$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa File: FD6881C4438111ECBC63AC7BC4F9AE02.roa (raw, json) Hash identifier: /vTD507iMveUOAK08YQKX6Cvj1AQ2vYplHbXKmdAyEM= Subject key identifier: 91:FB:1A:D3:35:94:F1:C9:C6:8E:35:56:1A:D1:DF:A4:72:46:B4:60 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 085B Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa Signing time: Tue 14 Apr 2026 08:24:02 +0000 ROA not before: Tue 14 Apr 2026 08:24:01 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 62610 IP address blocks: 129.227.139.0/24 maxlen: 24 129.227.143.0/24 maxlen: 24 156.59.73.0/24 maxlen: 24 156.59.123.0/24 maxlen: 24 156.59.146.0/24 maxlen: 24 156.59.184.0/24 maxlen: 24 162.128.82.0/24 maxlen: 24 162.128.83.0/24 maxlen: 24 162.128.84.0/24 maxlen: 24 162.128.85.0/24 maxlen: 24 162.128.86.0/24 maxlen: 24 162.128.87.0/24 maxlen: 24 162.128.88.0/24 maxlen: 24 162.128.89.0/24 maxlen: 24 162.128.90.0/24 maxlen: 24 162.128.91.0/24 maxlen: 24 162.128.92.0/24 maxlen: 24 162.128.93.0/24 maxlen: 24 162.128.94.0/24 maxlen: 24 162.128.95.0/24 maxlen: 24 162.128.146.0/24 maxlen: 24 162.128.215.0/24 maxlen: 24 162.128.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:44:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2139 (0x85b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Apr 14 08:24:01 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69ddf9a1-5952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:6c:c3:f9:b7:3a:65:92:dc:76:44:b1:c7:e3: b5:cc:ff:54:c2:a5:fa:cc:71:e0:92:d2:48:3f:d5: ed:96:87:6b:e1:10:2f:3d:7b:ae:4f:ee:9f:1d:db: 8a:97:24:cb:15:6a:0f:e6:4d:86:3b:4c:c2:19:db: b7:6c:6e:b8:ce:21:69:eb:22:37:ff:39:da:5a:dc: 22:3d:dc:87:5c:63:d8:96:c8:12:e7:92:7c:15:e3: 70:9f:a0:bc:49:86:7e:a0:e3:47:56:3e:d5:82:0e: 54:47:59:ae:77:45:85:34:8b:20:00:33:fc:c4:0d: 53:97:b9:64:ed:ce:f8:e1:43:e7:8c:5e:4d:af:af: a5:3b:92:17:24:3a:c8:13:cd:44:35:04:ca:7f:32: 82:1a:88:fb:ab:7b:7b:1b:65:bd:4e:86:78:24:ac: ee:3e:63:7e:a6:c6:7b:75:f2:b7:34:3f:65:65:dc: 8b:d1:96:2e:3d:3d:16:c1:28:f3:65:cc:d6:80:08: 84:bd:7d:6c:e2:4f:60:c6:c0:d2:1a:3c:2a:5f:66: 25:6f:58:29:25:d7:da:53:90:e2:06:fa:35:52:7f: f6:af:b8:db:87:11:3d:72:20:01:e1:26:8e:22:1e: fa:78:81:18:2f:a0:a1:d9:50:ad:60:c8:35:8b:0d: 82:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:FB:1A:D3:35:94:F1:C9:C6:8E:35:56:1A:D1:DF:A4:72:46:B4:60 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 