$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/064D129A56EA11EA84DC982BC4F9AE02.roa File: 064D129A56EA11EA84DC982BC4F9AE02.roa (raw, json) Hash identifier: /XXsn5P+CzGOi6w4JWRUAkj1a3bzJJfkjs3Rtf98gFg= Subject key identifier: CF:D5:C3:B7:49:B6:E5:F1:6A:56:3D:C9:62:5E:67:BF:91:A6:FF:85 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0E00 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/064D129A56EA11EA84DC982BC4F9AE02.roa Signing time: Wed 10 Jun 2026 18:21:13 +0000 ROA not before: Wed 10 Jun 2026 18:21:13 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 38566 IP address blocks: 45.116.216.0/22 maxlen: 24 103.246.24.0/22 maxlen: 24 116.68.144.0/20 maxlen: 23 116.68.144.0/21 maxlen: 24 116.68.152.0/22 maxlen: 24 116.68.156.0/24 maxlen: 24 116.68.158.0/24 maxlen: 24 180.222.144.0/20 maxlen: 24 2403:2800:e15::/48 maxlen: 48 2403:2800:e16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 17:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3584 (0xe00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Jun 10 18:21:13 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a29ab19-d00b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6e:f0:da:49:62:4b:69:43:c8:7a:53:3d:c7: bc:bb:f3:65:d9:d6:a7:4c:ba:48:95:a0:ce:ca:15: 6f:9a:72:c6:60:d3:d2:7c:1d:dc:13:6e:20:a6:21: 2b:62:11:b5:20:09:1f:73:f5:fe:2a:b8:1c:ac:9e: e5:1f:0e:74:fc:96:bd:6f:b7:ff:49:4e:9f:0f:16: 53:cb:d4:aa:79:16:42:5c:74:68:92:d8:41:35:df: 84:d8:9f:5b:5d:cd:04:2b:8f:d2:63:e7:aa:11:9c: ed:59:b9:c5:70:bd:47:8d:f0:18:ca:5a:f3:f6:d3: 7c:f4:7b:24:aa:c1:00:c6:d1:eb:bf:6c:7a:46:9b: 7d:72:1f:7d:23:0a:17:03:4c:58:1a:fd:06:4b:c7: 53:3d:f1:89:04:a2:ff:d9:b8:c9:ac:78:e4:ba:e8: 4c:5b:f7:19:a8:21:8c:7d:3a:e6:d3:bb:73:da:8f: b4:3e:5b:42:b1:57:a4:55:e1:d6:9f:74:eb:6e:af: 0b:0e:c0:c1:34:81:87:dd:a8:ce:c0:90:1a:f8:ef: 57:e6:fd:17:9d:b1:d9:fd:2c:14:fa:c3:4d:f1:3a: 30:70:97:d1:cf:c4:80:07:a8:f9:63:0e:b4:43:c7: c9:a8:ff:bf:ba:33:04:78:8a:f2:9c:05:ba:4e:2a: 68:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D5:C3:B7:49:B6:E5:F1:6A:56:3D:C9:62:5E:67:BF:91:A6:FF:85 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/064D129A56EA11EA84DC982BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.116.216.0/22 103.246.24.0/22 116.68.144.0/20 180.222.144.0/20 IPv6: 2403:2800:e15::-2403:2800:e16:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 31:ce:95:e1:fd:75:51:9f:82:7d:24:95:87:9a:61:c9:aa:c4: f3:5b:2c:ec:c5:2b:12:3b:ca:34:c6:31:7f:cb:89:d0:4b:87: e2:56:e6:c2:36:92:00:eb:a7:7a:2e:ec:34:fd:a5:fb:67:eb: 33:27:81:0f:0d:06:f2:a2:e6:be:7f:a5:79:ba:12:34:68:cf: 68:eb:4b:d8:a5:27:cc:eb:b8:89:6c:bc:74:67:07:d0:5c:ac: 01:f0:ad:54:c8:b4:ff:27:b1:e7:fb:ab:f6:4f:87:4d:f4:1b: b7:e7:b5:51:b7:89:a4:f5:65:39:9e:ef:5e:84:1a:b7:49:1d: af:b9:1d:25:4c:9c:62:fa:3b:4c:7c:ca:b0:27:b7:29:d2:d5: 73:83:56:b5:aa:72:35:e3:46:28:c7:00:e2:67:16:a6:e3:3a: b2:46:d2:cd:ed:e4:e9:1b:12:f9:fc:07:1b:fb:05:16:bf:3e: 2d:c4:43:0f:67:6d:7f:99:c2:01:95:98:6a:89:73:48:81:4a: 2a:02:75:39:74:b2:54:87:37:32:a0:43:f4:b5:95:20:a3:6b: 13:14:79:27:d2:b1:85:95:29:be:62:7d:2a:ff:3b:c7:14:20: 7b:99:cf:8f:1c:8d:e9:aa:ad:17:a4:7b:f9:31:c1:ea:a1:49: 80:55:92:ef -----BEGIN CERTIFICATE----- MIIFajCCBFKgAwIBAgICDgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjYwNjEwMTgyMTEzWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI5YWIxOS1kMDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnW7w2kliS2lDyHpTPce8u/Nl2danTLpIlaDOyhVvmnLGYNPSfB3cE24gpiEr YhG1IAkfc/X+KrgcrJ7lHw50/Ja9b7f/SU6fDxZTy9SqeRZCXHRokthBNd+E2J9b Xc0EK4/SY+eqEZztWbnFcL1HjfAYylrz9tN89HskqsEAxtHrv2x6Rpt9ch99IwoX A0xYGv0GS8dTPfGJBKL/2bjJrHjkuuhMW/cZqCGMfTrm07tz2o+0PltCsVekVeHW n3Trbq8LDsDBNIGH3ajOwJAa+O9X5v0XnbHZ/SwU+sNN8TowcJfRz8SAB6j5Yw60 Q8fJqP+/ujMEeIrynAW6Tipo7wIDAQABo4ICjjCCAoowHQYDVR0OBBYEFM/Vw7dJ tuXxalY9yWJeZ7+Rpv+FMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY2QTAvNjI1RkY3MjZEOUU3MTFFOTg4MDU0MDE2QzRGOUFFMDIvMDY0RDEyOUE1 NkVBMTFFQTg0REM5ODJCQzRGOUFFMDIucm9hME0GCCsGAQUFBwEHAQH/BD4wPDAe BAIAATAYAwQCLXTYAwQCZ/YYAwQEdESQAwQEtN6QMBoEAgACMBQwEgMHACQDKAAO FQMHACQDKAAOFjANBgkqhkiG9w0BAQsFAAOCAQEAMc6V4f11UZ+CfSSVh5phyarE 81ss7MUrEjvKNMYxf8uJ0EuH4lbmwjaSAOunei7sNP2l+2frMyeBDw0G8qLmvn+l eboSNGjPaOtL2KUnzOu4iWy8dGcH0FysAfCtVMi0/yex5/ur9k+HTfQbt+e1UbeJ pPVlOZ7vXoQat0kdr7kdJUycYvo7THzKsCe3KdLVc4NWtapyNeNGKMcA4mcWpuM6 skbSze3k6RsS+fwHG/sFFr8+LcRDD2dtf5nCAZWYaolzSIFKKgJ1OXSyVIc3MqBD 9LWVIKNrExR5J9KxhZUpvmJ9Kv87xxQge5nPjxyN6aqtF6R7+THB6qFJgFWS7w== -----END CERTIFICATE-----Generated at Sat Jun 13 21:01:08 2026 by rpki-client