$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/BFB4B7B2EB5C11F0BDF448C8486F56BC.roa File: BFB4B7B2EB5C11F0BDF448C8486F56BC.roa (raw, json) Hash identifier: uE/rnhwB3ME5JOA1z9OMjoAfdFiu/bbfu+6j3t7mLB8= Subject key identifier: C3:02:02:E0:52:2D:8B:72:3E:61:07:B9:4C:19:71:67:A9:95:3E:C3 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 380B Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/BFB4B7B2EB5C11F0BDF448C8486F56BC.roa Signing time: Mon 30 Mar 2026 15:10:09 +0000 ROA not before: Mon 30 Mar 2026 15:10:09 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135533 IP address blocks: 61.45.248.0/24 maxlen: 24 2401:4601:248::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:17:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14347 (0x380b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Mar 30 15:10:09 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69ca9251-f476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3b:3d:5d:db:7e:a9:29:fa:16:43:e9:0b:3b: dc:d7:85:21:42:6d:b7:65:c4:ce:a7:0e:48:31:00: 74:61:7b:dc:e5:ec:0f:21:ad:51:1b:02:2f:a1:d8: 98:88:02:7c:7f:fc:ab:f5:00:bf:93:03:d9:a3:0a: 02:96:a7:42:20:dd:d5:1a:98:8b:8a:4e:22:a1:25: 48:33:c9:22:7c:68:1c:3f:f9:b0:23:6e:0d:aa:bc: 60:26:2a:b7:bf:f4:b9:68:4c:7f:70:b1:41:bf:89: 24:eb:5a:f6:50:40:42:5f:04:42:49:64:64:a1:19: 6f:1a:c0:9b:45:aa:ac:63:33:24:78:d7:f9:48:d6: 87:f3:9c:48:17:7c:31:ad:8f:08:4f:f3:6a:9e:40: 7b:e0:76:a9:8a:af:d4:95:95:be:22:8b:76:11:f7: 35:26:24:72:e9:28:90:54:38:41:bb:51:69:ed:83: 74:68:08:69:b9:f8:53:b3:30:e4:9c:06:31:93:e9: 6b:dd:25:54:a1:27:7b:7d:4f:9d:34:b5:2f:14:27: fb:c0:6a:64:e5:eb:60:e3:3e:62:7c:f3:05:6a:f3: 7e:12:da:fc:80:ac:fe:a7:93:50:10:72:e3:a1:3c: 41:fe:94:fc:6a:f8:0f:cf:65:4d:f4:19:04:b5:ae: 1c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:02:02:E0:52:2D:8B:72:3E:61:07:B9:4C:19:71:67:A9:95:3E:C3 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/BFB4B7B2EB5C11F0BDF448C8486F56BC.roa sbgp-ipAddrBlock: critical IPv4: 61.45.248.0/24 IPv6: 2401:4601:248::/48 Signature Algorithm: sha256WithRSAEncryption a7:4e:61:93:5b:42:2f:bb:da:10:eb:c6:d6:a5:47:54:89:de: 4e:86:7b:e8:a3:c5:c5:69:48:6c:f2:03:1d:7d:82:34:0d:30: 5d:6f:2f:a9:72:95:90:1f:c2:d5:55:de:f2:21:7c:cc:be:37: 5c:27:66:a2:24:23:80:bc:9b:1b:2d:d7:5e:af:b9:1b:fc:19: 11:84:7b:48:71:4d:6c:33:df:29:ca:c5:aa:54:c8:dc:f4:96: 56:c9:0d:85:0f:33:1d:62:a7:1d:22:ca:15:3d:78:ca:5f:1b: 06:96:2d:ec:60:ae:7d:f6:d8:67:39:85:6c:d2:eb:ce:16:3e: 1c:1b:18:70:4b:2e:d9:77:be:4e:5a:cf:ac:f4:1f:05:a1:31: 79:4f:54:00:c9:85:69:ac:d7:20:41:bc:24:ed:bb:80:17:87: a1:4c:19:73:eb:79:af:bc:e3:f7:48:0b:68:35:fe:48:48:c0: 6c:8f:87:57:eb:a4:07:da:f9:ec:df:2c:67:6c:9e:4a:ca:5e: 7c:48:8d:8f:60:19:d7:32:87:7f:00:65:77:b4:3e:9a:4d:74: 2d:f5:a6:70:ac:bc:cb:07:39:b1:4d:66:07:28:f3:87:fc:0f: 41:7e:e1:a5:4e:04:98:7b:fb:8e:7e:19:ab:f3:7d:8c:32:08: 19:d1:0b:89 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICOAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjYwMzMwMTUxMDA5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNhOTI1MS1mNDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzs9Xdt+qSn6FkPpCzvc14UhQm23ZcTOpw5IMQB0YXvc5ewPIa1RGwIvodiY iAJ8f/yr9QC/kwPZowoClqdCIN3VGpiLik4ioSVIM8kifGgcP/mwI24NqrxgJiq3 v/S5aEx/cLFBv4kk61r2UEBCXwRCSWRkoRlvGsCbRaqsYzMkeNf5SNaH85xIF3wx rY8IT/NqnkB74Hapiq/UlZW+Iot2Efc1JiRy6SiQVDhBu1Fp7YN0aAhpufhTszDk nAYxk+lr3SVUoSd7fU+dNLUvFCf7wGpk5etg4z5ifPMFavN+Etr8gKz+p5NQEHLj oTxB/pT8avgPz2VN9BkEta4cswIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFMMCAuBS LYtyPmEHuUwZcWeplT7DMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvQkZCNEI3QjJF QjVDMTFGMEJERjQ0OEM4NDg2RjU2QkMucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAPS34MA8EAgACMAkDBwAkAUYBAkgwDQYJKoZIhvcNAQELBQADggEB AKdOYZNbQi+72hDrxtalR1SJ3k6Ge+ijxcVpSGzyAx19gjQNMF1vL6lylZAfwtVV 3vIhfMy+N1wnZqIkI4C8mxst116vuRv8GRGEe0hxTWwz3ynKxapUyNz0llbJDYUP Mx1ipx0iyhU9eMpfGwaWLexgrn322Gc5hWzS684WPhwbGHBLLtl3vk5az6z0HwWh MXlPVADJhWms1yBBvCTtu4AXh6FMGXPrea+84/dIC2g1/khIwGyPh1frpAfa+ezf LGdsnkrKXnxIjY9gGdcyh38AZXe0PppNdC31pnCsvMsHObFNZgco84f8D0F+4aVO BJh7+45+GavzfYwyCBnRC4k= -----END CERTIFICATE-----Generated at Sun Apr 19 09:42:45 2026 by rpki-client