$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa File: B5569B88096311EE9ECB644DC4F9AE02.roa (raw, json) Hash identifier: Lzx8SaSOAIfiTkCTBDT8JHgh91LBGq5txlqMqiUIMMU= Subject key identifier: 2D:94:C3:02:53:24:48:C9:E5:93:92:AF:BB:32:75:69:87:96:03:1D Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: 01A0 Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa Signing time: Tue 19 Aug 2025 21:17:52 +0000 ROA not before: Tue 19 Aug 2025 21:17:52 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 400318 IP address blocks: 49.0.56.0/21 maxlen: 21 49.0.56.0/24 maxlen: 24 49.0.57.0/24 maxlen: 24 49.0.58.0/24 maxlen: 24 49.0.59.0/24 maxlen: 24 49.0.60.0/24 maxlen: 24 49.0.61.0/24 maxlen: 24 49.0.62.0/24 maxlen: 24 49.0.63.0/24 maxlen: 29 103.36.54.0/23 maxlen: 29 2401:daa0:55::/48 maxlen: 48 2401:daa0:57::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280, serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Validity Not Before: Aug 19 21:17:52 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68a4e9ff-edf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:75:a1:fd:9b:e7:9e:f2:4a:d1:18:84:fb:8e: 84:f1:fb:31:29:18:c9:c2:e1:b6:05:32:20:6a:d8: a0:36:cc:47:13:ae:10:57:bb:61:1b:55:70:6b:12: c8:05:13:a1:2c:fd:da:07:df:d9:9e:8c:d6:b8:02: a8:58:d9:c9:95:56:51:c8:ba:ad:19:b9:13:3c:3e: b1:db:be:03:3f:e0:61:0e:b8:39:6e:36:08:cf:2f: 50:16:c8:e7:e3:f1:2c:72:dd:73:6a:ef:d2:83:b4: d8:9f:3d:5b:00:49:67:52:0b:b1:2c:e5:71:fb:f7: 3f:df:7d:61:7f:4d:28:a1:0b:e1:30:d4:ef:8a:76: 0d:58:d8:3e:fe:a6:5c:7b:32:36:1a:5b:86:b6:ca: d2:cb:ea:d1:eb:77:74:91:8f:65:75:82:10:60:57: 28:1b:75:5e:d1:5c:c8:f8:e0:0d:a3:41:1d:35:d1: 1c:a9:d2:27:7d:2c:32:fd:85:61:b9:cf:bf:bd:b2: af:32:67:56:e5:e4:a4:90:fb:6e:a6:35:0e:03:be: d9:00:42:24:7b:90:73:c5:f5:4b:a9:66:ed:cf:a4: 9d:11:a5:83:b7:a9:04:bb:08:03:07:ec:8b:ee:50: 57:eb:3f:3a:8e:40:26:cd:7e:df:60:70:21:19:d4: c3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:94:C3:02:53:24:48:C9:E5:93:92:AF:BB:32:75:69:87:96:03:1D X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.0.56.0/21 103.36.54.0/23 IPv6: 2401:daa0:55::/48 2401:daa0:57::/48 Signature Algorithm: sha256WithRSAEncryption 5c:c7:2a:51:b1:8e:a2:9d:18:38:b1:24:f5:73:d9:d8:dd:b7: ef:93:4f:c1:04:9e:97:af:d0:a3:87:79:4f:99:b5:01:64:df: 20:9a:25:6b:5f:71:1a:20:94:54:a1:5f:0a:5e:e9:34:33:51: 07:2e:65:96:13:76:bd:c4:f0:fa:eb:81:d9:12:03:c7:28:18: e9:54:8f:4c:e7:9d:7d:65:7c:58:29:9a:ce:2a:bf:bf:b5:bb: c4:b8:1a:36:61:3e:60:d7:d4:2d:83:77:ec:5f:f9:74:7d:01: 12:6f:33:ae:ca:fb:df:20:05:79:6f:8f:e6:5d:4d:93:50:02: 77:18:3b:58:d3:03:33:2b:3d:06:b1:f8:ec:14:29:9b:84:21: 62:80:1f:d5:40:4e:c0:38:70:ae:04:33:79:25:63:9d:3d:0c: 38:ce:c3:9b:7f:4a:21:d6:df:d4:b3:96:1b:f6:c9:76:2e:79: c0:5b:36:16:78:9d:93:aa:35:2d:b1:3b:aa:58:c5:cf:ce:02: d6:b0:07:bb:51:be:ba:45:6a:ef:f1:21:00:70:16:22:2a:88: 98:ba:14:05:11:7b:4b:34:cb:a5:a8:91:5c:11:29:bb:9c:3b: 6c:0c:34:80:5e:4e:38:82:55:62:37:f1:06:3a:89:3c:53:da: e7:ad:79:b8 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyODAxMTAvBgNVBAUTKDFBNDg0M0U4OUYyNDQ0QjJDRERCODExOEFBOEEyRjQ0 MTgwRTg0OTgwHhcNMjUwODE5MjExNzUyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE0ZTlmZi1lZGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnWh/ZvnnvJK0RiE+46E8fsxKRjJwuG2BTIgatigNsxHE64QV7thG1VwaxLI BROhLP3aB9/ZnozWuAKoWNnJlVZRyLqtGbkTPD6x274DP+BhDrg5bjYIzy9QFsjn 4/Esct1zau/Sg7TYnz1bAElnUguxLOVx+/c/331hf00ooQvhMNTvinYNWNg+/qZc ezI2GluGtsrSy+rR63d0kY9ldYIQYFcoG3Ve0VzI+OANo0EdNdEcqdInfSwy/YVh uc+/vbKvMmdW5eSkkPtupjUOA77ZAEIke5BzxfVLqWbtz6SdEaWDt6kEuwgDB+yL 7lBX6z86jkAmzX7fYHAhGdTDmQIDAQABo4ICtTCCArEwHQYDVR0OBBYEFC2UwwJT JEjJ5ZOSr7sydWmHlgMdMB8GA1UdIwQYMBaAFBpIQ+ifJESyzduBGKqKL0QYDoSY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI4MC9DMDRCMUI3NjA5 NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JMTE4yNEVZcW9vdlJCZ09o SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjUyODAvQzA0QjFCNzYwOTVGMTFFRUFEMEVEMDRDQzRGOUFFMDIvQjU1NjlCODgw OTYzMTFFRTlFQ0I2NDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMBIEAgABMAwDBAMxADgDBAFnJDYwGAQCAAIwEgMHACQB2qAAVQMHACQB2qAA VzANBgkqhkiG9w0BAQsFAAOCAQEAXMcqUbGOop0YOLEk9XPZ2N2375NPwQSel6/Q o4d5T5m1AWTfIJola19xGiCUVKFfCl7pNDNRBy5llhN2vcTw+uuB2RIDxygY6VSP TOedfWV8WCmaziq/v7W7xLgaNmE+YNfULYN37F/5dH0BEm8zrsr73yAFeW+P5l1N k1ACdxg7WNMDMys9BrH47BQpm4QhYoAf1UBOwDhwrgQzeSVjnT0MOM7Dm39KIdbf 1LOWG/bJdi55wFs2Fnidk6o1LbE7qljFz84C1rAHu1G+ukVq7/EhAHAWIiqImLoU BRF7SzTLpaiRXBEpu5w7bAw0gF5OOIJVYjfxBjqJPFPa5615uA== -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:17 2025 by rpki-client