$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/5A7BB752BD2F11EBB84EE532C4F9AE02.roa File: 5A7BB752BD2F11EBB84EE532C4F9AE02.roa (raw, json) Hash identifier: OqYW8F4250vX2cVPr/WKUGN/bLRsN60JeF92JnIapyY= Subject key identifier: 06:9C:29:EF:46:64:A7:A9:19:EC:6A:51:36:87:14:13:BC:4B:EC:A8 Certificate issuer: /CN=A91EA958/serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Certificate serial: 355E Authority key identifier: FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/5A7BB752BD2F11EBB84EE532C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:52:38 +0000 ROA not before: Wed 02 Jul 2025 15:21:10 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 59318 IP address blocks: 43.245.200.0/23 maxlen: 23 43.245.200.0/24 maxlen: 24 43.245.201.0/24 maxlen: 24 180.178.124.0/23 maxlen: 23 180.178.124.0/24 maxlen: 24 180.178.125.0/24 maxlen: 24 2404:b300::/48 maxlen: 48 2404:b300:10::/48 maxlen: 48 2404:b300:23::/48 maxlen: 48 2404:b300:31::/48 maxlen: 48 2404:b300:32::/48 maxlen: 48 2404:b300:33::/48 maxlen: 48 2404:b300:105::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13662 (0x355e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958, serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Validity Not Before: Jul 2 15:21:10 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a460c5-10fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:87:64:58:5e:6f:93:8b:08:71:55:1f:e5:e5: a6:45:bf:62:aa:be:50:63:29:2d:21:63:a5:c9:d9: 0e:db:18:f7:10:ac:c9:c5:71:87:95:d1:a8:77:5a: 17:d6:ff:e4:3a:b9:cf:94:3b:ee:38:08:0d:a1:aa: d8:4e:4f:9f:b3:0d:34:60:b4:45:98:e1:ac:69:22: 24:27:af:20:5c:fb:07:23:9a:45:66:df:6f:91:9f: 64:20:d5:f6:45:9a:5e:32:77:da:a9:f0:4f:88:83: 3d:93:eb:8e:31:8c:d2:90:10:92:65:f1:69:e0:59: 99:d0:79:e2:95:92:ca:7a:e0:c4:4d:e3:21:77:27: 36:76:46:a4:5b:a3:ba:14:0b:b5:af:9b:23:b0:81: 0f:0d:9b:9a:2f:2a:33:7c:75:73:9d:e4:dc:9c:67: 21:37:27:ae:c4:56:06:96:d8:d4:9c:8f:6f:75:86: 4d:e5:aa:df:7e:91:99:e9:0f:a7:ae:c3:68:4a:68: 66:d0:10:d9:f3:83:c8:74:60:cb:6e:1c:98:0f:ed: 88:44:01:d6:37:65:ab:55:e3:ce:fb:71:78:93:b5: 03:c2:66:12:65:71:0d:20:14:b8:26:5b:ad:14:9f: d0:40:eb:be:02:36:cd:7f:84:57:a1:ff:4f:8e:da: b2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:9C:29:EF:46:64:A7:A9:19:EC:6A:51:36:87:14:13:BC:4B:EC:A8 X509v3 Authority Key Identifier: keyid:FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/5A7BB752BD2F11EBB84EE532C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.245.200.0/23 180.178.124.0/23 IPv6: 2404:b300::/48 2404:b300:10::/48 2404:b300:23::/48 2404:b300:31::-2404:b300:33:ffff:ffff:ffff:ffff:ffff 