$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa File: FD6881C4438111ECBC63AC7BC4F9AE02.roa (raw, json) Hash identifier: amoqR0z1MhU6x341Z5VRlxnd9fNP2JbgC/UZKrqycqw= Subject key identifier: DC:3A:E5:BD:80:D6:B2:41:54:49:C6:D5:9F:42:37:E1:29:6A:B6:F0 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 0878 Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa Signing time: Thu 21 May 2026 03:12:20 +0000 ROA not before: Thu 21 May 2026 03:12:20 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 62610 IP address blocks: 129.227.139.0/24 maxlen: 24 129.227.143.0/24 maxlen: 24 156.59.73.0/24 maxlen: 24 156.59.123.0/24 maxlen: 24 156.59.146.0/24 maxlen: 24 156.59.184.0/24 maxlen: 24 162.128.82.0/24 maxlen: 24 162.128.83.0/24 maxlen: 24 162.128.84.0/24 maxlen: 24 162.128.85.0/24 maxlen: 24 162.128.86.0/24 maxlen: 24 162.128.87.0/24 maxlen: 24 162.128.88.0/24 maxlen: 24 162.128.89.0/24 maxlen: 24 162.128.90.0/24 maxlen: 24 162.128.91.0/24 maxlen: 24 162.128.92.0/24 maxlen: 24 162.128.93.0/24 maxlen: 24 162.128.94.0/24 maxlen: 24 162.128.95.0/24 maxlen: 24 162.128.101.0/24 maxlen: 24 162.128.146.0/24 maxlen: 24 162.128.215.0/24 maxlen: 24 162.128.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 21:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: May 21 03:12:20 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6a0e7814-d18d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:0a:63:8c:20:ce:ae:9a:db:15:b1:3e:ec:68: fa:5e:e1:f8:c6:80:73:64:fa:75:9b:8b:38:c1:6c: ad:1c:a9:07:5b:a6:e4:1d:b1:f0:6c:8d:d0:e0:12: 88:be:49:32:bd:33:26:7d:e9:58:3e:84:ac:f8:7b: 1b:d3:5f:e9:64:15:92:5b:90:8d:66:fc:fa:bb:1b: 1e:d9:ae:69:70:cc:f6:92:ae:01:73:37:9e:a4:bb: 3b:78:da:08:1f:b3:a0:7f:d5:a8:84:10:e5:54:f4: 5c:02:b0:fa:5e:b5:42:4d:86:ab:f4:01:7f:1a:c5: d7:8c:da:19:e1:b3:39:e8:59:aa:19:1e:00:cd:42: e8:69:e8:c5:41:f1:b9:26:c0:96:ab:52:24:c5:64: 8b:f6:22:a9:62:c0:73:d5:78:1a:ae:52:e5:16:b0: 70:a7:67:fd:9a:c9:ed:0c:c6:bc:b0:f3:af:ba:7c: 49:8a:00:c7:e6:aa:dc:7a:30:c5:74:4c:a8:f3:a6: bf:62:5b:5a:31:cc:94:6d:2f:c8:d5:f1:6b:1a:ce: 3e:cb:9d:73:ad:56:45:25:fd:2a:4f:c6:cc:76:67: 68:c6:a1:cc:eb:26:71:8a:2a:23:99:cc:cd:30:ca: 97:5f:f6:e8:ae:ac:e7:aa:38:50:2f:f9:19:9a:35: 65:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:3A:E5:BD:80:D6:B2:41:54:49:C6:D5:9F:42:37:E1:29:6A:B6:F0 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 