$ rpki-client -vvf rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/7970EAA266DA11F084325D42C4F9AE02.roa File: 7970EAA266DA11F084325D42C4F9AE02.roa (raw, json) Hash identifier: h1LWEJUQvaATUOdZkytyIfaI4klq2FxoFoCocLW2Bpc= Subject key identifier: 36:76:2F:31:75:A7:36:DE:E4:0D:F1:91:AF:0C:78:A4:83:AB:7D:92 Certificate issuer: /CN=A91C09EA/serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Certificate serial: D3 Authority key identifier: 00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/7970EAA266DA11F084325D42C4F9AE02.roa Signing time: Sat 07 Mar 2026 06:42:42 +0000 ROA not before: Sat 07 Mar 2026 06:42:42 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 210000 IP address blocks: 163.61.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 05:38:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C09EA, serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Validity Not Before: Mar 7 06:42:42 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69abc8e2-1683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:41:a2:ee:6b:c8:67:cf:76:e7:12:7b:dd:7c: 2c:8a:cf:58:81:d8:c3:29:00:89:3e:6d:85:31:e0: 60:1f:2a:4d:03:fd:86:6a:91:8f:14:fd:7e:51:42: bc:2b:b2:1d:88:29:6d:93:eb:e4:90:4c:5a:b1:9c: 37:77:eb:3d:93:67:5c:67:f1:ea:52:1a:a9:81:3d: 70:c7:26:f0:61:e0:f6:9e:d3:13:d6:c7:33:4c:1a: bd:6a:b5:28:5e:2d:3f:3c:0f:bb:94:6c:17:1c:20: 66:f6:61:15:ba:dd:65:9a:e2:53:b4:50:bb:5e:e2: 85:28:62:0f:5f:b1:d3:0b:d7:61:01:4d:97:fa:73: f5:b6:f8:d7:81:1e:20:20:10:2a:a5:da:f7:53:37: fd:94:3d:9b:1c:fb:86:c4:4e:31:56:06:5a:42:92: d2:3c:38:4b:5a:85:4f:bc:d3:f5:7c:44:1d:eb:e3: 2a:57:75:65:b8:9d:59:53:cb:78:e0:06:cc:36:9a: 0b:3c:b4:79:a9:1d:78:98:b3:6e:05:c8:79:99:10: 1b:e0:74:54:17:35:80:ca:28:1b:51:aa:5a:f6:29: 0f:af:18:b1:b5:7e:bb:ed:35:c2:7d:ae:26:f1:15: eb:33:30:ca:f3:39:af:f9:db:9b:bf:3c:46:e4:fc: 0e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:76:2F:31:75:A7:36:DE:E4:0D:F1:91:AF:0C:78:A4:83:AB:7D:92 X509v3 Authority Key Identifier: keyid:00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/7970EAA266DA11F084325D42C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.61.42.0/23 Signature Algorithm: sha256WithRSAEncryption 13:fd:72:0d:ef:3c:8c:a0:b3:7e:d5:88:fe:8f:80:37:93:8c: 37:92:a8:95:95:36:74:48:42:6a:e1:5f:2a:34:ab:bb:8d:c9: c7:fb:ac:a2:08:3e:b0:08:6c:0e:12:fc:e2:67:40:2a:b3:61: e6:83:cb:82:f7:ac:12:7d:14:a0:f4:0a:19:01:3b:a5:90:40: ef:9d:50:a4:6b:19:69:c0:0e:1d:9b:f5:f3:c7:89:e0:ec:32: f4:61:0e:95:6c:e3:db:b0:39:78:7f:0b:99:97:44:89:df:ad: 13:8a:a2:aa:de:2e:29:6b:19:e9:f1:ff:ae:cf:87:0d:1a:29: 0f:a3:e2:5d:3e:ad:c4:75:06:69:bd:64:5a:71:e9:80:70:37: 5a:a1:53:97:15:a8:c6:b1:d2:2d:2a:6b:38:ee:29:52:db:77: 89:43:64:20:c0:c2:30:e7:75:90:04:83:3d:4c:4a:16:12:04: cd:bd:ca:aa:da:c9:7e:e0:a4:7a:6b:53:63:2e:99:bd:1c:36: 1b:b1:e7:dc:63:e6:9e:c7:b0:db:f9:a2:b6:d1:35:db:10:a0: 25:15:91:b5:21:35:2b:2c:df:b8:bb:c7:5a:e0:fd:df:8a:13: 6c:3a:3b:0d:b3:68:64:cf:ef:e8:66:1b:40:c8:8b:15:b7:8e: 4c:2f:56:cb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA5RUExMTAvBgNVBAUTKDAwRkQzMUZEMDZCNDIwNEMzRERDQjYzNTA3MTg5NTMz Nzc4Q0NDRjgwHhcNMjYwMzA3MDY0MjQyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiYzhlMi0xNjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4UGi7mvIZ8925xJ73Xwsis9YgdjDKQCJPm2FMeBgHypNA/2GapGPFP1+UUK8 K7IdiCltk+vkkExasZw3d+s9k2dcZ/HqUhqpgT1wxybwYeD2ntMT1sczTBq9arUo Xi0/PA+7lGwXHCBm9mEVut1lmuJTtFC7XuKFKGIPX7HTC9dhAU2X+nP1tvjXgR4g IBAqpdr3Uzf9lD2bHPuGxE4xVgZaQpLSPDhLWoVPvNP1fEQd6+MqV3VluJ1ZU8t4 4AbMNpoLPLR5qR14mLNuBch5mRAb4HRUFzWAyigbUapa9ikPrxixtX677TXCfa4m 8RXrMzDK8zmv+dubvzxG5PwOswIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDZ2LzF1 pzbe5A3xka8MeKSDq32SMB8GA1UdIwQYMBaAFAD9Mf0GtCBMPdy2NQcYlTN3jMz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDlFQS84QzU5MTJGRUUx M0IxMUVGQkE3QkRGM0JDNEY5QUUwMi9BUDB4X1FhMElFdzkzTFkxQnhpVk0zZU16 UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FQMHhfUWEwSUV3OTNMWTFCeGlWTTNlTXpQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzA5RUEvOEM1OTEyRkVFMTNCMTFFRkJBN0JERjNCQzRGOUFFMDIvNzk3MEVBQTI2 NkRBMTFGMDg0MzI1RDQyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoz0qMA0GCSqGSIb3DQEBCwUAA4IBAQAT/XIN7zyMoLN+1Yj+j4A3 k4w3kqiVlTZ0SEJq4V8qNKu7jcnH+6yiCD6wCGwOEvziZ0Aqs2Hmg8uC96wSfRSg 9AoZATulkEDvnVCkaxlpwA4dm/Xzx4ng7DL0YQ6VbOPbsDl4fwuZl0SJ360TiqKq 3i4paxnp8f+uz4cNGikPo+JdPq3EdQZpvWRacemAcDdaoVOXFajGsdItKms47ilS 23eJQ2QgwMIw53WQBIM9TEoWEgTNvcqq2sl+4KR6a1NjLpm9HDYbsefcY+aex7Db +aK20TXbEKAlFZG1ITUrLN+4u8da4P3fihNsOjsNs2hkz+/oZhtAyIsVt45ML1bL -----END CERTIFICATE-----Generated at Sun Mar 22 12:32:45 2026 by rpki-client