$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/F760C48ACE0111EB980FBD53C4F9AE02.roa File: F760C48ACE0111EB980FBD53C4F9AE02.roa (raw, json) Hash identifier: y/e1Xgm1TYZ8g3i9MHD2EYHP3EICPkHuA7aJGAYGGCs= Subject key identifier: 2B:95:7D:D6:A9:BD:37:2C:88:AD:06:8B:9B:85:1A:FA:43:20:CB:F2 Certificate issuer: /CN=A91ECD98/serialNumber=41C65C00F0A6B07D3C0F6B1290564FBF8382DA73 Certificate serial: 0AE6 Authority key identifier: 41:C6:5C:00:F0:A6:B0:7D:3C:0F:6B:12:90:56:4F:BF:83:82:DA:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QcZcAPCmsH08D2sSkFZPv4OC2nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/F760C48ACE0111EB980FBD53C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:28:36 +0000 ROA not before: Sat 22 Mar 2025 20:09:51 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135125 IP address blocks: 45.250.20.0/22 maxlen: 22 45.250.20.0/23 maxlen: 23 45.250.20.0/24 maxlen: 24 45.250.21.0/24 maxlen: 24 45.250.22.0/23 maxlen: 23 45.250.22.0/24 maxlen: 24 45.250.23.0/24 maxlen: 24 103.210.16.0/22 maxlen: 22 103.210.16.0/23 maxlen: 23 103.210.16.0/24 maxlen: 24 103.210.17.0/24 maxlen: 24 103.210.18.0/23 maxlen: 23 103.210.18.0/24 maxlen: 24 103.210.19.0/24 maxlen: 24 2401:940::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.crl rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QcZcAPCmsH08D2sSkFZPv4OC2nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2790 (0xae6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECD98, serialNumber=41C65C00F0A6B07D3C0F6B1290564FBF8382DA73 Validity Not Before: Mar 22 20:09:51 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a406c4-474d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:24:1f:71:d3:ef:d2:75:7c:79:e0:5a:23:ad: 6a:b2:66:c5:53:0e:87:b9:19:c4:00:99:e6:e5:0d: 33:b9:6a:8b:03:c0:e1:cf:b6:18:28:3d:94:04:63: 62:48:ae:d4:65:a0:d8:33:cd:fc:77:4c:89:a5:e2: 4a:a2:bc:b3:70:ee:0e:24:90:e9:07:b0:24:57:91: 71:71:8d:1d:13:8b:84:ad:18:7a:14:57:b9:99:b4: 5a:61:cd:51:d8:01:eb:3a:c7:2b:a4:d7:a3:56:62: d3:3f:35:b0:83:fb:e3:57:82:5e:5f:f3:15:f9:28: cc:e9:ff:81:e2:2e:04:9e:20:f6:67:6e:32:73:c0: 69:89:c1:a8:7e:99:d5:6b:6e:39:2d:0b:fe:44:86: 4a:ab:4a:38:e5:b3:e8:28:42:f1:9f:39:77:c0:d6: 4c:a9:21:bd:c0:58:66:4e:fe:f5:21:04:39:0f:89: 62:4b:07:af:8e:5b:31:9d:b5:61:25:0a:51:63:db: 9c:ab:3c:fe:9a:8c:ab:80:e8:02:8d:0a:9e:70:d6: ac:46:34:9f:eb:25:e0:b4:68:f4:be:c7:d5:a5:03: 89:bb:5a:4d:c6:f5:29:3d:87:1e:c5:f5:89:b8:68: f9:35:8a:a6:53:a2:26:7b:5a:55:c1:0a:8a:a4:20: 28:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:95:7D:D6:A9:BD:37:2C:88:AD:06:8B:9B:85:1A:FA:43:20:CB:F2 X509v3 Authority Key Identifier: