$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D91A51FE753E11ED91728868C4F9AE02.roa File: D91A51FE753E11ED91728868C4F9AE02.roa (raw, json) Hash identifier: fMYY1JBL5kqCmOcktViD3q2eGMjEbNvb+XAtVCJ3eSE= Subject key identifier: 63:8E:C0:0A:AA:63:75:8A:64:9F:54:C2:1C:47:83:D4:64:58:92:4E Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5EE0 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D91A51FE753E11ED91728868C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:20:05 +0000 ROA not before: Thu 28 Aug 2025 14:56:57 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38244 IP address blocks: 45.127.252.0/22 maxlen: 24 49.213.64.0/18 maxlen: 24 58.84.0.0/22 maxlen: 24 61.28.224.0/19 maxlen: 24 103.196.236.0/22 maxlen: 24 103.245.248.0/22 maxlen: 24 118.102.0.0/21 maxlen: 24 120.138.64.0/20 maxlen: 24 122.201.8.0/21 maxlen: 24 2001:df0:13::/48 maxlen: 48 2001:df0:1a::/48 maxlen: 48 2402:4e0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24288 (0x5ee0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:57 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60d15-45f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d7:4c:2c:bd:c9:d1:0f:d8:b7:42:99:b3:6a: 7a:38:ff:02:a9:70:02:5c:13:bf:f4:da:51:ca:fe: cd:ff:4c:8b:5a:99:db:ed:5b:36:46:68:fc:2b:0f: 86:ee:2e:6e:17:86:3f:de:b9:d8:ec:03:63:68:d9: 7f:96:b9:cb:58:19:c6:e4:50:1d:1e:f5:01:73:ca: 8c:69:19:e1:83:d8:9d:4f:79:45:77:89:bf:ff:59: 75:c8:d6:9e:17:a1:6f:72:b1:18:9c:31:0f:32:05: b3:19:2f:2b:56:ab:24:15:0f:7b:2f:f0:e7:ed:82: 4c:d6:2b:50:6b:fb:04:c1:19:20:10:fd:a1:5d:dc: 05:88:8c:f0:d5:48:6b:9c:42:ea:fc:1a:17:cf:89: 58:51:34:e4:31:4b:b1:4a:c3:c8:24:9c:6a:b9:b4: 28:9b:f7:92:33:27:80:6b:76:3f:d7:d2:aa:ce:b3: 4e:7d:2e:81:04:b9:c1:17:f1:df:ed:d3:a5:85:17: 3d:06:1c:80:90:9d:b7:80:e4:d2:a5:e0:16:3e:b9: 93:6f:d6:55:4c:ed:f5:64:42:9e:e5:f0:db:31:4d: 49:95:65:e7:c5:72:b5:83:b4:3f:6e:70:18:71:b1: 1a:c0:45:1f:cc:c2:2a:44:e4:59:eb:52:7e:2a:25: a5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:8E:C0:0A:AA:63:75:8A:64:9F:54:C2:1C:47:83:D4:64:58:92:4E X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D91A51FE753E11ED91728868C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.127.252.0/22 49.213.64.0/18 58.84.0.0/22 61.28.224.0/19 103.196.236.0/22 103.245.248.0/22 118.102.0.0/21 120.138.64.0/20 122.201.8.0/21 IPv6: 2001:df0:13::/48 2001:df0:1a::/48 2402:4e0::/32 Signature Algorithm: sha256WithRSAEncryption 0a:df:e1:a6:ee:31:48:48:aa:98:ec:cf:99:2c:89:19:23:e1: ff:1b:f1:b8:53:8e:09:08:27:86:34:60:21:cf:f5:3a:3e:a8: 37:5a:4b:76:79:8a:07:19:27:d7:b2:82:b7:88:87:77:17:d6: db:33:7a:7b:6d:c4:37:e3:f0:08:b0:b5:7b:11:dc:b8:dd:c1: d0:85:9b:ab:12:fc:c1:a1:ed:03:8a:3c:f9:ce:75:a4:cd:4e: 13:dd:c4:af:d4:dc:68:86:e5:75:70:ad:59:14:17:49:66:f6: 3a:cf:fa:33:ac:a8:ab:dc:15:32:cd:f0:79:3a:36:7b:82:74: c7:77:4e:62:2e:19:c1:22:45:bd:1b:0d:4a:0b:7d:37:8e:5f: 53:99:46:86:b9:14:a0:8d:9f:99:68:52:d3:1d:84:2d:1d:50: 69:a1:05:b8:f8:98:7e:1d:8f:ac:da:d7:88:75:9f:1f:f2:ff: 89:e8:e7:cd:d0:49:54:c8:23:ce:55:63:3d:d1:74:ae:cf:03: c0:5f:88:ea:d2:73:92:ee:4d:11:b9:89:f0:72:42:c7:d6:39: 74:63:1b:bd:4e:9f:71:a1:61:6d:64:ea:16:bd:0c:c7:8d:e8: 1b:e4:0e:ca:38:fb:96:31:c3:c5:9e:41:de:e0:63:c8:70:39: fa:4f:d6:3c -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICXuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjU3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGQxNS00NWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ddMLL3J0Q/Yt0KZs2p6OP8CqXACXBO/9NpRyv7N/0yLWpnb7Vs2Rmj8Kw+G 7i5uF4Y/3rnY7ANjaNl/lrnLWBnG5FAdHvUBc8qMaRnhg9idT3lFd4m//1l1yNae F6FvcrEYnDEPMgWzGS8rVqskFQ97L/Dn7YJM1itQa/sEwRkgEP2hXdwFiIzw1Uhr nELq/BoXz4lYUTTkMUuxSsPIJJxqubQom/eSMyeAa3Y/19KqzrNOfS6BBLnBF/Hf 7dOlhRc9BhyAkJ23gOTSpeAWPrmTb9ZVTO31ZEKe5fDbMU1JlWXnxXK1g7Q/bnAY cbEawEUfzMIqRORZ61J+KiWl4QIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFGOOwAqq Y3WKZJ9UwhxHg9RkWJJOMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRDkxQTUxRkU3 NTNFMTFFRDkxNzI4ODY4QzRGOUFFMDIucm9hMHAGCCsGAQUFBwEHAQH/BGEwXzA8 BAIAATA2AwQCLX/8AwQGMdVAAwQCOlQAAwQFPRzgAwQCZ8TsAwQCZ/X4AwQDdmYA AwQEeIpAAwQDeskIMB8EAgACMBkDBwAgAQ3wABMDBwAgAQ3wABoDBQAkAgTgMA0G CSqGSIb3DQEBCwUAA4IBAQAK3+Gm7jFISKqY7M+ZLIkZI+H/G/G4U44JCCeGNGAh z/U6Pqg3Wkt2eYoHGSfXsoK3iId3F9bbM3p7bcQ34/AIsLV7Edy43cHQhZurEvzB oe0Dijz5znWkzU4T3cSv1NxohuV1cK1ZFBdJZvY6z/ozrKir3BUyzfB5OjZ7gnTH d05iLhnBIkW9Gw1KC303jl9TmUaGuRSgjZ+ZaFLTHYQtHVBpoQW4+Jh+HY+s2teI dZ8f8v+J6OfN0ElUyCPOVWM90XSuzwPAX4jq0nOS7k0RuYnwckLH1jl0Yxu9Tp9x oWFtZOoWvQzHjegb5A7KOPuWMcPFnkHe4GPIcDn6T9Y8 -----END CERTIFICATE-----Generated at Sat Mar 7 22:48:12 2026 by rpki-client