$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/64120230B2C211EFA43BF057C4F9AE02.roa File: 64120230B2C211EFA43BF057C4F9AE02.roa (raw, json) Hash identifier: 5jFDM5lX5s3urFXGb48BjZ0r/kJ99WCsk252JXd/sdo= Subject key identifier: E7:07:C9:08:2B:D6:BF:7F:07:17:85:5E:48:D6:B4:0D:4C:33:5D:4C Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 01D2 Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/64120230B2C211EFA43BF057C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:38:37 +0000 ROA not before: Tue 15 Apr 2025 03:39:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1851 IP address blocks: 129.127.0.0/16 maxlen: 16 192.43.227.0/24 maxlen: 24 192.43.228.0/24 maxlen: 24 192.160.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Apr 15 03:39:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3ecfd-5304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:55:9f:32:80:cf:06:0d:02:bc:14:8b:81:24: 4d:09:fd:be:d4:83:b9:9b:00:c1:bd:4e:66:8e:84: 9b:66:f7:a8:2e:f2:ea:fc:61:52:d3:96:ef:bf:28: f8:d5:86:06:d4:15:6b:2b:ee:19:e6:27:27:0d:33: a1:d7:7c:46:cc:65:2b:a8:53:b2:e5:38:cc:de:19: f2:65:64:2d:18:77:82:ed:1e:0e:b7:25:99:b4:d7: c9:22:5e:56:5c:48:71:06:91:23:6a:d8:08:e3:cc: 27:36:4c:a7:79:a1:56:6d:5e:9d:65:0c:41:65:5e: 09:a8:c6:0c:a1:4e:93:b7:f9:95:6b:12:a7:1b:f4: 92:73:b4:b5:8e:02:44:ef:bf:99:72:1d:bb:8e:79: 15:4c:c9:9f:56:6c:45:29:12:eb:b4:92:61:f6:52: 6d:ee:65:0c:50:78:52:26:5d:30:08:80:44:39:44: fa:50:87:9f:38:ce:d0:ee:26:d9:2a:8d:90:86:bc: 51:54:a6:ad:0e:85:b2:9b:e1:60:f0:14:f4:56:d1: f7:61:eb:ff:a3:9e:b2:0c:89:b6:1c:bf:f1:85:d3: e9:1d:5d:41:43:71:79:c6:03:23:9d:c2:b3:01:97: 78:06:17:9b:67:7f:c0:54:2d:8c:a6:0a:9d:61:52: 67:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:07:C9:08:2B:D6:BF:7F:07:17:85:5E:48:D6:B4:0D:4C:33:5D:4C X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/64120230B2C211EFA43BF057C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 129.127.0.0/16 192.43.227.0-192.43.228.255 192.160.71.0/24 Signature Algorithm: sha256WithRSAEncryption 68:22:ee:55:e4:eb:f7:66:7c:70:39:f0:0e:8a:3f:d8:28:e5: f9:8a:79:21:c3:a9:ba:d5:69:1b:0e:b1:91:83:c0:9c:6c:1d: a9:12:a1:03:59:16:0d:33:8b:72:bf:86:99:68:c1:ce:93:64: 5e:8b:f9:80:b3:c5:86:70:99:e9:aa:bb:7c:eb:a5:43:ca:dc: 13:6a:71:f1:9d:7e:c6:34:6c:0f:7d:e7:a8:6a:18:ae:bf:0c: a2:20:cc:30:df:f8:f5:b3:3d:44:7a:19:83:c4:6a:80:cc:fc: e2:fc:18:55:1c:3d:46:d6:d6:90:e6:7d:85:86:e9:82:d5:51: e7:fb:63:87:e3:56:f1:3e:b0:4a:a6:65:c5:b9:85:7c:c0:0c: d7:2b:60:7e:fb:6d:6c:e3:b7:67:ce:61:16:5b:72:e7:69:c9: da:c1:89:12:52:41:7b:ed:ba:dc:c7:e7:56:f5:0e:1d:05:de: 69:66:a2:37:06:9f:d6:b4:60:1e:fb:23:04:a9:eb:dd:02:c7: bd:e4:c3:da:e1:f0:9c:a9:93:c2:f2:9c:6f:b7:e8:a7:7c:3a: d2:08:5c:39:a0:1a:27:56:2b:28:af:9b:9c:e8:5b:82:eb:d1: 70:c7:94:64:d0:74:dd:b1:56:53:06:63:83:46:d0:52:44:42: f9:ca:d7:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUwNDE1MDMzOTM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWNmZC01MzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFWfMoDPBg0CvBSLgSRNCf2+1IO5mwDBvU5mjoSbZveoLvLq/GFS05bvvyj4 1YYG1BVrK+4Z5icnDTOh13xGzGUrqFOy5TjM3hnyZWQtGHeC7R4OtyWZtNfJIl5W XEhxBpEjatgI48wnNkyneaFWbV6dZQxBZV4JqMYMoU6Tt/mVaxKnG/SSc7S1jgJE 77+Zch27jnkVTMmfVmxFKRLrtJJh9lJt7mUMUHhSJl0wCIBEOUT6UIefOM7Q7ibZ Ko2QhrxRVKatDoWym+Fg8BT0VtH3Yev/o56yDIm2HL/xhdPpHV1BQ3F5xgMjncKz AZd4BhebZ3/AVC2MpgqdYVJn4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOcHyQgr 1r9/BxeFXkjWtA1MM11MMB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U1QTYvQUFCMzNFNEM1QjNGMTFFRThGMUQzRDZFQzRGOUFFMDIvNjQxMjAyMzBC MkMyMTFFRkE0M0JGMDU3QzRGOUFFMDIucm9hMDIGCCsGAQUFBwEHAQH/BCMwITAf BAIAATAZAwMAgX8wDAMEAMAr4wMEAMAr5AMEAMCgRzANBgkqhkiG9w0BAQsFAAOC AQEAaCLuVeTr92Z8cDnwDoo/2Cjl+Yp5IcOputVpGw6xkYPAnGwdqRKhA1kWDTOL cr+GmWjBzpNkXov5gLPFhnCZ6aq7fOulQ8rcE2px8Z1+xjRsD33nqGoYrr8MoiDM MN/49bM9RHoZg8RqgMz84vwYVRw9RtbWkOZ9hYbpgtVR5/tjh+NW8T6wSqZlxbmF fMAM1ytgfvttbOO3Z85hFlty52nJ2sGJElJBe+263MfnVvUOHQXeaWaiNwaf1rRg HvsjBKnr3QLHveTD2uHwnKmTwvKcb7fop3w60ghcOaAaJ1YrKK+bnOhbguvRcMeU ZNB03bFWUwZjg0bQUkRC+crXsw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:11:15 2026 by rpki-client