$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/2561D00063DE11EC8CB33722C4F9AE02.roa File: 2561D00063DE11EC8CB33722C4F9AE02.roa (raw, json) Hash identifier: Ry4iplXGyBS9ht+2py0P1CrNX5pszAGaW6tX5f9V2Kg= Subject key identifier: AB:11:83:DC:0E:1E:B3:6F:0A:D4:FF:CB:3D:C5:81:07:00:55:95:F5 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5EEB Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/2561D00063DE11EC8CB33722C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:20:16 +0000 ROA not before: Thu 28 Aug 2025 14:57:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38736 IP address blocks: 203.119.60.0/22 maxlen: 24 2001:dc8:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24299 (0x5eeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60d20-e79a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:bc:32:77:77:67:f1:24:47:17:ea:aa:5b:f7: 37:a4:5a:ff:41:dc:00:3b:0d:80:ad:49:f7:7b:20: 95:cc:6d:81:a3:5f:43:40:d5:03:25:6a:68:61:47: 5e:9a:f9:97:77:48:59:cc:48:6a:41:22:9a:a6:73: aa:f3:e2:75:47:1f:4f:f8:fc:f5:91:0e:15:88:9a: 32:4e:cc:d1:af:74:08:3e:da:06:b8:f1:22:66:ce: 19:ee:a1:b6:23:24:ec:4b:fb:23:76:03:0d:35:87: 4f:09:50:89:76:ea:d0:6b:92:cd:13:17:0a:5b:82: 82:af:f7:bd:55:50:10:7f:11:18:99:28:b2:d7:f7: 12:d3:1b:e7:76:50:26:84:ee:eb:92:ff:4f:da:8b: a3:da:f0:b3:72:99:01:76:0b:a2:94:c6:aa:3f:b1: 23:e5:0d:88:0f:2d:a4:da:6b:ff:9f:51:5f:07:ad: e1:84:57:33:26:f8:bd:b2:d1:a1:ed:88:cb:e0:e6: c6:56:6a:03:5d:df:7b:53:1c:5f:0a:c3:37:0f:10: a0:ef:a0:52:e8:3f:3e:70:d4:ee:59:9f:cf:d0:98: 7d:76:aa:95:32:5c:03:ef:37:6c:27:d8:30:b4:17: 3c:3a:5f:aa:f2:db:88:5b:5d:be:63:ae:e4:3e:ef: 84:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:11:83:DC:0E:1E:B3:6F:0A:D4:FF:CB:3D:C5:81:07:00:55:95:F5 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/2561D00063DE11EC8CB33722C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.119.60.0/22 IPv6: 2001:dc8:1000::/48 Signature Algorithm: sha256WithRSAEncryption 1b:61:50:5e:6a:76:40:a2:17:11:4f:92:a6:8d:10:b6:a5:8e: c2:b7:06:52:0b:7f:9a:59:06:48:f0:3a:8b:d3:d7:1f:6a:9d: 10:ee:b0:d6:d7:fa:48:6a:7a:b1:14:d6:3d:33:1c:1f:3f:dd: e0:2a:85:aa:b5:32:1b:03:af:b0:c6:af:89:06:b3:52:77:a6: 2e:06:72:cf:9a:d4:7c:c3:be:9d:17:1c:35:2e:33:1e:39:74: 34:cc:58:f4:dd:2c:87:f6:61:cb:aa:b2:2c:66:c9:9b:26:de: 41:0a:b1:cf:83:af:fb:2d:16:0a:2c:f4:76:d6:68:c0:3d:82: a5:a1:0a:63:8f:e2:51:6e:5c:b0:68:21:3c:66:2a:9a:2b:1b: 62:83:16:01:a1:b2:6b:c5:28:4a:ba:4a:7c:c6:f6:d9:1b:03: 61:9d:39:b4:c9:f2:49:a3:ee:93:25:bc:a8:a7:42:d6:cb:2d: 2a:5d:b9:45:e1:c3:92:b0:d6:ee:e7:83:5b:d4:a4:54:ca:a9: 36:35:5f:45:35:52:c2:df:ae:ad:7b:f3:59:b9:68:15:d1:a3: 43:87:1d:a2:20:69:72:27:37:fe:de:e7:33:4f:2e:a2:65:2f: 1d:1d:36:fc:3a:47:83:56:af:2e:c0:5f:76:03:1a:c3:de:cd: 9b:ca:59:c9 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICXuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzEwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGQyMC1lNzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmLwyd3dn8SRHF+qqW/c3pFr/QdwAOw2ArUn3eyCVzG2Bo19DQNUDJWpoYUde mvmXd0hZzEhqQSKapnOq8+J1Rx9P+Pz1kQ4ViJoyTszRr3QIPtoGuPEiZs4Z7qG2 IyTsS/sjdgMNNYdPCVCJdurQa5LNExcKW4KCr/e9VVAQfxEYmSiy1/cS0xvndlAm hO7rkv9P2ouj2vCzcpkBdguilMaqP7Ej5Q2IDy2k2mv/n1FfB63hhFczJvi9stGh 7YjL4ObGVmoDXd97UxxfCsM3DxCg76BS6D8+cNTuWZ/P0Jh9dqqVMlwD7zdsJ9gw tBc8Ol+q8tuIW12+Y67kPu+E0wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFKsRg9wO HrNvCtT/yz3FgQcAVZX1MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjU2MUQwMDA2 M0RFMTFFQzhDQjMzNzIyQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCy3c8MA8EAgACMAkDBwAgAQ3IEAAwDQYJKoZIhvcNAQELBQADggEB ABthUF5qdkCiFxFPkqaNELaljsK3BlILf5pZBkjwOovT1x9qnRDusNbX+khqerEU 1j0zHB8/3eAqhaq1MhsDr7DGr4kGs1J3pi4Gcs+a1HzDvp0XHDUuMx45dDTMWPTd LIf2YcuqsixmyZsm3kEKsc+Dr/stFgos9HbWaMA9gqWhCmOP4lFuXLBoITxmKpor G2KDFgGhsmvFKEq6SnzG9tkbA2GdObTJ8kmj7pMlvKinQtbLLSpduUXhw5Kw1u7n g1vUpFTKqTY1X0U1UsLfrq1781m5aBXRo0OHHaIgaXInN/7e5zNPLqJlLx0dNvw6 R4NWry7AX3YDGsPezZvKWck= -----END CERTIFICATE-----Generated at Sat Mar 7 22:48:14 2026 by rpki-client