$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/754A150C7F1411EEBF459226C4F9AE02.roa File: 754A150C7F1411EEBF459226C4F9AE02.roa (raw, json) Hash identifier: XCsl8yEmU+GgS6aBIBUbRIxFOX1gHn8BKq0yJH1JkvQ= Subject key identifier: 9B:5D:3D:D8:50:D7:91:5F:E2:86:B1:64:B7:6D:4A:39:84:9D:1B:6F Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5DA6 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/754A150C7F1411EEBF459226C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:14:51 +0000 ROA not before: Thu 28 Aug 2025 14:52:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131353 IP address blocks: 45.117.80.0/22 maxlen: 24 45.117.176.0/24 maxlen: 24 45.117.177.0/24 maxlen: 24 45.117.178.0/24 maxlen: 24 45.117.179.0/24 maxlen: 24 103.28.36.0/22 maxlen: 22 103.57.208.0/24 maxlen: 24 103.57.209.0/24 maxlen: 24 103.57.210.0/24 maxlen: 24 103.57.211.0/24 maxlen: 24 103.101.160.0/24 maxlen: 24 103.101.161.0/24 maxlen: 24 103.101.162.0/24 maxlen: 24 103.101.163.0/24 maxlen: 24 103.124.92.0/22 maxlen: 24 103.159.50.0/23 maxlen: 24 103.170.122.0/23 maxlen: 24 103.176.178.0/23 maxlen: 24 103.179.190.0/23 maxlen: 24 2001:df1:3200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23974 (0x5da6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60bdb-525e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:70:dd:01:59:97:b6:ee:a9:70:9b:fd:b0:f0: 0f:98:ea:b2:08:56:29:c9:c6:9b:22:d5:7c:bc:8d: 6b:be:17:ac:bd:44:01:39:66:6c:a8:de:58:6b:cd: 45:e5:fa:25:7b:3a:29:e0:12:f0:07:bc:8f:b7:86: e3:6e:5c:37:1a:c4:c2:d8:b3:35:09:77:a7:13:e2: a2:8e:af:43:12:18:aa:24:a6:d4:8b:59:18:43:6a: 61:d2:91:7f:1b:31:68:fe:12:5c:36:7c:e4:18:65: dc:e6:58:e9:4f:2f:a8:1d:e6:c1:77:02:9d:5d:a4: 8d:16:fd:03:4a:93:b0:59:3c:1b:b1:b6:0b:51:5d: c3:32:df:1a:e7:8e:0c:a4:de:b4:21:5e:5c:e3:9c: 4d:c8:50:24:97:9f:6c:d9:99:af:a7:36:5c:12:51: 72:99:5a:45:5c:b9:7a:40:42:d5:c4:f9:ce:57:a4: 97:40:ff:e2:a1:cb:1f:bd:3d:d8:97:89:b9:9a:a1: 8f:bf:9a:38:eb:52:d9:8c:f6:c0:bb:d9:84:5d:65: 44:87:61:fe:61:e4:93:44:ef:f8:82:cf:9a:7a:53: 4c:d8:5e:58:ef:a4:1b:ed:0a:a0:e6:fe:92:4d:1c: 00:20:a8:3f:96:72:ce:04:16:5a:5b:6d:c6:6a:7b: 75:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:5D:3D:D8:50:D7:91:5F:E2:86:B1:64:B7:6D:4A:39:84:9D:1B:6F X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/754A150C7F1411EEBF459226C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.117.80.0/22 