$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3FAF/A90D1B96415C11EE9D355D2CC4F9AE02/5EDB6B50EE9311EF8EB9700BC4F9AE02.roa File: 5EDB6B50EE9311EF8EB9700BC4F9AE02.roa (raw, json) Hash identifier: oh8GWEzQtGlGtjvymgIqo4L8CHCprgoVIrX7RTa8ArY= Subject key identifier: 63:FF:8D:02:59:5C:2D:4D:9A:3F:B5:65:0B:96:39:2D:33:F6:2A:10 Certificate issuer: /CN=A91F3FAF/serialNumber=1E85A860D62E26079233CB7A01DB0BACBB0369A6 Certificate serial: 0246 Authority key identifier: 1E:85:A8:60:D6:2E:26:07:92:33:CB:7A:01:DB:0B:AC:BB:03:69:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HoWoYNYuJgeSM8t6AdsLrLsDaaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3FAF/A90D1B96415C11EE9D355D2CC4F9AE02/5EDB6B50EE9311EF8EB9700BC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:18:30 +0000 ROA not before: Wed 05 Nov 2025 03:47:53 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 4609 IP address blocks: 27.109.128.0/17 maxlen: 24 45.64.20.0/22 maxlen: 24 60.246.0.0/16 maxlen: 24 103.233.188.0/22 maxlen: 24 113.52.64.0/18 maxlen: 24 122.100.128.0/17 maxlen: 24 125.31.0.0/18 maxlen: 24 180.94.128.0/18 maxlen: 24 182.93.0.0/18 maxlen: 24 202.86.128.0/18 maxlen: 24 202.174.0.0/22 maxlen: 24 202.175.0.0/17 maxlen: 18 202.175.0.0/19 maxlen: 24 202.175.32.0/19 maxlen: 24 202.175.64.0/19 maxlen: 24 202.175.96.0/19 maxlen: 24 202.175.160.0/19 maxlen: 24 2001:f90::/32 maxlen: 39 2001:f90::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3FAF/A90D1B96415C11EE9D355D2CC4F9AE02/HoWoYNYuJgeSM8t6AdsLrLsDaaY.crl rsync://rpki.apnic.net/member_repository/A91F3FAF/A90D1B96415C11EE9D355D2CC4F9AE02/HoWoYNYuJgeSM8t6AdsLrLsDaaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HoWoYNYuJgeSM8t6AdsLrLsDaaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3FAF, serialNumber=1E85A860D62E26079233CB7A01DB0BACBB0369A6 Validity Not Before: Nov 5 03:47:53 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a41275-3693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:fb:46:66:f6:21:19:63:aa:60:8d:a8:84:4f: f3:d1:fd:df:c6:a3:3e:db:ec:c7:39:ce:93:41:34: 4a:70:31:cc:e8:2d:f8:29:33:bc:92:a7:aa:39:1e: d1:4b:63:45:19:08:0a:51:8d:e6:24:14:3e:9f:17: 6f:06:cb:1c:89:3a:a1:9f:b5:73:6d:85:6a:e9:7c: 3d:cd:f1:50:5d:7a:7e:ca:a7:1d:26:0f:16:dd:a2: 8a:ea:a6:35:de:c9:17:88:30:b2:7d:40:0e:00:71: 77:21:a0:e2:c1:27:76:44:e1:0c:ff:2a:8e:e5:05: df:5b:fd:40:bd:86:50:4a:d1:cc:ec:3b:7f:7d:5a: 8f:30:b1:62:5d:2e:5e:e2:6c:15:aa:43:79:7c:6b: b6:06:d7:ab:0c:57:54:69:5d:58:53:dd:01:03:0a: 66:80:39:fc:bc:d2:5d:3c:0c:6e:69:9b:77:40:f3: 18:d1:8c:75:44:d3:df:5c:0b:0c:f0:e4:7a:ef:fc: 8b:b8:b2:d9:18:ad:b8:3b:57:6f:44:4e:91:7b:8b: bf:9c:4e:c0:2b:41:dc:58:97:c0:aa:df:67:4c:d4: fc:0d:d9:8f:8c:eb:20:26:e2:9c:74:a9:df:93:e0: a4:16:bf:04:d2:e2:b9:56:40:3b:6a:c8:33:95:70: 98:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:FF:8D:02:59:5C:2D:4D:9A:3F:B5:65:0B:96:39:2D:33:F6:2A:10 X509v3 Authority Key Identifier: