
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/C5AFD098167311F0916F5435C4F9AE02.roa
File: C5AFD098167311F0916F5435C4F9AE02.roa (raw, json)
Hash identifier: oXr+vmkmATSoU0utBEAVuOzrUcdZ9gNuCzhDxhz21iY=
Subject key identifier: BF:D2:BD:9D:0B:4A:FB:82:78:33:18:7D:E8:93:EC:F7:C9:0B:60:C6
Certificate issuer: /CN=A91DA0AA/serialNumber=ED8F5D6C9BFC148F7ABB708C5291D384781C61FD
Certificate serial: 0268
Authority key identifier: ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/C5AFD098167311F0916F5435C4F9AE02.roa
Signing time: Wed 17 Jun 2026 03:32:13 +0000
ROA not before: Wed 17 Jun 2026 03:32:13 +0000
ROA not after: Fri 30 Jul 2027 00:00:00 +0000
asID: 17828
IP address blocks: 103.20.76.0/22 maxlen: 22
202.58.128.0/22 maxlen: 22
202.165.192.0/20 maxlen: 24
2001:c60::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl
rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 03:13:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 616 (0x268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DA0AA, serialNumber=ED8F5D6C9BFC148F7ABB708C5291D384781C61FD
Validity
Not Before: Jun 17 03:32:13 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=6a32153d-cc0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0d:b0:70:65:1c:ef:31:fb:10:55:97:0a:da:
d2:52:47:61:61:7f:a3:57:bc:54:1e:8a:ca:c4:f1:
ed:08:b2:47:e9:e4:cf:a9:62:c7:aa:f9:0d:7d:5d:
6c:89:5c:ac:11:ea:54:de:23:c7:0f:d8:03:43:a3:
8b:17:01:02:2d:e0:cc:7b:a8:d7:13:89:88:eb:e6:
fe:86:53:ec:f1:65:61:47:37:95:49:28:9a:04:8b:
23:62:70:4b:63:ec:07:2b:cf:55:58:24:04:95:f3:
b9:14:95:d6:16:78:c1:88:b4:aa:f3:48:9b:2e:46:
6d:88:8b:66:ac:3b:ae:65:ae:e6:64:e9:2f:83:63:
be:9e:5f:c5:48:f4:3a:75:f4:8c:ec:91:74:e2:e7:
8d:4c:4d:b9:5e:78:3f:d7:40:64:d4:59:45:e6:71:
38:db:b2:11:2a:91:45:50:9f:02:22:85:d3:32:bd:
0d:c4:c1:33:4c:4f:94:2f:6f:a7:d1:67:3d:65:f6:
66:4f:01:0f:69:a4:b2:1c:63:5f:6e:24:be:2c:a8:
62:bd:5e:06:01:d8:79:34:95:b7:07:8c:2c:13:1f:
2e:9f:26:83:17:25:a6:ff:89:bf:a2:32:8b:09:5c:
3c:31:b4:c7:27:1f:20:da:fd:fd:ad:a4:33:d3:08:
bc:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:D2:BD:9D:0B:4A:FB:82:78:33:18:7D:E8:93:EC:F7:C9:0B:60:C6
X509v3 Authority Key Identifier:
keyid:ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/C5AFD098167311F0916F5435C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.20.76.0/22
202.58.128.0/22
202.165.192.0/20
IPv6:
2001:c60::/32
Signature Algorithm: sha256WithRSAEncryption