45.117.176.0/22 103.28.36.0/22 103.57.208.0/22 103.101.160.0/22 103.124.92.0/22 103.159.50.0/23 103.170.122.0/23 103.176.178.0/23 103.179.190.0/23 IPv6: 2001:df1:3200::/48 Signature Algorithm: sha256WithRSAEncryption 8f:03:2f:6b:89:f3:01:67:09:80:65:0c:36:98:7b:7a:ac:28: 42:eb:0e:3d:f5:9f:c1:fb:b3:83:6a:f1:65:af:58:c5:33:99: 44:cc:3d:55:b7:2c:21:ae:a7:3d:69:46:bd:de:00:49:1a:be: 4f:ae:61:67:81:8e:b5:3c:75:ad:6c:e5:05:98:d9:60:76:16: b0:a9:b0:78:2d:25:1c:92:f3:5b:ef:6d:58:b9:a4:54:15:b6: f2:7b:e1:cf:bd:d1:5f:ae:06:44:9f:3e:b3:07:1c:e2:df:22: 2f:d8:73:25:57:5d:0d:1c:25:eb:0c:c9:38:fd:32:c7:86:2d: 2d:37:9d:c9:a1:a5:b7:a5:7f:ac:2e:af:e5:a5:27:8f:1e:61: 80:80:b3:22:3b:33:25:5d:07:f4:9f:10:b7:58:33:dd:9d:50: 10:0a:8a:15:47:50:1d:bd:c1:c8:1a:7d:f4:d9:54:69:6d:5d: d1:eb:29:ea:b7:7c:e0:df:4d:6a:f7:d2:b0:be:82:2e:a9:cd: 90:11:00:7b:72:c7:74:8d:ca:ed:d6:71:9a:ca:4e:de:f2:7a: 0c:a8:b8:ff:b2:aa:5f:b6:1c:a5:1d:38:17:56:48:08:19:cc: c7:42:9b:bb:c1:c1:25:d9:cb:ef:29:0c:e1:82:6a:af:5a:78: 8b:39:58:2e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICXaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGJkYi01MjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHDdAVmXtu6pcJv9sPAPmOqyCFYpycabItV8vI1rvhesvUQBOWZsqN5Ya81F 5folezop4BLwB7yPt4bjblw3GsTC2LM1CXenE+Kijq9DEhiqJKbUi1kYQ2ph0pF/ GzFo/hJcNnzkGGXc5ljpTy+oHebBdwKdXaSNFv0DSpOwWTwbsbYLUV3DMt8a544M pN60IV5c45xNyFAkl59s2ZmvpzZcElFymVpFXLl6QELVxPnOV6SXQP/iocsfvT3Y l4m5mqGPv5o461LZjPbAu9mEXWVEh2H+YeSTRO/4gs+aelNM2F5Y76Qb7Qqg5v6S TRwAIKg/lnLOBBZaW23Gant1QwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFJtdPdhQ 15Ff4oaxZLdtSjmEnRtvMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNzU0QTE1MEM3 RjE0MTFFRUJGNDU5MjI2QzRGOUFFMDIucm9hMGYGCCsGAQUFBwEHAQH/BFcwVTBC BAIAATA8AwQCLXVQAwQCLXWwAwQCZxwkAwQCZznQAwQCZ2WgAwQCZ3xcAwQBZ58y AwQBZ6p6AwQBZ7CyAwQBZ7O+MA8EAgACMAkDBwAgAQ3xMgAwDQYJKoZIhvcNAQEL BQADggEBAI8DL2uJ8wFnCYBlDDaYe3qsKELrDj31n8H7s4Nq8WWvWMUzmUTMPVW3 LCGupz1pRr3eAEkavk+uYWeBjrU8da1s5QWY2WB2FrCpsHgtJRyS81vvbVi5pFQV tvJ74c+90V+uBkSfPrMHHOLfIi/YcyVXXQ0cJesMyTj9MseGLS03ncmhpbelf6wu r+WlJ48eYYCAsyI7MyVdB/SfELdYM92dUBAKihVHUB29wcgaffTZVGltXdHrKeq3 fODfTWr30rC+gi6pzZARAHtyx3SNyu3WcZrKTt7yegyouP+yql+2HKUdOBdWSAgZ zMdCm7vBwSXZy+8pDOGCaq9aeIs5WC4= -----END CERTIFICATE-----Generated at Sat Mar 7 22:45:26 2026 by rpki-client