$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/849EBBA60CCA11ED97820077C4F9AE02.roa File: 849EBBA60CCA11ED97820077C4F9AE02.roa (raw, json) Hash identifier: N7H8CuDSaYksR8khjOJr1UXk6vfcW5UBc+CFb8pWBmE= Subject key identifier: 50:A2:1C:1C:11:CE:6B:35:44:BB:76:2B:96:3D:35:F3:F1:60:0E:E0 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0FF4 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/849EBBA60CCA11ED97820077C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:46:56 +0000 ROA not before: Wed 14 Jan 2026 18:14:58 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 133772 IP address blocks: 61.14.172.0/24 maxlen: 24 125.252.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:56:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4084 (0xff4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:14:58 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a489a0-0ea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:35:7c:83:63:4e:89:9e:83:6c:ec:75:bb:d1: 20:76:95:cc:51:f9:5d:39:89:73:1e:66:45:e0:95: 5e:d6:54:5d:5d:95:d7:13:09:52:de:9f:12:06:82: 03:36:f7:52:2f:b5:b6:b9:e8:a1:78:b2:65:96:2b: 6d:fe:c9:25:c9:63:ba:2b:12:2c:e7:42:5e:00:05: db:a0:dd:25:1e:e9:b6:a7:2d:c3:04:a7:54:06:6b: ae:66:cb:89:91:64:6c:b0:ce:7b:a5:ed:48:b6:f6: 22:3e:29:7f:f5:75:d7:e3:82:59:a2:01:aa:5c:89: f3:1e:11:9d:d3:ec:af:61:7c:1a:85:2c:35:54:90: 27:ae:b7:d6:80:1c:44:f9:f8:72:9c:8f:62:26:74: 93:e8:ac:0d:a7:cd:eb:2a:30:60:a5:cc:1c:ab:12: 86:d9:d3:ca:fe:10:56:bb:9d:63:53:59:94:bb:d0: 87:c7:3c:48:9c:6e:f9:5b:4a:63:29:ec:0b:bf:eb: f7:95:3e:b1:66:a1:04:6e:47:e9:d6:e0:53:e7:76: c7:a0:64:91:9b:19:a9:18:41:07:23:19:72:d7:36: bc:d5:60:1d:8a:9c:77:ef:54:a0:23:83:7c:83:59: 08:68:f1:65:49:6e:a4:06:e4:74:ea:4a:b2:ab:2a: fd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:A2:1C:1C:11:CE:6B:35:44:BB:76:2B:96:3D:35:F3:F1:60:0E:E0 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/849EBBA60CCA11ED97820077C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.14.172.0/24 125.252.69.0/24 Signature Algorithm: sha256WithRSAEncryption 27:9b:6c:23:46:ad:74:c0:77:e6:4f:18:1a:dd:51:a4:33:c7: e7:3c:9c:9d:d5:00:59:7e:6f:7f:fe:4a:a9:c8:7d:56:1a:40: c9:57:43:37:5d:9d:24:96:3e:7c:e3:c6:fd:28:78:a5:e3:fb: 9c:06:c8:47:7e:46:51:54:6c:6c:85:e0:bb:7e:e3:2e:77:2b: 0e:0c:bb:18:89:e2:36:78:e9:80:24:74:3a:c6:3f:e3:cc:a6: d9:10:aa:52:73:ae:60:93:3c:44:b9:eb:43:59:a3:e6:40:cd: 70:67:e4:9a:4a:bf:9c:c3:07:23:d9:76:58:b2:5e:66:67:98: 30:9a:c7:f4:81:27:2c:6b:73:64:44:bb:b2:66:3d:f1:a8:c6: a6:c7:27:d4:13:de:4f:72:78:c8:d7:ae:d8:1b:96:ad:1e:01: 5b:82:2e:b5:80:be:e4:b8:1a:e8:b3:e1:57:1c:d8:29:12:46: b4:c1:04:e6:bb:ab:7e:18:e3:98:e5:e5:45:43:f2:42:1b:9c: 92:6a:31:0f:00:95:63:ad:8c:9e:43:1a:17:90:aa:53:af:50: 66:7d:d4:e0:7b:e6:c7:f5:8e:7d:ba:64:c8:48:77:8c:a1:d6: 30:c7:23:f4:5c:bf:56:96:c7:32:49:13:01:03:d9:55:82:d1: 4d:25:f3:82 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICD/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjYwMTE0MTgxNDU4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODlhMC0wZWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzV8g2NOiZ6DbOx1u9EgdpXMUfldOYlzHmZF4JVe1lRdXZXXEwlS3p8SBoID NvdSL7W2ueiheLJllitt/sklyWO6KxIs50JeAAXboN0lHum2py3DBKdUBmuuZsuJ kWRssM57pe1ItvYiPil/9XXX44JZogGqXInzHhGd0+yvYXwahSw1VJAnrrfWgBxE +fhynI9iJnST6KwNp83rKjBgpcwcqxKG2dPK/hBWu51jU1mUu9CHxzxInG75W0pj KewLv+v3lT6xZqEEbkfp1uBT53bHoGSRmxmpGEEHIxly1za81WAdipx371SgI4N8 g1kIaPFlSW6kBuR06kqyqyr9dwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFFCiHBwR zms1RLt2K5Y9NfPxYA7gMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvODQ5RUJCQTYw Q0NBMTFFRDk3ODIwMDc3QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAPQ6sAwQAffxFMA0GCSqGSIb3DQEBCwUAA4IBAQAnm2wjRq10wHfm Txga3VGkM8fnPJyd1QBZfm9//kqpyH1WGkDJV0M3XZ0klj5848b9KHil4/ucBshH fkZRVGxsheC7fuMudysODLsYieI2eOmAJHQ6xj/jzKbZEKpSc65gkzxEuetDWaPm QM1wZ+SaSr+cwwcj2XZYsl5mZ5gwmsf0gScsa3NkRLuyZj3xqMamxyfUE95PcnjI 167YG5atHgFbgi61gL7kuBros+FXHNgpEka0wQTmu6t+GOOY5eVFQ/JCG5ySajEP AJVjrYyeQxoXkKpTr1BmfdTge+bH9Y59umTISHeModYwxyP0XL9WlscySRMBA9lV gtFNJfOC -----END CERTIFICATE-----Generated at Mon Mar 2 12:37:47 2026 by rpki-client