$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa File: 61663178F88311EDB1DF555DC4F9AE02.roa (raw, json) Hash identifier: TG2ohJNYEaDsDYNDfYYhx+nUq/BWPbtnOzSvkzV8QmA= Subject key identifier: 21:B9:2C:94:5F:51:80:73:C1:5B:11:D8:92:0A:04:FB:71:E9:8D:51 Certificate issuer: /CN=A91CFA8E/serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Certificate serial: 027E Authority key identifier: D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa Signing time: Fri 05 Jun 2026 03:32:33 +0000 ROA not before: Fri 05 Jun 2026 03:32:33 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 56309 IP address blocks: 43.229.148.0/22 maxlen: 24 43.249.32.0/23 maxlen: 24 103.13.28.0/22 maxlen: 24 103.40.118.0/23 maxlen: 24 103.99.11.0/24 maxlen: 24 103.107.52.0/22 maxlen: 24 103.114.201.0/24 maxlen: 24 103.114.203.0/24 maxlen: 24 103.117.148.0/22 maxlen: 24 103.224.84.0/22 maxlen: 24 117.18.124.0/22 maxlen: 24 119.10.136.0/21 maxlen: 24 199.21.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8E, serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Validity Not Before: Jun 5 03:32:33 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a224351-cfd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:00:30:ea:75:df:e5:ed:5d:c0:ff:27:af:1b: 63:b5:27:72:9c:d6:99:41:49:d7:21:ba:5b:4f:07: 6c:23:eb:2b:f4:23:da:0e:ab:1d:8b:5d:38:92:39: 42:6d:32:84:d3:d5:27:aa:07:a4:99:b8:52:c5:ff: 91:b2:96:f4:89:c6:ca:ad:c0:13:9c:c8:83:ec:01: a3:2e:74:07:cf:fe:b3:44:5e:c9:3e:b5:83:5f:97: 82:02:b4:17:c9:52:01:72:49:98:08:0f:b9:bc:61: 83:26:71:75:71:38:86:64:5f:b9:eb:7e:90:9a:fc: ad:30:65:b5:31:af:ea:ce:45:be:c4:7b:78:8e:81: e9:92:51:71:3a:39:28:24:92:be:e3:f5:e3:5a:b8: e7:08:c6:c5:51:6f:e2:ae:f9:8b:44:33:3d:c6:36: 84:37:57:06:dd:08:d1:d8:45:56:ca:e6:75:e3:6e: 3a:c5:85:35:1c:9b:00:ec:75:c4:21:e3:8a:e1:fa: d0:2e:36:78:f4:90:31:81:49:b3:73:e4:98:1a:2b: a0:c5:0d:5c:a5:e0:a7:b1:aa:2b:61:37:5a:f7:ee: 28:56:ed:52:23:c7:5c:0a:64:b2:46:66:ad:35:a4: 78:bb:7a:e3:1f:01:f3:63:f5:04:f3:6f:2e:80:0d: bb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:B9:2C:94:5F:51:80:73:C1:5B:11:D8:92:0A:04:FB:71:E9:8D:51 X509v3 Authority Key Identifier: keyid:D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.229.148.0/22 43.249.32.0/23 103.13.28.0/22 103.40.118.0/23 103.99.11.0/24 103.107.52.0/22 103.114.201.0/24 103.114.203.0/24 103.117.148.0/22 103.224.84.0/22 117.18.124.0/22 119.10.136.0/21 199.21.172.0/22 Signature Algorithm: sha256WithRSAEncryption 