$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/1A1E4A7A6A6911F18287CF148C47A888.roa File: 1A1E4A7A6A6911F18287CF148C47A888.roa (raw, json) Hash identifier: e7t3O1Ah3VYUL0Ck1v22QjBJxwwkiYn3N9EsqIZTSF4= Subject key identifier: 1C:A6:13:1C:BC:DA:3E:66:EE:10:CE:DA:92:43:4D:5B:CC:0E:48:44 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 3563 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/1A1E4A7A6A6911F18287CF148C47A888.roa Signing time: Wed 17 Jun 2026 16:25:07 +0000 ROA not before: Wed 17 Jun 2026 16:25:07 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 31898 IP address blocks: 119.18.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Jun 2026 15:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13667 (0x3563) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Jun 17 16:25:07 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=6a32ca63-502c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:46:b6:be:6f:05:82:6d:07:a8:1e:53:7e:41: 80:fd:2b:d3:2c:28:c1:c2:ba:46:4d:53:52:93:3d: 48:8f:31:5d:fb:64:ee:46:9f:8b:cb:98:fd:0c:47: 76:fb:15:e4:08:ee:8e:28:26:f4:e6:90:6a:34:53: c1:4e:d9:f1:db:6a:c6:0b:f6:ca:92:b1:80:fa:6e: 95:87:fb:69:07:e6:cf:50:38:0d:16:e0:7a:d7:d1: e5:b8:d3:02:13:31:c0:41:8b:cd:55:93:b5:cd:3f: 62:b6:8a:ec:66:25:49:5b:6d:52:d5:7d:c4:69:c8: de:1f:ff:b8:e1:b7:19:fa:f0:c9:39:4c:78:a5:9d: 87:16:15:87:c9:eb:2f:09:1d:e2:d4:6a:b3:0a:f9: 1a:17:64:13:ab:b1:20:7f:c2:37:de:53:19:9a:a9: 26:19:7f:fb:58:7a:f1:4d:31:d4:7e:5f:07:20:3b: fd:76:bf:9a:53:90:d3:1f:68:c0:0e:a4:7f:5f:09: 60:7b:18:7c:5e:44:34:2d:78:c4:0a:aa:94:69:c5: 91:c6:88:b1:91:49:7a:a2:df:a6:99:e8:9f:c0:65: e2:e5:78:42:fc:1d:04:9f:03:f5:19:fd:8f:eb:99: 49:c9:17:6a:ab:8c:20:92:d0:8d:5e:99:27:7d:c0: 3d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A6:13:1C:BC:DA:3E:66:EE:10:CE:DA:92:43:4D:5B:CC:0E:48:44 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/1A1E4A7A6A6911F18287CF148C47A888.roa sbgp-ipAddrBlock: critical IPv4: 119.18.48.0/20 Signature Algorithm: sha256WithRSAEncryption 70:04:39:ec:20:89:6c:86:b6:a5:7d:0c:9f:15:3a:c5:82:9e: 3b:fd:26:2c:50:df:b3:d6:ed:f1:51:aa:20:da:53:90:10:4d: 12:d8:9a:57:02:11:71:6f:6d:8c:50:5e:d0:84:12:88:1d:cc: 1d:ee:c7:bd:ad:25:68:50:87:0c:c9:16:71:de:0d:99:98:28: 5a:5d:7b:b8:e7:02:79:e3:00:8d:41:0b:8f:bb:e3:1b:9f:91: e0:9f:88:7b:c4:b9:9e:62:4a:77:0c:4a:83:8b:11:18:e2:05: b3:1f:af:a0:ba:8a:0a:6d:f1:34:cb:01:7d:bc:29:96:67:ae: f1:08:92:01:0e:29:4d:67:66:59:ee:81:b1:df:98:ae:ab:24: fc:b9:68:75:d4:a9:7e:cf:02:92:81:95:0e:f4:16:a8:92:b9: cd:7f:da:74:5f:22:d0:37:c0:70:56:ae:05:8a:b5:8d:79:cd: 14:d7:80:b2:b1:f5:8b:9b:39:fa:52:a5:e8:f5:47:52:97:bb: 9a:9a:71:d3:11:05:77:60:fd:c3:2a:b1:7b:57:e3:92:02:26: 35:2d:c1:52:26:b4:e8:0f:8c:af:6d:a0:d1:bc:fa:23:2e:6c: 15:5e:e1:af:31:fd:94:7d:ff:b9:33:b7:e7:f6:82:a3:d1:f2: 6d:12:a5:1b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjYwNjE3MTYyNTA3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTMyY2E2My01MDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Ea2vm8Fgm0HqB5TfkGA/SvTLCjBwrpGTVNSkz1IjzFd+2TuRp+Ly5j9DEd2 +xXkCO6OKCb05pBqNFPBTtnx22rGC/bKkrGA+m6Vh/tpB+bPUDgNFuB619HluNMC EzHAQYvNVZO1zT9itorsZiVJW21S1X3EacjeH/+44bcZ+vDJOUx4pZ2HFhWHyesv CR3i1GqzCvkaF2QTq7Egf8I33lMZmqkmGX/7WHrxTTHUfl8HIDv9dr+aU5DTH2jA DqR/Xwlgexh8XkQ0LXjECqqUacWRxoixkUl6ot+mmeifwGXi5XhC/B0EnwP1Gf2P 65lJyRdqq4wgktCNXpknfcA9SQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBymExy8 2j5m7hDO2pJDTVvMDkhEMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE3NTMvODA1MTQ1OTAxREE3MTFFMkFBQTk0QUExMDhCMDJDRDIvMUExRTRBN0E2 QTY5MTFGMTgyODdDRjE0OEM0N0E4ODgucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEdxIwMA0GCSqGSIb3DQEBCwUAA4IBAQBwBDnsIIlshralfQyfFTrF gp47/SYsUN+z1u3xUaog2lOQEE0S2JpXAhFxb22MUF7QhBKIHcwd7se9rSVoUIcM yRZx3g2ZmChaXXu45wJ54wCNQQuPu+Mbn5Hgn4h7xLmeYkp3DEqDixEY4gWzH6+g uooKbfE0ywF9vCmWZ67xCJIBDilNZ2ZZ7oGx35iuqyT8uWh11Kl+zwKSgZUO9Bao krnNf9p0XyLQN8BwVq4FirWNec0U14CysfWLmzn6UqXo9UdSl7uamnHTEQV3YP3D KrF7V+OSAiY1LcFSJrToD4yvbaDRvPojLmwVXuGvMf2Uff+5M7fn9oKj0fJtEqUb -----END CERTIFICATE-----Generated at Mon Jun 22 08:24:17 2026 by rpki-client