$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/89A73D46772311EBB972032EC4F9AE02.roa File: 89A73D46772311EBB972032EC4F9AE02.roa (raw, json) Hash identifier: XuHnyV+8ostPyxjnkXbOX1jZ/I58/X+dM54MTwceYk4= Subject key identifier: C9:22:8C:18:08:31:CF:76:65:29:E5:3F:01:55:55:16:A9:44:2E:2E Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3742 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/89A73D46772311EBB972032EC4F9AE02.roa Signing time: Fri 27 Feb 2026 05:54:15 +0000 ROA not before: Tue 30 Dec 2025 15:10:11 +0000 ROA not after: Thu 30 Apr 2026 00:00:00 +0000 asID: 135538 IP address blocks: 61.45.253.0/24 maxlen: 24 2401:4601:253::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 14:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14146 (0x3742) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Dec 30 15:10:11 2025 GMT Not After : Apr 30 00:00:00 2026 GMT Subject: CN=69a13187-8616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:69:ae:03:86:ee:6b:09:24:00:c3:ca:43:51: f3:26:5e:d9:f0:c8:e1:95:f7:6a:63:4f:d0:93:3a: 3e:33:11:7b:78:29:5d:64:27:b7:f0:ea:e3:b3:66: c6:09:88:1d:a4:64:50:cf:81:12:a9:3c:b8:9c:99: 91:92:fb:84:a1:3d:37:3a:b2:78:90:66:b6:d7:f0: 2e:79:6a:0b:a0:20:ed:72:ce:3a:ea:a8:f0:6d:35: c3:c5:08:77:17:a6:59:89:15:8a:af:32:4d:90:28: ee:1a:44:c7:46:50:fb:14:91:21:79:fa:60:21:88: ea:12:c0:d8:dc:6a:42:45:81:b1:45:8b:bc:d0:a0: 09:6c:e6:49:8a:cc:4c:e7:08:11:56:b9:f9:0c:67: bb:a2:14:01:0d:81:dc:b7:1c:c5:0e:93:7f:13:3f: 05:17:83:d1:7c:fb:e7:99:3f:8e:e4:53:5c:42:43: 02:75:fb:65:3e:4d:62:df:3b:dc:4f:69:a4:1e:a5: 98:d3:4d:4e:29:41:40:a8:d7:57:d2:32:83:74:7d: 4e:f5:c5:7b:ce:db:ff:b8:ee:22:8c:b8:a5:e5:95: 96:78:d0:92:d7:b3:ab:69:13:c2:3b:cf:11:d5:72: 85:89:f2:d8:03:6d:ca:e8:e9:8b:9c:03:ab:2e:5e: 58:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:22:8C:18:08:31:CF:76:65:29:E5:3F:01:55:55:16:A9:44:2E:2E X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/89A73D46772311EBB972032EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.45.253.0/24 IPv6: 2401:4601:253::/48 Signature Algorithm: sha256WithRSAEncryption 89:3e:b8:7a:bc:e5:ec:39:48:82:bc:6e:ca:ee:b7:23:02:0b: ab:f4:91:e3:7f:2c:9d:4a:0f:4e:ee:83:ed:91:d1:80:ca:af: c5:92:ed:22:cc:f9:88:fe:57:8a:1e:24:87:4f:60:5b:5b:bb: 15:26:c2:6a:9d:33:4c:c4:60:21:2a:7a:30:7f:30:b7:27:3d: 75:82:5b:31:30:94:b6:32:47:4b:a0:77:64:c0:56:19:8c:bb: 41:e0:14:e5:38:46:93:ed:83:db:04:69:53:f6:7e:f9:a7:f8: 3e:f3:9f:00:08:3d:53:c6:b2:19:bd:1f:e3:7d:ce:fd:19:92: 72:25:85:93:d1:84:6f:48:f1:3f:5e:9a:9a:12:7f:24:b9:11: 6e:d6:dc:80:2a:62:79:18:c2:5d:60:15:ad:89:8d:3c:f3:8b: 3e:d0:fc:b7:1a:8a:ec:d5:49:11:53:2b:fb:5f:44:b7:ad:f0: 25:39:6d:b9:2e:b6:75:66:d2:2b:62:8f:55:3d:21:8f:ee:9a: b2:e6:a7:d1:9a:f1:ed:ca:f6:9f:cf:0e:83:dc:63:f3:15:d6: 27:b1:7d:6b:f9:bb:9d:86:10:fd:f2:0e:9d:04:74:5e:54:cb: d7:c7:dd:1c:eb:43:d7:f9:04:25:be:69:6b:16:d5:aa:1b:02: 84:82:cf:9a -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICN0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUxMjMwMTUxMDExWhcNMjYwNDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWExMzE4Ny04NjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2muA4buawkkAMPKQ1HzJl7Z8MjhlfdqY0/Qkzo+MxF7eCldZCe38Orjs2bG CYgdpGRQz4ESqTy4nJmRkvuEoT03OrJ4kGa21/AueWoLoCDtcs466qjwbTXDxQh3 F6ZZiRWKrzJNkCjuGkTHRlD7FJEhefpgIYjqEsDY3GpCRYGxRYu80KAJbOZJisxM 5wgRVrn5DGe7ohQBDYHctxzFDpN/Ez8FF4PRfPvnmT+O5FNcQkMCdftlPk1i3zvc T2mkHqWY001OKUFAqNdX0jKDdH1O9cV7ztv/uO4ijLil5ZWWeNCS17OraRPCO88R 1XKFifLYA23K6OmLnAOrLl5YKQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFMkijBgI Mc92ZSnlPwFVVRapRC4uMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvODlBNzNENDY3 NzIzMTFFQkI5NzIwMzJFQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAPS39MA8EAgACMAkDBwAkAUYBAlMwDQYJKoZIhvcNAQELBQADggEB AIk+uHq85ew5SIK8bsrutyMCC6v0keN/LJ1KD07ug+2R0YDKr8WS7SLM+Yj+V4oe JIdPYFtbuxUmwmqdM0zEYCEqejB/MLcnPXWCWzEwlLYyR0ugd2TAVhmMu0HgFOU4 RpPtg9sEaVP2fvmn+D7znwAIPVPGshm9H+N9zv0ZknIlhZPRhG9I8T9empoSfyS5 EW7W3IAqYnkYwl1gFa2JjTzziz7Q/LcaiuzVSRFTK/tfRLet8CU5bbkutnVm0iti j1U9IY/umrLmp9Ga8e3K9p/PDoPcY/MV1iexfWv5u52GEP3yDp0EdF5Uy9fH3Rzr Q9f5BCW+aWsW1aobAoSCz5o= -----END CERTIFICATE-----Generated at Mon Mar 2 04:16:31 2026 by rpki-client