$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4BD7A88C836411F0993AF30FC4F9AE02.roa File: 4BD7A88C836411F0993AF30FC4F9AE02.roa (raw, json) Hash identifier: DxogIFCDgDqSf8D/FG4idnhf5hDeD074sR10Wf7KlpM= Subject key identifier: 98:D0:AF:F4:9D:D0:97:D9:04:B9:09:1C:3D:AF:57:F3:EE:8F:AC:37 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 6BEC Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4BD7A88C836411F0993AF30FC4F9AE02.roa Signing time: Mon 02 Mar 2026 23:31:27 +0000 ROA not before: Thu 28 Aug 2025 14:56:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24086 IP address blocks: 27.64.0.0/12 maxlen: 24 103.84.76.0/22 maxlen: 24 115.72.0.0/13 maxlen: 24 116.96.0.0/12 maxlen: 24 117.0.0.0/13 maxlen: 24 125.212.128.0/17 maxlen: 24 125.214.0.0/18 maxlen: 24 125.234.0.0/17 maxlen: 24 125.234.128.0/19 maxlen: 24 125.234.176.0/20 maxlen: 24 125.234.192.0/18 maxlen: 24 125.235.0.0/16 maxlen: 24 171.224.0.0/11 maxlen: 24 203.113.128.0/19 maxlen: 24 203.113.160.0/19 maxlen: 24 203.190.160.0/20 maxlen: 24 220.231.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27628 (0x6bec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61dcf-24b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a4:8d:1c:c3:f7:67:b4:b3:58:02:3b:c2:66: c9:e3:30:5d:1e:5f:82:35:b9:a2:36:37:43:1d:6b: 45:87:a6:2e:55:8f:43:92:35:a2:d0:1e:da:5f:53: a0:58:54:4e:0b:62:20:46:5e:d8:73:b9:28:8f:5d: 69:ee:f7:04:fc:dc:f5:7c:99:fa:4e:a4:e5:7b:3f: 38:0d:37:d3:89:97:8b:33:dc:d5:11:3a:90:74:ab: 07:33:0a:c0:85:3c:fc:c5:4e:16:d6:36:c7:89:37: 0d:43:46:ee:87:50:b2:5a:a2:6f:1a:d9:3d:ee:95: 15:9d:14:9b:bd:e4:1f:cd:93:52:35:a3:d6:8a:2f: cd:93:e9:82:10:28:58:05:6c:7b:b7:59:a5:a3:f6: 59:8d:5b:08:32:21:9b:24:49:13:f3:79:e7:95:e5: db:ea:39:f8:3c:6d:04:c6:eb:66:41:5e:52:40:86: e9:25:d6:0b:bf:5e:95:59:23:e2:91:c3:41:c3:60: 23:75:5c:a1:2f:4f:70:31:51:72:30:a6:b0:a6:f3: 6e:fe:5c:50:c0:21:07:0e:f7:bf:bb:80:44:fb:1c: 12:ba:9a:0f:21:42:fe:6f:d7:77:90:01:00:90:43: 37:5e:11:0d:fe:3a:a4:f5:5e:b2:09:00:11:2a:91: 5f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:D0:AF:F4:9D:D0:97:D9:04:B9:09:1C:3D:AF:57:F3:EE:8F:AC:37 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4BD7A88C836411F0993AF30FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.64.0.0/12 103.84.76.0/22 115.72.0.0/13 116.96.0.0/12 117.0.0.0/13 125.212.128.0/17 