$ rpki-client -vvf rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/86019882E2A311EEA6A97425C4F9AE02.roa File: 86019882E2A311EEA6A97425C4F9AE02.roa (raw, json) Hash identifier: N9aBKQe8W1xFwvaj7FFUcAjhbjiBV/ZVu8Ka0W/nhKc= Subject key identifier: 18:89:56:1F:DA:C7:D5:7A:0C:6D:C6:44:67:69:BD:4B:4A:68:9B:55 Certificate issuer: /CN=A91B517C/serialNumber=9FAF8341675EF438964199362542572C8928540C Certificate serial: 01BA Authority key identifier: 9F:AF:83:41:67:5E:F4:38:96:41:99:36:25:42:57:2C:89:28:54:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6-DQWde9DiWQZk2JUJXLIkoVAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/86019882E2A311EEA6A97425C4F9AE02.roa Signing time: Fri 05 Jun 2026 04:35:36 +0000 ROA not before: Fri 05 Jun 2026 04:35:36 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 63981 IP address blocks: 45.117.96.0/22 maxlen: 22 45.117.96.0/24 maxlen: 24 45.117.97.0/24 maxlen: 24 45.117.98.0/24 maxlen: 24 45.117.99.0/24 maxlen: 24 45.251.64.0/23 maxlen: 24 45.251.66.0/24 maxlen: 24 103.29.140.0/22 maxlen: 24 103.117.76.0/22 maxlen: 24 103.220.8.0/22 maxlen: 24 203.166.220.0/22 maxlen: 24 2405:a480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/n6-DQWde9DiWQZk2JUJXLIkoVAw.crl rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/n6-DQWde9DiWQZk2JUJXLIkoVAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6-DQWde9DiWQZk2JUJXLIkoVAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B517C, serialNumber=9FAF8341675EF438964199362542572C8928540C Validity Not Before: Jun 5 04:35:36 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a225218-a957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:58:59:88:d7:f3:e0:f8:2a:92:30:7d:ba:31: 6c:5a:48:52:f2:48:9b:6c:4b:e7:d8:20:71:85:c4: e1:53:73:c9:50:18:8e:d9:3e:97:da:38:15:83:2c: da:a5:fb:2c:25:e5:3e:80:8d:cb:2c:13:62:7f:e8: 59:24:60:11:cc:f6:7e:25:34:78:15:31:3f:c9:dd: 75:b0:48:c9:07:42:d7:56:48:7d:a2:57:86:44:80: 09:45:39:6f:32:3f:4f:65:9d:2a:77:ea:96:7a:56: 68:2d:d3:f7:49:28:ef:48:36:2f:c0:32:f8:53:2e: 43:66:7a:54:15:85:ba:35:cf:04:fa:3c:4d:dc:b7: 64:7e:b6:68:d4:4a:6c:2d:ee:36:30:04:ab:9a:27: e7:6d:0c:91:bb:0c:b1:a4:e1:eb:b1:0d:63:ee:a4: 82:49:d2:bf:91:46:a1:3c:b8:b7:a8:80:9d:a8:4d: f1:dd:eb:e0:0e:96:b3:5f:cc:d3:cb:58:8c:f9:2f: 95:52:8e:cc:99:5e:9b:e1:77:6a:f1:0e:01:d3:c8: 50:a5:b6:4d:c1:3f:df:12:af:80:0a:99:e0:c0:34: ac:e8:9a:7e:5f:93:c5:30:d2:bb:1c:0e:12:0f:86: 77:1a:ad:16:fc:3c:b3:31:c2:22:e5:e1:6a:bc:4f: 1a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:89:56:1F:DA:C7:D5:7A:0C:6D:C6:44:67:69:BD:4B:4A:68:9B:55 X509v3 Authority Key Identifier: keyid:9F:AF:83:41:67:5E:F4:38:96:41:99:36:25:42:57:2C:89:28:54:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/n6-DQWde9DiWQZk2JUJXLIkoVAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6-DQWde9DiWQZk2JUJXLIkoVAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/86019882E2A311EEA6A97425C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.117.96.0/22 