$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/70638510630E11ECB30DB557C4F9AE02.roa File: 70638510630E11ECB30DB557C4F9AE02.roa (raw, json) Hash identifier: nDKlIV5XCKKFEVpkwUv/eg1d2ekpQE5TiySuHisuD2Y= Subject key identifier: 08:E5:5D:82:41:65:3F:CF:DA:E5:89:43:33:66:9E:D4:CB:DD:3E:EE Certificate issuer: /CN=A91B8D56/serialNumber=CF15AD102EEDDFBCCA68585A6F5C3817FE8A18D5 Certificate serial: 04CA Authority key identifier: CF:15:AD:10:2E:ED:DF:BC:CA:68:58:5A:6F:5C:38:17:FE:8A:18:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/70638510630E11ECB30DB557C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:20:32 +0000 ROA not before: Sat 31 Jan 2026 00:19:59 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134177 IP address blocks: 45.113.64.0/23 maxlen: 23 45.113.64.0/24 maxlen: 24 45.113.65.0/24 maxlen: 24 45.113.66.0/23 maxlen: 23 45.113.66.0/24 maxlen: 24 45.113.67.0/24 maxlen: 24 103.52.208.0/23 maxlen: 23 103.52.208.0/24 maxlen: 24 103.52.209.0/24 maxlen: 24 103.52.210.0/23 maxlen: 23 103.52.210.0/24 maxlen: 24 103.52.211.0/24 maxlen: 24 203.26.234.0/24 maxlen: 24 2402:2480::/48 maxlen: 48 2402:2480:1::/48 maxlen: 48 2402:2480:2::/48 maxlen: 48 2402:2480:3::/48 maxlen: 48 2402:2480:4::/48 maxlen: 48 2402:2480:5::/48 maxlen: 48 2402:2480:6::/48 maxlen: 48 2402:2480:7::/48 maxlen: 48 2402:2480:8::/48 maxlen: 48 2402:2480:9::/48 maxlen: 48 2402:2480:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.crl rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1226 (0x4ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8D56, serialNumber=CF15AD102EEDDFBCCA68585A6F5C3817FE8A18D5 Validity Not Before: Jan 31 00:19:59 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a44b30-3663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3c:b9:d4:da:bc:e5:15:c8:ca:df:2c:4c:36: 79:e7:0b:1c:1d:13:97:5c:61:da:26:e2:f9:ae:08: 68:7d:a3:4d:39:80:a7:eb:c6:e1:3c:bb:fd:7c:e8: ba:db:7e:03:fe:99:43:11:94:39:30:02:a1:c2:71: 31:f3:00:31:71:0d:91:ac:c4:23:bb:7d:1f:6d:06: 48:10:27:4e:a7:bb:39:92:22:13:4a:f3:3d:3d:6d: ce:2f:c5:bd:ae:0a:5a:61:a9:7e:6e:1c:0c:ad:88: c0:97:e1:e2:3c:d1:e8:e5:8f:60:ad:6e:d2:00:7e: 81:71:9d:22:54:cb:54:9f:8d:d4:f5:0b:69:b2:27: 44:75:c1:6b:31:14:9c:d8:41:bb:fa:a7:6b:3f:4e: 39:70:e2:24:d5:3c:f2:d5:b3:58:96:5c:83:f3:04: 50:9f:da:c1:fd:a2:77:50:31:53:2a:71:20:23:05: 99:18:2a:d8:36:cc:9c:3d:ba:00:9d:43:9b:f8:84: 43:95:b9:e5:44:f7:e3:0a:69:3c:6f:11:a1:99:f4: cd:f2:cc:0f:42:f2:ec:36:e8:74:33:01:4a:86:1b: 81:09:46:51:3a:fa:dd:77:f8:08:3c:61:61:e4:c9: de:a9:73:e8:bf:89:35:94:92:d2:e4:a8:2c:74:97: ac:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:E5:5D:82:41:65:3F:CF:DA:E5:89:43:33:66:9E:D4:CB:DD:3E:EE X509v3 Authority Key Identifier: