$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/BFB4B7B2EB5C11F0BDF448C8486F56BC.roa File: BFB4B7B2EB5C11F0BDF448C8486F56BC.roa (raw, json) Hash identifier: biWsDMh8Eh4e2nKNO7SUfxXUgzUV8I8YyMxqd6Gz3Uo= Subject key identifier: EA:E9:04:93:C1:91:44:63:99:2A:B4:78:55:8E:BA:5B:64:36:27:21 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3745 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/BFB4B7B2EB5C11F0BDF448C8486F56BC.roa Signing time: Fri 27 Feb 2026 05:54:19 +0000 ROA not before: Wed 07 Jan 2026 00:06:43 +0000 ROA not after: Thu 30 Apr 2026 00:00:00 +0000 asID: 135533 IP address blocks: 61.45.248.0/24 maxlen: 24 2401:4601:248::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 14:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14149 (0x3745) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Jan 7 00:06:43 2026 GMT Not After : Apr 30 00:00:00 2026 GMT Subject: CN=69a1318a-a2e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:be:fe:0e:e8:ba:ef:9c:75:63:44:67:bd:b1: 5b:b1:51:e0:04:2b:e9:02:86:ba:52:a9:18:01:76: 67:45:08:a9:c0:20:9d:21:fe:e5:a2:dd:90:54:46: 78:6b:0e:1a:d7:e8:c3:7f:48:19:89:2a:6a:75:cf: 58:70:50:c6:43:f6:35:e3:01:7a:21:f6:0c:33:89: 37:05:d9:db:fc:d8:20:fe:39:20:83:df:05:8c:92: be:a0:a9:4b:bd:48:84:23:76:6d:2b:6b:f6:41:9f: 0f:61:1e:02:45:ff:77:48:30:89:f6:e0:e4:c3:e0: 27:10:5c:9a:ad:6d:56:a6:58:e9:23:3d:1a:9a:06: c6:c3:8c:ee:4a:80:5e:85:53:1a:5b:4c:49:c0:6f: 33:cc:d8:0d:16:2f:ba:f5:61:45:b6:47:52:df:ef: cb:41:06:bf:24:0f:8f:d1:f6:b9:8c:06:c8:51:58: 2a:13:8a:74:51:e5:b0:bb:e2:aa:b2:85:24:8f:b8: fc:5f:2d:9c:b6:e3:ce:20:c1:9d:db:cf:0d:e2:8d: ee:d1:10:70:a9:15:28:71:d7:6e:2c:d7:78:e8:32: 4e:84:b1:20:18:08:74:53:67:83:5f:28:10:b2:95: f8:d0:15:b9:23:99:f3:70:1f:6e:91:11:db:32:be: ce:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E9:04:93:C1:91:44:63:99:2A:B4:78:55:8E:BA:5B:64:36:27:21 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/BFB4B7B2EB5C11F0BDF448C8486F56BC.roa sbgp-ipAddrBlock: critical IPv4: 61.45.248.0/24 IPv6: 2401:4601:248::/48 Signature Algorithm: sha256WithRSAEncryption 2e:db:cb:10:d8:2e:81:8e:0e:4d:d0:84:0d:4d:cb:49:97:ec: 2b:03:d7:97:fa:5a:eb:bb:40:b8:0a:18:fe:99:d8:31:c7:15: 43:83:7b:63:6b:71:70:18:f8:72:68:1a:7b:32:e0:1a:46:76: 35:d2:43:cc:ef:bb:7a:98:34:df:68:1f:69:c3:77:1e:3b:28: 3f:20:db:ef:19:bd:d8:9f:21:8a:bc:95:bd:b3:62:75:76:fb: 84:c7:12:55:d4:0d:92:bb:9e:f1:9e:07:74:c1:53:58:bb:b4: 34:13:4c:22:42:cf:4b:ec:1a:cf:06:15:6d:7b:40:9b:31:d5: a2:37:cc:f0:f8:61:58:fb:09:b5:a1:b4:85:d9:a7:43:bc:51: 27:19:b9:f3:45:c2:2f:4d:6c:97:28:84:4c:72:9a:91:4a:9b: 33:a3:7d:02:1b:96:6b:a8:a1:39:01:f1:50:14:3b:fb:ec:70: be:4e:ed:de:91:1d:da:2f:cf:cc:ad:3c:91:37:c6:80:a8:6b: d6:8a:2f:b4:c3:49:11:81:ab:02:b7:77:0b:ba:f7:7c:1f:07: 0e:ec:d0:c4:b8:1e:94:34:dd:07:1c:07:85:f4:85:2e:35:14: 0c:89:ea:56:e7:12:db:d6:bd:c0:28:bb:c7:fe:dc:89:a9:78: f7:5b:e0:60 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICN0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjYwMTA3MDAwNjQzWhcNMjYwNDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWExMzE4YS1hMmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2L7+Dui675x1Y0RnvbFbsVHgBCvpAoa6UqkYAXZnRQipwCCdIf7lot2QVEZ4 aw4a1+jDf0gZiSpqdc9YcFDGQ/Y14wF6IfYMM4k3Bdnb/Ngg/jkgg98FjJK+oKlL vUiEI3ZtK2v2QZ8PYR4CRf93SDCJ9uDkw+AnEFyarW1WpljpIz0amgbGw4zuSoBe hVMaW0xJwG8zzNgNFi+69WFFtkdS3+/LQQa/JA+P0fa5jAbIUVgqE4p0UeWwu+Kq soUkj7j8Xy2ctuPOIMGd288N4o3u0RBwqRUocdduLNd46DJOhLEgGAh0U2eDXygQ spX40BW5I5nzcB9ukRHbMr7ORQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFOrpBJPB kURjmSq0eFWOultkNichMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvQkZCNEI3QjJF QjVDMTFGMEJERjQ0OEM4NDg2RjU2QkMucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAPS34MA8EAgACMAkDBwAkAUYBAkgwDQYJKoZIhvcNAQELBQADggEB AC7byxDYLoGODk3QhA1Ny0mX7CsD15f6Wuu7QLgKGP6Z2DHHFUODe2NrcXAY+HJo Gnsy4BpGdjXSQ8zvu3qYNN9oH2nDdx47KD8g2+8ZvdifIYq8lb2zYnV2+4THElXU DZK7nvGeB3TBU1i7tDQTTCJCz0vsGs8GFW17QJsx1aI3zPD4YVj7CbWhtIXZp0O8 UScZufNFwi9NbJcohExympFKmzOjfQIblmuooTkB8VAUO/vscL5O7d6RHdovz8yt PJE3xoCoa9aKL7TDSRGBqwK3dwu693wfBw7s0MS4HpQ03QccB4X0hS41FAyJ6lbn EtvWvcAou8f+3ImpePdb4GA= -----END CERTIFICATE-----Generated at Mon Mar 2 09:59:50 2026 by rpki-client