125.214.0.0/18 125.234.0.0-125.234.159.255 125.234.176.0-125.235.255.255 171.224.0.0/11 203.113.128.0/18 203.190.160.0/20 220.231.64.0/18 Signature Algorithm: sha256WithRSAEncryption a4:81:62:18:5b:81:2b:cc:48:f9:2b:65:24:f9:67:4c:95:3c: 82:38:c3:55:a7:6a:1b:06:12:b4:77:8e:15:b2:4a:25:1c:fa: 9c:fc:06:ff:80:34:8e:59:6f:c7:e6:0f:98:32:da:c7:84:79: 80:14:bb:0d:cb:11:9d:e4:59:15:60:6d:a7:34:fc:24:5d:3b: 49:3c:bd:fb:07:19:9d:c6:2d:5d:3e:95:91:e8:34:3f:1c:93: e1:c8:07:7f:ba:75:09:aa:be:1a:7d:96:77:bf:25:33:2e:36: 95:9f:b1:48:2f:de:00:f7:c0:6c:10:65:71:1e:ff:dc:dd:ef: f8:ee:2e:24:12:00:ef:b4:a4:88:a6:e0:74:0e:37:0e:79:3e: f7:f7:c5:bf:57:10:e1:0b:db:76:10:4a:30:79:d1:d2:21:0c: 18:00:bc:20:e1:cb:5f:ef:6b:37:22:aa:09:00:72:e3:20:9d: 95:f4:f5:83:c2:a1:47:e6:5e:3a:cf:6c:a7:c1:da:aa:60:90: 21:d3:8e:e1:0e:e2:e4:a5:c3:2e:c3:26:94:58:b9:54:51:c4: 54:27:d7:a8:fa:d9:34:5b:b1:4d:af:f3:00:ed:a0:6c:57:4f: 38:a1:9a:0d:0f:a7:ce:ec:94:97:32:a9:21:b3:24:df:0f:af: c2:e0:1d:09 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICa+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjUyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWRjZi0yNGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqSNHMP3Z7SzWAI7wmbJ4zBdHl+CNbmiNjdDHWtFh6YuVY9DkjWi0B7aX1Og WFROC2IgRl7Yc7koj11p7vcE/Nz1fJn6TqTlez84DTfTiZeLM9zVETqQdKsHMwrA hTz8xU4W1jbHiTcNQ0buh1CyWqJvGtk97pUVnRSbveQfzZNSNaPWii/Nk+mCEChY BWx7t1mlo/ZZjVsIMiGbJEkT83nnleXb6jn4PG0ExutmQV5SQIbpJdYLv16VWSPi kcNBw2AjdVyhL09wMVFyMKawpvNu/lxQwCEHDve/u4BE+xwSupoPIUL+b9d3kAEA kEM3XhEN/jqk9V6yCQARKpFfCQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFJjQr/Sd 0JfZBLkJHD2vV/Puj6w3MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNEJEN0E4OEM4 MzY0MTFGMDk5M0FGMzBGQzRGOUFFMDIucm9hMHAGCCsGAQUFBwEHAQH/BGEwXzBd BAIAATBXAwMEG0ADBAJnVEwDAwNzSAMDBHRgAwMDdQADBAd91IADBAZ91gAwCwMD AX3qAwQFfeqAMAsDBAR96rADAwJ96AMDBavgAwQGy3GAAwQEy76gAwQG3OdAMA0G CSqGSIb3DQEBCwUAA4IBAQCkgWIYW4ErzEj5K2Uk+WdMlTyCOMNVp2obBhK0d44V skolHPqc/Ab/gDSOWW/H5g+YMtrHhHmAFLsNyxGd5FkVYG2nNPwkXTtJPL37Bxmd xi1dPpWR6DQ/HJPhyAd/unUJqr4afZZ3vyUzLjaVn7FIL94A98BsEGVxHv/c3e/4 7i4kEgDvtKSIpuB0DjcOeT7398W/VxDhC9t2EEowedHSIQwYALwg4ctf72s3IqoJ AHLjIJ2V9PWDwqFH5l46z2ynwdqqYJAh047hDuLkpcMuwyaUWLlUUcRUJ9eo+tk0 W7FNr/MA7aBsV084oZoND6fO7JSXMqkhsyTfD6/C4B0J -----END CERTIFICATE-----Generated at Sat Mar 7 22:44:58 2026 by rpki-client