keyid:CF:15:AD:10:2E:ED:DF:BC:CA:68:58:5A:6F:5C:38:17:FE:8A:18:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/70638510630E11ECB30DB557C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.113.64.0/22 103.52.208.0/22 203.26.234.0/24 IPv6: 2402:2480::-2402:2480:a:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 65:9d:d8:79:08:f1:8a:ee:75:0c:3f:bb:b3:b0:10:44:c4:a7: ae:5e:68:d2:0e:fa:68:b2:83:71:6c:37:68:80:93:88:d3:0d: 2b:2d:ba:bb:80:9d:7c:14:e2:25:6e:54:c1:ba:00:92:0d:4c: c0:67:92:d3:15:2d:2b:39:57:c0:cb:60:3e:ba:1b:16:03:ec: d6:fc:6c:be:2f:84:16:54:9e:10:f6:e8:7f:15:5b:d4:60:b1: 70:8c:5a:92:4e:40:6f:18:95:ec:73:7c:1d:29:6f:39:14:b0: ba:bb:62:10:9a:d3:51:84:10:e1:a3:0a:65:e5:23:98:4c:07: 83:b1:3e:8c:9d:bf:3d:20:8e:cd:43:99:28:b3:7d:da:10:f8: 04:ea:9e:71:9b:77:10:4b:95:58:83:58:48:67:42:8b:4d:7a: 17:c2:24:58:0d:73:e2:ff:f5:86:ea:63:a1:a9:73:54:1b:0d: 42:d9:39:b1:e5:1e:22:85:61:62:ff:c8:a1:c3:ab:13:bd:e6: cd:66:5f:da:a9:80:0c:cd:f8:b3:4a:e8:c7:ec:f7:b6:4e:01: b6:19:e4:ef:4b:52:54:de:81:54:d0:6a:25:dd:94:33:5d:35: 4a:40:2b:b7:8b:d8:06:37:16:fa:ed:df:c9:bd:2b:a2:1e:8e: 00:75:52:47 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICBMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhENTYxMTAvBgNVBAUTKENGMTVBRDEwMkVFRERGQkNDQTY4NTg1QTZGNUMzODE3 RkU4QTE4RDUwHhcNMjYwMTMxMDAxOTU5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGIzMC0zNjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjy51Nq85RXIyt8sTDZ55wscHROXXGHaJuL5rghofaNNOYCn68bhPLv9fOi6 234D/plDEZQ5MAKhwnEx8wAxcQ2RrMQju30fbQZIECdOp7s5kiITSvM9PW3OL8W9 rgpaYal+bhwMrYjAl+HiPNHo5Y9grW7SAH6BcZ0iVMtUn43U9QtpsidEdcFrMRSc 2EG7+qdrP045cOIk1Tzy1bNYllyD8wRQn9rB/aJ3UDFTKnEgIwWZGCrYNsycPboA nUOb+IRDlbnlRPfjCmk8bxGhmfTN8swPQvLsNuh0MwFKhhuBCUZROvrdd/gIPGFh 5MneqXPov4k1lJLS5KgsdJesqQIDAQABo4IChjCCAoIwHQYDVR0OBBYEFAjlXYJB ZT/P2uWJQzNmntTL3T7uMB8GA1UdIwQYMBaAFM8VrRAu7d+8ymhYWm9cOBf+ihjV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEQ1Ni8xQkM4RTFCNjYz MEExMUVDQUFBMTQxNEVDNEY5QUUwMi96eFd0RUM3dDM3ekthRmhhYjF3NEZfNktH TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p4V3RFQzd0Mzd6S2FGaGFiMXc0Rl82S0dOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhENTYvMUJDOEUxQjY2MzBBMTFFQ0FBQTE0MTRFQzRGOUFFMDIvNzA2Mzg1MTA2 MzBFMTFFQ0IzMERCNTU3QzRGOUFFMDIucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAY BAIAATASAwQCLXFAAwQCZzTQAwQAyxrqMBgEAgACMBIwEAMFByQCJIADBwAkAiSA AAowDQYJKoZIhvcNAQELBQADggEBAGWd2HkI8YrudQw/u7OwEETEp65eaNIO+miy g3FsN2iAk4jTDSsturuAnXwU4iVuVMG6AJINTMBnktMVLSs5V8DLYD66GxYD7Nb8 bL4vhBZUnhD26H8VW9RgsXCMWpJOQG8YlexzfB0pbzkUsLq7YhCa01GEEOGjCmXl I5hMB4OxPoydvz0gjs1DmSizfdoQ+ATqnnGbdxBLlViDWEhnQotNehfCJFgNc+L/ 9YbqY6Gpc1QbDULZObHlHiKFYWL/yKHDqxO95s1mX9qpgAzN+LNK6Mfs97ZOAbYZ 5O9LUlTegVTQaiXdlDNdNUpAK7eL2AY3Fvrt38m9K6IejgB1Ukc= -----END CERTIFICATE-----Generated at Mon Mar 2 17:04:51 2026 by rpki-client