2404:b300:105::/48 Signature Algorithm: sha256WithRSAEncryption 05:ef:76:31:fa:0d:98:27:a8:e3:95:cd:36:40:84:cd:42:70: 34:ea:c5:9d:77:6c:61:9f:99:82:48:1b:75:e8:64:fa:79:6f: 0b:56:bc:ba:30:2b:13:40:5b:2f:4a:a2:fe:3b:61:7c:4e:31: 0d:fb:a5:ea:94:31:b4:c1:19:19:1e:3e:b3:65:c2:82:f7:68: a4:6b:94:c0:e1:30:ca:4f:19:a0:5c:d8:2e:8e:7b:e0:d1:3d: 82:9f:7a:18:7c:88:99:f8:1d:ca:9d:da:c2:03:63:2b:76:af: 17:7a:8c:ab:2e:d9:a1:d2:20:bd:78:06:15:24:33:ff:e8:40: b8:78:0d:bf:3e:60:f5:36:fa:24:ba:6c:07:12:b7:04:64:c5: 4e:82:cc:fb:3a:28:14:6f:f6:d2:23:3e:e1:32:0a:0e:93:45: a2:ff:10:10:cf:f9:53:c5:ca:4e:5c:c6:db:87:9e:1e:79:c4: ee:fc:cd:c7:82:23:e1:a3:13:bc:c9:bd:25:5f:13:46:d7:71: 6b:20:1b:c3:e2:da:ff:53:5f:a3:e4:3d:21:56:b9:e9:ec:bb: 52:6f:38:61:c9:52:7c:fb:5a:04:18:5d:2f:da:94:b2:af:f7: 5b:43:21:50:ba:03:79:a0:91:87:9f:bb:07:9c:64:3e:c3:50: c1:f3:b5:92 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKEZEMTYwNzE4NjM3M0U4MUY0NEQxMzdCMkEwRTk2OTU3 RTYyQUI4QTEwHhcNMjUwNzAyMTUyMTEwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjBjNS0xMGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0odkWF5vk4sIcVUf5eWmRb9iqr5QYyktIWOlydkO2xj3EKzJxXGHldGod1oX 1v/kOrnPlDvuOAgNoarYTk+fsw00YLRFmOGsaSIkJ68gXPsHI5pFZt9vkZ9kINX2 RZpeMnfaqfBPiIM9k+uOMYzSkBCSZfFp4FmZ0HnilZLKeuDETeMhdyc2dkakW6O6 FAu1r5sjsIEPDZuaLyozfHVzneTcnGchNyeuxFYGltjUnI9vdYZN5arffpGZ6Q+n rsNoSmhm0BDZ84PIdGDLbhyYD+2IRAHWN2WrVePO+3F4k7UDwmYSZXENIBS4Jlut FJ/QQOu+AjbNf4RXof9PjtqyEwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAacKe9G ZKepGexqUTaHFBO8S+yoMB8GA1UdIwQYMBaAFP0WBxhjc+gfRNE3sqDpaVfmKrih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC81QUUxOTdGNDFE OUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZCOUUwVGV5b09scFYtWXF1 S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19SWUhHR056NkI5RTBUZXlvT2xwVi1ZcXVLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5NTgvNUFFMTk3RjQxRDlGMTFFMkJDQkZGNzhGMDhCMDJDRDIvNUE3QkI3NTJC RDJGMTFFQkI4NEVFNTMyQzRGOUFFMDIucm9hMGUGCCsGAQUFBwEHAQH/BFYwVDAS BAIAATAMAwQBK/XIAwQBtLJ8MD4EAgACMDgDBwAkBLMAAAADBwAkBLMAABADBwAk BLMAACMwEgMHACQEswAAMQMHAiQEswAAMAMHACQEswABBTANBgkqhkiG9w0BAQsF AAOCAQEABe92MfoNmCeo45XNNkCEzUJwNOrFnXdsYZ+Zgkgbdehk+nlvC1a8ujAr E0BbL0qi/jthfE4xDful6pQxtMEZGR4+s2XCgvdopGuUwOEwyk8ZoFzYLo574NE9 gp96GHyImfgdyp3awgNjK3avF3qMqy7ZodIgvXgGFSQz/+hAuHgNvz5g9Tb6JLps BxK3BGTFToLM+zooFG/20iM+4TIKDpNFov8QEM/5U8XKTlzG24eeHnnE7vzNx4Ij 4aMTvMm9JV8TRtdxayAbw+La/1Nfo+Q9IVa56ey7Um84YclSfPtaBBhdL9qUsq/3 W0MhULoDeaCRh5+7B5xkPsNQwfO1kg== -----END CERTIFICATE-----Generated at Mon Mar 2 23:09:52 2026 by rpki-client