$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa File: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (raw, json) Hash identifier: P6k6ZFgyd5A01gmUt+7pAxzOrjslbaS8z1K2UjgCjog= Subject key identifier: BE:B3:BF:15:EC:1B:C3:ED:2C:F1:A0:DC:1D:E3:A4:C2:EA:A1:9D:4C Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 03D0 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:13:35 +0000 ROA not before: Wed 03 Sep 2025 03:20:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132335 IP address blocks: 45.252.190.0/24 maxlen: 24 103.205.140.0/24 maxlen: 24 103.205.141.0/24 maxlen: 24 103.205.142.0/24 maxlen: 24 103.205.143.0/24 maxlen: 24 103.217.220.0/24 maxlen: 24 103.217.221.0/24 maxlen: 24 103.217.222.0/24 maxlen: 24 103.217.223.0/24 maxlen: 24 103.227.1.0/24 maxlen: 24 103.247.19.0/24 maxlen: 24 202.94.172.0/24 maxlen: 24 202.94.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 976 (0x3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 3 03:20:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a481cf-b4ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e3:72:db:eb:ad:4f:9d:3c:4a:49:9c:a8:ea: 5e:4b:e7:30:59:74:21:3d:8e:a9:88:b0:7c:69:09: 11:31:b6:42:d3:ee:77:89:b6:87:e9:e3:47:d1:47: 7e:15:ef:38:30:08:9a:a6:63:7d:6f:ed:86:7f:8c: 17:b8:95:d0:0b:0e:d9:5c:33:89:50:c5:01:1f:d0: 86:63:b8:ab:6b:89:4a:8f:10:22:0e:44:4c:a3:16: 17:47:84:9d:31:26:fd:71:81:3c:3b:ba:86:60:b7: e2:70:de:ae:97:ec:59:d0:50:ad:7c:90:1a:b3:dc: c6:5e:14:0e:50:68:7f:ae:15:6a:45:bd:cb:b0:9f: 69:ca:f6:2e:47:5f:ab:f2:d1:88:8e:5c:56:3c:f5: 3c:53:f2:0d:43:7c:fc:6c:42:f1:4f:f4:7b:52:fd: c4:45:14:fb:58:5c:18:c7:31:53:e1:7d:25:ec:21: 59:a6:9a:a8:c6:80:00:80:19:71:96:93:38:30:bd: 73:1d:08:86:d6:1e:b7:33:57:f2:35:a8:81:32:b1: 60:3d:9a:71:12:06:90:86:49:6d:b9:37:4e:39:e7: dd:cb:9f:a3:4e:bb:e8:ed:ac:85:73:88:b9:02:ca: 59:da:79:34:26:08:6f:70:ce:eb:32:58:96:be:fe: c7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B3:BF:15:EC:1B:C3:ED:2C:F1:A0:DC:1D:E3:A4:C2:EA:A1:9D:4C X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.252.190.0/24 103.205.140.0/22 103.217.220.0/22 103.227.1.0/24 103.247.19.0/24 202.94.172.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:fe:f0:79:4a:48:2e:60:99:02:55:ad:55:ee:dd:34:99:47: 55:83:5e:5b:68:25:a7:98:17:d8:69:3c:98:32:8f:e3:a7:35: d6:b6:d9:cf:e9:2d:63:af:12:3c:2c:3c:e9:d2:b4:c9:96:5c: 8d:e5:88:58:82:11:20:a7:a4:29:5c:7b:ca:59:c3:9b:d6:6a: 38:2e:a6:11:96:f9:b6:0a:86:0c:c1:36:37:22:eb:7b:72:e1: f7:9f:29:c0:84:a6:ff:8e:7d:bc:77:21:b9:0b:a9:d4:b4:8d: f7:5f:66:a6:ed:9e:2d:a2:5d:3e:b3:1f:ad:3a:db:d2:24:9d: 7d:92:96:4e:af:19:9b:85:a2:81:62:7c:18:82:5d:22:71:55: 03:b7:6f:2c:51:05:72:ed:60:f6:2a:04:36:77:1a:c8:ac:32: 7f:13:4b:16:1a:44:8b:83:0f:87:28:59:07:a3:8e:d8:ca:15: e9:81:4f:83:2b:3d:06:87:9e:81:74:21:28:b7:ed:2f:3f:91: a7:4d:38:1b:bd:32:87:72:26:d8:0f:32:7b:9e:12:3c:26:aa: 30:0a:84:cf:54:92:c9:64:15:7b:ae:3c:e5:90:83:22:8d:4f: 2c:e5:9f:75:b3:3b:60:d0:b7:2f:22:08:1a:3d:5b:73:50:59: 3f:60:1c:b9 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUwOTAzMDMyMDAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODFjZi1iNGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmuNy2+utT508SkmcqOpeS+cwWXQhPY6piLB8aQkRMbZC0+53ibaH6eNH0Ud+ Fe84MAiapmN9b+2Gf4wXuJXQCw7ZXDOJUMUBH9CGY7ira4lKjxAiDkRMoxYXR4Sd MSb9cYE8O7qGYLficN6ul+xZ0FCtfJAas9zGXhQOUGh/rhVqRb3LsJ9pyvYuR1+r 8tGIjlxWPPU8U/INQ3z8bELxT/R7Uv3ERRT7WFwYxzFT4X0l7CFZppqoxoAAgBlx lpM4ML1zHQiG1h63M1fyNaiBMrFgPZpxEgaQhkltuTdOOefdy5+jTrvo7ayFc4i5 AspZ2nk0JghvcM7rMliWvv7HCwIDAQABo4ICfjCCAnowHQYDVR0OBBYEFL6zvxXs G8PtLPGg3B3jpMLqoZ1MMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvOTA2NDdGMkVB MTRBMTFFRDhGRkJBNjg0QzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAq BAIAATAkAwQALfy+AwQCZ82MAwQCZ9ncAwQAZ+MBAwQAZ/cTAwQByl6sMA0GCSqG SIb3DQEBCwUAA4IBAQB6/vB5SkguYJkCVa1V7t00mUdVg15baCWnmBfYaTyYMo/j pzXWttnP6S1jrxI8LDzp0rTJllyN5YhYghEgp6QpXHvKWcOb1mo4LqYRlvm2CoYM wTY3Iut7cuH3nynAhKb/jn28dyG5C6nUtI33X2am7Z4tol0+sx+tOtvSJJ19kpZO rxmbhaKBYnwYgl0icVUDt28sUQVy7WD2KgQ2dxrIrDJ/E0sWGkSLgw+HKFkHo47Y yhXpgU+DKz0Gh56BdCEot+0vP5GnTTgbvTKHcibYDzJ7nhI8JqowCoTPVJLJZBV7 rjzlkIMijU8s5Z91sztg0LcvIggaPVtzUFk/YBy5 -----END CERTIFICATE-----Generated at Mon Mar 2 09:20:23 2026 by rpki-client