$ rpki-client -vvf rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/150612CA903711EEB0B65F74C4F9AE02.roa File: 150612CA903711EEB0B65F74C4F9AE02.roa (raw, json) Hash identifier: 5677i0xvUatwcPa/5/jskM4WbAQqym9rIwlW2GlkFu4= Subject key identifier: 55:A8:01:FF:5D:5E:FA:63:F4:21:66:9D:28:EA:19:15:63:6D:D8:55 Certificate issuer: /CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Certificate serial: 36AA Authority key identifier: EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/150612CA903711EEB0B65F74C4F9AE02.roa Signing time: Fri 12 Jun 2026 15:13:07 +0000 ROA not before: Fri 12 Jun 2026 15:13:07 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 17806 IP address blocks: 114.130.0.0/17 maxlen: 24 114.130.6.0/25 maxlen: 26 114.130.6.128/25 maxlen: 26 114.130.11.0/26 maxlen: 26 114.130.125.0/25 maxlen: 27 114.130.192.0/19 maxlen: 19 114.130.223.0/24 maxlen: 24 2403:ec00::/32 maxlen: 40 2403:ec00::/44 maxlen: 48 2403:ec00:8::/64 maxlen: 64 2403:ec00:8:1::/64 maxlen: 64 2403:ec00:25::/48 maxlen: 48 2403:ec00:34::/48 maxlen: 48 2403:ec00:35::/48 maxlen: 48 2403:ec00:36::/48 maxlen: 48 2403:ec00:37::/48 maxlen: 48 2403:ec00:38::/48 maxlen: 48 2403:ec00:39::/48 maxlen: 48 2403:ec00:50::/48 maxlen: 48 2403:ec00:51::/48 maxlen: 48 2403:ec00:100::/41 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13994 (0x36aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AABB1, serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Validity Not Before: Jun 12 15:13:07 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a2c2202-5638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:01:18:c5:28:19:93:9f:a7:5d:29:c9:aa:79: db:fe:f6:ec:30:9b:ee:26:98:99:4c:e3:bc:a6:6f: 0d:3e:f0:cc:e2:13:a6:5b:e5:56:21:d6:64:c4:e3: 21:67:6a:bb:9a:8b:c7:f3:14:38:21:05:fe:93:27: 1e:08:bc:bf:fb:6e:6b:c3:4b:9c:76:68:a6:21:eb: 09:20:41:83:86:fc:3c:6b:b7:4a:8a:03:26:64:2c: 82:f3:89:eb:13:42:f0:cc:e9:1f:db:3b:90:72:7e: 86:e4:1d:70:ec:7c:05:25:e3:a8:87:e9:40:0d:64: 03:ae:36:c3:1d:9e:1d:ee:c9:82:52:2f:e4:87:a5: 45:7a:a3:7f:77:ed:f0:0e:f4:a6:93:f8:7b:81:a1: 1f:b8:5e:45:26:19:9f:82:05:cc:c2:87:d3:3a:c1: cf:ad:88:9d:a1:0f:80:77:4b:4d:7a:49:08:fa:a9: b4:0c:af:7a:5a:49:fc:b5:ff:d0:b5:ca:6d:ad:03: cd:a3:54:a5:8d:9a:f8:a8:00:c1:76:65:9b:8c:c0: bb:ab:a3:08:3e:c0:e5:ef:45:35:ae:8d:3c:f2:ca: ef:99:ef:a4:1b:3a:f1:b5:77:b0:4d:92:8c:ae:15: 11:90:a4:06:1f:0d:35:84:c5:7f:89:41:9b:b4:16: a1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:A8:01:FF:5D:5E:FA:63:F4:21:66:9D:28:EA:19:15:63:6D:D8:55 X509v3 Authority Key Identifier: keyid:EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/150612CA903711EEB0B65F74C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 