$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E491927E2A6611F0A02D3886C4F9AE02.roa File: E491927E2A6611F0A02D3886C4F9AE02.roa (raw, json) Hash identifier: HBePhKU3mEb+pwSMZj9RGGZPxMoeN00hc6wFni6thOA= Subject key identifier: AD:24:D3:DE:24:1A:D1:16:E1:3B:BF:19:36:40:72:CD:E4:AA:8A:A7 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5EDA Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E491927E2A6611F0A02D3886C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:19:58 +0000 ROA not before: Thu 28 Aug 2025 14:56:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24088 IP address blocks: 14.0.16.0/20 maxlen: 24 103.19.220.0/22 maxlen: 24 103.71.104.0/23 maxlen: 24 103.88.112.0/22 maxlen: 24 103.88.116.0/22 maxlen: 24 103.130.208.0/22 maxlen: 24 103.235.212.0/22 maxlen: 24 103.238.68.0/22 maxlen: 24 103.238.72.0/22 maxlen: 24 103.244.136.0/22 maxlen: 24 116.118.56.0/22 maxlen: 24 202.60.104.0/21 maxlen: 24 202.93.156.0/22 maxlen: 24 203.128.240.0/21 maxlen: 24 203.209.180.0/22 maxlen: 24 2001:df4:acc0::/48 maxlen: 48 2001:df5:aac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24282 (0x5eda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60d0e-386d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:4c:99:da:4f:b8:f7:63:ff:e2:25:e7:b8:f1: 3f:12:c2:a3:d6:97:16:02:f5:a6:16:b0:c9:db:0d: ff:dd:4c:ed:bd:76:7b:51:a8:64:15:6f:cf:88:f1: 91:f3:36:6d:81:fe:a2:9f:9a:46:16:84:84:b8:55: fc:ce:8b:1f:b6:13:c9:76:10:26:1b:ed:b0:03:61: b3:6e:43:fd:e4:4a:80:fe:d2:b9:00:a3:db:73:e6: 58:8e:10:9c:a2:2f:26:69:3e:7a:9f:de:36:1f:17: 96:89:c5:81:95:2a:87:7e:8e:77:61:e2:02:98:41: 8c:a0:fa:60:58:e7:7c:4f:b9:1e:d5:8c:68:a1:f1: 35:b3:c1:25:71:6b:0a:c4:a8:0f:91:08:d9:a5:2a: 9b:97:ad:e2:e6:52:f7:49:be:36:b0:94:ea:17:9c: c9:74:e6:19:74:1d:f8:99:fd:ad:ff:04:b9:a6:ef: fc:18:d1:00:c5:22:f5:de:84:c8:67:8e:d8:ef:4d: b2:9a:4c:f3:4a:a6:58:3a:fe:de:89:03:79:d3:76: b0:ed:aa:81:2d:fb:c2:eb:38:8f:54:21:3c:25:a8: de:c8:6b:06:4b:7b:ec:cf:a8:51:c0:6c:9e:46:9b: bd:ef:dc:99:80:bc:c7:db:39:40:b8:c3:54:44:9b: 27:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:24:D3:DE:24:1A:D1:16:E1:3B:BF:19:36:40:72:CD:E4:AA:8A:A7 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E491927E2A6611F0A02D3886C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 14.0.16.0/20 103.19.220.0/22 103.71.104.0/23 103.88.112.0/21 103.130.208.0/22 103.235.212.0/22 