keyid:41:C6:5C:00:F0:A6:B0:7D:3C:0F:6B:12:90:56:4F:BF:83:82:DA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QcZcAPCmsH08D2sSkFZPv4OC2nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/F760C48ACE0111EB980FBD53C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.250.20.0/22 103.210.16.0/22 IPv6: 2401:940::/32 Signature Algorithm: sha256WithRSAEncryption 30:b9:06:b4:ed:3d:0f:76:d6:34:e2:29:28:b6:c8:5a:89:53: 99:b4:99:99:90:d0:0b:e3:64:f3:28:48:0b:9f:40:64:69:c2: 14:22:54:aa:23:fe:c7:2e:b7:f9:80:5d:7e:c5:f4:13:6a:b2: c0:06:48:52:75:37:27:c3:1b:8c:69:64:ca:f3:7f:62:77:8a: f6:bf:68:5b:2a:8e:a9:98:d5:89:d1:59:b2:9d:6d:c4:09:f6: 93:16:21:80:9f:71:d1:43:3f:34:2f:32:4d:98:37:61:dd:d1: df:61:36:73:64:14:6b:ed:d2:45:45:40:15:81:e5:a1:f9:40: 9b:70:66:18:fd:24:0c:8b:68:66:4a:cc:60:3e:21:17:a1:73: 7f:fd:0a:ac:a0:52:e1:de:00:7b:c2:26:d5:97:30:c1:e7:ea: 50:cb:55:c0:b9:7a:6c:11:fd:4b:65:59:42:a8:79:c4:18:44: 23:27:2b:dd:93:30:bd:b0:90:0d:02:64:59:ad:cb:98:9e:fd: 3f:1c:4b:4e:db:ac:2b:7c:14:f6:62:12:cd:5f:58:99:4e:a9: 5c:d8:d0:20:8a:c1:3e:d7:92:1c:c2:79:09:2e:6a:8a:b5:97: 08:53:52:73:51:72:1f:53:2a:ae:31:ba:67:2a:85:e3:4e:6f: 44:20:c0:56 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNEOTgxMTAvBgNVBAUTKDQxQzY1QzAwRjBBNkIwN0QzQzBGNkIxMjkwNTY0RkJG ODM4MkRBNzMwHhcNMjUwMzIyMjAwOTUxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDZjNC00NzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyQfcdPv0nV8eeBaI61qsmbFUw6HuRnEAJnm5Q0zuWqLA8Dhz7YYKD2UBGNi SK7UZaDYM838d0yJpeJKoryzcO4OJJDpB7AkV5FxcY0dE4uErRh6FFe5mbRaYc1R 2AHrOscrpNejVmLTPzWwg/vjV4JeX/MV+SjM6f+B4i4EniD2Z24yc8BpicGofpnV a245LQv+RIZKq0o45bPoKELxnzl3wNZMqSG9wFhmTv71IQQ5D4liSwevjlsxnbVh JQpRY9ucqzz+moyrgOgCjQqecNasRjSf6yXgtGj0vsfVpQOJu1pNxvUpPYcexfWJ uGj5NYqmU6Ime1pVwQqKpCAobwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFCuVfdap vTcsiK0Gi5uFGvpDIMvyMB8GA1UdIwQYMBaAFEHGXADwprB9PA9rEpBWT7+Dgtpz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0Q5OC83ODAyMDQ4QTY2 QTQxMUVBOEZDQjJCNkZDNEY5QUUwMi9RY1pjQVBDbXNIMDhEMnNTa0ZaUHY0T0My bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FjWmNBUENtc0gwOEQyc1NrRlpQdjRPQzJuTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUNEOTgvNzgwMjA0OEE2NkE0MTFFQThGQ0IyQjZGQzRGOUFFMDIvRjc2MEM0OEFD RTAxMTFFQjk4MEZCRDUzQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCLfoUAwQCZ9IQMA0EAgACMAcDBQAkAQlAMA0GCSqGSIb3DQEBCwUA A4IBAQAwuQa07T0PdtY04ikotshaiVOZtJmZkNAL42TzKEgLn0BkacIUIlSqI/7H Lrf5gF1+xfQTarLABkhSdTcnwxuMaWTK839id4r2v2hbKo6pmNWJ0VmynW3ECfaT FiGAn3HRQz80LzJNmDdh3dHfYTZzZBRr7dJFRUAVgeWh+UCbcGYY/SQMi2hmSsxg PiEXoXN//QqsoFLh3gB7wibVlzDB5+pQy1XAuXpsEf1LZVlCqHnEGEQjJyvdkzC9 sJANAmRZrcuYnv0/HEtO26wrfBT2YhLNX1iZTqlc2NAgisE+15IcwnkJLmqKtZcI U1JzUXIfUyquMbpnKoXjTm9EIMBW -----END CERTIFICATE-----Generated at Mon Mar 2 14:26:48 2026 by rpki-client