$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/18272628C30B11E8A6851824C4F9AE02.roa File: 18272628C30B11E8A6851824C4F9AE02.roa (raw, json) Hash identifier: kMK6cFoyDF+YC63uz7mLOHILoZmbrgDgimkdvFEz5OA= Subject key identifier: 5C:22:BB:73:8F:73:EB:BF:23:FA:4C:14:32:07:09:50:88:B3:E1:BD Certificate issuer: /CN=A91C40D1/serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Certificate serial: 134E Authority key identifier: 6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/18272628C30B11E8A6851824C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:33:49 +0000 ROA not before: Tue 26 Aug 2025 17:26:29 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137991 IP address blocks: 45.121.188.0/22 maxlen: 22 45.121.188.0/24 maxlen: 24 45.121.189.0/24 maxlen: 24 45.121.190.0/24 maxlen: 24 45.121.191.0/24 maxlen: 24 103.119.148.0/22 maxlen: 22 103.119.148.0/24 maxlen: 24 103.119.149.0/24 maxlen: 24 103.119.150.0/24 maxlen: 24 103.119.151.0/24 maxlen: 24 203.1.22.0/23 maxlen: 23 203.1.22.0/24 maxlen: 24 203.1.23.0/24 maxlen: 24 203.10.100.0/23 maxlen: 23 203.10.100.0/24 maxlen: 24 203.10.101.0/24 maxlen: 24 2403:4540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4942 (0x134e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D1, serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Validity Not Before: Aug 26 17:26:29 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4241d-d119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f8:86:3c:8b:93:20:4c:bc:92:74:65:5e:14: 68:05:96:cd:77:cf:2d:98:68:7f:a4:c4:63:1d:e8: 09:49:3a:ef:da:52:2c:49:df:01:a1:2f:f6:57:c1: a9:44:fe:76:08:7d:c2:7a:06:fb:24:7c:aa:fc:ff: 4e:07:01:a6:9a:07:b7:9b:10:67:12:54:f9:eb:be: 16:55:eb:b6:40:7e:80:cd:16:92:47:8b:a6:6d:7e: 0d:37:55:f3:70:8f:bc:3e:2a:c6:2d:30:1b:e4:82: 58:75:39:22:5c:5b:66:82:32:f2:f8:1c:5e:9d:99: 54:82:2e:8b:25:aa:ff:c2:cf:5c:b0:00:a2:8d:8d: 50:b8:1c:e8:71:0d:e5:06:dc:1b:11:45:7f:d6:e4: cf:42:2d:70:d0:e5:fa:fa:ed:cb:25:52:73:69:f6: dd:9d:90:d7:0b:b4:20:fd:5e:b2:ca:e1:29:74:68: 8e:f2:93:87:33:a1:05:2f:34:44:34:8d:b3:04:2d: 2f:c4:27:6d:df:05:e9:c0:3b:17:a7:e6:8e:82:d0: e4:d3:2f:b0:66:a5:28:21:6c:44:98:18:96:4b:6e: f2:b1:a3:98:43:51:53:63:b1:e8:c8:fb:d2:ec:42: ae:76:dc:38:00:a2:06:e6:1a:b4:2f:45:9e:ef:c6: a8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:22:BB:73:8F:73:EB:BF:23:FA:4C:14:32:07:09:50:88:B3:E1:BD X509v3 Authority Key Identifier: keyid:6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/18272628C30B11E8A6851824C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.121.188.0/22 103.119.148.0/22 203.1.22.0/23 