$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/5C1DBC489BEA11EFBCB36227C4F9AE02.roa File: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (raw, json) Hash identifier: v5H4fJJFXDpxvnkvndLnuywB0eTLMDeUHDuPRNGLC1o= Subject key identifier: 6A:DF:05:E6:2F:7C:57:A3:21:10:72:75:D8:49:66:52:28:D4:CB:45 Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 1046 Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/5C1DBC489BEA11EFBCB36227C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:32:36 +0000 ROA not before: Tue 02 Sep 2025 18:07:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 59033 IP address blocks: 45.114.236.0/22 maxlen: 24 103.71.24.0/24 maxlen: 24 2401:d640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4166 (0x1046) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: Sep 2 18:07:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a45c13-3666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:9b:d1:c7:5e:5c:20:e1:3b:49:0b:bc:6b:63: cd:8f:4b:02:c4:0d:59:24:b2:50:20:d3:e3:82:a0: 1c:c8:32:95:22:99:1b:d4:d0:8c:ec:b9:6b:72:5d: c3:8f:c7:be:6b:1a:81:5c:a4:00:1e:64:75:43:b1: 1d:c9:b2:c9:10:e4:e2:f1:84:c4:4a:c1:e7:5e:d3: 69:92:a8:e8:94:6b:9e:0a:7a:43:8d:4b:17:04:f9: 04:71:e8:53:97:e5:20:ad:f9:95:31:5a:b3:70:f9: ae:e4:3a:ab:76:2c:3b:e1:01:52:82:b3:b9:0e:04: 39:28:44:c8:72:8e:05:76:e1:d5:c7:47:c8:4c:00: fd:83:36:34:52:f9:53:1b:eb:ee:f9:d9:5d:3a:ad: c9:63:eb:78:b0:1c:d5:0a:d7:db:12:a4:f1:68:58: 73:24:65:02:50:aa:6d:4d:58:98:de:d3:b0:1b:15: 24:ec:68:92:60:64:e3:b3:6a:3b:80:82:f9:49:b3: b4:1f:19:21:77:9e:42:ea:09:99:0b:be:e2:bd:ae: 27:af:22:35:f7:e7:91:a7:0d:84:e0:81:e7:c7:f6: e8:bc:5c:73:1b:8a:00:b6:d5:ba:de:3e:10:b2:e9: 1a:8a:d9:6e:30:2c:b9:2e:e0:a8:cd:c8:3b:cd:b7: ff:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:DF:05:E6:2F:7C:57:A3:21:10:72:75:D8:49:66:52:28:D4:CB:45 X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/5C1DBC489BEA11EFBCB36227C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.114.236.0/22 103.71.24.0/24 IPv6: 2401:d640::/32 Signature Algorithm: sha256WithRSAEncryption 02:66:de:41:fb:48:83:25:b1:6d:31:a0:61:10:9d:28:ac:31: 94:e2:90:f6:79:92:e4:8d:8f:b3:70:13:cd:99:8d:2e:e5:34: 83:ce:0f:33:8f:e6:e6:60:92:1b:48:23:1b:91:4a:20:14:4c: c1:dd:8a:b3:27:80:08:5f:1d:f0:91:6d:dd:1e:da:64:b2:0f: 17:78:58:18:9d:17:59:43:7b:10:45:c8:2d:75:0d:db:98:6e: 4a:be:45:60:5d:65:84:23:0c:1b:92:5b:71:e3:b6:4b:da:bf: cc:2f:79:39:c2:c3:fe:a7:37:b8:ac:a8:05:48:79:99:5d:37: 46:c1:df:b6:07:39:0a:3b:fc:17:5e:f3:48:4c:94:d6:3e:25: 64:5b:1e:30:4e:3c:4d:13:b2:eb:03:52:0e:d9:1f:72:5d:55: a9:33:d1:9b:e7:f6:60:79:c9:4b:16:00:43:1e:46:3c:f3:34: e5:4c:1b:b0:31:b1:9e:01:f6:fe:b6:e8:ed:61:84:d4:2b:e5: 87:8e:c7:d9:49:4d:ba:99:28:ca:8f:b7:55:da:b6:85:5a:ce: 1b:a6:42:74:ec:17:66:c4:fd:01:61:f0:6c:99:e8:a3:1f:ba: 7c:ef:ef:be:59:ee:00:af:68:34:a1:da:50:4e:1e:a3:31:d3: 9a:0a:70:6d -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICEEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjUwOTAyMTgwNzMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWMxMy0zNjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjJvRx15cIOE7SQu8a2PNj0sCxA1ZJLJQINPjgqAcyDKVIpkb1NCM7Llrcl3D j8e+axqBXKQAHmR1Q7EdybLJEOTi8YTESsHnXtNpkqjolGueCnpDjUsXBPkEcehT l+UgrfmVMVqzcPmu5Dqrdiw74QFSgrO5DgQ5KETIco4FduHVx0fITAD9gzY0UvlT G+vu+dldOq3JY+t4sBzVCtfbEqTxaFhzJGUCUKptTViY3tOwGxUk7GiSYGTjs2o7 gIL5SbO0Hxkhd55C6gmZC77iva4nryI19+eRpw2E4IHnx/bovFxzG4oAttW63j4Q sukaitluMCy5LuCozcg7zbf/KQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFGrfBeYv fFejIRByddhJZlIo1MtFMB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY3RDEvNkNCQzlCNDA2MTFEMTFFOUIwMTJEQjM3QzRGOUFFMDIvNUMxREJDNDg5 QkVBMTFFRkJDQjM2MjI3QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCLXLsAwQAZ0cYMA0EAgACMAcDBQAkAdZAMA0GCSqGSIb3DQEBCwUA A4IBAQACZt5B+0iDJbFtMaBhEJ0orDGU4pD2eZLkjY+zcBPNmY0u5TSDzg8zj+bm YJIbSCMbkUogFEzB3YqzJ4AIXx3wkW3dHtpksg8XeFgYnRdZQ3sQRcgtdQ3bmG5K vkVgXWWEIwwbkltx47ZL2r/ML3k5wsP+pze4rKgFSHmZXTdGwd+2BzkKO/wXXvNI TJTWPiVkWx4wTjxNE7LrA1IO2R9yXVWpM9Gb5/ZgeclLFgBDHkY88zTlTBuwMbGe Afb+tujtYYTUK+WHjsfZSU26mSjKj7dV2raFWs4bpkJ07BdmxP0BYfBsmeijH7p8 7+++We4Ar2g0odpQTh6jMdOaCnBt -----END CERTIFICATE-----Generated at Mon Mar 2 09:07:25 2026 by rpki-client