$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/D128F6A2366111F19FA677FACA833773.roa File: D128F6A2366111F19FA677FACA833773.roa (raw, json) Hash identifier: ZY7Vk9qpQDHcmIYTowz44r/Aadjt59khWHwSNvAaAYk= Subject key identifier: 36:24:1A:85:BA:53:35:08:5F:1C:61:57:5D:41:FC:EE:66:8D:20:E1 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 2304 Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/D128F6A2366111F19FA677FACA833773.roa Signing time: Sun 12 Apr 2026 11:21:57 +0000 ROA not before: Sun 12 Apr 2026 11:21:57 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 834 IP address blocks: 220.158.206.0/24 maxlen: 24 220.158.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 15:47:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8964 (0x2304) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Apr 12 11:21:57 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69db8055-fd89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:7f:f4:99:a4:85:af:67:76:d8:f1:1b:99:36: 32:e2:55:0c:0f:e2:c0:7d:08:11:a4:8d:63:ec:95: f1:5d:61:68:21:d4:07:16:9e:1c:00:31:40:2a:8f: 9b:16:64:60:4d:70:85:a4:31:c9:77:ff:00:7e:a8: 22:5a:0b:02:12:36:a3:9e:73:c3:ea:59:95:d5:e1: 42:43:16:16:71:98:b0:22:e2:c7:f8:87:74:5e:9f: 18:36:35:2a:37:7e:05:ac:ce:30:a2:bc:a8:d1:ce: f4:77:10:63:58:ab:0f:95:e7:a5:8f:92:b5:7a:38: 7f:c7:d5:cc:3f:48:a0:43:e8:b0:01:77:28:89:47: b0:17:a7:1f:2a:04:88:6e:a0:39:64:f7:87:5c:ed: 1f:c4:fd:d3:21:77:e3:fd:01:48:2c:99:91:cd:25: 0d:b9:2e:31:7d:cd:66:81:34:82:ed:e8:b9:4c:af: 80:f1:54:53:27:d5:ee:31:43:86:00:62:df:41:91: 74:d9:57:ab:fa:c6:58:cf:63:c0:b6:ac:ad:e4:60: e5:95:53:89:ce:90:64:d6:5c:21:9b:ed:9c:a4:a7: 0d:f0:6d:f8:8e:ce:de:e5:a8:c5:92:1d:09:7e:f1: d5:e9:3f:fd:b2:67:a4:b2:93:d8:65:2c:be:c6:bf: 20:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:24:1A:85:BA:53:35:08:5F:1C:61:57:5D:41:FC:EE:66:8D:20:E1 X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/D128F6A2366111F19FA677FACA833773.roa sbgp-ipAddrBlock: critical IPv4: 220.158.206.0/23 Signature Algorithm: sha256WithRSAEncryption 75:96:66:2c:b7:a9:e0:69:1a:96:22:25:47:ac:a3:22:bb:9f: 06:05:79:8a:46:b5:1b:1a:c2:c8:c7:90:52:93:0e:c5:0b:82: 95:6c:88:b1:2b:30:2c:ef:65:26:ac:d1:8f:51:fb:93:04:fb: fe:89:fe:da:4f:0f:5a:65:e9:fd:cf:aa:0e:f2:28:ea:c1:bb: 81:90:89:21:8d:ef:7d:30:72:3e:73:11:63:ce:8a:55:84:2a: 7f:08:7e:09:53:ac:52:17:da:e5:01:f6:4a:c6:c5:a8:2a:17: 24:4d:b6:ad:94:97:b3:6c:45:40:0b:54:69:39:92:14:6f:10: 5a:64:f6:2c:8b:c5:4f:77:cc:50:48:f0:06:25:35:23:a1:6a: 4e:53:01:d6:3a:0b:23:4e:3c:32:07:5a:d5:4f:b2:cf:ed:37: 5e:a9:70:96:85:fb:c9:ac:bc:44:33:21:b0:40:85:9a:cb:97: 54:c2:76:14:dd:b9:8d:1f:d6:b7:a7:6f:91:cd:32:dc:1e:7c: 44:23:81:e0:e4:eb:08:a9:7f:7f:84:12:43:25:81:43:d3:b2: f7:1b:03:62:99:2a:ab:b9:95:0d:ea:06:1c:07:e5:70:6d:ae: ed:99:02:fd:b4:06:52:9e:fb:33:40:41:ed:fc:38:b7:3d:72: cc:8d:ba:34 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICIwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjYwNDEyMTEyMTU3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWRiODA1NS1mZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3/0maSFr2d22PEbmTYy4lUMD+LAfQgRpI1j7JXxXWFoIdQHFp4cADFAKo+b FmRgTXCFpDHJd/8AfqgiWgsCEjajnnPD6lmV1eFCQxYWcZiwIuLH+Id0Xp8YNjUq N34FrM4woryo0c70dxBjWKsPleelj5K1ejh/x9XMP0igQ+iwAXcoiUewF6cfKgSI bqA5ZPeHXO0fxP3TIXfj/QFILJmRzSUNuS4xfc1mgTSC7ei5TK+A8VRTJ9XuMUOG AGLfQZF02Ver+sZYz2PAtqyt5GDllVOJzpBk1lwhm+2cpKcN8G34js7e5ajFkh0J fvHV6T/9smekspPYZSy+xr8gXwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDYkGoW6 UzUIXxxhV11B/O5mjSDhMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ4NDUvNDAwMTUzQjZEMkVCMTFFNUI0RDE1QTRFQzRGOUFFMDIvRDEyOEY2QTIz NjYxMTFGMTlGQTY3N0ZBQ0E4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQB3J7OMA0GCSqGSIb3DQEBCwUAA4IBAQB1lmYst6ngaRqWIiVHrKMi u58GBXmKRrUbGsLIx5BSkw7FC4KVbIixKzAs72UmrNGPUfuTBPv+if7aTw9aZen9 z6oO8ijqwbuBkIkhje99MHI+cxFjzopVhCp/CH4JU6xSF9rlAfZKxsWoKhckTbat lJezbEVAC1RpOZIUbxBaZPYsi8VPd8xQSPAGJTUjoWpOUwHWOgsjTjwyB1rVT7LP 7TdeqXCWhfvJrLxEMyGwQIWay5dUwnYU3bmNH9a3p2+RzTLcHnxEI4Hg5OsIqX9/ hBJDJYFD07L3GwNimSqruZUN6gYcB+Vwba7tmQL9tAZSnvszQEHt/Di3PXLMjbo0 -----END CERTIFICATE-----Generated at Sun Apr 19 10:20:01 2026 by rpki-client