30:68:04:cf:ec:e8:38:2c:d7:72:cf:95:a4:40:08:54:73:4b: 54:ca:8c:d3:66:52:76:41:85:1f:58:42:f9:df:5f:58:e7:f0: 2b:96:47:68:f6:6a:23:ed:fb:09:44:8a:69:33:e7:93:4a:7d: 27:08:81:4b:e8:0c:0c:a3:24:87:a0:7c:90:55:ac:ca:89:14: db:45:ce:1d:f7:eb:58:25:93:1c:30:46:3f:48:ce:61:02:e4: 94:06:67:e1:df:9b:d4:45:28:b1:ae:5f:9b:9c:8e:ee:9d:de: 23:37:0e:99:71:5e:5e:ab:b2:7b:28:fa:96:1d:43:2e:c1:02: 32:3d:ed:27:fc:c6:90:f4:1c:35:5b:19:98:64:6e:d2:d2:fb: e1:49:38:33:4b:b0:1e:aa:19:f0:03:24:18:b1:14:e9:a8:e9: c6:9e:0c:aa:82:1c:d3:d9:12:91:d7:01:b4:56:4b:2d:d2:91: 18:b6:8b:d4:d6:17:27:13:d5:b7:77:6e:86:6e:9b:e3:c3:b0: e2:1e:6d:fc:98:32:28:56:cc:dc:55:8c:b4:c6:99:06:a6:06: 0c:57:88:ac:be:8a:7e:64:dd:b8:f6:64:cd:a8:2a:a8:13:45: 81:3f:46:4c:bb:85:5d:f1:fc:96:4b:72:3a:9a:7a:08:92:95: 36:94:73:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEUxMTAvBgNVBAUTKEQ4ODBFRjI2NUI5NDBFMzFERkVEMUM0MkFFRjUxNDRC NjQ0MTM3MTcwHhcNMjYwNjA1MDMzMjMzWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyNDM1MS1jZmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQAw6nXf5e1dwP8nrxtjtSdynNaZQUnXIbpbTwdsI+sr9CPaDqsdi104kjlC bTKE09UnqgekmbhSxf+Rspb0icbKrcATnMiD7AGjLnQHz/6zRF7JPrWDX5eCArQX yVIBckmYCA+5vGGDJnF1cTiGZF+5636QmvytMGW1Ma/qzkW+xHt4joHpklFxOjko JJK+4/XjWrjnCMbFUW/irvmLRDM9xjaEN1cG3QjR2EVWyuZ14246xYU1HJsA7HXE IeOK4frQLjZ49JAxgUmzc+SYGiugxQ1cpeCnsaorYTda9+4oVu1SI8dcCmSyRmat NaR4u3rjHwHzY/UE828ugA27cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCG5LJRf UYBzwVsR2JIKBPtx6Y1RMB8GA1UdIwQYMBaAFNiA7yZblA4x3+0cQq71FEtkQTcX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RS82MUJBRDhFMEY4 N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURqSGY3UnhDcnZVVVMyUkJO eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJJRHZKbHVVRGpIZjdSeENydlVVUzJSQk54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZBOEUvNjFCQUQ4RTBGODdFMTFFRDkwRDg0NDVDQzRGOUFFMDIvNjE2NjMxNzhG ODgzMTFFREIxREY1NTVEQzRGOUFFMDIucm9hMGcGCCsGAQUFBwEHAQH/BFgwVjBU BAIAATBOAwQCK+WUAwQBK/kgAwQCZw0cAwQBZyh2AwQAZ2MLAwQCZ2s0AwQAZ3LJ AwQAZ3LLAwQCZ3WUAwQCZ+BUAwQCdRJ8AwQDdwqIAwQCxxWsMA0GCSqGSIb3DQEB CwUAA4IBAQAwaATP7Og4LNdyz5WkQAhUc0tUyozTZlJ2QYUfWEL5319Y5/Arlkdo 9moj7fsJRIppM+eTSn0nCIFL6AwMoySHoHyQVazKiRTbRc4d9+tYJZMcMEY/SM5h AuSUBmfh35vURSixrl+bnI7und4jNw6ZcV5eq7J7KPqWHUMuwQIyPe0n/MaQ9Bw1 WxmYZG7S0vvhSTgzS7AeqhnwAyQYsRTpqOnGngyqghzT2RKR1wG0Vkst0pEYtovU 1hcnE9W3d26Gbpvjw7DiHm38mDIoVszcVYy0xpkGpgYMV4isvop+ZN249mTNqCqo E0WBP0ZMu4Vd8fyWS3I6mnoIkpU2lHMH -----END CERTIFICATE-----Generated at Sat Jun 13 13:56:26 2026 by rpki-client