$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/3D68F8C29A4A11EA94706012C4F9AE02.roa File: 3D68F8C29A4A11EA94706012C4F9AE02.roa (raw, json) Hash identifier: gxt7j0/qgDHDY4eOy9nTFq4yiN1wN4Azb/F6N/jLPQo= Subject key identifier: 28:F0:DD:14:80:89:F4:A1:DF:86:9A:6C:05:35:F8:57:72:17:DE:86 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1B8E Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/3D68F8C29A4A11EA94706012C4F9AE02.roa Signing time: Thu 26 Mar 2026 15:11:01 +0000 ROA not before: Thu 26 Mar 2026 15:11:01 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 30821 IP address blocks: 116.51.16.112/28 maxlen: 28 116.51.22.160/28 maxlen: 28 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:30:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7054 (0x1b8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Mar 26 15:11:01 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c54c85-5dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0c:34:07:77:81:b3:36:f8:08:98:36:d2:c2: 40:9e:b1:ad:fd:1f:03:78:a7:a0:14:d7:da:4f:21: ad:ba:9d:7a:8f:6b:32:22:a3:74:24:08:c2:e7:ee: f6:1e:d3:4f:dd:09:6b:c4:e4:47:55:eb:7e:de:f7: a2:2a:0f:56:af:04:7a:f1:98:de:b6:ce:19:78:b9: e0:be:2c:ce:82:7a:a4:21:b4:4b:d6:ef:cd:4a:8f: 3c:da:90:fb:db:ab:3e:a9:f4:22:16:f8:1b:d2:86: e9:52:ac:0a:13:d4:f5:ca:a2:8f:ed:a8:8e:3c:7b: 1f:4c:31:0a:ec:8f:74:8d:9f:47:79:aa:ee:9e:f4: c9:b5:c5:2e:7c:4e:84:d6:87:aa:95:2b:23:21:be: 12:7b:d4:04:d4:c2:55:f6:b6:db:13:ce:52:f8:d8: d2:bc:6b:df:d5:b9:bc:79:ba:4e:8b:74:3a:b4:37: e1:cb:64:f3:c7:8b:f8:f4:e4:31:2c:97:61:e1:10: 54:d5:00:0d:ee:2c:ab:27:67:cd:74:69:48:ca:cf: fc:73:1d:51:6f:bb:d1:96:ae:a5:04:1c:ad:8f:4f: 2a:93:a8:a0:de:96:7f:c9:31:24:77:98:e2:ba:6e: f4:fc:2a:f7:00:3e:6b:14:85:89:6f:c9:00:05:c4: ed:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F0:DD:14:80:89:F4:A1:DF:86:9A:6C:05:35:F8:57:72:17:DE:86 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/3D68F8C29A4A11EA94706012C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.51.16.112/28 116.51.22.160/28 Signature Algorithm: sha256WithRSAEncryption 27:85:41:dd:69:44:d5:30:55:75:12:3e:3c:e8:1c:6c:c8:60: 75:98:ea:35:5d:56:e0:3b:bb:15:6d:aa:f1:27:80:9e:45:81: c3:4f:ee:a8:7d:29:87:0d:3f:ed:cd:05:63:6b:47:11:f4:e6: a0:21:c6:e7:02:2a:14:0c:ee:82:01:c6:89:ec:42:03:21:af: 90:27:90:ed:74:41:42:74:9e:57:bd:96:b2:2f:cc:a1:ec:d6: 43:27:3e:a3:39:2f:32:64:3e:93:49:88:b0:73:01:f4:55:8e: fc:76:95:df:65:66:35:7a:a8:77:64:d3:2b:e7:5b:7d:1c:aa: 29:c7:c1:e3:fd:87:78:40:6f:7d:c9:ac:ac:dd:13:a3:70:95: 49:70:f1:06:54:c7:43:56:48:7b:60:68:6c:f2:1a:04:dd:34: 4f:4a:fa:38:b3:3c:64:c6:ab:af:bd:ca:00:35:1b:76:40:61: b8:4a:56:41:8f:f3:fd:c3:1b:7f:21:fd:42:e3:09:df:43:25: 5d:3a:29:23:05:bd:15:67:f7:d3:e2:60:2b:d3:7f:f3:f0:62: 1d:95:53:0f:1c:51:6a:49:f9:51:ea:7f:a8:aa:7f:c0:4d:d1: 21:cb:c4:98:c9:41:5d:82:ca:8e:7c:02:e4:fb:df:2d:b8:fd: ed:05:2f:0d -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICG44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjYwMzI2MTUxMTAxWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM1NGM4NS01ZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQw0B3eBszb4CJg20sJAnrGt/R8DeKegFNfaTyGtup16j2syIqN0JAjC5+72 HtNP3QlrxORHVet+3veiKg9WrwR68Zjets4ZeLngvizOgnqkIbRL1u/NSo882pD7 26s+qfQiFvgb0obpUqwKE9T1yqKP7aiOPHsfTDEK7I90jZ9HearunvTJtcUufE6E 1oeqlSsjIb4Se9QE1MJV9rbbE85S+NjSvGvf1bm8ebpOi3Q6tDfhy2Tzx4v49OQx LJdh4RBU1QAN7iyrJ2fNdGlIys/8cx1Rb7vRlq6lBBytj08qk6ig3pZ/yTEkd5ji um70/Cr3AD5rFIWJb8kABcTtNQIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFCjw3RSA ifSh34aabAU1+FdyF96GMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZENUQvOURDQjY4RTAxRDg4MTFFMjk0Qjk1NUUxMDhCMDJDRDIvM0Q2OEY4QzI5 QTRBMTFFQTk0NzA2MDEyQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOAwUEdDMQcAMFBHQzFqAwDQYJKoZIhvcNAQELBQADggEBACeFQd1pRNUw VXUSPjzoHGzIYHWY6jVdVuA7uxVtqvEngJ5FgcNP7qh9KYcNP+3NBWNrRxH05qAh xucCKhQM7oIBxonsQgMhr5AnkO10QUJ0nle9lrIvzKHs1kMnPqM5LzJkPpNJiLBz AfRVjvx2ld9lZjV6qHdk0yvnW30cqinHweP9h3hAb33JrKzdE6NwlUlw8QZUx0NW SHtgaGzyGgTdNE9K+jizPGTGq6+9ygA1G3ZAYbhKVkGP8/3DG38h/ULjCd9DJV06 KSMFvRVn99PiYCvTf/PwYh2VUw8cUWpJ+VHqf6iqf8BN0SHLxJjJQV2Cyo58AuT7 3y24/e0FLw0= -----END CERTIFICATE-----Generated at Fri Apr 17 19:37:23 2026 by rpki-client