$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/004C70608FEC11EC818F190FC4F9AE02.roa File: 004C70608FEC11EC818F190FC4F9AE02.roa (raw, json) Hash identifier: HmPJwrWetyFGPa5ZKI8LtX4s8d3PTAB1VjDkV+U45zs= Subject key identifier: 0C:FC:96:5F:4F:66:0D:28:08:C3:A6:95:1E:E2:08:2A:07:2F:2E:AA Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5F0F Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/004C70608FEC11EC818F190FC4F9AE02.roa Signing time: Mon 02 Mar 2026 22:20:53 +0000 ROA not before: Thu 28 Aug 2025 14:57:41 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 56149 IP address blocks: 45.121.160.0/22 maxlen: 24 103.3.252.0/22 maxlen: 24 2001:df5:8a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24335 (0x5f0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:41 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60d45-6bc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:62:70:2f:cc:bc:db:27:db:8f:74:fb:8c:c4: 2c:f1:8b:90:da:91:82:86:a4:02:ab:39:58:7f:be: 89:82:cd:dc:ec:41:05:38:db:df:ac:35:c1:d7:65: 36:45:26:e6:f5:1a:62:2a:53:74:33:b7:d6:d6:d3: 18:21:0e:a0:ec:a4:02:b8:7a:9e:b5:98:ce:68:b5: 36:7e:d6:b3:62:76:56:0a:fb:dd:65:7b:f8:6d:a2: db:26:3e:68:1f:52:64:21:07:4a:51:d6:6e:0e:83: 05:a5:78:36:98:cb:b1:13:24:76:ca:23:5f:bf:85: 42:6d:cf:cd:4f:03:29:3b:8f:cc:bd:cb:64:57:33: 08:98:9f:0e:73:06:1b:67:44:1a:57:62:b4:a1:1b: 4a:8e:e9:4a:b2:41:73:03:52:64:70:49:ef:05:7d: b9:f5:d6:41:a0:7e:41:81:5f:61:d9:a6:26:d5:e8: 89:db:70:94:d5:87:68:96:50:fc:eb:8b:13:e9:d6: af:9e:9e:6b:e2:47:02:bb:e2:d8:60:a7:55:19:80: 36:39:67:8d:76:41:15:13:aa:8a:6b:92:e4:4f:33: 62:e0:1a:db:98:06:8c:48:03:ff:00:bb:74:1e:29: 49:73:d6:7c:2e:28:b4:61:70:e9:2e:62:50:43:4d: c4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:FC:96:5F:4F:66:0D:28:08:C3:A6:95:1E:E2:08:2A:07:2F:2E:AA X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/004C70608FEC11EC818F190FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.121.160.0/22 103.3.252.0/22 IPv6: 2001:df5:8a00::/48 Signature Algorithm: sha256WithRSAEncryption b2:68:97:3a:cc:cc:89:a0:d6:cb:c5:ed:51:86:cf:46:b4:4a: ed:36:6b:f5:0f:e5:dd:84:d4:8d:2e:ea:99:a9:d6:80:b4:68: 4a:39:5e:48:88:8b:58:5e:e6:08:8a:f9:e2:a2:14:d5:eb:1c: c5:12:37:7b:23:3f:af:1a:25:6c:39:a1:39:6b:f9:2f:1e:fa: e5:cf:59:d2:e2:57:06:32:d4:d0:b9:29:e0:67:d3:56:dd:d5: fa:d9:ce:27:41:11:89:e0:bc:80:60:11:d6:9e:6c:75:e9:fb: a4:00:3b:59:b2:65:f9:8d:b5:f5:a5:04:df:a0:38:32:e9:0d: 55:a7:79:72:cd:64:dd:32:cb:b7:b5:0c:3a:18:75:fc:57:f5: 57:b1:e9:af:95:a4:b3:5b:26:86:71:32:18:7d:8d:3c:72:5b: 82:df:55:52:e6:01:eb:f0:1a:4d:37:18:53:16:96:7b:a4:98: 98:b2:1c:8a:4f:3c:c9:51:96:f9:6c:88:f5:91:fa:ac:6a:03: 0a:b8:06:b0:21:1e:b8:78:aa:dc:f2:f6:80:47:a5:55:9e:7a: a6:ff:0b:29:2d:aa:0f:f6:71:f8:62:fb:37:2c:ad:05:29:da: 94:b4:9b:50:d1:cd:3b:aa:4a:e5:0b:14:9f:1d:ed:02:f5:e2: de:42:65:c0 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICXw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzQxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGQ0NS02YmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWJwL8y82yfbj3T7jMQs8YuQ2pGChqQCqzlYf76Jgs3c7EEFONvfrDXB12U2 RSbm9RpiKlN0M7fW1tMYIQ6g7KQCuHqetZjOaLU2ftazYnZWCvvdZXv4baLbJj5o H1JkIQdKUdZuDoMFpXg2mMuxEyR2yiNfv4VCbc/NTwMpO4/MvctkVzMImJ8OcwYb Z0QaV2K0oRtKjulKskFzA1JkcEnvBX259dZBoH5BgV9h2aYm1eiJ23CU1YdollD8 64sT6davnp5r4kcCu+LYYKdVGYA2OWeNdkEVE6qKa5LkTzNi4BrbmAaMSAP/ALt0 HilJc9Z8Lii0YXDpLmJQQ03EwQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFAz8ll9P Zg0oCMOmlR7iCCoHLy6qMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMDA0QzcwNjA4 RkVDMTFFQzgxOEYxOTBGQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQCLXmgAwQCZwP8MA8EAgACMAkDBwAgAQ31igAwDQYJKoZIhvcNAQEL BQADggEBALJolzrMzImg1svF7VGGz0a0Su02a/UP5d2E1I0u6pmp1oC0aEo5XkiI i1he5giK+eKiFNXrHMUSN3sjP68aJWw5oTlr+S8e+uXPWdLiVwYy1NC5KeBn01bd 1frZzidBEYngvIBgEdaebHXp+6QAO1myZfmNtfWlBN+gODLpDVWneXLNZN0yy7e1 DDoYdfxX9Vex6a+VpLNbJoZxMhh9jTxyW4LfVVLmAevwGk03GFMWlnukmJiyHIpP PMlRlvlsiPWR+qxqAwq4BrAhHrh4qtzy9oBHpVWeeqb/Cyktqg/2cfhi+zcsrQUp 2pS0m1DRzTuqSuULFJ8d7QL14t5CZcA= -----END CERTIFICATE-----Generated at Sat Mar 7 22:43:01 2026 by rpki-client