
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/0A9DA996655311EF8D61E41CC4F9AE02.roa
File: 0A9DA996655311EF8D61E41CC4F9AE02.roa (raw, json)
Hash identifier: MI7imB1oUQ+nBhE/F9pWSqwhaGqPvMCUwnO5mooHgWA=
Subject key identifier: 92:81:37:F9:E6:46:64:6A:8B:6D:C3:46:BD:CC:FB:6C:C5:4C:7B:53
Certificate issuer: /CN=A91C6BB2/serialNumber=03BC749AC1682C4B46DA259AB7EB662AA225B0EE
Certificate serial: 0391
Authority key identifier: 03:BC:74:9A:C1:68:2C:4B:46:DA:25:9A:B7:EB:66:2A:A2:25:B0:EE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/0A9DA996655311EF8D61E41CC4F9AE02.roa
Signing time: Sat 27 Jun 2026 01:33:02 +0000
ROA not before: Sat 27 Jun 2026 01:33:02 +0000
ROA not after: Tue 31 Aug 2027 00:00:00 +0000
asID: 135341
IP address blocks: 45.117.62.0/23 maxlen: 23
45.117.62.0/24 maxlen: 24
45.117.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.crl
rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 Jul 2026 01:23:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 913 (0x391)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C6BB2, serialNumber=03BC749AC1682C4B46DA259AB7EB662AA225B0EE
Validity
Not Before: Jun 27 01:33:02 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=6a3f284e-64b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:09:78:ae:0c:56:96:92:26:2d:d6:4b:a2:a7:
3b:9f:85:65:d9:32:86:ff:43:5e:45:05:e0:2d:42:
b1:b2:f9:a5:80:12:f0:40:3b:99:a6:f6:1d:61:f9:
24:c8:3e:f1:4c:a0:eb:fb:0f:9c:6f:5d:44:40:89:
a1:5b:82:ae:2f:9f:fc:f4:31:22:66:02:56:51:c2:
8b:59:c0:f6:b5:63:e4:05:02:47:df:b5:2e:3c:fa:
d7:61:c4:76:e5:d4:ef:fe:3e:f9:7c:b7:49:48:09:
56:09:0a:79:18:51:a7:2c:b1:a3:a4:07:50:d6:ce:
3c:26:3b:a7:c7:a4:7d:d7:e8:b7:da:b0:8c:4f:ba:
58:fe:18:c5:17:4c:5b:42:7e:f7:38:57:22:19:e6:
f8:e9:7f:0a:15:89:54:99:e8:94:40:61:29:c9:c4:
22:10:b0:82:87:1d:e6:ca:df:04:9d:56:bf:ad:d3:
ed:62:23:cd:5c:2a:43:85:27:9f:55:26:8b:18:05:
46:6f:ac:bb:da:fe:0e:82:72:a1:e7:db:53:60:e4:
35:08:d8:83:0f:05:35:45:9d:64:0b:67:96:f0:5c:
8d:92:a2:9c:17:7e:f4:18:c8:9b:db:40:50:73:16:
b5:a3:eb:63:93:cb:c9:83:f2:f4:9e:22:ae:f5:52:
cb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:81:37:F9:E6:46:64:6A:8B:6D:C3:46:BD:CC:FB:6C:C5:4C:7B:53
X509v3 Authority Key Identifier:
keyid:03:BC:74:9A:C1:68:2C:4B:46:DA:25:9A:B7:EB:66:2A:A2:25:B0:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/0A9DA996655311EF8D61E41CC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
45.117.62.0/23
Signature Algorithm: sha256WithRSAEncryption
bc:cb:e1:72:6f:66:66:23:da:4c:84:fb:94:f3:0d:a9:9f:9a:
66:4e:2d:fd:f1:80:4c:b3:d8:e7:e4:4f:13:3c:c5:83:9e:b5:
2b:26:20:05:62:4f:9b:d3:0f:77:d8:49:5c:ac:e5:35:bf:23:
9c:e5:6b:34:48:23:72:20:3a:4e:6f:cf:47:d2:f5:19:c2:54:
29:b6:42:a1:f6:48:6a:ef:91:79:33:f9:35:47:e3:3e:dd:7c:
ee:f3:f7:0e:8c:d5:29:ca:cc:e0:df:bf:2c:97:5f:9f:f9:d5:
f6:4e:d4:71:10:91:71:b4:84:ee:9d:0d:b7:8b:fd:52:b2:d7:
cb:ee:91:8c:d0:84:52:10:61:e1:d5:51:47:c3:bb:12:57:1a:
53:ad:56:1e:1c:7a:42:e1:87:60:55:f2:0e:5f:34:ba:2f:db:
60:bb:0f:17:fa:9b:9a:9a:ac:83:a0:e4:d3:23:e9:df:a7:bf:
03:19:32:11:38:b6:d1:29:9d:b6:6b:64:af:05:6e:32:82:13:
27:0b:7d:ff:07:d4:0f:c0:12:71:bf:b2:b1:01:40:9c:6f:73:
44:42:92:f1:11:45:35:45:e5:98:67:c1:f5:3b:06:7e:62:93:
aa:b8:71:eb:f4:3d:6a:b7:43:73:2b:f7:7f:ed:f9:4f:1f:b2:
99:20:e7:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 00:23:09 2026 by rpki-client