$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BA8B530463E311EC8B936683C4F9AE02.roa File: BA8B530463E311EC8B936683C4F9AE02.roa (raw, json) Hash identifier: j0QfQrgmcL9LToJ79dX2WDfTbigTE7n4xKxjkQvokmE= Subject key identifier: 9A:FD:61:C5:1A:AE:97:B0:38:E0:4D:8E:79:90:46:0B:26:29:59:C0 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5D9A Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BA8B530463E311EC8B936683C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:14:40 +0000 ROA not before: Thu 28 Aug 2025 14:52:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131123 IP address blocks: 117.122.3.0/24 maxlen: 24 2001:dc8:2003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23962 (0x5d9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60bd0-172c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e9:e0:23:e1:dc:c2:bc:33:a1:a7:43:49:8d: ca:bf:7c:b8:9e:7a:f5:0d:85:3e:09:55:53:cc:5f: 0c:7d:10:6f:07:73:71:43:ac:bd:55:a2:0f:d4:95: 49:20:37:2a:6f:bf:f8:28:a8:4f:de:a1:0c:7d:5f: 03:85:98:32:17:00:bf:fa:60:ef:a2:9e:ba:63:4a: 46:e4:c9:d6:43:2f:f6:c2:01:1f:48:2c:6a:31:26: 67:37:7c:a5:41:8b:18:c5:02:a3:89:3f:d1:71:7c: 21:b1:18:9b:cb:73:25:32:6e:0b:cc:2c:a4:6c:39: 3f:0c:c8:12:85:cc:40:0a:f3:ea:d3:b9:06:04:14: 1c:b3:db:7b:ac:e6:49:8f:f1:1b:36:45:99:a7:5f: 17:e2:85:11:f7:5e:52:1f:d8:d3:64:c4:e2:66:fa: 9a:d1:80:ea:56:56:3b:56:ad:17:75:51:33:31:9e: a3:15:37:77:79:e5:e7:46:f5:04:87:8d:56:27:09: 0e:41:2c:9b:1e:fa:ce:bf:c4:6b:8a:44:8a:f8:a6: 6a:a0:1a:c9:15:74:2f:52:7f:d0:1e:fd:27:eb:5d: 3a:be:56:51:5a:17:29:b1:05:8a:fc:22:e9:90:35: 17:2d:70:2c:64:52:b4:5d:04:c9:df:5f:51:e5:d8: 16:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:FD:61:C5:1A:AE:97:B0:38:E0:4D:8E:79:90:46:0B:26:29:59:C0 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BA8B530463E311EC8B936683C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 117.122.3.0/24 IPv6: 2001:dc8:2003::/48 Signature Algorithm: sha256WithRSAEncryption 34:bc:d2:c7:a5:1b:4f:ca:fb:67:2d:51:8f:60:a4:6a:c3:54: 8c:b5:f6:9e:25:8f:91:b8:1f:bc:0e:6b:de:38:b5:24:64:aa: 74:99:19:43:a0:66:91:73:02:d9:a8:6e:1c:f8:89:53:8c:ab: 66:81:2c:97:5b:8b:78:71:30:d3:8a:d1:5f:a7:e1:32:79:d5: f6:d7:ca:ea:d6:0d:05:05:d2:6f:d3:09:c0:04:f6:13:e8:c5: 40:d3:b3:05:bb:f9:35:ae:ea:c2:3c:39:1f:9a:02:a8:84:83: b6:32:61:4b:97:73:99:82:5e:68:f4:44:1b:f0:a0:7f:2d:4c: d3:73:64:b4:b3:85:14:21:77:69:07:83:3b:61:c0:a3:f0:fa: 22:21:8c:d9:5c:62:ac:f5:86:9b:16:f2:07:41:34:99:bf:43: e1:ce:1f:d2:83:bd:89:8d:2c:4e:62:92:08:71:fd:a0:d4:6a: 90:d8:9f:d6:28:09:01:2d:d0:57:ad:a2:86:d0:dd:e5:d4:a4: b7:1e:3f:6e:99:b1:20:c0:5d:db:ad:c0:b6:9f:c7:b8:ba:3f: 80:a4:50:0f:03:d4:7b:a4:f7:76:52:9e:7a:5a:2d:1b:3e:44: 7a:a5:8f:98:1c:89:4b:a6:18:00:2e:b3:0c:26:15:0d:ca:af: 56:b7:82:7a -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICXZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjEwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGJkMC0xNzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArengI+HcwrwzoadDSY3Kv3y4nnr1DYU+CVVTzF8MfRBvB3NxQ6y9VaIP1JVJ IDcqb7/4KKhP3qEMfV8DhZgyFwC/+mDvop66Y0pG5MnWQy/2wgEfSCxqMSZnN3yl QYsYxQKjiT/RcXwhsRiby3MlMm4LzCykbDk/DMgShcxACvPq07kGBBQcs9t7rOZJ j/EbNkWZp18X4oUR915SH9jTZMTiZvqa0YDqVlY7Vq0XdVEzMZ6jFTd3eeXnRvUE h41WJwkOQSybHvrOv8RrikSK+KZqoBrJFXQvUn/QHv0n6106vlZRWhcpsQWK/CLp kDUXLXAsZFK0XQTJ319R5dgWGQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFJr9YcUa rpewOOBNjnmQRgsmKVnAMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQkE4QjUzMDQ2 M0UzMTFFQzhCOTM2NjgzQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAdXoDMA8EAgACMAkDBwAgAQ3IIAMwDQYJKoZIhvcNAQELBQADggEB ADS80selG0/K+2ctUY9gpGrDVIy19p4lj5G4H7wOa944tSRkqnSZGUOgZpFzAtmo bhz4iVOMq2aBLJdbi3hxMNOK0V+n4TJ51fbXyurWDQUF0m/TCcAE9hPoxUDTswW7 +TWu6sI8OR+aAqiEg7YyYUuXc5mCXmj0RBvwoH8tTNNzZLSzhRQhd2kHgzthwKPw +iIhjNlcYqz1hpsW8gdBNJm/Q+HOH9KDvYmNLE5ikghx/aDUapDYn9YoCQEt0Fet oobQ3eXUpLceP26ZsSDAXdutwLafx7i6P4CkUA8D1Huk93ZSnnpaLRs+RHqlj5gc iUumGAAuswwmFQ3Kr1a3gno= -----END CERTIFICATE-----Generated at Sat Mar 7 22:47:44 2026 by rpki-client