$ rpki-client -vvf rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/687990125D7611F18A94BD85C1833773.roa File: 687990125D7611F18A94BD85C1833773.roa (raw, json) Hash identifier: wbkkhjuYyi+AxZKRXDpbx50fMxRRSA8ovxKIrgbbE8Y= Subject key identifier: 21:CF:12:AC:99:3D:55:C9:27:4A:42:14:60:36:62:69:E6:1B:13:48 Certificate issuer: /CN=A91174DD/serialNumber=19BE1321188F0976D32E836D1AFBA546276657E3 Certificate serial: 57 Authority key identifier: 19:BE:13:21:18:8F:09:76:D3:2E:83:6D:1A:FB:A5:46:27:66:57:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gb4TIRiPCXbTLoNtGvulRidmV-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/687990125D7611F18A94BD85C1833773.roa Signing time: Mon 01 Jun 2026 04:57:37 +0000 ROA not before: Mon 01 Jun 2026 04:57:37 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 142177 IP address blocks: 192.42.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/Gb4TIRiPCXbTLoNtGvulRidmV-M.crl rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/Gb4TIRiPCXbTLoNtGvulRidmV-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gb4TIRiPCXbTLoNtGvulRidmV-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 09:11:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91174DD, serialNumber=19BE1321188F0976D32E836D1AFBA546276657E3 Validity Not Before: Jun 1 04:57:37 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6a1d1141-ad9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8e:74:1d:e5:5e:37:b1:f8:7d:87:2e:27:4f: 5f:da:ea:9a:f4:16:d9:8c:46:b0:4e:bf:d0:a9:15: ae:33:6d:fa:f9:83:55:b7:51:bc:b2:66:06:77:d1: 99:70:bd:f5:e9:89:2e:22:95:c1:d5:ed:4d:70:1a: fb:e0:d2:8f:c3:e8:d3:b0:5c:56:4d:24:13:08:ad: 91:f6:42:c2:8b:c2:c5:e5:05:27:1e:44:1e:a9:f4: c3:c8:ef:bc:9b:cd:32:9d:bf:7d:ec:f7:9d:a5:b5: 1a:df:3b:fe:ad:cc:2c:49:3c:54:c1:23:91:15:13: d8:92:b2:e5:98:6d:3a:7c:5e:5f:4d:4a:e4:73:32: 94:67:46:a2:83:04:ad:16:37:d1:ca:3c:e2:85:ab: 44:db:f1:72:97:6a:c5:49:c9:16:64:a3:b5:32:e7: f4:7c:16:5d:6f:3a:dc:a6:46:15:4b:1e:b0:02:15: de:90:72:55:1c:5f:de:aa:6d:0e:0d:17:91:f5:88: 9a:ee:56:c2:e7:cd:23:c0:bc:a6:7c:bc:24:68:12: 16:64:1c:50:ef:b0:0a:76:72:5b:b7:ae:1a:6a:2e: 84:eb:24:2a:7b:76:ee:dd:36:1c:78:74:79:39:60: 18:76:e5:13:84:0b:b4:cf:c8:7c:73:ac:97:57:2e: 32:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:CF:12:AC:99:3D:55:C9:27:4A:42:14:60:36:62:69:E6:1B:13:48 X509v3 Authority Key Identifier: keyid:19:BE:13:21:18:8F:09:76:D3:2E:83:6D:1A:FB:A5:46:27:66:57:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/Gb4TIRiPCXbTLoNtGvulRidmV-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gb4TIRiPCXbTLoNtGvulRidmV-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/687990125D7611F18A94BD85C1833773.roa sbgp-ipAddrBlock: critical IPv4: 192.42.86.