$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/BB9AC51E2F0D11F1B2108CA79A833773.roa File: BB9AC51E2F0D11F1B2108CA79A833773.roa (raw, json) Hash identifier: V/FIY6IBA9sOHywqWzg37fABITREQi7xjxyw7WXMzYE= Subject key identifier: ED:89:FB:09:17:44:2B:A0:85:18:FB:E3:7C:8F:0B:D3:3D:78:1B:69 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 0851 Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/BB9AC51E2F0D11F1B2108CA79A833773.roa Signing time: Fri 03 Apr 2026 03:32:25 +0000 ROA not before: Fri 03 Apr 2026 03:32:25 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 32787 IP address blocks: 162.128.3.0/24 maxlen: 24 162.128.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:44:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Apr 3 03:32:25 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69cf34c9-5fe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:0d:09:c7:b4:0f:6e:59:b9:b4:4d:ca:f1:8a: 07:9f:9b:b8:87:e7:77:2e:c7:a9:04:bc:01:a3:43: ad:fe:a5:b6:44:59:ac:f6:15:ea:c9:59:63:9d:06: 6c:60:03:10:83:c5:ec:e7:34:86:89:78:19:41:9f: 5d:32:b2:f2:b0:30:a7:aa:dc:df:15:64:03:72:bc: ad:88:aa:27:16:50:4f:10:58:cf:36:62:4e:bd:4b: 87:8d:20:3e:1f:55:d3:1c:08:9b:0a:ad:4c:f8:e9: 0b:25:56:74:41:94:a3:27:68:a6:20:2e:cb:32:f8: 83:d3:c3:03:a6:e7:ab:13:f6:ac:ab:42:63:3c:7b: 75:ac:9a:e8:dc:8d:64:46:8a:6a:07:a5:8a:b0:12: 30:c8:6f:dd:7c:61:25:ae:d7:0e:2a:1a:0c:4c:95: a9:5e:e3:d3:56:25:7a:8b:80:c2:f5:7f:cf:39:0e: c4:67:59:01:2e:03:fd:ad:06:0f:7f:98:1c:f0:1f: e0:81:2d:32:b9:87:d8:a5:90:27:56:3e:a7:e1:e1: 2f:99:44:78:0d:35:14:9e:2d:54:3f:93:e5:19:0d: ca:fe:aa:81:e7:60:d5:9b:5a:fa:2b:12:3e:f8:ff: 7c:c9:b3:54:67:c2:8b:0b:81:da:94:e1:9f:1c:24: f8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:89:FB:09:17:44:2B:A0:85:18:FB:E3:7C:8F:0B:D3:3D:78:1B:69 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/BB9AC51E2F0D11F1B2108CA79A833773.roa sbgp-ipAddrBlock: critical IPv4: 162.128.3.0/24 162.128.42.0/24 Signature Algorithm: sha256WithRSAEncryption 30:0d:63:15:4a:a6:56:96:5c:e9:bf:67:99:41:6f:7a:38:7b: 2e:9f:8d:8a:a8:ee:54:18:81:73:27:ea:d6:06:29:94:7c:47: 38:03:b7:96:ce:99:21:f6:99:ca:19:1e:5d:70:bd:48:d8:de: bb:45:b2:d9:d7:92:cb:00:16:e5:27:59:e3:c6:da:58:e0:dd: 46:3b:b7:15:5a:90:ab:5f:d0:b2:3a:a3:5f:ab:e7:30:95:38: 4f:0f:cf:fd:d1:3c:0c:ef:30:92:33:cb:40:ea:cf:53:e2:9f: da:1d:a7:a2:c0:bd:dd:f7:40:2c:c6:33:44:bb:5d:ee:0d:c9: 57:60:30:d1:05:3a:f1:94:b8:ca:41:01:95:9d:7d:f0:a3:8a: 47:a3:cc:c1:26:06:b5:8d:bf:c9:d5:a4:d2:35:35:b1:f1:68: cd:4d:94:28:b7:13:c3:59:7f:0f:15:8e:a8:15:57:32:17:67: 24:69:82:88:35:e2:6d:81:fc:6c:56:87:90:90:c3:3a:8d:b8: 0d:65:bc:40:7d:b8:42:12:03:5b:4e:99:0e:18:50:66:13:2b: d1:87:b9:e8:33:b2:eb:43:f5:eb:2e:a9:5a:af:43:bd:99:38: 69:d7:3d:b6:89:1a:63:56:02:20:50:48:21:00:69:f3:da:d0: e4:82:70:8a -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjYwNDAzMDMzMjI1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMzRjOS01ZmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjA0Jx7QPblm5tE3K8YoHn5u4h+d3LsepBLwBo0Ot/qW2RFms9hXqyVljnQZs YAMQg8Xs5zSGiXgZQZ9dMrLysDCnqtzfFWQDcrytiKonFlBPEFjPNmJOvUuHjSA+ H1XTHAibCq1M+OkLJVZ0QZSjJ2imIC7LMviD08MDpuerE/asq0JjPHt1rJro3I1k RopqB6WKsBIwyG/dfGElrtcOKhoMTJWpXuPTViV6i4DC9X/POQ7EZ1kBLgP9rQYP f5gc8B/ggS0yuYfYpZAnVj6n4eEvmUR4DTUUni1UP5PlGQ3K/qqB52DVm1r6KxI+ +P98ybNUZ8KLC4HalOGfHCT4QwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFO2J+wkX RCughRj743yPC9M9eBtpMB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvQkI5QUM1MUUy RjBEMTFGMUIyMTA4Q0E3OUE4MzM3NzMucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAooADAwQAooAqMA0GCSqGSIb3DQEBCwUAA4IBAQAwDWMVSqZWllzp v2eZQW96OHsun42KqO5UGIFzJ+rWBimUfEc4A7eWzpkh9pnKGR5dcL1I2N67RbLZ 15LLABblJ1njxtpY4N1GO7cVWpCrX9CyOqNfq+cwlThPD8/90TwM7zCSM8tA6s9T 4p/aHaeiwL3d90AsxjNEu13uDclXYDDRBTrxlLjKQQGVnX3wo4pHo8zBJga1jb/J 1aTSNTWx8WjNTZQotxPDWX8PFY6oFVcyF2ckaYKINeJtgfxsVoeQkMM6jbgNZbxA fbhCEgNbTpkOGFBmEyvRh7noM7LrQ/XrLqlar0O9mThp1z22iRpjVgIgUEghAGnz 2tDkgnCK -----END CERTIFICATE-----Generated at Fri Apr 17 17:12:27 2026 by rpki-client