$ rpki-client -vvf rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/86850E56021D11F18B736F00496F56BC.roa File: 86850E56021D11F18B736F00496F56BC.roa (raw, json) Hash identifier: t1YOO3CTB2wqmZ9Z1apALeTPXX0rA5ab+0BE/sJrH9E= Subject key identifier: 63:7B:A1:A6:FB:88:0D:13:C8:43:E0:01:0A:97:5F:17:01:5C:E9:CD Certificate issuer: /CN=A918919A/serialNumber=2E5BCBC661AFF1FED58B0FF4B583DCF5EC1A374A Certificate serial: 0C02 Authority key identifier: 2E:5B:CB:C6:61:AF:F1:FE:D5:8B:0F:F4:B5:83:DC:F5:EC:1A:37:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/86850E56021D11F18B736F00496F56BC.roa Signing time: Fri 24 Apr 2026 19:24:48 +0000 ROA not before: Fri 24 Apr 2026 19:24:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 17918 IP address blocks: 117.53.160.0/20 maxlen: 24 202.44.98.0/23 maxlen: 24 202.129.128.0/19 maxlen: 24 203.22.104.0/23 maxlen: 24 2404:8600::/32 maxlen: 37 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.crl rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 19:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3074 (0xc02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918919A, serialNumber=2E5BCBC661AFF1FED58B0FF4B583DCF5EC1A374A Validity Not Before: Apr 24 19:24:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69ebc380-d1fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:59:3e:59:dc:00:28:81:29:91:c3:17:b6:2e: 1a:10:7c:17:fc:5f:df:be:24:9b:de:89:e6:80:5c: 75:61:30:77:b4:ac:3b:5b:32:30:19:4b:dc:36:d6: 28:71:89:f6:a0:79:a8:27:03:64:da:11:c8:6d:7f: 3c:a7:40:b5:4e:ec:64:b8:39:de:c6:48:46:d1:a1: c4:1f:0d:0e:9d:49:4c:f9:54:bf:56:03:5d:3d:7e: cb:bf:ff:ed:94:c5:e1:5a:e7:15:47:84:20:b8:f2: 3e:a7:bf:13:d0:95:a9:8d:8e:7a:d2:37:c0:46:85: 69:97:09:13:3c:36:00:d1:ce:d3:c7:f0:c6:2f:86: 77:7b:30:ce:6a:b3:ef:65:55:9d:f8:3f:c2:22:6a: c2:b2:8b:39:2f:9f:d1:02:1d:f8:72:27:f2:07:68: 98:ad:e7:d4:32:45:70:08:f0:33:4b:7d:e5:25:55: 03:38:99:ab:1d:92:39:7c:b5:f5:d3:84:22:02:81: 9f:99:71:3b:20:ea:73:ad:8f:f5:12:8c:b5:8d:4d: 43:7a:42:f2:ea:0c:44:aa:d5:8b:fe:ee:b4:3f:77: f9:90:78:fe:00:f0:b3:70:e5:08:1a:6f:1e:2d:7d: 32:4b:8d:78:88:5f:37:9b:b5:a2:77:a3:f3:b6:f1: e5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:7B:A1:A6:FB:88:0D:13:C8:43:E0:01:0A:97:5F:17:01:5C:E9:CD X509v3 Authority Key Identifier: keyid:2E:5B:CB:C6:61:AF:F1:FE:D5:8B:0F:F4:B5:83:DC:F5:EC:1A:37:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/86850E56021D11F18B736F00496F56BC.roa sbgp-ipAddrBlock: critical IPv4: 117.53.160.0/20 202.44.98.0/23 202.129.128.0/19 203.22.104.0/23 IPv6: 2404:8600::/32 Signature