$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/5B01916AD15911EE8B8BB151C4F9AE02.roa File: 5B01916AD15911EE8B8BB151C4F9AE02.roa (raw, json) Hash identifier: /342JxNCU9egGjf0ZwAIADGUFEXErCG+EZQYEc1H3So= Subject key identifier: 65:49:98:C2:B2:C2:E0:4D:19:44:9B:25:08:E1:8B:D2:1D:67:D3:14 Certificate issuer: /CN=A91BB87C/serialNumber=EAA96DCA7430DFA471CA29B843836C1C80E5439E Certificate serial: 0D28 Authority key identifier: EA:A9:6D:CA:74:30:DF:A4:71:CA:29:B8:43:83:6C:1C:80:E5:43:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qltynQw36Rxyim4Q4NsHIDlQ54.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/5B01916AD15911EE8B8BB151C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:39:11 +0000 ROA not before: Sat 26 Jul 2025 18:28:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134204 IP address blocks: 103.58.72.0/22 maxlen: 24 203.76.220.0/22 maxlen: 24 2400:4d40::/32 maxlen: 32 2400:4d40::/36 maxlen: 36 2400:4d40:1000::/36 maxlen: 36 2400:4d40:2000::/36 maxlen: 36 2400:4d40:3000::/36 maxlen: 36 2400:4d40:4000::/36 maxlen: 36 2400:4d40:5000::/36 maxlen: 36 2400:4d40:6000::/36 maxlen: 36 2400:4d40:7000::/36 maxlen: 36 2400:4d40:8000::/36 maxlen: 36 2400:4d40:9000::/36 maxlen: 36 2400:4d40:a000::/36 maxlen: 36 2400:4d40:b000::/36 maxlen: 36 2400:4d40:c000::/36 maxlen: 36 2400:4d40:d000::/36 maxlen: 36 2400:4d40:e000::/36 maxlen: 36 2400:4d40:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/6qltynQw36Rxyim4Q4NsHIDlQ54.crl rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/6qltynQw36Rxyim4Q4NsHIDlQ54.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qltynQw36Rxyim4Q4NsHIDlQ54.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3368 (0xd28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB87C, serialNumber=EAA96DCA7430DFA471CA29B843836C1C80E5439E Validity Not Before: Jul 26 18:28:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4255f-d396 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:16:53:65:1b:fa:94:8a:a1:7b:c3:d6:97:46: c6:11:35:ef:72:41:b2:57:17:1d:68:f7:23:dc:5a: 5e:08:ea:17:55:40:d8:a4:15:79:6b:45:b0:0b:49: 5b:af:ce:8a:c0:ee:2b:0f:e8:f4:30:cc:ff:f7:25: 90:bf:c7:fe:ac:db:63:cd:ed:da:51:45:b3:aa:ed: 9d:c7:f7:e5:b4:78:8f:50:58:a5:1d:68:c2:f7:d9: ba:3e:7d:cd:00:ff:7f:94:cc:b6:d6:f7:34:7b:7e: 73:a9:48:8e:ce:f0:d2:2c:b3:26:62:7b:0e:c0:bb: b3:2b:72:48:89:b2:cc:b7:b0:6b:d0:56:0a:f6:57: bf:77:0a:2b:b5:14:81:9f:9d:0f:05:3d:5d:8e:4e: 0d:7e:74:c5:26:e3:05:62:4a:6f:a1:7b:cf:9a:99: 32:de:3a:a8:a2:35:14:cb:68:6a:57:a1:70:76:ff: d8:2f:fa:7f:a4:cb:e1:97:5d:e5:23:ee:de:08:34: 7e:0b:ff:55:0b:c7:96:c7:2b:01:4e:fb:35:7d:7b: e3:08:1a:1b:ed:37:dd:1b:50:31:a7:8c:a8:5b:53: c7:23:7d:55:e8:59:cc:01:24:be:1a:37:7a:4e:1b: 9d:af:9b:fb:06:4a:d1:07:04:a3:1d:99:1e:ef:bc: bd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:49:98:C2:B2:C2:E0:4D:19:44:9B:25:08:E1:8B:D2:1D:67:D3:14 X509v3 Authority Key Identifier: keyid:EA:A9:6D:CA:74:30:DF:A4:71:CA:29:B8:43:83:6C:1C:80:E5:43:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/6qltynQw36Rxyim4Q4NsHIDlQ54.