$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/3D68F8C29A4A11EA94706012C4F9AE02.roa File: 3D68F8C29A4A11EA94706012C4F9AE02.roa (raw, json) Hash identifier: M3JbVNWqPaa0MJB5ijlSnoeyDvUuuhEmsmhTjsqGYko= Subject key identifier: 40:D0:72:E9:D4:E2:F6:48:E1:B8:06:89:C8:C8:6A:12:6B:72:57:D0 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1B73 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/3D68F8C29A4A11EA94706012C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:12:53 +0000 ROA not before: Mon 24 Mar 2025 14:50:35 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 30821 IP address blocks: 116.51.16.112/28 maxlen: 28 116.51.22.160/28 maxlen: 28 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7027 (0x1b73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Mar 24 14:50:35 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a4abd5-b675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:51:15:b0:48:44:f2:96:9e:5c:81:1c:c7:24: ef:89:76:44:e5:20:d0:cf:cc:05:24:ca:f3:f7:c5: 04:9d:fd:bc:27:81:3c:dd:1e:44:2c:d9:3a:de:1f: 6b:a4:f1:5a:03:43:a6:27:b3:2a:1d:23:2f:6f:58: 28:4f:8a:e2:59:db:63:05:c6:76:16:90:32:51:15: be:ec:60:35:16:be:46:09:33:5d:4d:1a:57:6a:ba: 51:df:f7:f9:22:d3:9d:92:22:2c:90:0f:cd:fb:10: 9c:b4:fb:dd:f9:d0:92:3d:76:22:20:a0:6e:c3:a3: 27:4c:ed:bb:60:61:9a:28:7c:c8:0f:b7:fa:5e:08: 19:d0:03:19:40:76:df:9d:26:69:05:4b:9d:15:d2: 81:e8:da:61:c6:03:47:9e:ee:d8:2c:33:a2:6f:21: 4c:24:44:51:e1:4c:4f:5f:b8:09:61:3c:f7:0b:80: 39:29:d6:da:43:c9:76:b7:ea:ed:93:ea:01:f7:37: db:f6:2f:e6:e5:62:b0:7d:84:a2:ac:da:f4:69:e1: 70:5c:d7:90:88:9b:33:1f:f6:92:34:c7:f2:18:65: e9:22:ad:9e:71:15:3e:13:88:83:2a:d2:d9:59:6b: 3b:fa:05:12:b3:81:d7:49:be:4f:ab:b9:bb:1e:ea: 44:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D0:72:E9:D4:E2:F6:48:E1:B8:06:89:C8:C8:6A:12:6B:72:57:D0 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/3D68F8C29A4A11EA94706012C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.51.16.112/28 116.51.22.160/28 Signature Algorithm: sha256WithRSAEncryption 67:ea:8a:ba:1d:88:e1:ae:81:54:a9:73:d1:a8:3f:b4:07:50: fa:53:49:e7:6f:b2:60:a3:b4:72:a6:b6:52:50:c8:67:bd:35: 20:77:06:ed:89:13:0f:e2:fe:13:2a:d3:24:6b:fa:d9:0f:e4: a8:84:68:5a:67:1c:1e:9c:23:44:ec:87:97:48:e4:11:e0:b4: 46:ab:59:20:93:48:aa:d6:f0:ed:50:ca:9b:57:03:54:01:ee: d4:e2:d5:ab:50:ce:de:e8:ab:b7:a0:f6:93:84:9a:b0:1f:14: a8:77:64:55:6a:16:b6:7a:4c:44:2c:b5:7a:08:e0:ac:f5:be: 2b:75:3f:fb:7e:26:27:9c:da:b3:61:7d:ef:b2:66:4f:99:9d: c9:e3:df:05:26:f3:e1:f7:0f:c1:ce:de:a6:ad:e8:c0:5a:35: 2f:06:3c:15:ce:3f:04:0f:95:49:e6:03:dd:56:5e:06:94:77: c8:1d:39:94:f4:a4:77:05:78:41:6d:08:54:40:7c:20:79:90: f1:b2:2d:0b:19:0e:19:d6:a2:d2:53:e7:93:c9:70:ca:a4:d2: 45:c6:2a:4c:31:65:e5:4f:be:3a:cb:fa:ee:3f:29:33:c9:b5: df:7c:e7:b3:7c:b1:2a:7f:00:6f:cf:77:0d:56:31:e5:37:5d: 2d:da:3d:c7 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICG3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjUwMzI0MTQ1MDM1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWJkNS1iNjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1EVsEhE8paeXIEcxyTviXZE5SDQz8wFJMrz98UEnf28J4E83R5ELNk63h9r pPFaA0OmJ7MqHSMvb1goT4riWdtjBcZ2FpAyURW+7GA1Fr5GCTNdTRpXarpR3/f5 ItOdkiIskA/N+xCctPvd+dCSPXYiIKBuw6MnTO27YGGaKHzID7f6XggZ0AMZQHbf nSZpBUudFdKB6NphxgNHnu7YLDOibyFMJERR4UxPX7gJYTz3C4A5KdbaQ8l2t+rt k+oB9zfb9i/m5WKwfYSirNr0aeFwXNeQiJszH/aSNMfyGGXpIq2ecRU+E4iDKtLZ WWs7+gUSs4HXSb5Pq7m7HupEYQIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFEDQcunU 4vZI4bgGicjIahJrclfQMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZENUQvOURDQjY4RTAxRDg4MTFFMjk0Qjk1NUUxMDhCMDJDRDIvM0Q2OEY4QzI5 QTRBMTFFQTk0NzA2MDEyQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOAwUEdDMQcAMFBHQzFqAwDQYJKoZIhvcNAQELBQADggEBAGfqirodiOGu gVSpc9GoP7QHUPpTSedvsmCjtHKmtlJQyGe9NSB3Bu2JEw/i/hMq0yRr+tkP5KiE aFpnHB6cI0Tsh5dI5BHgtEarWSCTSKrW8O1QyptXA1QB7tTi1atQzt7oq7eg9pOE mrAfFKh3ZFVqFrZ6TEQstXoI4Kz1vit1P/t+Jiec2rNhfe+yZk+Zncnj3wUm8+H3 D8HO3qat6MBaNS8GPBXOPwQPlUnmA91WXgaUd8gdOZT0pHcFeEFtCFRAfCB5kPGy LQsZDhnWotJT55PJcMqk0kXGKkwxZeVPvjrL+u4/KTPJtd9857N8sSp/AG/Pdw1W MeU3XS3aPcc= -----END CERTIFICATE-----Generated at Mon Mar 2 14:29:01 2026 by rpki-client