Algorithm: sha256WithRSAEncryption 13:b0:d7:c3:73:4d:f1:a5:1f:00:09:37:6a:38:9b:0b:39:3e: da:86:20:5e:e2:d0:fe:18:4b:e2:e9:0c:ce:e9:6a:c9:05:b0: e6:3f:b2:92:81:b8:f2:1f:87:40:9d:a4:54:34:69:b0:11:07: c0:05:bd:6c:dd:fc:21:62:c8:18:b1:fc:10:8e:92:ad:bd:23: c0:ac:6d:94:a9:11:4f:0c:12:d8:65:57:74:8a:42:94:52:01: 32:b5:f3:ae:5f:e2:96:bd:13:9e:aa:01:b4:97:7a:1d:1e:3b: 13:aa:ba:0f:a0:34:99:54:8e:0c:d8:08:04:cc:09:f6:1d:df: 98:48:34:28:63:a2:f6:82:3f:74:59:cd:0f:c7:16:de:f1:87: f2:5b:81:e7:97:2f:df:74:e5:75:0b:d7:e7:15:18:26:db:dc: e4:61:a9:80:a0:79:4e:56:25:e5:89:52:d4:be:d9:54:8d:ed: 0f:c3:60:68:29:47:76:a5:cc:9e:00:52:58:7e:5b:89:f0:99: a5:c8:f0:46:e9:50:74:0a:38:52:ea:41:f7:13:9a:6d:74:f7: 79:fd:9d:18:d4:78:4e:d4:62:73:5f:55:8d:43:09:70:3d:c7: da:7a:6b:52:dc:2c:7e:3e:67:aa:7b:11:6a:9b:14:e5:23:66: a0:b3:ec:30 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICDAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxOUExMTAvBgNVBAUTKDJFNUJDQkM2NjFBRkYxRkVENThCMEZGNEI1ODNEQ0Y1 RUMxQTM3NEEwHhcNMjYwNDI0MTkyNDQ4WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWViYzM4MC1kMWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Vk+WdwAKIEpkcMXti4aEHwX/F/fviSb3onmgFx1YTB3tKw7WzIwGUvcNtYo cYn2oHmoJwNk2hHIbX88p0C1TuxkuDnexkhG0aHEHw0OnUlM+VS/VgNdPX7Lv//t lMXhWucVR4QguPI+p78T0JWpjY560jfARoVplwkTPDYA0c7Tx/DGL4Z3ezDOarPv ZVWd+D/CImrCsos5L5/RAh34cifyB2iYrefUMkVwCPAzS33lJVUDOJmrHZI5fLX1 04QiAoGfmXE7IOpzrY/1Eoy1jU1DekLy6gxEqtWL/u60P3f5kHj+APCzcOUIGm8e LX0yS414iF83m7Wid6PztvHl+wIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFGN7oab7 iA0TyEPgAQqXXxcBXOnNMB8GA1UdIwQYMBaAFC5by8Zhr/H+1YsP9LWD3PXsGjdK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTE5QS8wNDkwOTA5QTQz MUIxMUVBQjAxOTc3MkNDNEY5QUUwMi9MbHZMeG1HdjhmN1Zpd18wdFlQYzlld2FO MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xsdkx4bUd2OGY3Vml3XzB0WVBjOWV3YU4wby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODkxOUEvMDQ5MDkwOUE0MzFCMTFFQUIwMTk3NzJDQzRGOUFFMDIvODY4NTBFNTYw MjFEMTFGMThCNzM2RjAwNDk2RjU2QkMucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQEdTWgAwQByixiAwQFyoGAAwQByxZoMA0EAgACMAcDBQAkBIYAMA0G CSqGSIb3DQEBCwUAA4IBAQATsNfDc03xpR8ACTdqOJsLOT7ahiBe4tD+GEvi6QzO 6WrJBbDmP7KSgbjyH4dAnaRUNGmwEQfABb1s3fwhYsgYsfwQjpKtvSPArG2UqRFP DBLYZVd0ikKUUgEytfOuX+KWvROeqgG0l3odHjsTqroPoDSZVI4M2AgEzAn2Hd+Y SDQoY6L2gj90Wc0Pxxbe8YfyW4Hnly/fdOV1C9fnFRgm29zkYamAoHlOViXliVLU vtlUje0Pw2BoKUd2pcyeAFJYfluJ8JmlyPBG6VB0CjhS6kH3E5ptdPd5/Z0Y1HhO 1GJzX1WNQwlwPcfaemtS3Cx+PmeqexFqmxTlI2ags+ww -----END CERTIFICATE-----Generated at Wed Apr 29 06:22:36 2026 by rpki-client