
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/F61502A4C0F511EA854EE45FC4F9AE02.roa
File: F61502A4C0F511EA854EE45FC4F9AE02.roa (raw, json)
Hash identifier: l+f+4/9n0vpB3extgQLx1sn5WvnqyOODvFogGPzHRvs=
Subject key identifier: 74:92:9A:1D:C2:2A:CD:C7:8A:03:A0:93:03:BE:98:BA:C2:09:EE:BA
Certificate issuer: /CN=A91BC6DD/serialNumber=4FDD1C93A13CBA91B4F8B7F2C6518F48BA170BAD
Certificate serial: 095B
Authority key identifier: 4F:DD:1C:93:A1:3C:BA:91:B4:F8:B7:F2:C6:51:8F:48:BA:17:0B:AD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T90ck6E8upG0-LfyxlGPSLoXC60.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/F61502A4C0F511EA854EE45FC4F9AE02.roa
Signing time: Tue 16 Jun 2026 20:24:15 +0000
ROA not before: Tue 16 Jun 2026 20:24:15 +0000
ROA not after: Tue 31 Aug 2027 00:00:00 +0000
asID: 10098
IP address blocks: 49.213.0.0/21 maxlen: 21
49.213.0.0/24 maxlen: 24
49.213.1.0/24 maxlen: 24
49.213.2.0/24 maxlen: 24
49.213.3.0/24 maxlen: 24
49.213.4.0/24 maxlen: 24
49.213.5.0/24 maxlen: 24
49.213.6.0/24 maxlen: 24
49.213.7.0/24 maxlen: 24
202.123.64.0/19 maxlen: 19
202.123.64.0/24 maxlen: 24
202.123.65.0/24 maxlen: 24
202.123.66.0/24 maxlen: 24
202.123.68.0/24 maxlen: 24
202.123.69.0/24 maxlen: 24
202.123.70.0/24 maxlen: 24
202.123.72.0/24 maxlen: 24
202.123.74.0/24 maxlen: 24
202.123.75.0/24 maxlen: 24
202.123.76.0/24 maxlen: 24
202.123.77.0/24 maxlen: 24
202.123.80.0/24 maxlen: 24
202.123.81.0/24 maxlen: 24
202.123.84.0/24 maxlen: 24
202.123.85.0/24 maxlen: 24
202.123.87.0/24 maxlen: 24
202.123.89.0/24 maxlen: 24
202.123.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/T90ck6E8upG0-LfyxlGPSLoXC60.crl
rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/T90ck6E8upG0-LfyxlGPSLoXC60.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T90ck6E8upG0-LfyxlGPSLoXC60.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 20:24:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2395 (0x95b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BC6DD, serialNumber=4FDD1C93A13CBA91B4F8B7F2C6518F48BA170BAD
Validity
Not Before: Jun 16 20:24:15 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=6a31b0ef-bd0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e5:1a:e8:5a:29:95:67:a0:18:4c:aa:15:32:
b6:42:86:1c:00:fe:7c:51:af:33:06:48:01:87:80:
e1:65:8f:43:2f:ce:6f:c9:5a:d5:45:77:53:7d:03:
bc:36:a4:b4:86:86:2f:d4:53:9e:55:cb:5a:c8:76:
01:36:19:e5:33:62:ad:65:39:a8:60:41:53:dc:6a:
db:b5:ca:b5:5a:18:9a:40:2c:1d:23:41:35:87:85:
55:24:74:1d:aa:81:98:e4:26:8c:d2:2d:21:46:00:
2e:99:d6:57:f3:84:ca:80:10:b4:8e:23:22:1a:29:
51:ca:72:36:83:ab:53:9b:7b:d5:54:5c:a8:1d:29:
87:0a:27:fd:0a:ef:df:66:1b:2e:27:f7:79:f0:ba:
ea:e4:dd:1b:6f:5c:2e:ee:75:d0:31:8b:e4:52:d2:
0d:0f:a1:54:b8:81:05:18:83:5b:b0:e5:bb:f4:96:
97:e2:5c:f5:fa:21:5b:b4:21:fb:93:80:77:9c:50:
cd:9d:13:11:8d:90:da:5a:18:1d:f5:91:58:a7:3f:
d9:d6:2e:2b:4f:43:02:b7:ac:dd:a4:80:4b:50:7c:
2c:a6:09:92:53:76:99:0a:3b:e1:af:36:e0:f8:85:
b1:7e:52:68:ec:66:cd:6b:73:48:e2:0a:3e:57:7c:
c2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:92:9A:1D:C2:2A:CD:C7:8A:03:A0:93:03:BE:98:BA:C2:09:EE:BA
X509v3 Authority Key Identifier:
keyid:4F:DD:1C:93:A1:3C:BA:91:B4:F8:B7:F2:C6:51:8F:48:BA:17:0B:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/T90ck6E8upG0-LfyxlGPSLoXC60.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T90ck6E8upG0-LfyxlGPSLoXC60.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/F61502A4C0F511EA854EE45FC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
49.213.0.0/21
202.123.64.0/19
Signature Algorithm: sha256WithRSAEncryption
47:82:20:3f:87:9c:40:e5:ef:b2:df:d9:ce:f4:d3:21:75:02:
bd:7c:8c:46:f4:31:a3:58:69:5b:09:0e:c3:d1:76:21:14:c4:
25:4d:fa:cf:be:db:63:86:e7:17:4b:fa:77:d1:8b:84:ff:e5:
37:fe:eb:7b:d2:bd:cd:db:08:14:66:24:26:bc:5e:50:46:a5:
ed:0d:dc:67:c7:04:f7:33:55:80:0d:df:64:b3:3c:1e:5b:a1:
63:4b:8b:2f:a9:15:62:f3:39:e5:46:95:5e:92:58:72:35:c9:
55:01:0a:f7:f8:5d:ef:3b:0f:af:27:9b:91:2a:61:db:6c:f6:
36:0c:2d:09:03:fc:65:d0:d4:02:39:c1:c0:5d:d8:d9:a0:fd:
30:9f:fb:fb:65:95:99:26:db:7f:be:11:1c:19:43:75:dc:2a:
d9:47:d3:63:7c:f4:a3:30:5d:3e:fe:82:8b:32:6e:45:44:2f:
7a:f9:6e:86:65:fb:4b:28:0d:9d:72:d0:e1:78:b7:9c:6b:77:
71:7b:1f:0e:fb:75:bb:45:d5:cd:fd:39:30:21:9f:c1:e5:97:
f7:58:bf:45:77:cd:c0:23:f0:0c:ac:11:85:fb:e7:98:55:f5:
56:69:8c:e8:2d:69:64:35:22:8c:45:2c:f6:c4:37:6d:12:11:
41:98:6e:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 06:12:35 2026 by rpki-client