$ rpki-client -vvf rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/339F0FFA9D9D11F0981B7A12C4F9AE02.roa File: 339F0FFA9D9D11F0981B7A12C4F9AE02.roa (raw, json) Hash identifier: YlZFXxDgVw2lX0Yisa6xfNC/n3ndlHwr/LRL23GuQT4= Subject key identifier: A8:8E:BE:00:53:60:37:5F:8D:5A:42:96:89:E8:45:17:18:93:8A:D7 Certificate issuer: /CN=A91D41AC/serialNumber=BF98688E98B01E84D7366F67864CE8F3EBBD4377 Certificate serial: 0117 Authority key identifier: BF:98:68:8E:98:B0:1E:84:D7:36:6F:67:86:4C:E8:F3:EB:BD:43:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v5hojpiwHoTXNm9nhkzo8-u9Q3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/339F0FFA9D9D11F0981B7A12C4F9AE02.roa Signing time: Wed 15 Apr 2026 06:40:46 +0000 ROA not before: Wed 15 Apr 2026 06:40:46 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 55573 IP address blocks: 121.200.215.0/24 maxlen: 24 2405:7d80::/48 maxlen: 48 2405:7d80:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.crl rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v5hojpiwHoTXNm9nhkzo8-u9Q3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D41AC, serialNumber=BF98688E98B01E84D7366F67864CE8F3EBBD4377 Validity Not Before: Apr 15 06:40:46 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69df32ed-c057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:fb:1e:21:ba:ea:96:dd:80:67:3c:a1:f5:b3: 2c:40:28:56:56:9b:20:e3:93:60:09:3e:6f:9f:25: ea:78:18:3c:75:db:fa:2c:13:3e:77:b9:15:4f:59: 2c:23:d8:da:80:b5:2e:3c:95:a4:c2:af:77:32:05: c3:c6:41:2d:e9:40:69:60:e5:6c:e7:dc:92:dc:1b: d6:eb:bb:bd:7a:13:ee:69:8a:74:2e:67:1d:3c:d9: 53:78:a3:aa:9e:07:d3:c0:d6:18:ba:39:d2:29:d0: 69:d9:1f:42:77:60:45:87:63:68:7b:e5:9b:86:14: 51:ed:dc:66:ee:03:0d:ae:bb:88:3c:62:81:f0:25: 9f:aa:1a:62:9f:17:e0:af:68:00:06:e1:32:7c:d3: 71:09:d1:a9:38:ee:20:f5:19:c2:45:f1:01:a4:59: 63:06:59:8c:8a:85:22:ec:f5:30:5a:b8:d4:39:6d: 06:a4:2a:f8:48:97:e5:5d:70:19:9a:28:60:70:9e: f5:15:a9:c2:26:6e:0c:f1:c8:a8:f7:47:3f:07:cb: 58:5d:e1:ea:67:1f:c3:0f:b0:6e:f2:e1:21:03:cd: c7:13:bb:f1:7e:61:81:31:e2:51:c2:2d:af:db:92: d0:86:5d:f0:42:71:fd:da:c2:60:4a:b5:95:bc:08: 2f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:8E:BE:00:53:60:37:5F:8D:5A:42:96:89:E8:45:17:18:93:8A:D7 X509v3 Authority Key Identifier: keyid:BF:98:68:8E:98:B0:1E:84:D7:36:6F:67:86:4C:E8:F3:EB:BD:43:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v5hojpiwHoTXNm9nhkzo8-u9Q3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/339F0FFA9D9D11F0981B7A12C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 