$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/97E61FE46F2111EB85D19531C4F9AE02.roa File: 97E61FE46F2111EB85D19531C4F9AE02.roa (raw, json) Hash identifier: F/VFxbWKijK0FBQMOwCi6caTAlncQZjF9P40j+MjDLs= Subject key identifier: 21:90:4F:CE:8B:70:3F:5C:9F:2D:68:C6:50:DE:67:45:93:1A:24:B2 Certificate issuer: /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Certificate serial: 0A6E Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/97E61FE46F2111EB85D19531C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:01:39 +0000 ROA not before: Mon 22 Sep 2025 20:11:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 10105 IP address blocks: 45.125.124.0/24 maxlen: 24 117.104.160.0/21 maxlen: 24 203.143.64.0/20 maxlen: 20 203.143.64.0/23 maxlen: 23 203.143.64.0/24 maxlen: 24 203.143.66.0/23 maxlen: 23 203.143.67.0/24 maxlen: 24 203.143.70.0/23 maxlen: 23 203.143.70.0/24 maxlen: 24 203.143.72.0/24 maxlen: 24 203.143.79.0/24 maxlen: 24 203.143.80.0/23 maxlen: 24 203.143.91.0/24 maxlen: 24 203.143.92.0/22 maxlen: 22 203.143.94.0/23 maxlen: 23 203.143.94.0/24 maxlen: 24 2400:6800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2670 (0xa6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B34, serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Validity Not Before: Sep 22 20:11:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a446c3-3991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0a:6c:06:06:21:42:99:20:89:68:fb:4d:96: 4b:a6:a6:49:ee:0c:ca:21:e2:02:57:ce:53:fa:a9: e7:ad:15:d4:ed:14:47:74:bf:e3:15:34:02:d6:d0: 51:c0:43:1b:52:83:0c:62:ad:fc:ef:ba:f1:01:4c: 1f:d8:42:9c:9f:5b:d1:07:e0:35:ec:e4:7f:a7:c0: 0d:54:32:70:4b:f7:3d:a8:50:4c:8e:fe:44:79:a8: 84:cc:96:80:44:13:af:cf:79:29:10:98:84:2f:61: 58:cc:38:fc:b7:a7:88:89:27:39:da:f7:72:e6:ca: b8:8d:e1:92:cc:83:2a:72:a7:b2:6a:07:79:54:46: 71:48:96:87:dd:b1:85:f0:f6:02:f2:6f:3e:72:bc: d1:80:2c:20:81:a2:34:9d:54:df:ca:3f:60:03:c3: 97:b0:bb:71:b7:75:07:4f:e0:4c:af:73:bf:a6:71: a6:9c:ed:64:28:97:23:ab:26:61:92:52:fb:b0:c9: b0:b2:41:f9:f7:0a:21:8e:75:d9:3d:2a:b3:23:a0: 5b:6b:68:c7:88:ce:99:04:ed:8c:be:28:bd:bc:73: 9e:9b:af:25:d9:cd:57:fe:b9:8b:a0:93:d4:bb:55: 03:28:4f:6b:d9:24:aa:04:f0:32:4a:4a:6e:98:f5: 2e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:90:4F:CE:8B:70:3F:5C:9F:2D:68:C6:50:DE:67:45:93:1A:24:B2 X509v3 Authority Key Identifier: keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/97E61FE46F2111EB85D19531C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.125.124.0/24 117.104.160.0/21 203.143.64.0-203.143.81.255 203.143.91.0-203.143.95.255 IPv6: 2400:6800::/32 Signature Algorithm: sha256WithRSAEncryption 4f:14:88:6b:58:6e:e1:5d:0f:f7:ed:75:1f:2a:fd:7e:ed:fd: 46:9d:53:7e:8b:14:43:10:ad:42:77:d8:90:56:f1:49:24:1b: 5c:96:4a:d8:a7:70:3d:58:e7:b8:60:0d:32:d0:27:10:53:e0: a9:a0:34:34:cc:02:d1:db:41:dd:ee:30:2c:2c:4a:97:29:54: eb:50:25:67:9a:a0:49:30:49:a3:8b:69:dd:74:57:b6:17:9e: 13:02:44:49:3e:95:50:88:79:70:d8:34:59:af:85:c4:d2:9f: e1:28:ab:b1:61:a7:b3:a8:22:8b:c8:af:45:ab:50:2a:9e:10: 4b:63:11:c6:29:57:69:6a:0a:d0:5f:68:c5:b6:9e:2d:56:42: 26:73:46:e2:41:f4:e9:fc:62:aa:f2:b0:83:93:d1:fc:02:25: a2:ea:ec:7e:ab:28:dc:4f:46:37:6a:10:54:25:65:1e:ce:1d: a4:39:69:b6:15:2a:2d:aa:11:da:ab:46:06:bb:32:1f:71:d7: 43:c2:08:54:20:49:d2:9d:2e:76:b0:7e:74:e5:76:77:34:21: 43:27:ed:fe:35:c0:16:e3:2b:72:90:e7:83:5a:9c:0a:34:f2: 25:44:17:b1:46:60:98:21:1a:5a:6b:40:4a:b9:94:56:f1:aa: 92:d2:ad:0c -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgICCm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB ODAyOUVFOTQwHhcNMjUwOTIyMjAxMTI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDZjMy0zOTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwpsBgYhQpkgiWj7TZZLpqZJ7gzKIeICV85T+qnnrRXU7RRHdL/jFTQC1tBR wEMbUoMMYq3877rxAUwf2EKcn1vRB+A17OR/p8ANVDJwS/c9qFBMjv5EeaiEzJaA RBOvz3kpEJiEL2FYzDj8t6eIiSc52vdy5sq4jeGSzIMqcqeyagd5VEZxSJaH3bGF 8PYC8m8+crzRgCwggaI0nVTfyj9gA8OXsLtxt3UHT+BMr3O/pnGmnO1kKJcjqyZh klL7sMmwskH59wohjnXZPSqzI6Bba2jHiM6ZBO2Mvii9vHOem68l2c1X/rmLoJPU u1UDKE9r2SSqBPAySkpumPUupQIDAQABo4ICkTCCAo0wHQYDVR0OBBYEFCGQT86L cD9cny1oxlDeZ0WTGiSyMB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDBCMzQvNjAzN0Q1REM4MkExMTFFQTkzNDEzQjRBQzRGOUFFMDIvOTdFNjFGRTQ2 RjIxMTFFQjg1RDE5NTMxQzRGOUFFMDIucm9hMFAGCCsGAQUFBwEHAQH/BEEwPzAu BAIAATAoAwQALX18AwQDdWigMAwDBAbLj0ADBAHLj1AwDAMEAMuPWwMEBcuPQDAN BAIAAjAHAwUAJABoADANBgkqhkiG9w0BAQsFAAOCAQEATxSIa1hu4V0P9+11Hyr9 fu39Rp1TfosUQxCtQnfYkFbxSSQbXJZK2KdwPVjnuGANMtAnEFPgqaA0NMwC0dtB 3e4wLCxKlylU61AlZ5qgSTBJo4tp3XRXtheeEwJEST6VUIh5cNg0Wa+FxNKf4Sir sWGns6gii8ivRatQKp4QS2MRxilXaWoK0F9oxbaeLVZCJnNG4kH06fxiqvKwg5PR /AIloursfqso3E9GN2oQVCVlHs4dpDlpthUqLaoR2qtGBrsyH3HXQ8IIVCBJ0p0u drB+dOV2dzQhQyft/jXAFuMrcpDng1qcCjTyJUQXsUZgmCEaWmtASrmUVvGqktKt DA== -----END CERTIFICATE-----Generated at Mon Mar 2 12:41:18 2026 by rpki-client