$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/AC34FBD61C0111EC8ADBF80CC4F9AE02.roa File: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (raw, json) Hash identifier: mcaworGjWUNORQMelgirXxDQ4QyGEosHFS/EBWtQzVs= Subject key identifier: 05:C6:96:90:99:52:EC:02:8C:C3:56:C6:20:3E:15:B3:47:77:B7:7A Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1DC2 Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/AC34FBD61C0111EC8ADBF80CC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:29:21 +0000 ROA not before: Thu 14 Aug 2025 16:24:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 4638 IP address blocks: 45.112.224.0/22 maxlen: 24 103.52.88.0/22 maxlen: 24 119.235.64.0/19 maxlen: 24 119.235.96.0/21 maxlen: 24 202.62.118.0/23 maxlen: 24 202.62.120.0/22 maxlen: 24 202.62.124.0/22 maxlen: 24 210.7.0.0/19 maxlen: 24 2403:4600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:25:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7618 (0x1dc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Aug 14 16:24:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a42311-7fbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0d:ae:0b:dd:a5:fb:b0:84:c0:6a:55:2c:5f: 76:37:c2:ce:68:24:7d:cc:ae:64:25:38:91:d3:15: 10:89:c3:fb:f1:b5:08:27:e6:76:f5:98:ce:24:5e: 98:a8:ee:84:7f:a9:7a:11:ac:5e:98:6b:77:28:1d: 04:c3:f5:f2:fc:dc:7f:5d:9c:dc:93:14:17:1c:64: b2:15:63:43:cc:5a:18:2e:ee:2e:21:af:c3:b3:c5: 45:f2:c7:0f:a6:b3:aa:47:72:08:95:1f:32:64:d6: 11:58:ad:5a:bc:a0:ac:61:f9:ad:cb:ef:35:55:58: 4c:bd:81:da:96:07:02:65:86:ed:70:1e:33:db:15: 81:d8:a5:c2:94:8a:17:53:31:78:7d:95:89:13:ce: f9:42:0c:0b:a6:9d:dc:80:c0:3c:69:74:1c:3b:9d: d5:7d:b6:32:2b:53:40:9e:b5:b2:d3:2c:b9:14:8f: 98:bf:ec:7f:09:a9:a1:f2:50:e3:86:43:65:29:08: 4f:12:cd:f1:6a:a4:31:b0:06:6c:c9:48:51:08:4f: c4:68:68:88:59:7f:53:b3:2e:b2:1c:e4:e4:4a:95: 5c:f9:8c:4d:bf:39:26:2c:62:97:be:6d:a8:ab:50: bf:f8:7d:d4:79:28:e7:a8:ed:ea:84:b1:d6:b4:ca: 7d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C6:96:90:99:52:EC:02:8C:C3:56:C6:20:3E:15:B3:47:77:B7:7A X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/AC34FBD61C0111EC8ADBF80CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.112.224.0/22 103.52.88.0/22 119.235.64.0-119.235.103.255 202.62.118.0-202.62.127.255 210.7.0.0/19 IPv6: 2403:4600::/32 Signature Algorithm: sha256WithRSAEncryption e1:7a:82:ae:cf:7a:0d:88:65:78:9d:ab:d1:52:22:2e:98:e6: b6:8b:e6:3d:27:5a:77:d3:e6:d1:f7:03:ee:b9:d7:6b:aa:fd: 69:46:60:36:c4:3b:27:03:b8:11:64:57:63:89:d8:47:1c:68: 47:38:d4:89:a5:16:b1:11:dd:6f:fb:27:be:7e:64:78:64:54: d6:76:53:8b:5b:08:98:48:c5:eb:cc:fc:28:a8:5f:98:59:c0: 32:60:b2:aa:4d:3f:96:7a:f9:a3:df:9e:af:c5:23:9d:8a:aa: a6:ab:6e:d5:ba:07:e5:2d:bc:b9:14:4d:8f:35:bd:b0:9b:22: 7c:b5:54:3b:8d:d6:ba:92:ec:fb:76:43:68:b4:ab:ed:09:b6: 5f:e2:c0:a7:de:26:e0:89:10:2b:b3:9b:2e:2e:f8:84:d1:9c: 6d:3f:2c:f9:31:d7:9f:03:13:b9:98:8a:06:91:05:ba:7b:01: ee:e7:fb:9e:c3:10:01:1b:26:64:3c:d1:73:79:0a:c0:8b:8b: 3f:05:e1:a1:3c:ed:90:62:89:c1:7f:75:ca:f6:3b:ea:2d:8c: 53:69:28:e4:d2:6d:11:84:f0:54:46:f5:6d:10:9d:46:aa:93: a9:8b:76:f7:5e:e8:91:77:e4:3e:4b:cd:63:20:0b:ff:ce:d6: 54:f4:20:e5 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICHcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjUwODE0MTYyNDM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjMxMS03ZmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvg2uC92l+7CEwGpVLF92N8LOaCR9zK5kJTiR0xUQicP78bUIJ+Z29ZjOJF6Y qO6Ef6l6EaxemGt3KB0Ew/Xy/Nx/XZzckxQXHGSyFWNDzFoYLu4uIa/Ds8VF8scP prOqR3IIlR8yZNYRWK1avKCsYfmty+81VVhMvYHalgcCZYbtcB4z2xWB2KXClIoX UzF4fZWJE875QgwLpp3cgMA8aXQcO53VfbYyK1NAnrWy0yy5FI+Yv+x/Camh8lDj hkNlKQhPEs3xaqQxsAZsyUhRCE/EaGiIWX9Tsy6yHOTkSpVc+YxNvzkmLGKXvm2o q1C/+H3UeSjnqO3qhLHWtMp90wIDAQABo4IClzCCApMwHQYDVR0OBBYEFAXGlpCZ UuwCjMNWxiA+FbNHd7d6MB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIzQzUvODMxQTIwRkVCNUMzMTFFNkI1MTQzQTJBQzRGOUFFMDIvQUMzNEZCRDYx QzAxMTFFQzhBREJGODBDQzRGOUFFMDIucm9hMFYGCCsGAQUFBwEHAQH/BEcwRTA0 BAIAATAuAwQCLXDgAwQCZzRYMAwDBAZ360ADBAN362AwDAMEAco+dgMEB8o+AAME BdIHADANBAIAAjAHAwUAJANGADANBgkqhkiG9w0BAQsFAAOCAQEA4XqCrs96DYhl eJ2r0VIiLpjmtovmPSdad9Pm0fcD7rnXa6r9aUZgNsQ7JwO4EWRXY4nYRxxoRzjU iaUWsRHdb/snvn5keGRU1nZTi1sImEjF68z8KKhfmFnAMmCyqk0/lnr5o9+er8Uj nYqqpqtu1boH5S28uRRNjzW9sJsifLVUO43WupLs+3ZDaLSr7Qm2X+LAp94m4IkQ K7ObLi74hNGcbT8s+THXnwMTuZiKBpEFunsB7uf7nsMQARsmZDzRc3kKwIuLPwXh oTztkGKJwX91yvY76i2MU2ko5NJtEYTwVEb1bRCdRqqTqYt2917okXfkPkvNYyAL /87WVPQg5Q== -----END CERTIFICATE-----Generated at Mon Mar 2 13:02:19 2026 by rpki-client