103.238.68.0-103.238.75.255 103.244.136.0/22 116.118.56.0/22 202.60.104.0/21 202.93.156.0/22 203.128.240.0/21 203.209.180.0/22 IPv6: 2001:df4:acc0::/48 2001:df5:aac0::/48 Signature Algorithm: sha256WithRSAEncryption 66:6d:cb:00:4b:d3:ea:dd:4d:27:85:3b:0d:46:6d:c0:3d:e2: 68:c3:89:72:4e:ee:36:11:e0:a1:5f:62:56:c4:c9:0d:e6:52: 8b:2b:ed:3b:13:f3:0e:07:d2:88:8e:fa:7b:a3:a5:62:51:65: fd:c4:b2:2d:09:e4:76:63:16:7c:23:c0:36:c6:9f:a1:da:d6: bb:0c:58:b2:b7:fb:bf:fc:0e:f9:12:a4:31:1b:d6:d1:86:8a: e9:ee:3e:31:cd:3e:11:bb:04:d4:81:38:c9:e9:f8:3e:c9:9c: fb:fc:50:3e:56:d5:92:d7:51:07:7d:e9:8a:86:a1:18:bd:50: ae:3d:f8:2a:25:2e:b9:09:57:d8:fa:63:0c:13:b6:7f:c3:41: cb:e5:56:25:c4:da:86:1c:88:4a:a5:6f:23:8a:7d:f5:f7:e9: 8b:02:9b:cc:29:25:b8:60:65:a3:dd:06:aa:a3:1e:d9:7b:dc: da:26:ab:05:91:12:c8:79:06:a1:13:92:6f:da:47:c2:04:6d: b2:bd:94:76:2b:39:a3:b8:34:22:c8:9c:9b:0a:4a:5a:5a:44: 72:5d:1c:b8:d7:ec:e7:b9:77:b7:9f:37:f2:2a:9b:40:f9:67: 81:bd:15:0d:87:bb:7f:52:fa:57:af:a2:2c:ed:ad:66:54:f9: 27:c1:99:a8 -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgICXtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjUyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGQwZS0zODZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlEyZ2k+492P/4iXnuPE/EsKj1pcWAvWmFrDJ2w3/3UztvXZ7UahkFW/PiPGR 8zZtgf6in5pGFoSEuFX8zosfthPJdhAmG+2wA2GzbkP95EqA/tK5AKPbc+ZYjhCc oi8maT56n942HxeWicWBlSqHfo53YeICmEGMoPpgWOd8T7ke1YxoofE1s8ElcWsK xKgPkQjZpSqbl63i5lL3Sb42sJTqF5zJdOYZdB34mf2t/wS5pu/8GNEAxSL13oTI Z47Y702ymkzzSqZYOv7eiQN503aw7aqBLfvC6ziPVCE8JajeyGsGS3vsz6hRwGye Rpu979yZgLzH2zlAuMNURJsn4wIDAQABo4ICyzCCAscwHQYDVR0OBBYEFK0k094k GtEW4Tu/GTZAcs3kqoqnMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRTQ5MTkyN0Uy QTY2MTFGMEEwMkQzODg2QzRGOUFFMDIucm9hMIGJBggrBgEFBQcBBwEB/wR6MHgw XAQCAAEwVgMEBA4AEAMEAmcT3AMEAWdHaAMEA2dYcAMEAmeC0AMEAmfr1DAMAwQC Z+5EAwQCZ+5IAwQCZ/SIAwQCdHY4AwQDyjxoAwQCyl2cAwQDy4DwAwQCy9G0MBgE AgACMBIDBwAgAQ30rMADBwAgAQ31qsAwDQYJKoZIhvcNAQELBQADggEBAGZtywBL 0+rdTSeFOw1GbcA94mjDiXJO7jYR4KFfYlbEyQ3mUosr7TsT8w4H0oiO+nujpWJR Zf3Esi0J5HZjFnwjwDbGn6Ha1rsMWLK3+7/8DvkSpDEb1tGGiunuPjHNPhG7BNSB OMnp+D7JnPv8UD5W1ZLXUQd96YqGoRi9UK49+ColLrkJV9j6YwwTtn/DQcvlViXE 2oYciEqlbyOKffX36YsCm8wpJbhgZaPdBqqjHtl73NomqwWREsh5BqETkm/aR8IE bbK9lHYrOaO4NCLInJsKSlpaRHJdHLjX7Oe5d7efN/Iqm0D5Z4G9FQ2Hu39S+lev oiztrWZU+SfBmag= -----END CERTIFICATE-----Generated at Sat Mar 7 22:47:38 2026 by rpki-client