45.251.64.0-45.251.66.255 103.29.140.0/22 103.117.76.0/22 103.220.8.0/22 203.166.220.0/22 IPv6: 2405:a480::/32 Signature Algorithm: sha256WithRSAEncryption 41:2a:bc:31:b9:94:77:f2:c8:bb:6b:3e:cb:4b:5e:2d:ce:62: 40:0a:83:54:3c:02:b1:b8:7e:40:4f:20:b5:ab:27:08:9d:c1: 93:cf:d0:d3:47:77:65:97:2c:0c:98:96:f0:83:25:15:35:e8: 1e:ff:49:38:65:f3:18:fd:0b:30:0f:5a:c8:87:aa:59:18:b6: fb:28:db:c3:24:0c:10:47:fe:ba:33:8e:12:d7:2e:5c:84:3e: 95:a8:7b:95:97:bc:e5:f3:03:07:4f:cf:62:bc:c3:23:02:8b: 24:da:45:81:de:67:d0:29:1e:f8:8f:96:e8:bd:71:ea:28:2e: 7b:52:41:1c:eb:01:56:13:7a:14:46:16:fe:79:50:78:e2:f1: 5c:0c:85:e0:6f:46:4c:c8:9d:4b:2d:fc:0a:94:73:31:9c:8f: 9f:b0:a3:51:2f:60:7e:43:39:7e:16:7f:53:65:12:ee:00:81: ca:e7:6b:7a:b0:df:b0:a4:d6:dd:c7:cd:ca:98:b5:db:74:fc: c3:e1:e5:91:fa:be:fa:bb:73:67:e3:dd:a5:80:a0:a8:d9:21: bd:76:96:57:c9:2b:be:35:58:a3:95:97:ec:74:4f:73:c7:38: be:7f:7a:f6:43:72:54:ab:24:b3:f9:4b:f7:49:76:61:2a:7e: 70:bf:cf:94 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUxN0MxMTAvBgNVBAUTKDlGQUY4MzQxNjc1RUY0Mzg5NjQxOTkzNjI1NDI1NzJD ODkyODU0MEMwHhcNMjYwNjA1MDQzNTM2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyNTIxOC1hOTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1hZiNfz4PgqkjB9ujFsWkhS8kibbEvn2CBxhcThU3PJUBiO2T6X2jgVgyza pfssJeU+gI3LLBNif+hZJGARzPZ+JTR4FTE/yd11sEjJB0LXVkh9oleGRIAJRTlv Mj9PZZ0qd+qWelZoLdP3SSjvSDYvwDL4Uy5DZnpUFYW6Nc8E+jxN3LdkfrZo1Eps Le42MASrmifnbQyRuwyxpOHrsQ1j7qSCSdK/kUahPLi3qICdqE3x3evgDpazX8zT y1iM+S+VUo7MmV6b4Xdq8Q4B08hQpbZNwT/fEq+ACpngwDSs6Jp+X5PFMNK7HA4S D4Z3Gq0W/DyzMcIi5eFqvE8aoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBiJVh/a x9V6DG3GRGdpvUtKaJtVMB8GA1UdIwQYMBaAFJ+vg0FnXvQ4lkGZNiVCVyyJKFQM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTE3Qy9DRDM3NjNFNkRD RUQxMUVFQkRFMDBFMzBDNEY5QUUwMi9uNi1EUVdkZTlEaVdRWmsySlVKWExJa29W QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL242LURRV2RlOURpV1FaazJKVUpYTElrb1ZBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjUxN0MvQ0QzNzYzRTZEQ0VEMTFFRUJERTAwRTMwQzRGOUFFMDIvODYwMTk4ODJF MkEzMTFFRUE2QTk3NDI1QzRGOUFFMDIucm9hMFQGCCsGAQUFBwEHAQH/BEUwQzAy BAIAATAsAwQCLXVgMAwDBAYt+0ADBAAt+0IDBAJnHYwDBAJndUwDBAJn3AgDBALL ptwwDQQCAAIwBwMFACQFpIAwDQYJKoZIhvcNAQELBQADggEBAEEqvDG5lHfyyLtr PstLXi3OYkAKg1Q8ArG4fkBPILWrJwidwZPP0NNHd2WXLAyYlvCDJRU16B7/SThl 8xj9CzAPWsiHqlkYtvso28MkDBBH/rozjhLXLlyEPpWoe5WXvOXzAwdPz2K8wyMC iyTaRYHeZ9ApHviPlui9ceooLntSQRzrAVYTehRGFv55UHji8VwMheBvRkzInUst /AqUczGcj5+wo1EvYH5DOX4Wf1NlEu4Agcrna3qw37Ck1t3HzcqYtdt0/MPh5ZH6 vvq7c2fj3aWAoKjZIb12llfJK741WKOVl+x0T3PHOL5/evZDclSrJLP5S/dJdmEq fnC/z5Q= -----END CERTIFICATE-----Generated at Sat Jun 13 08:45:18 2026 by rpki-client