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qltynQw36Rxyim4Q4NsHIDlQ54.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/5B01916AD15911EE8B8BB151C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.58.72.0/22 203.76.220.0/22 IPv6: 2400:4d40::/32 Signature Algorithm: sha256WithRSAEncryption 29:41:3a:91:0d:e7:34:b2:28:d0:14:2b:f5:b6:9e:77:53:3c: bc:91:d0:f6:b5:e9:d4:37:c7:e0:4a:03:d0:94:76:7c:d0:11: ee:4a:3a:c3:4e:8e:19:f7:26:61:8e:23:5c:ac:eb:7b:a8:0e: e0:3c:8c:83:08:d3:dd:c6:ef:a7:12:52:15:48:10:ef:5d:2f: 58:fa:75:88:9c:3e:a2:75:0d:02:27:e0:9e:a4:23:36:14:22: 90:19:bf:34:24:95:2e:7f:f3:88:2e:1c:59:d2:b2:59:49:ec: b5:7b:23:c7:21:33:5e:58:5a:27:36:e5:62:95:f6:aa:b0:63: 27:68:bc:b9:be:03:79:20:33:c2:d1:de:5a:6f:d2:ee:03:00: 00:a6:2b:9c:cb:2c:cc:69:9f:67:dc:1e:41:48:0f:e2:5c:f8: b1:b4:91:e4:9d:e4:b0:fc:72:9f:83:b3:81:7c:cf:21:fa:30: 15:75:a8:0e:11:08:52:88:3b:23:2b:0a:fd:a9:84:5a:02:b1: 68:c2:46:7d:3d:fb:3f:2b:9b:de:d0:39:54:39:4e:10:95:0d: 84:d3:8a:18:00:da:18:3e:df:6a:ee:e0:48:18:10:f4:cf:ef: a7:97:2c:ed:1b:98:77:cb:ea:3d:94:7f:67:bc:67:c0:7c:ac: e2:ef:1d:0b -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI4N0MxMTAvBgNVBAUTKEVBQTk2RENBNzQzMERGQTQ3MUNBMjlCODQzODM2QzFD ODBFNTQzOUUwHhcNMjUwNzI2MTgyODI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjU1Zi1kMzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxZTZRv6lIqhe8PWl0bGETXvckGyVxcdaPcj3FpeCOoXVUDYpBV5a0WwC0lb r86KwO4rD+j0MMz/9yWQv8f+rNtjze3aUUWzqu2dx/fltHiPUFilHWjC99m6Pn3N AP9/lMy21vc0e35zqUiOzvDSLLMmYnsOwLuzK3JIibLMt7Br0FYK9le/dwortRSB n50PBT1djk4NfnTFJuMFYkpvoXvPmpky3jqoojUUy2hqV6Fwdv/YL/p/pMvhl13l I+7eCDR+C/9VC8eWxysBTvs1fXvjCBob7TfdG1Axp4yoW1PHI31V6FnMASS+Gjd6 Thudr5v7BkrRBwSjHZke77y9ywIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFGVJmMKy wuBNGUSbJQjhi9IdZ9MUMB8GA1UdIwQYMBaAFOqpbcp0MN+kccopuEODbByA5UOe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjg3Qy82M0Q5MDMxMkZD MDIxMUU5QTQxOUYzNDBDNEY5QUUwMi82cWx0eW5RdzM2Unh5aW00UTROc0hJRGxR NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZxbHR5blF3MzZSeHlpbTRRNE5zSElEbFE1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI4N0MvNjNEOTAzMTJGQzAyMTFFOUE0MTlGMzQwQzRGOUFFMDIvNUIwMTkxNkFE MTU5MTFFRThCOEJCMTUxQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZzpIAwQCy0zcMA0EAgACMAcDBQAkAE1AMA0GCSqGSIb3DQEBCwUA A4IBAQApQTqRDec0sijQFCv1tp53Uzy8kdD2tenUN8fgSgPQlHZ80BHuSjrDTo4Z 9yZhjiNcrOt7qA7gPIyDCNPdxu+nElIVSBDvXS9Y+nWInD6idQ0CJ+CepCM2FCKQ Gb80JJUuf/OILhxZ0rJZSey1eyPHITNeWFonNuVilfaqsGMnaLy5vgN5IDPC0d5a b9LuAwAApiucyyzMaZ9n3B5BSA/iXPixtJHkneSw/HKfg7OBfM8h+jAVdagOEQhS iDsjKwr9qYRaArFowkZ9Pfs/K5ve0DlUOU4QlQ2E04oYANoYPt9q7uBIGBD0z++n lyztG5h3y+o9lH9nvGfAfKzi7x0L -----END CERTIFICATE-----Generated at Mon Mar 2 13:31:47 2026 by rpki-client