEWXxMR72q4R6LD 6MU/XSs38fPNV1Rfb+SYsI0eNtexy7e5Za2pwTD+JD4my7VLDu2w+VJMS/i/WgfL okafD99lDLYJfA3pp+peN4zMomQlk0dtY4BDsMz23jNAUBhQ8QPrSl7fO6FQLtS9 YvYNBy1DPHAr9kxI9ra+HmXiMjFkB665PsreGVmkqbkU+2CqRgvYTpxqj9Gt8bFW UYltmj5eIirOXav6UkHGihg= -----END CERTIFICATE-----Generated at Sat Jun 13 13:26:07 2026 by rpki-client