$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/64120230B2C211EFA43BF057C4F9AE02.roa File: 64120230B2C211EFA43BF057C4F9AE02.roa (raw, json) Hash identifier: qQAFiH8K0tMbZHs9aqKBQOP7+YdRR7v8JEfyMnCNuXA= Subject key identifier: A0:DA:A5:44:DB:AA:94:A9:66:F3:B5:5B:F4:2A:54:D0:E2:F2:98:E9 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 01EA Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/64120230B2C211EFA43BF057C4F9AE02.roa Signing time: Tue 07 Apr 2026 06:40:12 +0000 ROA not before: Tue 07 Apr 2026 06:40:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1851 IP address blocks: 129.127.0.0/16 maxlen: 16 130.220.0.0/16 maxlen: 16 192.43.227.0/24 maxlen: 24 192.43.228.0/24 maxlen: 24 192.160.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Apr 7 06:40:12 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69d4a6cc-2bc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3e:db:0f:b1:f6:88:59:60:3d:d9:b3:d2:f3: 91:34:7c:82:c0:31:6c:23:6b:29:93:46:9f:65:de: 94:f0:2b:53:d5:20:50:08:16:46:64:eb:cb:dd:f6: 9f:e4:d4:a2:f0:a6:d2:b7:1c:ff:4c:a3:69:9b:5a: 5d:3a:cb:39:1d:4f:2b:bb:b7:c0:e8:89:92:56:6e: ad:73:1f:ce:dc:c9:da:0e:60:01:9b:7f:e5:4d:54: cc:0f:8f:ba:de:7c:fb:fa:76:8b:92:e2:d1:68:91: 1a:65:a1:50:b1:9b:66:87:9a:3b:9e:cb:ea:89:2f: a1:29:97:3a:cd:53:66:62:f8:dd:c4:0f:19:21:3a: dc:e8:c0:2c:ea:04:ae:98:5d:79:df:cc:5b:af:84: 48:0e:39:e9:6d:ce:ba:66:7f:30:f9:ad:55:d0:61: 5d:03:52:59:99:ac:66:4d:24:18:28:b7:f1:51:8e: b8:2d:69:19:3d:dd:da:36:e2:37:7c:79:86:a7:13: 4d:39:63:e9:74:a2:53:09:78:dd:d2:9c:9a:c7:39: 80:6f:0e:81:c3:9e:fd:30:44:19:a8:68:43:5b:6c: a5:b7:ed:aa:6c:9f:9c:b7:41:9d:5d:98:be:15:14: 85:62:b5:7d:4b:67:3c:89:4a:ab:01:45:ea:84:1f: 02:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:DA:A5:44:DB:AA:94:A9:66:F3:B5:5B:F4:2A:54:D0:E2:F2:98:E9 X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/64120230B2C211EFA43BF057C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 129.127.0.0/16 130.220.0.0/16 192.43.227.0-192.43.228.255 192.160.71.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:67:05:32:6c:56:59:4b:16:9b:72:bf:af:25:99:7d:81:2a: 60:80:c7:b6:eb:ea:b5:b3:54:39:56:0a:c2:54:7d:6f:7a:77: 4b:96:f3:c0:58:23:34:97:fd:2a:b6:4f:6f:91:c4:af:1d:f1: 35:0f:4e:f8:cf:03:85:e7:9b:1f:f9:c9:93:db:3d:81:1b:fe: 3e:3a:7d:b0:4d:95:55:82:63:9b:a7:cc:1f:ca:a5:6a:6f:8d: 24:e5:5d:9c:97:23:f7:47:ee:36:c8:c0:e9:32:4b:fc:ba:42: a3:cf:c5:7f:19:cb:b2:96:91:80:28:e9:c3:cf:d2:28:53:1e: ec:83:77:cd:c0:23:8a:c4:92:6e:f0:07:15:4f:66:f7:39:60: fd:1e:f9:c1:df:e8:d4:ad:1b:27:bf:74:cd:ef:8e:09:a0:a0: 19:ed:a4:e9:cb:19:5d:b2:5d:c0:b8:5f:39:c3:33:07:33:0a: 43:95:c6:23:1d:2d:23:a5:a0:62:79:af:e2:68:70:41:9e:de: 50:ac:a0:0d:06:9d:96:19:da:ca:a0:04:33:6d:5f:a5:05:0d: 5e:f2:50:60:3f:23:60:95:16:c5:1d:ed:b1:f4:3e:d8:c2:94: 06:65:11:2a:1c:65:a7:14:8b:e7:5e:31:c8:ac:cc:e4:eb:0f: 9a:6e:05:40 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjYwNDA3MDY0MDEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ0YTZjYy0yYmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzj7bD7H2iFlgPdmz0vORNHyCwDFsI2spk0afZd6U8CtT1SBQCBZGZOvL3faf 5NSi8KbStxz/TKNpm1pdOss5HU8ru7fA6ImSVm6tcx/O3MnaDmABm3/lTVTMD4+6 3nz7+naLkuLRaJEaZaFQsZtmh5o7nsvqiS+hKZc6zVNmYvjdxA8ZITrc6MAs6gSu mF1538xbr4RIDjnpbc66Zn8w+a1V0GFdA1JZmaxmTSQYKLfxUY64LWkZPd3aNuI3 fHmGpxNNOWPpdKJTCXjd0pyaxzmAbw6Bw579MEQZqGhDW2ylt+2qbJ+ct0GdXZi+ FRSFYrV9S2c8iUqrAUXqhB8C1QIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFKDapUTb qpSpZvO1W/QqVNDi8pjpMB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U1QTYvQUFCMzNFNEM1QjNGMTFFRThGMUQzRDZFQzRGOUFFMDIvNjQxMjAyMzBC MkMyMTFFRkE0M0JGMDU3QzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwMAgX8DAwCC3DAMAwQAwCvjAwQAwCvkAwQAwKBHMA0GCSqGSIb3DQEB CwUAA4IBAQBsZwUybFZZSxabcr+vJZl9gSpggMe26+q1s1Q5VgrCVH1vendLlvPA WCM0l/0qtk9vkcSvHfE1D074zwOF55sf+cmT2z2BG/4+On2wTZVVgmObp8wfyqVq b40k5V2clyP3R+42yMDpMkv8ukKjz8V/GcuylpGAKOnDz9IoUx7sg3fNwCOKxJJu 8AcVT2b3OWD9HvnB3+jUrRsnv3TN744JoKAZ7aTpyxldsl3AuF85wzMHMwpDlcYj HS0jpaBiea/iaHBBnt5QrKANBp2WGdrKoAQzbV+lBQ1e8lBgPyNglRbFHe2x9D7Y wpQGZREqHGWnFIvnXjHIrMzk6w+abgVA -----END CERTIFICATE-----Generated at Fri Apr 17 06:50:04 2026 by rpki-client