8c:72:d8:70:2b:23:c8:6a:82:15:96:65:be:69:cb:c0:26:ca:
4a:a6:ab:be:1c:c5:09:25:52:18:76:14:83:d2:0d:78:64:32:
82:02:10:a4:ee:fd:00:56:0b:19:be:29:fd:cf:f2:0b:2a:40:
7b:01:6d:b2:ae:a1:7c:76:7e:84:f1:e4:c7:79:e6:cc:05:1a:
03:be:bd:a1:ff:b1:87:be:6c:3e:d1:41:75:14:62:8f:af:ca:
d1:bc:f7:6e:7a:65:0a:2e:6e:61:c7:a2:cd:f1:1d:cc:c9:ef:
f3:17:85:5f:9b:84:7d:b9:bb:fd:5e:70:3b:5c:39:3c:6f:8a:
04:28:1c:30:61:f1:1a:ac:0a:45:69:10:5e:5a:1a:d5:29:2f:
a2:9c:0a:2d:a5:db:e1:43:27:82:56:c5:8f:c1:13:e1:43:82:
07:71:8a:9d:a4:d8:02:d0:9b:6e:78:70:d2:82:89:98:9c:db:
a0:23:9c:f0:2f:ab:b6:fb:3f:30:85:82:c7:ae:ae:8c:62:9e:
8a:3e:c5:9c:a1:72:39:e2:b9:3e:15:95:d6:b7:a8:fc:6a:ae:
2f:87:96:4a:5d:a7:a0:34:b8:6b:fe:4f:af:75:a4:b5:d4:11:
c2:70:a4:9b:e1:32:1d:20:95:31:89:a4:ba:20:4e:85:98:c7:
f2:a7:27:ef
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REEwQUExMTAvBgNVBAUTKEVEOEY1RDZDOUJGQzE0OEY3QUJCNzA4QzUyOTFEMzg0
NzgxQzYxRkQwHhcNMjYwNjE3MDMzMjEzWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02YTMyMTUzZC1jYzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArg2wcGUc7zH7EFWXCtrSUkdhYX+jV7xUHorKxPHtCLJH6eTPqWLHqvkNfV1s
iVysEepU3iPHD9gDQ6OLFwECLeDMe6jXE4mI6+b+hlPs8WVhRzeVSSiaBIsjYnBL
Y+wHK89VWCQElfO5FJXWFnjBiLSq80ibLkZtiItmrDuuZa7mZOkvg2O+nl/FSPQ6
dfSM7JF04ueNTE25Xng/10Bk1FlF5nE427IRKpFFUJ8CIoXTMr0NxMEzTE+UL2+n
0Wc9ZfZmTwEPaaSyHGNfbiS+LKhivV4GAdh5NJW3B4wsEx8unyaDFyWm/4m/ojKL
CVw8MbTHJx8g2v39raQz0wi8dwIDAQABo4ICezCCAncwHQYDVR0OBBYEFL/SvZ0L
SvuCeDMYfeiT7PfJC2DGMB8GA1UdIwQYMBaAFO2PXWyb/BSPertwjFKR04R4HGH9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTBBQS84MkJCQjU1MjAw
M0QxMUVFOTYwOEYxNDdDNEY5QUUwMi83WTlkYkp2OEZJOTZ1M0NNVXBIVGhIZ2NZ
ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzdZOWRiSnY4Rkk5NnUzQ01VcEhUaEhnY1lmMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
REEwQUEvODJCQkI1NTIwMDNEMTFFRTk2MDhGMTQ3QzRGOUFFMDIvQzVBRkQwOTgx
NjczMTFGMDkxNkY1NDM1QzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY
BAIAATASAwQCZxRMAwQCyjqAAwQEyqXAMA0EAgACMAcDBQAgAQxgMA0GCSqGSIb3
DQEBCwUAA4IBAQCMcthwKyPIaoIVlmW+acvAJspKpqu+HMUJJVIYdhSD0g14ZDKC
AhCk7v0AVgsZvin9z/ILKkB7AW2yrqF8dn6E8eTHeebMBRoDvr2h/7GHvmw+0UF1
FGKPr8rRvPduemUKLm5hx6LN8R3Mye/zF4Vfm4R9ubv9XnA7XDk8b4oEKBwwYfEa
rApFaRBeWhrVKS+inAotpdvhQyeCVsWPwRPhQ4IHcYqdpNgC0JtueHDSgomYnNug
I5zwL6u2+z8whYLHrq6MYp6KPsWcoXI54rk+FZXWt6j8aq4vh5ZKXaegNLhr/k+v
daS11BHCcKSb4TIdIJUxiaS6IE6FmMfypyfv
-----END CERTIFICATE-----
Generated at Sat Jul 18 02:22:53 2026 by rpki-client