$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/064D129A56EA11EA84DC982BC4F9AE02.roa File: 064D129A56EA11EA84DC982BC4F9AE02.roa (raw, json) Hash identifier: FAOH2k3QSSS7t1HJ3yvrPUgVPiND+/x5TUDnE1klS5s= Subject key identifier: 02:ED:5C:95:B5:66:17:48:46:98:F5:B5:13:52:EF:14:38:E8:99:79 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0DC6 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/064D129A56EA11EA84DC982BC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:34:13 +0000 ROA not before: Tue 08 Jul 2025 18:27:48 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38566 IP address blocks: 45.116.216.0/22 maxlen: 24 103.246.24.0/22 maxlen: 24 116.68.144.0/20 maxlen: 23 116.68.144.0/21 maxlen: 24 116.68.152.0/22 maxlen: 24 116.68.156.0/24 maxlen: 24 116.68.158.0/24 maxlen: 24 180.222.144.0/20 maxlen: 24 2403:2800:e15::/48 maxlen: 48 2403:2800:e16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 17:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3526 (0xdc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Jul 8 18:27:48 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a45c75-1194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f6:59:fa:85:43:13:f5:92:77:e1:35:c1:3f: c2:75:e4:a5:52:e3:1b:a9:02:72:9b:41:25:bc:39: 2e:34:e1:3a:a2:76:90:e5:4f:6a:c4:ca:67:48:8c: 13:a8:0c:6f:75:23:1b:3c:eb:7f:fc:4b:59:4b:dd: 7a:8a:e6:ce:7f:98:55:41:72:43:e2:ae:ac:c3:af: 01:73:27:2e:70:3b:42:60:62:5e:14:15:93:94:38: 2f:fc:48:19:46:db:d4:1a:d2:30:bb:b3:0a:f5:f3: 07:3f:bb:2a:09:b9:0b:a5:d8:bb:16:86:73:1a:44: f8:16:53:3e:7c:81:0e:26:94:d7:46:94:fc:49:12: ca:d8:d8:c9:f1:4a:1d:98:04:09:90:ea:7a:b5:78: 54:9e:38:9e:14:c5:58:72:97:41:09:db:0a:a7:a7: e1:b7:39:a5:79:6c:8e:c1:1b:20:44:27:d8:9d:de: 95:ae:bb:c7:2c:56:03:8f:48:d7:9b:95:8f:2d:1e: 67:b6:46:36:f9:9a:31:f4:4f:ed:86:5f:ae:e1:d7: 67:31:22:28:60:37:6f:6d:16:55:6e:03:5c:5b:2d: 33:76:dc:db:af:a9:9c:b4:f8:ca:83:8a:b3:6e:db: df:03:bc:83:70:c8:36:ea:12:3c:c9:6c:54:3c:63: b3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:ED:5C:95:B5:66:17:48:46:98:F5:B5:13:52:EF:14:38:E8:99:79 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/064D129A56EA11EA84DC982BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.116.216.0/22 103.246.24.0/22 116.68.144.0/20 180.222.144.0/20 IPv6: 2403:2800:e15::-2403:2800:e16:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a0:34:ba:ea:7e:8d:f2:eb:34:51:02:93:b3:39:81:85:e1:1b: 4c:35:9b:5d:cd:d6:08:89:4c:ed:28:d0:c6:0c:a2:21:31:f8: f0:e7:e3:aa:54:70:e3:16:29:48:dc:f6:3a:1f:b2:1c:cd:80: ba:30:5d:96:65:f1:4f:e8:57:39:22:9a:03:57:b2:66:33:ba: f9:4c:19:03:78:4e:73:01:2f:77:06:58:e1:76:a6:b7:f2:89: 0d:8d:bd:2a:d9:9e:78:e0:dd:ce:1e:90:40:28:c8:01:66:70: 99:67:0e:14:75:d4:f0:e1:a7:00:37:ee:9f:1a:b9:4d:46:7c: f5:b5:32:fa:1e:65:a9:cf:62:77:01:a8:87:ef:54:87:f6:1e: 88:4f:a3:90:ab:97:1c:f4:16:4f:ab:58:1a:b3:95:2d:e1:53: ce:ee:d2:09:87:29:52:c7:a5:9d:bf:53:a9:3a:18:da:6f:5b: 2d:59:c8:ed:1e:60:85:af:ee:c7:4a:82:45:e9:43:6a:2d:63: 0b:55:38:fa:1b:73:77:d5:de:a6:a3:1a:99:72:23:66:ad:99: cb:09:ae:db:2f:36:d6:63:9d:d0:4c:75:3d:84:95:a1:1c:6d: e6:0c:d6:c0:0b:b3:bc:82:2a:f1:03:ca:d3:7f:e1:cb:2e:83: 01:e3:9c:38 -----BEGIN CERTIFICATE----- MIIFajCCBFKgAwIBAgICDcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjUwNzA4MTgyNzQ4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWM3NS0xMTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/ZZ+oVDE/WSd+E1wT/CdeSlUuMbqQJym0ElvDkuNOE6onaQ5U9qxMpnSIwT qAxvdSMbPOt//EtZS916iubOf5hVQXJD4q6sw68BcycucDtCYGJeFBWTlDgv/EgZ RtvUGtIwu7MK9fMHP7sqCbkLpdi7FoZzGkT4FlM+fIEOJpTXRpT8SRLK2NjJ8Uod mAQJkOp6tXhUnjieFMVYcpdBCdsKp6fhtzmleWyOwRsgRCfYnd6VrrvHLFYDj0jX m5WPLR5ntkY2+Zox9E/thl+u4ddnMSIoYDdvbRZVbgNcWy0zdtzbr6mctPjKg4qz btvfA7yDcMg26hI8yWxUPGOzpwIDAQABo4ICjjCCAoowHQYDVR0OBBYEFALtXJW1 ZhdIRpj1tRNS7xQ46Jl5MB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY2QTAvNjI1RkY3MjZEOUU3MTFFOTg4MDU0MDE2QzRGOUFFMDIvMDY0RDEyOUE1 NkVBMTFFQTg0REM5ODJCQzRGOUFFMDIucm9hME0GCCsGAQUFBwEHAQH/BD4wPDAe BAIAATAYAwQCLXTYAwQCZ/YYAwQEdESQAwQEtN6QMBoEAgACMBQwEgMHACQDKAAO FQMHACQDKAAOFjANBgkqhkiG9w0BAQsFAAOCAQEAoDS66n6N8us0UQKTszmBheEb TDWbXc3WCIlM7SjQxgyiITH48OfjqlRw4xYpSNz2Oh+yHM2AujBdlmXxT+hXOSKa A1eyZjO6+UwZA3hOcwEvdwZY4Xamt/KJDY29KtmeeODdzh6QQCjIAWZwmWcOFHXU 8OGnADfunxq5TUZ89bUy+h5lqc9idwGoh+9Uh/YeiE+jkKuXHPQWT6tYGrOVLeFT zu7SCYcpUselnb9TqToY2m9bLVnI7R5gha/ux0qCRelDai1jC1U4+htzd9XepqMa mXIjZq2Zywmu2y821mOd0Ex1PYSVoRxt5gzWwAuzvIIq8QPK03/hyy6DAeOcOA== -----END CERTIFICATE-----Generated at Tue Mar 3 00:57:59 2026 by rpki-client