
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9C6F02C6249D11EF9532356DC4F9AE02.roa
File: 9C6F02C6249D11EF9532356DC4F9AE02.roa (raw, json)
Hash identifier: WJy0DDE3R4DJLfi+G/eV3lsb3PxP1zjDf/s8mlf+RmM=
Subject key identifier: F7:76:C7:09:79:33:67:9F:C2:EA:78:62:A1:0E:F4:5F:FB:56:F6:85
Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A
Certificate serial: 0293
Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9C6F02C6249D11EF9532356DC4F9AE02.roa
Signing time: Sun 05 Jul 2026 03:28:29 +0000
ROA not before: Sun 05 Jul 2026 03:28:29 +0000
ROA not after: Tue 31 Aug 2027 00:00:00 +0000
asID: 134190
IP address blocks: 45.117.123.0/24 maxlen: 24
45.117.123.0/25 maxlen: 32
45.117.123.128/25 maxlen: 32
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl
rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 02:57:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 659 (0x293)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A
Validity
Not Before: Jul 5 03:28:29 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=6a49cf5d-990c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c8:f0:8d:f9:09:d4:ac:39:f8:20:d8:43:ea:
92:63:d5:09:05:7e:82:0c:fd:23:f2:a6:88:cc:a1:
54:c6:81:84:42:91:0d:6f:f0:9d:84:0c:83:78:66:
bc:a7:a5:ea:44:69:36:6e:7c:9e:db:b9:a2:c3:c5:
91:50:52:f7:c7:cf:b9:4c:6d:b0:77:e5:16:4b:89:
86:04:a2:47:64:f2:c4:f5:8c:20:7a:35:ec:89:c1:
54:50:4a:82:9b:34:47:8f:ad:86:15:6e:d5:b0:20:
05:c5:5a:16:4d:a6:8a:23:99:b2:be:cb:b8:e6:c2:
19:ca:e0:5c:e9:f2:db:12:7d:bc:c4:10:d0:5b:66:
2b:75:0a:e1:b9:76:d1:e8:38:ca:89:51:df:1e:d4:
70:49:29:f0:da:9f:0e:75:d4:f5:8f:20:1b:aa:eb:
0e:e6:85:0a:5b:fb:ee:cd:e8:8a:d0:14:10:8c:d5:
d6:e5:a9:98:18:1e:b9:36:54:94:8a:d2:b2:97:9f:
96:34:8c:c7:2d:26:55:97:72:1b:b2:75:c5:bb:80:
bf:fd:ca:32:82:34:20:6d:50:c3:62:8f:61:ee:97:
8e:45:5d:54:8b:73:32:61:d1:bf:36:6f:89:2e:2f:
6a:6f:95:28:b1:ff:0b:26:86:ec:27:95:61:07:88:
6d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:76:C7:09:79:33:67:9F:C2:EA:78:62:A1:0E:F4:5F:FB:56:F6:85
X509v3 Authority Key Identifier:
keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9C6F02C6249D11EF9532356DC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
45.117.123.0/24
Signature Algorithm: sha256WithRSAEncryption
55:98:ed:c0:37:e0:2f:ca:85:b5:9b:4b:49:94:67:23:c8:97:
73:17:1f:d3:c6:75:6f:91:cf:f3:0c:6f:41:6d:d3:0b:1e:d6:
24:80:08:fb:a3:db:76:e8:92:f6:30:c6:9e:1c:7e:29:31:55:
09:2c:ff:0d:03:6c:35:2e:0b:ff:39:d6:a3:74:78:10:17:94:
14:6f:f3:db:3b:5f:c1:51:29:51:fb:cf:a9:cb:8b:92:0f:d2:
61:5e:e2:46:f6:76:d6:8d:9e:16:f2:ad:92:77:51:c8:0b:6c:
d1:d4:e2:2a:7a:be:23:9c:c9:2c:47:6f:3c:6d:f5:48:06:f6:
98:72:53:d1:c1:a6:99:4a:c5:0d:8f:3f:19:91:2c:36:24:be:
c8:cb:05:ff:41:af:5b:d3:55:e9:39:e5:ec:92:ca:24:34:a9:
10:cd:2b:9a:25:da:7c:2d:3c:8e:7b:2f:8a:61:b5:4a:1c:17:
70:33:f8:6d:57:01:c0:1e:0e:73:c9:6b:1e:3b:3a:b7:ff:8a:
ed:74:76:a4:a5:a2:a4:84:5b:73:00:88:16:03:47:f3:42:9b:
5f:af:f9:4e:a8:ca:60:c3:dd:5b:b5:ac:eb:87:80:22:e2:1b:
05:75:57:b6:65:aa:34:ee:58:91:4b:1d:09:b7:a2:d8:ad:80:
08:72:77:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:27:04 2026 by rpki-client