$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/BB62FBD82AEC11EA972CB627C4F9AE02.roa File: BB62FBD82AEC11EA972CB627C4F9AE02.roa (raw, json) Hash identifier: vG/5CBup8bwvo9IJijCwtmm7X5EaDb/8G9msczvTawM= Subject key identifier: 5A:69:C8:53:6B:C0:F2:DD:CB:C1:68:82:C8:9F:A9:87:A1:7F:09:04 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 230A Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/BB62FBD82AEC11EA972CB627C4F9AE02.roa Signing time: Tue 31 Mar 2026 16:20:49 +0000 ROA not before: Tue 31 Mar 2026 16:20:49 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 9497 IP address blocks: 115.146.136.0/21 maxlen: 21 115.146.144.0/20 maxlen: 24 2405:b800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:46:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8970 (0x230a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6, serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: Mar 31 16:20:49 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cbf461-fd7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b9:70:03:38:30:0a:32:9b:45:18:70:f6:d1: 16:17:1e:39:93:0e:6c:af:d9:e0:44:3b:99:e3:12: 40:99:13:d9:89:13:5a:b2:0b:ea:04:88:79:f6:69: e9:df:a7:ef:2b:58:ec:df:52:35:1e:c5:82:25:a9: 45:d5:4c:4a:f6:19:0f:9f:74:d9:a5:96:6a:75:e9: 82:d8:38:d1:3b:76:25:e2:99:0a:e4:4e:cb:88:b1: cf:64:fa:50:c3:00:a1:cd:21:dd:cc:49:50:0a:49: a1:14:05:16:95:5f:64:1c:fc:11:a9:a9:87:3d:c0: ab:fc:45:43:aa:b2:70:1a:2a:18:35:e0:cc:57:ec: 09:ec:71:87:b9:38:87:c8:c0:37:a0:3c:ec:80:35: 28:72:98:6f:b4:d0:42:d1:57:14:04:ef:6e:e7:ea: 27:5b:22:40:07:2a:01:08:9a:83:41:c9:2c:14:84: 4a:5b:fc:70:10:f6:37:33:56:e5:80:d4:3f:ea:9a: 94:22:35:b2:f7:54:af:d7:55:5b:fc:47:76:90:f7: e5:9a:6a:24:20:00:26:d6:a6:9f:a8:df:23:10:e8: ef:ca:e5:18:ca:e3:18:7d:97:5e:c0:ba:55:bd:f5: 42:1a:88:8c:26:ba:11:05:16:8b:74:d3:13:ca:a0: 91:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:69:C8:53:6B:C0:F2:DD:CB:C1:68:82:C8:9F:A9:87:A1:7F:09:04 X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/BB62FBD82AEC11EA972CB627C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 115.146.136.0-115.146.159.255 IPv6: 2405:b800::/32 Signature Algorithm: sha256WithRSAEncryption 76:30:95:49:01:65:16:f6:96:7b:9c:d6:5d:b5:85:cf:bc:b1: a5:f1:6c:b8:e7:b3:4f:23:31:3d:5d:44:49:11:80:e1:16:48: 57:d8:66:93:fc:73:50:81:4b:03:91:83:ad:92:ab:cc:a0:98: c0:b9:f5:d7:3f:d8:e0:64:7a:2a:e8:83:15:11:0e:c6:1f:fb: fc:5d:4a:ce:70:20:19:0d:1a:14:1c:48:f7:3c:a1:f6:be:8b: 0c:f8:a7:49:c0:85:63:0f:d0:77:56:53:37:6f:84:23:69:8c: eb:a5:86:42:77:ca:88:0a:6a:25:fe:40:5b:1a:d6:3d:f7:8f: 61:1a:c0:76:d6:99:e8:2e:fc:69:c1:f0:09:a8:c9:7e:69:13: b5:36:e1:b2:2d:6a:82:5a:e6:71:6f:02:dc:39:0a:92:2e:12: e0:9f:e9:49:10:59:a5:00:49:c6:1e:ec:5e:97:00:e7:0e:06: a4:fd:bf:d8:97:c1:56:8b:eb:50:33:f7:76:d2:a2:10:d4:b9: 06:72:8a:be:08:68:0d:f4:cf:a7:c8:f8:1f:25:43:68:e6:6e: d9:23:e9:8b:c4:17:81:92:9e:6b:76:35:b1:da:39:55:7d:3d: e2:1d:32:d7:40:69:cd:0a:06:bd:f4:48:07:23:3b:28:53:f8: 23:b1:0c:80 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICIwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjYwMzMxMTYyMDQ5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiZjQ2MS1mZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1blwAzgwCjKbRRhw9tEWFx45kw5sr9ngRDuZ4xJAmRPZiRNasgvqBIh59mnp 36fvK1js31I1HsWCJalF1UxK9hkPn3TZpZZqdemC2DjRO3Yl4pkK5E7LiLHPZPpQ wwChzSHdzElQCkmhFAUWlV9kHPwRqamHPcCr/EVDqrJwGioYNeDMV+wJ7HGHuTiH yMA3oDzsgDUocphvtNBC0VcUBO9u5+onWyJAByoBCJqDQcksFIRKW/xwEPY3M1bl gNQ/6pqUIjWy91Sv11Vb/Ed2kPflmmokIAAm1qafqN8jEOjvyuUYyuMYfZdewLpV vfVCGoiMJroRBRaLdNMTyqCRvQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFFppyFNr wPLdy8FogsifqYehfwkEMB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4RDYvMjg5OTA1MzBCRTU0MTFFNThEQ0M0MzU3QzRGOUFFMDIvQkI2MkZCRDgy QUVDMTFFQTk3MkNCNjI3QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAU BAIAATAOMAwDBANzkogDBAVzkoAwDQQCAAIwBwMFACQFuAAwDQYJKoZIhvcNAQEL BQADggEBAHYwlUkBZRb2lnuc1l21hc+8saXxbLjns08jMT1dREkRgOEWSFfYZpP8 c1CBSwORg62Sq8ygmMC59dc/2OBkeirogxURDsYf+/xdSs5wIBkNGhQcSPc8ofa+ iwz4p0nAhWMP0HdWUzdvhCNpjOulhkJ3yogKaiX+QFsa1j33j2EawHbWmegu/GnB 8AmoyX5pE7U24bItaoJa5nFvAtw5CpIuEuCf6UkQWaUAScYe7F6XAOcOBqT9v9iX wVaL61Az93bSohDUuQZyir4IaA30z6fI+B8lQ2jmbtkj6YvEF4GSnmt2NbHaOVV9 PeIdMtdAac0KBr30SAcjOyhT+COxDIA= -----END CERTIFICATE-----Generated at Mon Apr 6 10:11:19 2026 by rpki-client