$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8358F046710211F0A1DDE769C4F9AE02.roa File: 8358F046710211F0A1DDE769C4F9AE02.roa (raw, json) Hash identifier: vTaEzT8mk62F01GXVyG8cvnWZt4xjUh5psMYELVHjMs= Subject key identifier: BB:91:D6:60:24:32:57:7C:DD:A5:D8:A4:2C:AD:91:75:EB:3E:C1:22 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 6BF6 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8358F046710211F0A1DDE769C4F9AE02.roa Signing time: Mon 02 Mar 2026 23:31:38 +0000 ROA not before: Thu 28 Aug 2025 14:54:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140825 IP address blocks: 59.153.216.0/22 maxlen: 24 103.12.76.0/23 maxlen: 24 103.81.84.0/22 maxlen: 24 2001:df0:5b40::/48 maxlen: 48 2001:df0:5bc0::/48 maxlen: 48 2001:df0:90c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27638 (0x6bf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:54:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61dda-05b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d2:c2:b7:25:c9:52:3c:50:77:11:94:c7:f3: ff:18:35:14:f8:15:0c:8f:c6:9f:49:b5:ad:b3:1d: eb:19:5a:49:fe:d5:03:b5:79:eb:84:03:b1:2c:59: 65:83:d1:73:7c:64:c8:35:c7:cf:d2:75:c4:84:47: 90:57:c2:09:68:a6:21:34:ea:8d:a2:9b:a4:24:71: ad:b2:5c:10:a8:60:07:b7:5e:67:1a:4f:1b:89:59: 52:60:44:08:53:13:e3:ee:d6:31:a4:e3:0a:82:34: 01:ce:dc:9b:1a:41:22:07:77:4d:96:52:03:27:f6: f7:4b:9c:9c:c1:ce:6c:20:ce:39:7b:c9:43:ef:95: a9:a7:b1:2c:3b:56:8c:cd:0a:f5:3a:a8:78:b4:6a: 8f:42:d7:71:bb:08:95:29:d9:1f:b0:42:77:e8:7f: d0:9b:66:16:17:70:2c:9c:6b:3a:a2:f7:90:fb:02: 18:38:61:aa:8f:77:fd:b1:75:72:e0:b8:06:a6:ed: a0:f3:45:98:43:12:51:b8:49:0a:9c:2c:7d:f4:40: 1d:44:e6:d8:4f:eb:e7:fe:07:28:9a:98:4a:0e:ea: 53:6d:81:df:42:19:3a:d7:8a:45:6b:8d:f2:74:bc: 87:a7:ed:7f:bf:61:c7:c4:3a:5a:8b:c8:5f:b3:15: 7d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:91:D6:60:24:32:57:7C:DD:A5:D8:A4:2C:AD:91:75:EB:3E:C1:22 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8358F046710211F0A1DDE769C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 59.153.216.0/22 103.12.76.0/23 103.81.84.0/22 IPv6: 2001:df0:5b40::/48 2001:df0:5bc0::/48 2001:df0:90c0::/48 Signature Algorithm: sha256WithRSAEncryption 68:ea:49:51:fb:69:1f:e9:1e:74:37:c5:e3:78:22:5d:17:d5: 55:ff:74:aa:97:93:92:de:f1:38:c3:26:69:4b:a9:ef:e3:07: 5f:4e:68:68:ba:ff:3a:a9:23:26:5d:ab:7c:29:9b:c3:26:7d: 89:c7:f9:bf:73:c8:be:e3:b1:9d:c6:4c:c6:a2:27:59:00:a0: b1:94:25:1a:e9:cc:85:d7:23:15:33:b0:e6:67:b1:f6:8f:96: 9a:e9:fe:86:15:18:9c:53:94:67:97:df:21:63:9a:ca:57:cd: df:bd:e6:49:5c:50:b9:48:2e:de:49:c5:ea:3d:78:e6:93:9c: 38:d4:9f:64:f1:32:1c:fc:16:0f:a6:94:d7:30:d7:aa:34:15: d9:6f:0a:62:8d:29:cc:ea:10:37:3b:68:a3:e1:34:05:e3:18: c1:ab:3f:24:55:73:be:ee:d6:de:a5:8e:4e:39:63:fa:d3:19: d1:35:d5:19:63:c1:e6:e6:bf:b6:3c:39:1e:15:4a:d1:cb:ed: b2:66:b1:2d:53:84:c9:e9:c8:fa:05:31:f8:eb:51:b1:e5:b6: 9d:21:6f:4f:74:32:30:1c:4c:86:90:29:e8:eb:3d:29:ee:bd: 01:3d:2a:2c:51:ef:e3:15:30:d6:35:c8:ec:a6:ce:34:6f:d3: 90:d4:17:05 -----BEGIN CERTIFICATE----- MIIFazCCBFOgAwIBAgICa/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NDIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWRkYS0wNWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tLCtyXJUjxQdxGUx/P/GDUU+BUMj8afSbWtsx3rGVpJ/tUDtXnrhAOxLFll g9FzfGTINcfP0nXEhEeQV8IJaKYhNOqNopukJHGtslwQqGAHt15nGk8biVlSYEQI UxPj7tYxpOMKgjQBztybGkEiB3dNllIDJ/b3S5ycwc5sIM45e8lD75Wpp7EsO1aM zQr1Oqh4tGqPQtdxuwiVKdkfsEJ36H/Qm2YWF3AsnGs6oveQ+wIYOGGqj3f9sXVy 4LgGpu2g80WYQxJRuEkKnCx99EAdRObYT+vn/gcomphKDupTbYHfQhk614pFa43y dLyHp+1/v2HHxDpai8hfsxV9MwIDAQABo4ICjzCCAoswHQYDVR0OBBYEFLuR1mAk Mld83aXYpCytkXXrPsEiMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvODM1OEYwNDY3 MTAyMTFGMEExRERFNzY5QzRGOUFFMDIucm9hME4GCCsGAQUFBwEHAQH/BD8wPTAY BAIAATASAwQCO5nYAwQBZwxMAwQCZ1FUMCEEAgACMBsDBwAgAQ3wW0ADBwAgAQ3w W8ADBwAgAQ3wkMAwDQYJKoZIhvcNAQELBQADggEBAGjqSVH7aR/pHnQ3xeN4Il0X 1VX/dKqXk5Le8TjDJmlLqe/jB19OaGi6/zqpIyZdq3wpm8MmfYnH+b9zyL7jsZ3G TMaiJ1kAoLGUJRrpzIXXIxUzsOZnsfaPlprp/oYVGJxTlGeX3yFjmspXzd+95klc ULlILt5Jxeo9eOaTnDjUn2TxMhz8Fg+mlNcw16o0FdlvCmKNKczqEDc7aKPhNAXj GMGrPyRVc77u1t6ljk45Y/rTGdE11Rljwebmv7Y8OR4VStHL7bJmsS1ThMnpyPoF MfjrUbHltp0hb090MjAcTIaQKejrPSnuvQE9KixR7+MVMNY1yOymzjRv05DUFwU= -----END CERTIFICATE-----Generated at Sat Mar 7 22:48:14 2026 by rpki-client