keyid:1E:85:A8:60:D6:2E:26:07:92:33:CB:7A:01:DB:0B:AC:BB:03:69:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3FAF/A90D1B96415C11EE9D355D2CC4F9AE02/HoWoYNYuJgeSM8t6AdsLrLsDaaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HoWoYNYuJgeSM8t6AdsLrLsDaaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3FAF/A90D1B96415C11EE9D355D2CC4F9AE02/5EDB6B50EE9311EF8EB9700BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.109.128.0/17 45.64.20.0/22 60.246.0.0/16 103.233.188.0/22 113.52.64.0/18 122.100.128.0/17 125.31.0.0/18 180.94.128.0/18 182.93.0.0/18 202.86.128.0/18 202.174.0.0/22 202.175.0.0/17 202.175.160.0/19 IPv6: 2001:f90::/32 Signature Algorithm: sha256WithRSAEncryption 87:16:5f:e2:04:2b:f9:7c:b8:6c:1d:07:bb:c7:b7:62:ce:e7: 6a:a6:44:5a:e3:e4:c0:92:d8:a0:1f:dc:08:e1:3f:15:e1:65: 0d:04:1e:a8:6c:dd:d2:09:8d:e2:22:e7:6e:54:ec:fb:ed:37: 91:ea:5c:4b:b3:26:b3:57:21:86:02:22:2d:45:22:d9:81:8f: 16:52:8a:3f:6c:be:4c:02:e1:ba:de:19:c7:2d:e7:35:8e:b2: 47:68:b2:61:df:bd:52:7b:da:2d:03:69:9c:9d:68:1e:e6:c4: ac:52:02:36:b9:93:aa:d4:56:55:9f:a3:68:07:6a:ce:86:89: 8a:11:89:e9:24:2e:10:d5:35:33:89:5d:c8:4a:84:25:f5:b7: 3e:d9:5b:ae:74:8b:0f:26:15:f1:17:df:f2:6c:b9:6f:b5:77: ce:8a:01:04:f2:20:f9:10:88:8a:ec:7d:8a:cc:40:ab:b0:67: f9:1b:90:7b:c2:e2:fd:47:99:85:18:2f:72:d7:12:8e:f3:95: 1b:f3:2c:d6:d6:14:8f:65:2a:b2:3f:f6:8c:4b:86:9f:8f:2b: bc:9b:56:16:56:a4:77:c8:9b:70:ce:07:04:7f:3f:3a:25:32: 18:db:29:8b:c6:ed:d4:b6:e7:43:75:18:d0:30:85:9a:f6:68: 86:1b:67:75 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGQUYxMTAvBgNVBAUTKDFFODVBODYwRDYyRTI2MDc5MjMzQ0I3QTAxREIwQkFD QkIwMzY5QTYwHhcNMjUxMTA1MDM0NzUzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTI3NS0zNjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvtGZvYhGWOqYI2ohE/z0f3fxqM+2+zHOc6TQTRKcDHM6C34KTO8kqeqOR7R S2NFGQgKUY3mJBQ+nxdvBssciTqhn7VzbYVq6Xw9zfFQXXp+yqcdJg8W3aKK6qY1 3skXiDCyfUAOAHF3IaDiwSd2ROEM/yqO5QXfW/1AvYZQStHM7Dt/fVqPMLFiXS5e 4mwVqkN5fGu2BterDFdUaV1YU90BAwpmgDn8vNJdPAxuaZt3QPMY0Yx1RNPfXAsM 8OR67/yLuLLZGK24O1dvRE6Re4u/nE7AK0HcWJfAqt9nTNT8DdmPjOsgJuKcdKnf k+CkFr8E0uK5VkA7asgzlXCYuwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFGP/jQJZ XC1Nmj+1ZQuWOS0z9ioQMB8GA1UdIwQYMBaAFB6FqGDWLiYHkjPLegHbC6y7A2mm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0ZBRi9BOTBEMUI5NjQx NUMxMUVFOUQzNTVEMkNDNEY5QUUwMi9Ib1dvWU5ZdUpnZVNNOHQ2QWRzTHJMc0Rh YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hvV29ZTll1SmdlU004dDZBZHNMckxzRGFhWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNGQUYvQTkwRDFCOTY0MTVDMTFFRTlEMzU1RDJDQzRGOUFFMDIvNUVEQjZCNTBF RTkzMTFFRjhFQjk3MDBCQzRGOUFFMDIucm9hMHUGCCsGAQUFBwEHAQH/BGYwZDBT BAIAATBNAwQHG22AAwQCLUAUAwMAPPYDBAJn6bwDBAZxNEADBAd6ZIADBAZ9HwAD BAa0XoADBAa2XQADBAbKVoADBALKrgADBAfKrwADBAXKr6AwDQQCAAIwBwMFACAB D5AwDQYJKoZIhvcNAQELBQADggEBAIcWX+IEK/l8uGwdB7vHt2LO52qmRFrj5MCS 2KAf3AjhPxXhZQ0EHqhs3dIJjeIi525U7PvtN5HqXEuzJrNXIYYCIi1FItmBjxZS ij9svkwC4breGcct5zWOskdosmHfvVJ72i0DaZydaB7mxKxSAja5k6rUVlWfo2gH as6GiYoRiekkLhDVNTOJXchKhCX1tz7ZW650iw8mFfEX3/JsuW+1d86KAQTyIPkQ iIrsfYrMQKuwZ/kbkHvC4v1HmYUYL3LXEo7zlRvzLNbWFI9lKrI/9oxLhp+PK7yb VhZWpHfIm3DOBwR/PzolMhjbKYvG7dS250N1GNAwhZr2aIYbZ3U= -----END CERTIFICATE-----Generated at Mon Mar 2 04:56:10 2026 by rpki-client