$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/52685F222E9111E999636910C4F9AE02.roa File: 52685F222E9111E999636910C4F9AE02.roa (raw, json) Hash identifier: 4Ei9jmJLAQOoAToGpIrcLdsdG3+i6HRC8BOB0H1zkBM= Subject key identifier: 45:1F:F1:90:A0:2A:51:A0:93:D4:44:61:91:E1:B0:54:58:D4:3A:93 Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 11D3 Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/52685F222E9111E999636910C4F9AE02.roa Signing time: Tue 26 May 2026 17:26:27 +0000 ROA not before: Tue 26 May 2026 17:26:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24081 IP address blocks: 121.97.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 17:13:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4563 (0x11d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: May 26 17:26:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a15d7c3-1ba5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ab:9a:e7:bf:18:6a:b8:ff:73:45:84:fd:fb: 88:49:c4:4d:5c:4c:12:55:51:a4:f6:d1:a5:8d:08: 9a:9d:3e:aa:04:63:75:48:08:df:e0:44:56:7c:90: e4:4b:dc:f0:5e:0a:25:03:ce:c0:e4:a5:42:14:32: a2:af:74:9e:dc:71:78:a1:5e:2c:6c:01:60:29:b5: 9f:5e:79:5e:62:dc:c1:26:d6:c5:04:cd:e1:94:ae: 7a:31:fb:43:11:0e:53:c7:c5:a5:bd:cc:e7:4c:61: 4d:03:85:84:0b:33:5d:0a:c2:db:01:82:12:26:cd: f4:81:81:83:76:0f:01:cb:02:98:05:39:81:57:ee: ae:52:d6:d9:18:a5:ea:74:a2:18:88:0b:da:a1:7c: de:d3:b7:af:59:cf:b9:5a:ee:69:87:2e:5c:dd:dc: 3b:b1:fc:90:47:4d:b3:25:f7:9f:c6:8a:d7:cd:bc: 6b:90:11:76:34:73:38:33:7c:d5:51:a2:6b:fa:cf: 42:7a:40:7e:ed:3d:76:14:2c:7e:d5:7d:71:69:d0: da:35:dd:dd:b9:01:d0:50:09:a0:90:27:e8:af:b2: eb:25:85:15:64:08:9c:ac:e1:92:44:6d:29:78:ae: 79:c9:aa:8b:bb:2b:30:a3:50:55:6d:0a:04:86:33: ed:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:1F:F1:90:A0:2A:51:A0:93:D4:44:61:91:E1:B0:54:58:D4:3A:93 X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/52685F222E9111E999636910C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 121.97.32.0/24 Signature Algorithm: sha256WithRSAEncryption 26:fa:a6:32:5a:d9:86:f8:ec:01:2c:48:aa:83:29:76:63:62: e3:92:14:73:e0:c6:7c:2d:ab:09:71:b1:74:7f:09:7e:e8:6e: cf:18:ee:8b:67:fb:6e:d9:ac:a9:d1:f1:b5:e2:a7:c2:f5:e9: 94:b0:d4:cf:ba:34:a6:dd:31:11:f5:be:a1:58:24:15:f6:73: f4:49:3b:32:66:60:6a:97:0b:51:e3:e9:6f:94:45:f4:1c:a9: d1:12:9f:69:91:e7:ca:25:f4:c6:8a:5f:12:fc:9d:d3:de:c1: b1:65:55:43:6f:8c:aa:bc:87:4f:1d:f5:f1:c8:5b:33:b2:eb: e3:b4:1e:a7:e3:2a:af:ae:94:36:46:f7:17:6e:ab:a6:cc:01: 2c:9e:75:7c:32:f7:40:2a:08:5f:de:d1:08:dc:bd:9f:ff:77: 5e:c6:39:cb:40:8c:e9:0b:c7:f9:6e:be:57:e6:b7:99:2a:9f: cf:8e:dd:1e:12:52:a0:71:50:d0:5b:d7:e5:56:6a:e9:ad:df: c7:70:72:98:f6:54:50:4e:37:bb:5d:6d:8a:28:54:e2:0d:93: cf:5e:95:ba:e5:da:54:ff:a6:b6:6d:0e:30:73:8a:bb:5b:e8: ed:6e:a0:83:b5:26:e7:03:9d:c7:c1:8b:13:28:1f:59:40:f9: 26:57:ba:b7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjYwNTI2MTcyNjI3WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE1ZDdjMy0xYmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqua578Yarj/c0WE/fuIScRNXEwSVVGk9tGljQianT6qBGN1SAjf4ERWfJDk S9zwXgolA87A5KVCFDKir3Se3HF4oV4sbAFgKbWfXnleYtzBJtbFBM3hlK56MftD EQ5Tx8WlvcznTGFNA4WECzNdCsLbAYISJs30gYGDdg8BywKYBTmBV+6uUtbZGKXq dKIYiAvaoXze07evWc+5Wu5phy5c3dw7sfyQR02zJfefxorXzbxrkBF2NHM4M3zV UaJr+s9CekB+7T12FCx+1X1xadDaNd3duQHQUAmgkCfor7LrJYUVZAicrOGSRG0p eK55yaqLuyswo1BVbQoEhjPtBQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEUf8ZCg KlGgk9REYZHhsFRY1DqTMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvNTI2ODVGMjIy RTkxMTFFOTk5NjM2OTEwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAeWEgMA0GCSqGSIb3DQEBCwUAA4IBAQAm+qYyWtmG+OwBLEiqgyl2 Y2LjkhRz4MZ8LasJcbF0fwl+6G7PGO6LZ/tu2ayp0fG14qfC9emUsNTPujSm3TER 9b6hWCQV9nP0STsyZmBqlwtR4+lvlEX0HKnREp9pkefKJfTGil8S/J3T3sGxZVVD b4yqvIdPHfXxyFszsuvjtB6n4yqvrpQ2RvcXbqumzAEsnnV8MvdAKghf3tEI3L2f /3dexjnLQIzpC8f5br5X5reZKp/Pjt0eElKgcVDQW9flVmrprd/HcHKY9lRQTje7 XW2KKFTiDZPPXpW65dpU/6a2bQ4wc4q7W+jtbqCDtSbnA53HwYsTKB9ZQPkmV7q3 -----END CERTIFICATE-----Generated at Sat Jun 6 16:11:33 2026 by rpki-client