203.10.100.0/23 IPv6: 2403:4540::/32 Signature Algorithm: sha256WithRSAEncryption 19:76:bb:e6:37:87:cf:18:c9:d3:d2:8c:4a:8b:38:19:13:cc: c6:47:bd:3e:c1:2a:ed:df:ab:d6:dc:99:bf:c4:c6:c0:2b:a5: e5:c9:f2:8b:a5:93:c9:12:c5:f4:37:a6:04:37:bb:85:ec:c9: 40:3f:49:eb:07:66:6d:a4:d0:60:ee:a0:01:5f:a0:ef:14:e2: 24:02:11:a2:96:ae:7c:de:40:1b:a9:ef:51:8a:d9:99:d0:29: c4:54:78:23:21:d4:72:b9:a3:39:a6:62:df:63:f5:95:0e:fb: 2f:e8:27:47:c0:2b:2a:8c:3d:2f:eb:b1:cd:22:2c:ed:65:09: 92:6c:54:97:42:15:d3:73:a0:74:1c:90:35:a2:41:99:46:89: 14:3c:90:11:64:3c:1e:50:c5:84:0b:a9:65:c0:2c:9b:91:81: 37:5d:17:88:21:e5:17:63:df:cb:e2:a7:f8:44:82:07:b6:2f: 1f:2f:3c:25:c9:97:21:4f:25:f7:bb:c8:24:20:ac:00:73:84: 39:8b:7b:62:48:f2:7b:ec:a3:ae:b3:e9:a3:66:ec:8a:54:88: d8:77:b9:7b:d5:22:78:3f:67:5c:33:7f:e4:62:ed:57:a3:25: 49:f9:51:bc:6e:c0:98:f1:35:46:bf:8a:09:6f:93:0d:a4:76: 1e:6f:f9:9f -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICE04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDExMTAvBgNVBAUTKDZDQjMwREMwOEVGMjk3MzBFOURGMDQ5QzU0RjM5NTgy QUI4NUJFOTQwHhcNMjUwODI2MTcyNjI5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjQxZC1kMTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfiGPIuTIEy8knRlXhRoBZbNd88tmGh/pMRjHegJSTrv2lIsSd8BoS/2V8Gp RP52CH3Cegb7JHyq/P9OBwGmmge3mxBnElT5674WVeu2QH6AzRaSR4umbX4NN1Xz cI+8PirGLTAb5IJYdTkiXFtmgjLy+BxenZlUgi6LJar/ws9csACijY1QuBzocQ3l BtwbEUV/1uTPQi1w0OX6+u3LJVJzafbdnZDXC7Qg/V6yyuEpdGiO8pOHM6EFLzRE NI2zBC0vxCdt3wXpwDsXp+aOgtDk0y+wZqUoIWxEmBiWS27ysaOYQ1FTY7HoyPvS 7EKudtw4AKIG5hq0L0We78aoNQIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFFwiu3OP c+u/I/pMFDIHCVCIs+G9MB8GA1UdIwQYMBaAFGyzDcCO8pcw6d8EnFTzlYKrhb6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBEMS9DQzc4MzBCMEMz MDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6RHAzd1NjVlBPVmdxdUZ2 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMTU53STd5bHpEcDN3U2NWUE9WZ3F1RnZwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzQwRDEvQ0M3ODMwQjBDMzA5MTFFODkwMEU1RjIxQzRGOUFFMDIvMTgyNzI2MjhD MzBCMTFFOEE2ODUxODI0QzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQCLXm8AwQCZ3eUAwQBywEWAwQBywpkMA0EAgACMAcDBQAkA0VAMA0G CSqGSIb3DQEBCwUAA4IBAQAZdrvmN4fPGMnT0oxKizgZE8zGR70+wSrt36vW3Jm/ xMbAK6XlyfKLpZPJEsX0N6YEN7uF7MlAP0nrB2ZtpNBg7qABX6DvFOIkAhGilq58 3kAbqe9RitmZ0CnEVHgjIdRyuaM5pmLfY/WVDvsv6CdHwCsqjD0v67HNIiztZQmS bFSXQhXTc6B0HJA1okGZRokUPJARZDweUMWEC6llwCybkYE3XReIIeUXY9/L4qf4 RIIHti8fLzwlyZchTyX3u8gkIKwAc4Q5i3tiSPJ77KOus+mjZuyKVIjYd7l71SJ4 P2dcM3/kYu1XoyVJ+VG8bsCY8TVGv4oJb5MNpHYeb/mf -----END CERTIFICATE-----Generated at Mon Mar 2 16:45:00 2026 by rpki-client