$ rpki-client -vvf rpki.apnic.net/member_repository/A91230A3/FB9809A6070311F1A8105F55223D8C67/16AC8742071011F19135264E253D8C67.roa File: 16AC8742071011F19135264E253D8C67.roa (raw, json) Hash identifier: Ho7coqEarWJ9BJhEvGox/ePOuY1nkqkaNGKMo78IrM4= Subject key identifier: 2B:E1:68:B1:1D:1B:83:34:84:7F:A0:98:17:57:E7:73:BD:35:83:0A Certificate issuer: /CN=A91230A3/serialNumber=5EF2BC76FCC3FDC979579EB3419F821874E96067 Certificate serial: 16 Authority key identifier: 5E:F2:BC:76:FC:C3:FD:C9:79:57:9E:B3:41:9F:82:18:74:E9:60:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XvK8dvzD_cl5V56zQZ-CGHTpYGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91230A3/FB9809A6070311F1A8105F55223D8C67/16AC8742071011F19135264E253D8C67.roa Signing time: Sun 01 Mar 2026 05:40:39 +0000 ROA not before: Wed 11 Feb 2026 06:13:15 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 135356 IP address blocks: 45.251.104.0/24 maxlen: 24 45.251.105.0/24 maxlen: 24 45.251.106.0/24 maxlen: 24 45.251.107.0/24 maxlen: 24 45.251.108.0/24 maxlen: 24 45.251.109.0/24 maxlen: 24 45.251.110.0/24 maxlen: 24 45.251.111.0/24 maxlen: 24 103.215.2.0/24 maxlen: 24 103.220.72.0/24 maxlen: 24 103.220.73.0/24 maxlen: 24 103.220.74.0/24 maxlen: 24 103.220.75.0/24 maxlen: 24 103.220.76.0/24 maxlen: 24 103.220.77.0/24 maxlen: 24 103.220.78.0/24 maxlen: 24 103.220.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91230A3/FB9809A6070311F1A8105F55223D8C67/XvK8dvzD_cl5V56zQZ-CGHTpYGc.crl rsync://rpki.apnic.net/member_repository/A91230A3/FB9809A6070311F1A8105F55223D8C67/XvK8dvzD_cl5V56zQZ-CGHTpYGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XvK8dvzD_cl5V56zQZ-CGHTpYGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:37:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91230A3, serialNumber=5EF2BC76FCC3FDC979579EB3419F821874E96067 Validity Not Before: Feb 11 06:13:15 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a3d157-5e6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1d:a1:b7:41:a6:8c:dd:79:ef:ac:6b:84:c1: 83:c9:37:58:6c:14:43:55:9c:68:ae:8f:31:45:36: c9:5b:bd:50:7b:7f:8f:a2:da:4a:ab:0a:22:ee:e9: e4:dc:0a:5e:f4:f8:5c:b4:64:89:a6:ba:e9:fb:64: 3d:5e:c0:ef:30:33:14:9c:58:6d:da:fa:ce:06:83: e0:a3:1c:c8:7b:ea:68:81:1b:d8:32:6c:2c:5c:cb: 39:86:6e:ea:31:bb:28:aa:1b:ec:71:89:93:70:95: c8:ec:81:e1:20:cb:65:3f:27:f0:9b:05:44:86:9d: 84:b4:6e:32:e8:f2:f4:40:88:a6:1d:2c:f9:a8:d1: 6b:54:a7:dd:aa:e8:9b:6b:37:ad:0a:6e:c8:d5:de: fc:62:5e:3f:c3:fa:71:5c:6e:0a:13:4c:6b:14:15: f7:1a:36:31:46:9c:b4:56:b7:2b:79:00:db:bc:e7: f1:3c:6f:23:f2:61:37:8f:bb:e1:e2:a8:d9:ae:43: 80:5d:ec:d9:af:e3:da:c2:00:e6:7c:cb:16:ea:d3: df:9a:00:7a:10:bc:29:d7:fe:11:87:77:e9:c3:28: 3c:e6:f1:7c:9c:b2:89:2a:09:f9:a2:56:11:df:0f: eb:5f:c6:fd:74:66:33:e9:3f:35:82:1a:97:67:20: 16:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:E1:68:B1:1D:1B:83:34:84:7F:A0:98:17:57:E7:73:BD:35:83:0A X509v3 Authority Key Identifier: keyid:5E:F2:BC:76:FC:C3:FD:C9:79:57:9E:B3:41:9F:82:18:74:E9:60:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91230A3/FB9809A6070311F1A8105F55223D8C67/XvK8dvzD_cl5V56zQZ-CGHTpYGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XvK8dvzD_cl5V56zQZ-CGHTpYGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91230A3/FB9809A6070311F1A8105F55223D8C67/16AC8742071011F19135264E253D8C67.roa sbgp-ipAddrBlock: critical IPv4: 45.251.104.0/21 103.215.2.0/24 103.220.72.0/21 Signature Algorithm: sha256WithRSAEncryption 11:b2:42:00:39:5a:fb:60:a0:5f:96:35:ec:be:ee:53:b5:35: b3:ff:55:6c:90:c6:75:a4:6f:19:da:d1:f3:ca:cb:38:af:b2: 7a:c0:6d:f8:b8:cc:36:0d:95:12:20:9d:61:89:c1:0e:d7:84: ac:1d:bc:22:38:9b:79:b2:02:f8:3d:08:b8:04:65:78:45:80: f0:f7:98:ce:da:f8:ed:df:5d:4c:25:de:d4:b6:1b:86:b1:3c: 0e:25:98:b6:fe:c6:06:80:3b:e8:36:07:5a:6e:dd:fd:53:d7: 68:b7:94:51:4b:1b:ef:69:02:53:89:04:33:4d:dc:73:30:00: 25:e6:75:0f:28:b1:ea:b1:7d:5a:a0:47:98:a3:ab:f0:d8:ad: 2c:e0:0d:3e:fe:49:2a:18:2c:b7:bc:03:ff:2f:3d:8f:6a:69: 15:89:0f:31:93:36:b3:cb:59:ec:fb:5b:fc:4b:61:49:b9:f0: dd:96:b7:bf:4c:a1:1b:28:1d:a8:37:c4:97:3a:bf:d1:39:81: 16:4e:ae:f9:71:bb:a3:6b:fe:6b:04:b2:28:c7:b6:96:80:92: 15:64:55:82:ce:4f:f7:30:1d:3c:d3:05:6f:f5:07:f1:d8:ca: ec:05:dd:56:e8:75:cf:c3:7a:21:ff:c3:d4:83:53:8a:d7:5f: 81:86:3c:2b -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MzBBMzExMC8GA1UEBRMoNUVGMkJDNzZGQ0MzRkRDOTc5NTc5RUIzNDE5RjgyMTg3 NEU5NjA2NzAeFw0yNjAyMTEwNjEzMTVaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkMTU3LTVlNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0HaG3QaaM3XnvrGuEwYPJN1hsFENVnGiujzFFNslbvVB7f4+i2kqrCiLu6eTc Cl70+Fy0ZImmuun7ZD1ewO8wMxScWG3a+s4Gg+CjHMh76miBG9gybCxcyzmGbuox uyiqG+xxiZNwlcjsgeEgy2U/J/CbBUSGnYS0bjLo8vRAiKYdLPmo0WtUp92q6Jtr N60KbsjV3vxiXj/D+nFcbgoTTGsUFfcaNjFGnLRWtyt5ANu85/E8byPyYTePu+Hi qNmuQ4Bd7Nmv49rCAOZ8yxbq09+aAHoQvCnX/hGHd+nDKDzm8XycsokqCfmiVhHf D+tfxv10ZjPpPzWCGpdnIBbFAgMBAAGjggJsMIICaDAdBgNVHQ4EFgQUK+FosR0b gzSEf6CYF1fnc701gwowHwYDVR0jBBgwFoAUXvK8dvzD/cl5V56zQZ+CGHTpYGcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIzMEEzL0ZCOTgwOUE2MDcw MzExRjFBODEwNUY1NTIyM0Q4QzY3L1h2SzhkdnpEX2NsNVY1NnpRWi1DR0hUcFlH Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWHZLOGR2ekRfY2w1VjU2elFaLUNHSFRwWUdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzBBMy9GQjk4MDlBNjA3MDMxMUYxQTgxMDVGNTUyMjNEOEM2Ny8xNkFDODc0MjA3 MTAxMUYxOTEzNTI2NEUyNTNEOEM2Ny5yb2EwKwYIKwYBBQUHAQcBAf8EHDAaMBgE AgABMBIDBAMt+2gDBABn1wIDBANn3EgwDQYJKoZIhvcNAQELBQADggEBABGyQgA5 WvtgoF+WNey+7lO1NbP/VWyQxnWkbxna0fPKyzivsnrAbfi4zDYNlRIgnWGJwQ7X hKwdvCI4m3myAvg9CLgEZXhFgPD3mM7a+O3fXUwl3tS2G4axPA4lmLb+xgaAO+g2 B1pu3f1T12i3lFFLG+9pAlOJBDNN3HMwACXmdQ8oseqxfVqgR5ijq/DYrSzgDT7+ SSoYLLe8A/8vPY9qaRWJDzGTNrPLWez7W/xLYUm58N2Wt79MoRsoHag3xJc6v9E5 gRZOrvlxu6Nr/msEsijHtpaAkhVkVYLOT/cwHTzTBW/1B/HYyuwF3Vbodc/DeiH/ w9SDU4rXX4GGPCs= -----END CERTIFICATE-----Generated at Mon Mar 2 17:01:33 2026 by rpki-client