$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C37D2CF6EB4C11EE9CC1C80DC4F9AE02.roa File: C37D2CF6EB4C11EE9CC1C80DC4F9AE02.roa (raw, json) Hash identifier: WQ7yxQIXdMXZ0d+hvCbuX2/JFK6vGV/XLZCd00PxVyw= Subject key identifier: E4:9D:88:24:DE:DF:9D:3D:54:DF:DC:D4:73:E0:21:AA:46:57:17:63 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5DBA Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C37D2CF6EB4C11EE9CC1C80DC4F9AE02.roa Signing time: Mon 02 Mar 2026 22:15:10 +0000 ROA not before: Thu 28 Aug 2025 14:52:38 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131392 IP address blocks: 103.18.4.0/22 maxlen: 24 118.27.192.0/19 maxlen: 24 137.59.104.0/22 maxlen: 24 150.95.16.0/22 maxlen: 24 150.95.104.0/21 maxlen: 24 150.95.112.0/21 maxlen: 24 150.95.120.0/21 maxlen: 24 163.44.192.0/22 maxlen: 24 163.44.200.0/24 maxlen: 24 163.44.205.0/24 maxlen: 24 163.44.206.0/23 maxlen: 24 2404:f080::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23994 (0x5dba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:38 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60bee-1f85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7f:66:1d:7c:82:f9:b1:03:63:58:6b:d1:f1: 78:66:29:5b:d9:29:9b:c1:75:0b:9b:df:04:92:70: 8c:e4:4d:45:54:29:5c:97:ce:8c:df:50:99:62:e6: 3f:ce:ee:f7:01:68:dd:89:04:51:f8:2c:6d:2b:bf: 67:90:32:0d:ad:a5:05:52:d9:5d:47:91:df:f4:91: b8:f6:10:3a:b6:84:f3:b0:74:bd:23:dd:70:c5:d7: cc:f8:87:64:a1:e8:62:e5:81:3a:38:81:31:1c:86: 3f:69:be:3c:36:9c:22:6f:e4:e5:e6:c4:fa:47:96: 05:6d:48:d5:0d:ff:d0:f0:76:94:b9:0a:0b:5c:be: db:4c:c0:03:95:51:e6:26:64:21:19:66:b3:ed:a0: 55:de:31:8b:d7:79:ce:90:6e:c9:70:5b:4f:77:3f: 64:70:ab:2e:c2:4f:70:50:89:3c:19:21:ef:b3:84: 71:82:a7:45:59:25:d5:0b:16:1a:dc:12:b1:c5:73: b9:e2:68:b0:55:d7:ec:03:73:1c:14:95:6f:1c:a3: be:5a:2c:99:5a:2a:ff:ec:db:00:be:d3:3d:ba:5d: 18:7c:30:12:79:b5:5a:02:63:8c:c5:3f:6b:5d:34: 8b:6a:a1:87:e1:52:ba:69:00:60:15:14:52:8c:ff: a9:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:9D:88:24:DE:DF:9D:3D:54:DF:DC:D4:73:E0:21:AA:46:57:17:63 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C37D2CF6EB4C11EE9CC1C80DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.18.4.0/22 118.27.192.0/19 137.59.104.0/22 150.95.16.0/22 150.95.104.0-150.95.127.255 163.44.192.0/22 163.44.200.0/24 163.44.205.0-163.44.207.255 IPv6: 2404:f080::/32 Signature Algorithm: sha256WithRSAEncryption b3:e9:94:8d:1f:cf:be:9b:fc:fe:10:9e:f3:0c:0b:a6:17:a4: a5:d1:be:eb:6b:d8:a7:95:20:ce:cc:97:29:b2:8b:b0:45:0e: 73:c4:5f:1f:b9:af:0b:e9:4a:de:33:8a:4b:3d:c1:09:62:b7: c8:ae:44:a5:24:e2:cd:88:56:dd:2f:75:94:9e:1d:53:44:04: 01:84:7f:0d:19:51:e7:b2:d6:e7:a7:15:64:20:2b:27:1e:d4: 8b:06:53:7a:c8:eb:36:89:6d:89:4d:fc:47:f9:49:69:03:38: 77:30:43:12:4e:1a:83:8d:41:aa:62:32:68:23:6c:cc:76:6c: fc:74:45:fd:fc:79:48:9a:c1:93:6e:1d:22:0a:16:0a:42:df: 14:15:e5:95:71:23:a4:8b:e3:14:d9:e3:c7:95:3f:7c:a0:e4: 01:7a:04:f2:6a:0f:03:3f:32:aa:53:36:fa:49:52:9d:92:57: 4b:47:23:8d:f1:f3:c3:c4:20:f9:07:47:d6:f0:92:c3:9d:51: f2:df:88:30:66:12:17:1d:9f:c6:d6:bd:58:4c:62:c0:9e:6c: 18:3a:02:da:b4:67:c6:22:bb:4a:e3:b2:84:90:bd:5c:03:56: 4c:2a:fb:be:11:70:40:36:7c:d1:03:a9:d3:bd:bb:56:6d:8e: 57:a5:ae:12 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICXbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjM4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGJlZS0xZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr39mHXyC+bEDY1hr0fF4Zilb2SmbwXULm98EknCM5E1FVClcl86M31CZYuY/ zu73AWjdiQRR+CxtK79nkDINraUFUtldR5Hf9JG49hA6toTzsHS9I91wxdfM+Idk oehi5YE6OIExHIY/ab48Npwib+Tl5sT6R5YFbUjVDf/Q8HaUuQoLXL7bTMADlVHm JmQhGWaz7aBV3jGL13nOkG7JcFtPdz9kcKsuwk9wUIk8GSHvs4RxgqdFWSXVCxYa 3BKxxXO54miwVdfsA3McFJVvHKO+WiyZWir/7NsAvtM9ul0YfDASebVaAmOMxT9r XTSLaqGH4VK6aQBgFRRSjP+p6wIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFOSdiCTe 3509VN/c1HPgIapGVxdjMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzM3RDJDRjZF QjRDMTFFRTlDQzFDODBEQzRGOUFFMDIucm9hMGgGCCsGAQUFBwEHAQH/BFkwVzBG BAIAATBAAwQCZxIEAwQFdhvAAwQCiTtoAwQCll8QMAwDBAOWX2gDBAeWXwADBAKj LMADBACjLMgwDAMEAKMszQMEBKMswDANBAIAAjAHAwUAJATwgDANBgkqhkiG9w0B AQsFAAOCAQEAs+mUjR/Pvpv8/hCe8wwLphekpdG+62vYp5UgzsyXKbKLsEUOc8Rf H7mvC+lK3jOKSz3BCWK3yK5EpSTizYhW3S91lJ4dU0QEAYR/DRlR57LW56cVZCAr Jx7UiwZTesjrNoltiU38R/lJaQM4dzBDEk4ag41BqmIyaCNszHZs/HRF/fx5SJrB k24dIgoWCkLfFBXllXEjpIvjFNnjx5U/fKDkAXoE8moPAz8yqlM2+klSnZJXS0cj jfHzw8Qg+QdH1vCSw51R8t+IMGYSFx2fxta9WExiwJ5sGDoC2rRnxiK7SuOyhJC9 XANWTCr7vhFwQDZ80QOp0727Vm2OV6WuEg== -----END CERTIFICATE-----Generated at Sat Mar 7 22:42:51 2026 by rpki-client