129.227.139.0/24 129.227.143.0/24 156.59.73.0/24 156.59.123.0/24 156.59.146.0/24 156.59.184.0/24 162.128.82.0-162.128.95.255 162.128.101.0/24 162.128.146.0/24 162.128.215.0-162.128.216.255 Signature Algorithm: sha256WithRSAEncryption 0a:a7:88:95:97:ae:47:a2:08:cb:4d:c2:67:35:43:55:b0:16: e2:45:93:c9:8f:ac:67:c6:ee:41:12:5e:83:89:a3:ec:6b:75: 80:a1:d8:09:45:64:97:fd:7a:89:a5:51:91:ca:f3:97:16:51: 69:16:98:a5:70:c7:b3:e5:ff:99:37:ee:65:b6:3e:ac:ce:cd: 91:c9:87:24:6e:64:20:a0:3c:66:5c:7c:4f:b9:7c:d8:90:92: ae:d9:65:d1:e7:76:c2:9f:19:84:6e:a0:c9:49:6a:89:02:52: 03:a4:3a:6a:75:d6:9f:21:46:74:c1:7e:57:d6:ad:3a:56:03: 8b:42:cf:5f:4e:95:62:2e:f8:e3:da:38:24:72:19:8c:64:a2: 78:e0:dd:d1:61:37:b2:39:47:ef:c2:de:4b:2c:de:9b:df:61: 37:22:a1:ab:93:b9:07:c1:8b:46:55:b3:9c:b9:c6:a9:84:65: 77:70:6f:b0:f9:71:59:f7:64:54:e2:c9:af:b1:4c:ef:f4:4d: a1:5e:87:62:55:68:0a:4c:7c:82:a3:61:3f:50:d7:83:bc:cd: 7e:18:3b:9b:3f:69:65:1e:ad:60:58:a2:0a:e3:44:46:32:d8: 68:25:5f:ae:3d:f5:32:eb:90:c8:53:d6:a8:ad:81:61:1a:31: 59:e9:ea:00 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjYwNTIxMDMxMjIwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBlNzgxNC1kMThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+gpjjCDOrprbFbE+7Gj6XuH4xoBzZPp1m4s4wWytHKkHW6bkHbHwbI3Q4BKI vkkyvTMmfelYPoSs+Hsb01/pZBWSW5CNZvz6uxse2a5pcMz2kq4BczeepLs7eNoI H7Ogf9WohBDlVPRcArD6XrVCTYar9AF/GsXXjNoZ4bM56FmqGR4AzULoaejFQfG5 JsCWq1IkxWSL9iKpYsBz1XgarlLlFrBwp2f9msntDMa8sPOvunxJigDH5qrcejDF dEyo86a/YltaMcyUbS/I1fFrGs4+y51zrVZFJf0qT8bMdmdoxqHM6yZxiiojmczN MMqXX/borqznqjhQL/kZmjVl9wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNw65b2A 1rJBVEnG1Z9CN+EparbwMB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvRkQ2ODgxQzQ0 MzgxMTFFQ0JDNjNBQzdCQzRGOUFFMDIucm9hMGUGCCsGAQUFBwEHAQH/BFYwVDBS BAIAATBMAwQAgeOLAwQAgeOPAwQAnDtJAwQAnDt7AwQAnDuSAwQAnDu4MAwDBAGi gFIDBAWigEADBACigGUDBACigJIwDAMEAKKA1wMEAKKA2DANBgkqhkiG9w0BAQsF AAOCAQEACqeIlZeuR6IIy03CZzVDVbAW4kWTyY+sZ8buQRJeg4mj7Gt1gKHYCUVk l/16iaVRkcrzlxZRaRaYpXDHs+X/mTfuZbY+rM7NkcmHJG5kIKA8Zlx8T7l82JCS rtll0ed2wp8ZhG6gyUlqiQJSA6Q6anXWnyFGdMF+V9atOlYDi0LPX06VYi7449o4 JHIZjGSieODd0WE3sjlH78LeSyzem99hNyKhq5O5B8GLRlWznLnGqYRld3BvsPlx WfdkVOLJr7FM7/RNoV6HYlVoCkx8gqNhP1DXg7zNfhg7mz9pZR6tYFiiCuNERjLY aCVfrj31MuuQyFPWqK2BYRoxWenqAA== -----END CERTIFICATE-----Generated at Sat Jun 6 08:22:27 2026 by rpki-client