129.227.139.0/24 129.227.143.0/24 156.59.73.0/24 156.59.123.0/24 156.59.146.0/24 156.59.184.0/24 162.128.82.0-162.128.95.255 162.128.146.0/24 162.128.215.0-162.128.216.255 Signature Algorithm: sha256WithRSAEncryption 4c:e1:19:0c:40:82:b5:c7:7a:13:5d:37:12:c1:1a:a4:54:74: 54:2f:aa:61:f0:44:af:18:8e:ff:44:1a:ec:82:a2:a6:7f:fa: 31:9a:f7:19:bc:ba:6b:3e:2a:e1:4d:77:8e:50:30:c0:ff:31: e8:b9:31:7c:65:87:76:f1:26:d4:97:b5:66:b7:52:11:13:6e: 97:de:72:30:95:76:60:1f:1c:17:49:f7:b1:36:56:2a:49:75: 3d:a7:82:c7:2b:b6:1e:b6:29:52:13:a6:04:23:78:9f:ad:78: af:b8:83:7b:7d:bf:2f:09:35:1a:1f:9b:5c:8d:44:0a:33:7a: 24:b3:f1:66:24:ee:56:74:1b:dc:c8:88:08:fc:86:32:bb:0f: 28:76:ff:7b:f6:30:d3:0d:e1:70:f3:42:32:4b:1a:c4:2b:4f: 08:e1:1d:e5:41:be:c1:d1:73:92:ee:2f:f0:5f:d4:54:33:93: 09:72:56:6b:6a:14:ae:c1:9c:22:04:8a:39:79:06:ae:0e:15: 68:b2:08:fa:a0:76:3a:b4:f8:79:9e:fa:11:d2:5d:ac:41:76: a5:93:39:16:5a:b5:f2:1a:82:87:9e:10:b9:66:20:78:60:1b: 86:03:aa:8c:9c:24:3c:f0:1b:5c:1c:02:c3:46:c8:ac:ac:94: 8d:7f:b2:ee -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICCFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjYwNDE0MDgyNDAxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWRkZjlhMS01OTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAimzD+bc6ZZLcdkSxx+O1zP9UwqX6zHHgktJIP9Xtlodr4RAvPXuuT+6fHduK lyTLFWoP5k2GO0zCGdu3bG64ziFp6yI3/znaWtwiPdyHXGPYlsgS55J8FeNwn6C8 SYZ+oONHVj7Vgg5UR1mud0WFNIsgADP8xA1Tl7lk7c744UPnjF5Nr6+lO5IXJDrI E81ENQTKfzKCGoj7q3t7G2W9ToZ4JKzuPmN+psZ7dfK3ND9lZdyL0ZYuPT0WwSjz ZczWgAiEvX1s4k9gxsDSGjwqX2Ylb1gpJdfaU5DiBvo1Un/2r7jbhxE9ciAB4SaO Ih76eIEYL6Ch2VCtYMg1iw2CewIDAQABo4ICoDCCApwwHQYDVR0OBBYEFJH7GtM1 lPHJxo41VhrR36RyRrRgMB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvRkQ2ODgxQzQ0 MzgxMTFFQ0JDNjNBQzdCQzRGOUFFMDIucm9hMF8GCCsGAQUFBwEHAQH/BFAwTjBM BAIAATBGAwQAgeOLAwQAgeOPAwQAnDtJAwQAnDt7AwQAnDuSAwQAnDu4MAwDBAGi gFIDBAWigEADBACigJIwDAMEAKKA1wMEAKKA2DANBgkqhkiG9w0BAQsFAAOCAQEA TOEZDECCtcd6E103EsEapFR0VC+qYfBErxiO/0Qa7IKipn/6MZr3Gby6az4q4U13 jlAwwP8x6LkxfGWHdvEm1Je1ZrdSERNul95yMJV2YB8cF0n3sTZWKkl1PaeCxyu2 HrYpUhOmBCN4n614r7iDe32/Lwk1Gh+bXI1ECjN6JLPxZiTuVnQb3MiICPyGMrsP KHb/e/Yw0w3hcPNCMksaxCtPCOEd5UG+wdFzku4v8F/UVDOTCXJWa2oUrsGcIgSK OXkGrg4VaLII+qB2OrT4eZ76EdJdrEF2pZM5Flq18hqCh54QuWYgeGAbhgOqjJwk PPAbXBwCw0bIrKyUjX+y7g== -----END CERTIFICATE-----Generated at Fri Apr 17 19:56:12 2026 by rpki-client