121.200.215.0/24 IPv6: 2405:7d80::/48 2405:7d80:5::/48 Signature Algorithm: sha256WithRSAEncryption 62:c3:da:00:f2:91:01:29:0e:22:71:36:8b:76:af:7d:8e:53: ed:30:b8:e5:14:41:1b:33:9e:e4:9a:1c:9e:8d:b1:2a:26:56: 53:42:fb:ed:81:d1:2d:a9:a7:44:b7:43:0b:3f:df:b4:ae:ef: b8:79:df:0a:0e:fb:3f:0b:2d:71:16:a0:d3:e0:f1:d8:3f:69: e3:b6:2b:12:9e:0d:5f:e7:f2:cd:48:39:6c:b8:3e:19:6c:7b: cf:69:9b:13:14:7e:7a:1c:3b:81:24:a6:b2:62:c3:ce:6f:99: 22:c0:f7:77:ed:2f:fb:f1:50:98:e7:b8:5f:53:20:0d:e0:00: ad:53:66:b2:cc:c8:d5:a2:08:2d:2e:8c:20:da:24:f1:08:74: 56:7c:2c:75:51:61:90:44:04:75:ae:86:3d:a8:f4:de:5d:4f: 7c:1f:f7:60:05:77:ee:e6:9d:04:fc:2c:f5:4f:ec:c1:b4:4c: a6:f8:ae:18:18:66:83:f1:b2:37:63:e6:b7:a5:7a:08:7b:d6: 5f:57:59:67:95:52:fc:fa:1e:50:91:22:01:31:8b:85:78:00: 7d:bf:ff:23:4c:d1:f3:09:05:bf:cf:6f:e0:c8:18:7b:53:d8: ac:f4:12:0a:25:ef:a0:47:66:22:77:33:3f:18:63:99:fb:ba: c1:7b:18:9c -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQxQUMxMTAvBgNVBAUTKEJGOTg2ODhFOThCMDFFODRENzM2NkY2Nzg2NENFOEYz RUJCRDQzNzcwHhcNMjYwNDE1MDY0MDQ2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWRmMzJlZC1jMDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAifseIbrqlt2AZzyh9bMsQChWVpsg45NgCT5vnyXqeBg8ddv6LBM+d7kVT1ks I9jagLUuPJWkwq93MgXDxkEt6UBpYOVs59yS3BvW67u9ehPuaYp0LmcdPNlTeKOq ngfTwNYYujnSKdBp2R9Cd2BFh2Noe+WbhhRR7dxm7gMNrruIPGKB8CWfqhpinxfg r2gABuEyfNNxCdGpOO4g9RnCRfEBpFljBlmMioUi7PUwWrjUOW0GpCr4SJflXXAZ mihgcJ71FanCJm4M8cio90c/B8tYXeHqZx/DD7Bu8uEhA83HE7vxfmGBMeJRwi2v 25LQhl3wQnH92sJgSrWVvAgv+wIDAQABo4ICejCCAnYwHQYDVR0OBBYEFKiOvgBT YDdfjVpClonoRRcYk4rXMB8GA1UdIwQYMBaAFL+YaI6YsB6E1zZvZ4ZM6PPrvUN3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDFBQy8yNDQ1QkNFMkU5 M0YxMUVGOERGMUUwMzVDNEY5QUUwMi92NWhvanBpd0hvVFhObTluaGt6bzgtdTlR M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Y1aG9qcGl3SG9UWE5tOW5oa3pvOC11OVEzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQxQUMvMjQ0NUJDRTJFOTNGMTFFRjhERjFFMDM1QzRGOUFFMDIvMzM5RjBGRkE5 RDlEMTFGMDk4MUI3QTEyQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQAecjXMBgEAgACMBIDBwAkBX2AAAADBwAkBX2AAAUwDQYJKoZIhvcN AQELBQADggEBAGLD2gDykQEpDiJxNot2r32OU+0wuOUUQRsznuSaHJ6NsSomVlNC ++2B0S2pp0S3Qws/37Su77h53woO+z8LLXEWoNPg8dg/aeO2KxKeDV/n8s1IOWy4 Phlse89pmxMUfnocO4EkprJiw85vmSLA93ftL/vxUJjnuF9TIA3gAK1TZrLMyNWi CC0ujCDaJPEIdFZ8LHVRYZBEBHWuhj2o9N5dT3wf92AFd+7mnQT8LPVP7MG0TKb4 rhgYZoPxsjdj5relegh71l9XWWeVUvz6HlCRIgExi4V4AH2//yNM0fMJBb/Pb+DI GHtT2Kz0Egol76BHZiJ3Mz8YY5n7usF7GJw= -----END CERTIFICATE-----Generated at Fri Apr 17 16:38:47 2026 by rpki-client