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:99:da:c2:e4:35:d1:e4:d0:c4:c2:fc:fd:cb:f1:7a:c1:45: f8:72:3a:c3:23:f5:6c:e9:d8:f8:ac:91:dd:d9:c0:ac:b1:56: 3f:e4:c1:87:c3:ec:81:8e:7e:47:df:e7:fa:81:8e:50:d1:43: 47:9e:c5:0e:be:58:c1:ce:d7:f2:eb:5b:5e:5e:07:91:f0:aa: cb:12:ff:4b:14:68:06:95:c4:93:db:09:9d:32:22:7b:27:4a: aa:16:d3:bc:ce:c8:4e:61:ef:b4:af:9e:a6:00:5c:da:0b:34: 8e:66:e9:c6:01:ad:e1:49:8b:87:3d:eb:89:37:fb:03:c5:11: d5:02:46:a2:c4:78:1c:42:4d:00:4a:85:bf:da:16:74:e4:c5: c3:e6:b0:24:26:18:d7:63:ad:df:ca:1d:6c:e3:1f:74:49:85: bd:33:6b:38:ee:f5:c0:37:6d:dd:01:64:63:4f:94:6f:93:d9: 3f:0d:98:71:71:ec:27:a1:e0:a8:8b:50:57:19:1c:9a:65:4d: e2:a8:f6:11:50:1f:e3:79:81:d7:6a:bb:81:c9:46:3e:6d:de: 35:41:47:e3:65:79:fa:a1:da:80:50:af:1e:80:00:19:92:0f: 45:e8:2c:19:47:05:90:e7:f2:4a:a6:ab:d9:64:d0:14:55:e8: 53:ba:32:0f -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzRERDExMC8GA1UEBRMoMTlCRTEzMjExODhGMDk3NkQzMkU4MzZEMUFGQkE1NDYy NzY2NTdFMzAeFw0yNjA2MDEwNDU3MzdaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMWQxMTQxLWFkOWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqjnQd5V43sfh9hy4nT1/a6pr0FtmMRrBOv9CpFa4zbfr5g1W3UbyyZgZ30Zlw vfXpiS4ilcHV7U1wGvvg0o/D6NOwXFZNJBMIrZH2QsKLwsXlBSceRB6p9MPI77yb zTKdv33s952ltRrfO/6tzCxJPFTBI5EVE9iSsuWYbTp8Xl9NSuRzMpRnRqKDBK0W N9HKPOKFq0Tb8XKXasVJyRZko7Uy5/R8Fl1vOtymRhVLHrACFd6QclUcX96qbQ4N F5H1iJruVsLnzSPAvKZ8vCRoEhZkHFDvsAp2clu3rhpqLoTrJCp7du7dNhx4dHk5 YBh25ROEC7TPyHxzrJdXLjIlAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUIc8SrJk9 VcknSkIUYDZiaeYbE0gwHwYDVR0jBBgwFoAUGb4TIRiPCXbTLoNtGvulRidmV+Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NEREL0Q5NDc2MzE4RjVE MDExRjBBMDY1MTdEMjQ3NkY1NkJDL0diNFRJUmlQQ1hiVExvTnRHdnVsUmlkbVYt TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2I0VElSaVBDWGJUTG9OdEd2dWxSaWRtVi1NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzRERC9EOTQ3NjMxOEY1RDAxMUYwQTA2NTE3RDI0NzZGNTZCQy82ODc5OTAxMjVE NzYxMUYxOEE5NEJEODVDMTgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADAKlYwDQYJKoZIhvcNAQELBQADggEBAD+Z2sLkNdHk0MTC/P3L8XrB RfhyOsMj9Wzp2Piskd3ZwKyxVj/kwYfD7IGOfkff5/qBjlDRQ0eexQ6+WMHO1/Lr W15eB5HwqssS/0sUaAaVxJPbCZ0yInsnSqoW07zOyE5h77SvnqYAXNoLNI5m6cYB reFJi4c964k3+wPFEdUCRqLEeBxCTQBKhb/aFnTkxcPmsCQmGNdjrd/KHWzjH3RJ hb0zazju9cA3bd0BZGNPlG+T2T8NmHFx7Ceh4KiLUFcZHJplTeKo9hFQH+N5gddq u4HJRj5t3jVBR+Nlefqh2oBQrx6AABmSD0XoLBlHBZDn8kqmq9lk0BRV6FO6Mg8= -----END CERTIFICATE-----Generated at Tue Jun 2 21:24:58 2026 by rpki-client