$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/A55C1282ACA311EFBA427354C4F9AE02.roa File: A55C1282ACA311EFBA427354C4F9AE02.roa (raw, json) Hash identifier: t0uncGishM2Tsr9xzVJil2k3Roy5Hv6NFxmghAYpdGU= Subject key identifier: 0F:DC:7B:28:35:C6:2F:A5:6C:A2:11:84:80:8A:89:F2:96:91:65:9A Certificate issuer: /CN=A91BD000/serialNumber=40E96CAEB19D41E0DAD652F435AD08E7AE809EF9 Certificate serial: 0CE5 Authority key identifier: 40:E9:6C:AE:B1:9D:41:E0:DA:D6:52:F4:35:AD:08:E7:AE:80:9E:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/A55C1282ACA311EFBA427354C4F9AE02.roa Signing time: Sat 30 May 2026 18:22:26 +0000 ROA not before: Sat 30 May 2026 18:22:26 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 58912 IP address blocks: 45.124.12.0/22 maxlen: 24 103.25.80.0/22 maxlen: 24 2407:9ac0::/32 maxlen: 32 2407:9ac0::/36 maxlen: 36 2407:9ac0:1000::/36 maxlen: 36 2407:9ac0:2000::/36 maxlen: 36 2407:9ac0:3000::/36 maxlen: 36 2407:9ac0:4000::/36 maxlen: 36 2407:9ac0:5000::/36 maxlen: 36 2407:9ac0:6000::/36 maxlen: 36 2407:9ac0:7000::/36 maxlen: 36 2407:9ac0:8000::/36 maxlen: 36 2407:9ac0:9000::/36 maxlen: 36 2407:9ac0:a000::/36 maxlen: 36 2407:9ac0:b000::/36 maxlen: 36 2407:9ac0:c000::/36 maxlen: 36 2407:9ac0:d000::/36 maxlen: 36 2407:9ac0:e000::/36 maxlen: 36 2407:9ac0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.crl rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 18:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3301 (0xce5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD000, serialNumber=40E96CAEB19D41E0DAD652F435AD08E7AE809EF9 Validity Not Before: May 30 18:22:26 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1b2ae1-b9e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f2:3a:d6:97:4e:bb:93:7c:a8:09:01:4b:37: 85:11:8a:c3:e4:a1:35:3b:43:37:f4:0d:01:a1:c1: db:41:9b:3e:c2:95:8c:39:32:1e:38:9d:22:8d:f4: 94:e5:2a:d9:00:71:a6:82:59:17:c8:c2:ed:d4:22: c1:fc:56:60:21:46:8e:e0:33:5e:9d:5b:6a:99:a5: 31:c6:a1:70:2c:75:95:0d:1a:33:e2:bc:a4:b4:ca: 69:51:83:29:fe:ff:2d:3c:b2:2f:2f:ea:43:80:bd: 76:4c:3c:e9:fd:f5:01:3e:e4:42:f2:7b:8a:ef:b2: 1f:a7:59:c1:a3:94:63:e5:2c:4b:ae:8d:e8:21:8b: 9d:9a:0e:7c:70:05:54:67:2d:f7:e8:f1:21:41:09: ee:9c:a5:cb:46:8a:b1:2a:72:c0:e8:07:c1:f5:a5: 9b:23:3f:35:3b:14:b8:5c:7e:4c:a5:11:c8:dc:3a: 00:21:e0:85:92:44:d0:99:79:21:30:13:f3:f7:ba: e8:69:d4:e9:98:e4:7e:5e:bc:6b:90:f7:52:1e:1a: 12:07:1c:08:24:8d:f0:a4:cf:c8:91:d9:b9:1f:0d: 9c:72:75:50:e4:4b:b5:16:31:08:6d:fb:44:04:a1: bd:94:fc:f7:df:0f:f3:61:6b:51:1d:82:55:83:85: 30:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:DC:7B:28:35:C6:2F:A5:6C:A2:11:84:80:8A:89:F2:96:91:65:9A X509v3 Authority Key Identifier: