$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/70638510630E11ECB30DB557C4F9AE02.roa File: 70638510630E11ECB30DB557C4F9AE02.roa (raw, json) Hash identifier: KiRaYrJRezKtVoFShs1Yf5njhcbbZAWpi3wYrGH+WCI= Subject key identifier: 0C:4D:9C:54:D5:8B:94:84:64:A3:AE:66:96:84:59:E2:57:D4:7D:60 Certificate issuer: /CN=A91B8D56/serialNumber=CF15AD102EEDDFBCCA68585A6F5C3817FE8A18D5 Certificate serial: 04B6 Authority key identifier: CF:15:AD:10:2E:ED:DF:BC:CA:68:58:5A:6F:5C:38:17:FE:8A:18:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/70638510630E11ECB30DB557C4F9AE02.roa Signing time: Sat 31 Jan 2026 00:19:59 +0000 ROA not before: Sat 31 Jan 2026 00:19:59 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134177 IP address blocks: 45.113.64.0/23 maxlen: 23 45.113.64.0/24 maxlen: 24 45.113.65.0/24 maxlen: 24 45.113.66.0/23 maxlen: 23 45.113.66.0/24 maxlen: 24 45.113.67.0/24 maxlen: 24 103.52.208.0/23 maxlen: 23 103.52.208.0/24 maxlen: 24 103.52.209.0/24 maxlen: 24 103.52.210.0/23 maxlen: 23 103.52.210.0/24 maxlen: 24 103.52.211.0/24 maxlen: 24 203.26.234.0/24 maxlen: 24 2402:2480::/48 maxlen: 48 2402:2480:1::/48 maxlen: 48 2402:2480:2::/48 maxlen: 48 2402:2480:3::/48 maxlen: 48 2402:2480:4::/48 maxlen: 48 2402:2480:5::/48 maxlen: 48 2402:2480:6::/48 maxlen: 48 2402:2480:7::/48 maxlen: 48 2402:2480:8::/48 maxlen: 48 2402:2480:9::/48 maxlen: 48 2402:2480:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.crl rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 23:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1206 (0x4b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8D56, serialNumber=CF15AD102EEDDFBCCA68585A6F5C3817FE8A18D5 Validity Not Before: Jan 31 00:19:59 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697d4aaf-bfbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cc:37:4e:d3:f9:73:e4:2f:25:51:f0:60:71: 08:58:94:e3:1e:a1:26:b5:83:ad:24:cc:de:ab:4e: e3:31:ed:5e:ce:8f:a7:fd:6a:de:9c:4a:77:c2:f3: ad:4f:a4:c1:67:b6:a1:d8:fd:b8:c1:97:3a:68:60: 04:9b:9c:29:34:30:2e:1f:3e:d6:c4:85:9c:8b:a5: 84:76:b5:31:aa:47:e4:78:97:b8:1e:51:0a:4f:cb: 0f:b7:8f:36:c1:8b:8e:e0:a8:35:26:82:77:aa:3f: b0:21:c9:00:3b:8e:81:2e:36:f2:8e:1c:26:87:ac: b5:09:b2:7c:e0:fd:a8:eb:e1:e8:82:97:b2:c6:ac: 16:85:c6:c0:04:6e:17:85:15:e1:40:00:f7:24:b8: 81:2b:e3:71:f5:f5:f9:99:cb:17:22:f3:27:de:4e: 73:a7:ef:f7:4d:e7:da:b9:2b:5b:36:3e:76:24:30: e5:c4:49:0f:41:b7:13:06:19:07:c8:0a:a8:fa:b4: 77:0b:15:6e:73:86:b2:6b:39:ba:89:f9:f0:3c:4a: b2:f6:1e:49:b6:1d:b5:a8:82:2e:ed:74:03:e7:dc: 5d:9d:05:f8:1b:d1:f5:02:fa:24:60:4f:fb:c4:e2: 42:74:d8:f4:e3:b6:d1:af:03:70:8d:83:e1:25:98: bd:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:4D:9C:54:D5:8B:94:84:64:A3:AE:66:96:84:59:E2:57:D4:7D:60 X509v3 Authority Key Identifier: keyid:CF:15:AD:10:2E:ED:DF:BC:CA:68:58:5A:6F:5C:38:17:FE:8A:18:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/70638510630E11ECB30DB557C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.113.64.0/22 103.52.208.0/22 203.26.234.0/24 IPv6: 2402:2480::-2402:2480:a:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a5:5d:89:40:d8:b7:2e:8f:14:a7:45:e0:c4:aa:cc:5e:ca:0a: 19:4d:1f:8e:e6:b8:d4:d6:6a:79:ad:91:ef:6f:ee:20:fb:4b: 89:8e:63:84:18:2c:ea:3e:a9:4f:e3:12:2f:b7:d4:d0:2f:ef: 7d:17:d6:c5:ef:71:d8:bd:4a:8e:f6:a5:02:a1:20:a7:cf:f6: e4:ee:70:ce:0a:5b:b1:1b:24:44:3a:1c:30:be:ca:42:ae:ee: ff:70:0c:b0:65:b0:31:b7:62:ee:ae:7d:b9:b3:c4:d9:5b:2c: 02:e1:62:31:b1:bf:4a:b9:57:f7:82:71:60:0d:d2:0c:e5:72: e0:c9:62:8c:64:3d:e2:37:1c:e9:13:9d:5f:db:16:d0:44:8d: 2f:c7:92:33:35:25:f7:d9:f5:50:41:6b:f8:a6:b8:5b:d7:4c: 1f:98:1a:3d:55:80:01:96:5b:b5:7c:46:98:92:2d:15:3d:a5: b6:33:dd:67:6d:dc:ac:76:c3:d0:37:a5:33:e7:ea:46:83:84: dd:17:d2:60:74:29:3b:c4:df:46:7e:b8:bb:6b:eb:4b:f6:55: c0:d7:c9:d1:57:73:c7:72:d2:87:f6:72:9e:52:4b:b0:28:0b: 5f:bd:fa:b7:52:e0:90:a8:60:08:30:a8:4f:9a:53:25:9c:c0: 9e:6f:82:62 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICBLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QjhENTYxMTAvBgNVBAUTKENGMTVBRDEwMkVFRERGQkNDQTY4NTg1QTZGNUMzODE3 RkU4QTE4RDUwHhcNMjYwMTMxMDAxOTU5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdkNGFhZi1iZmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMw3TtP5c+QvJVHwYHEIWJTjHqEmtYOtJMzeq07jMe1ezo+n/WrenEp3wvOt T6TBZ7ah2P24wZc6aGAEm5wpNDAuHz7WxIWci6WEdrUxqkfkeJe4HlEKT8sPt482 wYuO4Kg1JoJ3qj+wIckAO46BLjbyjhwmh6y1CbJ84P2o6+HogpeyxqwWhcbABG4X hRXhQAD3JLiBK+Nx9fX5mcsXIvMn3k5zp+/3TefauStbNj52JDDlxEkPQbcTBhkH yAqo+rR3CxVuc4ayazm6ifnwPEqy9h5Jth21qIIu7XQD59xdnQX4G9H1AvokYE/7 xOJCdNj047bRrwNwjYPhJZi95QIDAQABo4ICuzCCArcwHQYDVR0OBBYEFAxNnFTV i5SEZKOuZpaEWeJX1H1gMB8GA1UdIwQYMBaAFM8VrRAu7d+8ymhYWm9cOBf+ihjV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEQ1Ni8xQkM4RTFCNjYz MEExMUVDQUFBMTQxNEVDNEY5QUUwMi96eFd0RUM3dDM3ekthRmhhYjF3NEZfNktH TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p4V3RFQzd0Mzd6S2FGaGFiMXc0Rl82S0dOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhENTYvMUJDOEUxQjY2MzBBMTFFQ0FBQTE0MTRFQzRGOUFFMDIvNzA2Mzg1MTA2 MzBFMTFFQ0IzMERCNTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBgEAgABMBIDBAItcUADBAJnNNADBADLGuowGAQCAAIwEjAQAwUHJAIkgAMH ACQCJIAACjANBgkqhkiG9w0BAQsFAAOCAQEApV2JQNi3Lo8Up0XgxKrMXsoKGU0f jua41NZqea2R72/uIPtLiY5jhBgs6j6pT+MSL7fU0C/vfRfWxe9x2L1KjvalAqEg p8/25O5wzgpbsRskRDocML7KQq7u/3AMsGWwMbdi7q59ubPE2VssAuFiMbG/SrlX 94JxYA3SDOVy4MlijGQ94jcc6ROdX9sW0ESNL8eSMzUl99n1UEFr+Ka4W9dMH5ga PVWAAZZbtXxGmJItFT2ltjPdZ23crHbD0DelM+fqRoOE3RfSYHQpO8TfRn64u2vr S/ZVwNfJ0Vdzx3LSh/ZynlJLsCgLX736t1LgkKhgCDCoT5pTJZzAnm+CYg== -----END CERTIFICATE-----Generated at Thu Feb 19 23:27:17 2026 by rpki-client