$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/505FA2389AEC11EC9C828D20C4F9AE02.roa File: 505FA2389AEC11EC9C828D20C4F9AE02.roa (raw, json) Hash identifier: qS7dow3vGlZTKS43RBwycMFRLFvZjdAJ5Wd5WSk0hjI= Subject key identifier: 6F:F1:63:C5:59:3E:D8:EF:38:79:BD:65:ED:DF:75:F1:B2:DC:30:17 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5EE1 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/505FA2389AEC11EC9C828D20C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:20:06 +0000 ROA not before: Thu 28 Aug 2025 14:56:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38247 IP address blocks: 45.126.96.0/22 maxlen: 24 59.153.212.0/22 maxlen: 24 103.7.36.0/22 maxlen: 24 103.19.96.0/22 maxlen: 24 103.23.156.0/22 maxlen: 24 103.129.188.0/22 maxlen: 24 103.249.20.0/22 maxlen: 24 202.79.232.0/21 maxlen: 24 203.160.96.0/21 maxlen: 24 203.170.26.0/23 maxlen: 24 2400:e240::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24289 (0x5ee1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60d16-26d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:86:4e:32:f6:f3:a3:a0:9c:ae:34:cc:b7:96: e1:ad:c4:59:6f:72:d4:2a:45:49:62:a5:c8:34:c1: 5c:f9:22:43:73:e3:28:15:0b:66:72:6c:41:42:cb: d2:d1:7d:2f:1d:76:e4:18:af:12:97:18:ce:f1:46: d8:d5:55:d2:cc:76:6f:3c:cc:3d:9e:64:30:ae:ac: 84:a0:b6:9c:3d:14:23:a8:2a:1b:68:cf:a0:42:cd: 43:20:fd:ac:13:f5:76:2d:b5:76:96:da:84:f4:e1: 1d:5b:47:eb:0a:15:71:62:10:4f:86:1c:e7:55:c8: 3b:77:46:44:d7:69:bb:3e:d6:9d:27:fd:3e:49:c9: 53:42:17:39:97:ec:d6:3c:80:bd:1e:e1:88:c3:eb: 71:c6:bc:3c:5d:d2:70:a8:01:50:45:1c:25:42:20: fa:51:3b:af:f0:9c:7d:44:b7:c0:8d:96:17:e5:72: ae:27:05:29:61:bb:09:e7:08:b9:e9:f9:56:52:d5: c9:75:8d:f3:a9:bf:4d:1c:76:81:20:6f:41:3c:b3: 79:34:a2:4a:66:70:3b:7c:a7:2c:79:bf:72:6b:4d: ce:33:36:dc:d7:45:98:f5:86:fd:70:30:d7:be:d1: 89:0e:ea:c4:bc:f6:b6:d4:b7:88:c0:0f:b4:b9:18: 36:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:F1:63:C5:59:3E:D8:EF:38:79:BD:65:ED:DF:75:F1:B2:DC:30:17 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/505FA2389AEC11EC9C828D20C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.126.96.0/22 59.153.212.0/22 103.7.36.0/22 103.19.96.0/22 103.23.156.0/22 103.129.188.0/22 103.249.20.0/22 202.79.232.0/21 203.160.96.0/21 203.170.26.0/23 IPv6: 2400:e240::/32 Signature Algorithm: sha256WithRSAEncryption c0:25:e6:56:55:0d:96:1b:7f:09:68:f0:fc:9b:1c:65:38:64: f4:a7:25:1b:84:d3:05:4d:48:c2:ec:b3:02:e0:42:59:cb:d2: 40:1e:b7:a0:3e:60:95:22:b8:2f:8d:a6:63:f8:67:24:cd:b8: 64:b9:f9:83:40:66:7b:b5:60:61:89:b6:d5:e8:f5:bc:8f:f0: 7f:2f:78:e2:94:43:c2:ee:cb:d5:31:32:18:37:ec:cd:91:4e: da:92:93:40:d0:e2:9b:5d:4e:8a:f4:d5:f3:f1:83:f1:6c:24: b5:50:35:80:31:6e:3d:0e:76:c3:75:0b:27:88:11:1d:bc:6c: 25:03:18:b5:a3:56:96:2e:93:99:33:52:39:79:0d:21:39:13: a7:e4:73:79:33:1d:41:bb:18:a4:b3:5a:75:43:c6:52:7a:6a: 07:d5:23:27:10:91:4e:86:54:5f:7b:88:53:a1:ba:cb:d8:51: 5e:1d:44:77:f7:77:8c:39:3f:af:a8:5b:a6:5d:74:a2:49:e2: e0:77:0f:f2:ee:f5:4d:d2:87:c6:21:d7:f8:d7:8e:57:3a:15: 9c:c6:95:c8:14:26:40:73:75:65:ab:6a:38:18:ac:b4:d4:9b: 84:43:43:dd:77:37:40:e8:05:6e:50:86:e9:49:c1:c8:85:29: 86:2f:22:20 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICXuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGQxNi0yNmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4ZOMvbzo6CcrjTMt5bhrcRZb3LUKkVJYqXINMFc+SJDc+MoFQtmcmxBQsvS 0X0vHXbkGK8SlxjO8UbY1VXSzHZvPMw9nmQwrqyEoLacPRQjqCobaM+gQs1DIP2s E/V2LbV2ltqE9OEdW0frChVxYhBPhhznVcg7d0ZE12m7PtadJ/0+SclTQhc5l+zW PIC9HuGIw+txxrw8XdJwqAFQRRwlQiD6UTuv8Jx9RLfAjZYX5XKuJwUpYbsJ5wi5 6flWUtXJdY3zqb9NHHaBIG9BPLN5NKJKZnA7fKcseb9ya03OMzbc10WY9Yb9cDDX vtGJDurEvPa21LeIwA+0uRg2PQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFG/xY8VZ PtjvOHm9Ze3fdfGy3DAXMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNTA1RkEyMzg5 QUVDMTFFQzlDODI4RDIwQzRGOUFFMDIucm9hMGQGCCsGAQUFBwEHAQH/BFUwUzBC BAIAATA8AwQCLX5gAwQCO5nUAwQCZwckAwQCZxNgAwQCZxecAwQCZ4G8AwQCZ/kU AwQDyk/oAwQDy6BgAwQBy6oaMA0EAgACMAcDBQAkAOJAMA0GCSqGSIb3DQEBCwUA A4IBAQDAJeZWVQ2WG38JaPD8mxxlOGT0pyUbhNMFTUjC7LMC4EJZy9JAHregPmCV IrgvjaZj+GckzbhkufmDQGZ7tWBhibbV6PW8j/B/L3jilEPC7svVMTIYN+zNkU7a kpNA0OKbXU6K9NXz8YPxbCS1UDWAMW49DnbDdQsniBEdvGwlAxi1o1aWLpOZM1I5 eQ0hOROn5HN5Mx1Buxiks1p1Q8ZSemoH1SMnEJFOhlRfe4hTobrL2FFeHUR393eM OT+vqFumXXSiSeLgdw/y7vVN0ofGIdf4145XOhWcxpXIFCZAc3Vlq2o4GKy01JuE Q0PddzdA6AVuUIbpScHIhSmGLyIg -----END CERTIFICATE-----Generated at Sat Mar 7 22:47:06 2026 by rpki-client