114.130.0.0/17 114.130.192.0/19 IPv6: 2403:ec00::/32 Signature Algorithm: sha256WithRSAEncryption 77:80:9a:50:21:5c:90:ac:e3:e9:b3:64:4f:dc:68:b6:c5:32: 30:03:69:5d:88:6c:13:f5:be:22:6d:ea:6b:25:37:59:02:8d: 31:09:bf:6b:e9:ec:3d:61:fb:c8:34:5f:49:b3:91:cc:44:fa: a0:89:0e:b1:36:36:27:29:9f:2e:3b:c9:b8:b4:6c:6f:0a:30: eb:47:c5:12:2d:15:6c:25:66:a7:b2:74:bb:38:a6:73:ce:93: 51:ce:4d:de:71:fc:e5:2d:a2:c3:38:fb:7e:ba:69:83:35:95: 0b:43:01:21:ca:bb:6e:a0:c1:54:ee:26:50:04:00:f7:bf:d3: 68:51:4c:63:bf:b0:21:22:11:19:ae:d5:62:85:18:9e:43:ea: 16:80:8e:4a:fa:a3:ea:a5:7c:f7:3e:41:21:83:b5:f1:bb:01: a0:45:a7:29:8c:f4:c1:d5:4a:6b:63:54:8c:14:87:b3:27:18: 79:58:5a:ad:bf:16:f0:c3:bb:c6:cb:b8:34:b6:ff:3c:7e:6c: 93:9f:4a:d8:4a:95:a3:de:3e:9e:fb:6d:a6:ef:f8:5c:70:1e: e2:24:60:dd:d2:91:26:31:2d:4d:13:70:00:81:05:dc:02:4b: c9:62:6f:8b:4d:8f:be:18:5a:38:ad:fa:c1:ae:76:77:08:b4: 33:08:4c:c0 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICNqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCQjExMTAvBgNVBAUTKEVCN0ZFOTg5MkRGMDAwMjU1RkNGM0FDMEIyQjREMTJB RUE2RkY4MDYwHhcNMjYwNjEyMTUxMzA3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTJjMjIwMi01NjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmAEYxSgZk5+nXSnJqnnb/vbsMJvuJpiZTOO8pm8NPvDM4hOmW+VWIdZkxOMh Z2q7movH8xQ4IQX+kyceCLy/+25rw0ucdmimIesJIEGDhvw8a7dKigMmZCyC84nr E0LwzOkf2zuQcn6G5B1w7HwFJeOoh+lADWQDrjbDHZ4d7smCUi/kh6VFeqN/d+3w DvSmk/h7gaEfuF5FJhmfggXMwofTOsHPrYidoQ+Ad0tNekkI+qm0DK96Wkn8tf/Q tcptrQPNo1SljZr4qADBdmWbjMC7q6MIPsDl70U1ro088srvme+kGzrxtXewTZKM rhURkKQGHw01hMV/iUGbtBahfQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFFWoAf9d Xvpj9CFmnSjqGRVjbdhVMB8GA1UdIwQYMBaAFOt/6Ykt8AAlX886wLK00Srqb/gG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUJCMS84ODc0RTlFODFE OTgxMUUyOTc4OEE5ODIwOEIwMkNEMi82M19waVMzd0FDVmZ6enJBc3JUUkt1cHYt QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYzX3BpUzN3QUNWZnp6ckFzclRSS3Vwdi1BWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFCQjEvODg3NEU5RTgxRDk4MTFFMjk3ODhBOTgyMDhCMDJDRDIvMTUwNjEyQ0E5 MDM3MTFFRUIwQjY1Rjc0QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQHcoIAAwQFcoLAMA0EAgACMAcDBQAkA+wAMA0GCSqGSIb3DQEBCwUA A4IBAQB3gJpQIVyQrOPps2RP3Gi2xTIwA2ldiGwT9b4ibeprJTdZAo0xCb9r6ew9 YfvINF9Js5HMRPqgiQ6xNjYnKZ8uO8m4tGxvCjDrR8USLRVsJWansnS7OKZzzpNR zk3ecfzlLaLDOPt+ummDNZULQwEhyrtuoMFU7iZQBAD3v9NoUUxjv7AhIhEZrtVi hRieQ+oWgI5K+qPqpXz3PkEhg7XxuwGgRacpjPTB1UprY1SMFIezJxh5WFqtvxbw w7vGy7g0tv88fmyTn0rYSpWj3j6e+22m7/hccB7iJGDd0pEmMS1NE3AAgQXcAkvJ Ym+LTY++GFo4rfrBrnZ3CLQzCEzA -----END CERTIFICATE-----Generated at Fri Jun 12 19:15:14 2026 by rpki-client