keyid:40:E9:6C:AE:B1:9D:41:E0:DA:D6:52:F4:35:AD:08:E7:AE:80:9E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/A55C1282ACA311EFBA427354C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.124.12.0/22 103.25.80.0/22 IPv6: 2407:9ac0::/32 Signature Algorithm: sha256WithRSAEncryption 83:2e:02:ce:6d:61:64:8e:a5:63:11:0c:70:97:bd:c0:b9:cc: f7:54:0c:da:22:74:e8:a9:fd:95:39:22:5a:27:92:55:6d:8e: 01:ec:77:cb:df:6c:79:98:56:79:3e:d0:34:20:26:68:e2:30: a2:92:94:2b:35:5a:aa:8b:34:36:c5:e0:f5:c5:b5:fe:b4:4d: 7b:bc:2e:cc:63:c9:dd:24:7b:9a:c3:40:ff:1b:56:75:0f:e9: 86:b1:9e:8f:49:b0:e7:af:fe:3a:dc:02:e6:e6:3e:2c:3e:f8: 9e:b2:30:cb:44:71:02:3e:47:3a:38:71:b7:f4:63:47:73:6a: 75:8e:78:2e:4a:6f:01:e4:6c:07:c0:ea:aa:ae:66:44:a7:d7: 5f:bb:ce:4e:82:eb:1b:09:fa:49:58:4d:fa:4f:00:94:6d:95: 55:7b:e0:95:06:9f:bc:f8:10:57:29:ea:aa:6b:c5:4a:31:3e: 5c:0a:10:44:a2:ab:d9:21:d7:99:af:d0:2d:8f:fe:c3:87:5f: dd:13:85:65:e4:fc:35:62:88:94:91:54:f7:f7:fe:80:3a:09: 66:6d:91:b2:85:24:9f:c6:06:af:04:76:01:65:b7:fc:4c:ec: 22:0d:f1:09:2b:2f:f1:c0:ae:cd:f6:e9:6c:23:05:37:c0:db: 6a:52:b7:e5 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQwMDAxMTAvBgNVBAUTKDQwRTk2Q0FFQjE5RDQxRTBEQUQ2NTJGNDM1QUQwOEU3 QUU4MDlFRjkwHhcNMjYwNTMwMTgyMjI2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFiMmFlMS1iOWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvI61pdOu5N8qAkBSzeFEYrD5KE1O0M39A0BocHbQZs+wpWMOTIeOJ0ijfSU 5SrZAHGmglkXyMLt1CLB/FZgIUaO4DNenVtqmaUxxqFwLHWVDRoz4ryktMppUYMp /v8tPLIvL+pDgL12TDzp/fUBPuRC8nuK77Ifp1nBo5Rj5SxLro3oIYudmg58cAVU Zy336PEhQQnunKXLRoqxKnLA6AfB9aWbIz81OxS4XH5MpRHI3DoAIeCFkkTQmXkh MBPz97roadTpmOR+XrxrkPdSHhoSBxwIJI3wpM/Ikdm5Hw2ccnVQ5Eu1FjEIbftE BKG9lPz33w/zYWtRHYJVg4UwmQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFA/ceyg1 xi+lbKIRhICKifKWkWWaMB8GA1UdIwQYMBaAFEDpbK6xnUHg2tZS9DWtCOeugJ75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDAwMC9FNjYwMkVEMjBE QjQxMUVBQkE1QzFEN0ZDNEY5QUUwMi9RT2xzcnJHZFFlRGExbEwwTmEwSTU2NkFu dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPbHNyckdkUWVEYTFsTDBOYTBJNTY2QW52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQwMDAvRTY2MDJFRDIwREI0MTFFQUJBNUMxRDdGQzRGOUFFMDIvQTU1QzEyODJB Q0EzMTFFRkJBNDI3MzU0QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCLXwMAwQCZxlQMA0EAgACMAcDBQAkB5rAMA0GCSqGSIb3DQEBCwUA A4IBAQCDLgLObWFkjqVjEQxwl73Aucz3VAzaInToqf2VOSJaJ5JVbY4B7HfL32x5 mFZ5PtA0ICZo4jCikpQrNVqqizQ2xeD1xbX+tE17vC7MY8ndJHuaw0D/G1Z1D+mG sZ6PSbDnr/463ALm5j4sPviesjDLRHECPkc6OHG39GNHc2p1jnguSm8B5GwHwOqq rmZEp9dfu85OgusbCfpJWE36TwCUbZVVe+CVBp+8+BBXKeqqa8VKMT5cChBEoqvZ IdeZr9Atj/7Dh1/dE4Vl5Pw1YoiUkVT39/6AOglmbZGyhSSfxgavBHYBZbf8TOwi DfEJKy/xwK7N9ulsIwU3wNtqUrfl -----END CERTIFICATE-----Generated at Wed Jun 24 12:35:08 2026 by rpki-client