$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa File: B5569B88096311EE9ECB644DC4F9AE02.roa (raw, json) Hash identifier: 4HF0DTPBSH5S3QjwkCb71T/4b+8A54VUugU3EtAjksc= Subject key identifier: D8:2E:A5:0D:D9:58:A4:8F:60:42:9A:4C:B0:E6:BE:E9:F5:C2:3D:39 Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: 020F Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:18:52 +0000 ROA not before: Fri 09 Jan 2026 02:22:04 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 400318 IP address blocks: 49.0.56.0/21 maxlen: 21 49.0.56.0/24 maxlen: 24 49.0.57.0/24 maxlen: 24 49.0.58.0/24 maxlen: 24 49.0.59.0/24 maxlen: 24 49.0.60.0/24 maxlen: 24 49.0.61.0/24 maxlen: 24 49.0.62.0/24 maxlen: 24 49.0.63.0/24 maxlen: 29 103.36.54.0/23 maxlen: 29 103.247.56.0/22 maxlen: 28 2401:daa0:55::/48 maxlen: 48 2401:daa0:57::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:47:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280, serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Validity Not Before: Jan 9 02:22:04 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a458dc-1df2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a2:2e:ac:15:b4:75:fa:10:97:35:b9:a4:80: 77:aa:26:bb:0f:d8:77:ee:4a:98:ae:5b:f5:e7:96: d6:dd:e3:36:69:4e:d3:a1:54:84:eb:1a:b2:8d:b1: 1b:a8:6d:40:07:94:b5:de:dd:00:b6:21:55:ee:fc: ca:5f:95:8f:f5:23:02:e1:1e:00:aa:30:45:22:61: eb:1d:d4:8a:7b:4b:bd:46:69:89:90:0a:70:e0:d5: 6e:3c:d5:e8:7c:36:b6:6c:d2:28:69:c0:5b:50:e8: f7:af:e3:ba:ec:cf:4d:18:e7:17:89:27:98:c8:3a: 84:c6:dd:0e:d0:c5:dd:7f:88:d0:3f:3f:df:70:ff: 30:51:e3:7a:58:dd:90:41:ef:15:24:b5:b3:57:75: 4f:7b:81:cf:5c:f8:d5:cb:93:53:d5:69:c4:e8:0b: 23:e0:66:6b:91:50:98:27:2b:30:39:48:19:3d:9e: 87:ba:9b:68:89:64:81:87:c1:5d:a5:d2:4f:e3:27: eb:65:94:c1:ea:63:5c:e4:5d:ba:04:e1:1e:18:96: 67:1a:eb:6a:37:12:56:07:11:11:cf:88:d1:fd:d7: 16:93:89:ed:82:5c:91:3b:80:ab:b9:87:73:1f:c6: 2d:aa:ce:be:a6:96:06:a5:ab:26:4c:0f:fa:3a:ea: b7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:2E:A5:0D:D9:58:A4:8F:60:42:9A:4C:B0:E6:BE:E9:F5:C2:3D:39 X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.0.56.0/21 103.36.54.0/23 103.247.56.0/22 IPv6: 2401:daa0:55::/48 2401:daa0:57::/48 Signature Algorithm: sha256WithRSAEncryption 0a:e2:57:fd:94:0b:9b:77:69:81:fb:42:30:03:0f:0b:24:59: 0f:3f:ef:1a:e8:ed:19:1f:8e:b3:77:e1:c3:ac:c8:88:c6:36: 56:0b:3a:fe:5f:ae:1a:fa:25:25:32:a8:a5:0b:37:02:dc:2a: 8d:4f:f1:21:9a:37:cc:4c:ca:7d:71:95:aa:62:05:d1:d6:86: bb:4e:0d:e4:ec:e6:77:71:64:4b:e5:f0:82:34:7f:3b:6c:7a: 67:16:20:75:07:d7:6d:48:d5:f7:8d:51:eb:77:2d:6b:a0:85: 40:d8:74:2c:f1:c8:26:11:fb:2c:38:ca:3b:d8:b0:b2:d4:3f: b3:d1:a2:0f:74:8f:41:df:4a:f2:e9:7c:01:c4:59:e5:e5:51: 6a:52:e5:2c:a1:aa:72:66:ac:eb:62:fa:5a:ff:f0:7e:55:03: 41:6d:89:51:58:e5:5f:e6:38:e6:84:b0:21:d8:20:1a:22:47: 0e:b9:a1:01:b8:d5:c0:ac:0a:12:f1:bc:97:90:82:2c:b9:ce: 37:1e:9a:5a:3c:45:40:46:ce:b7:82:01:82:70:b3:80:c8:c4: 6c:67:e7:7a:04:59:2d:9e:b3:a0:67:56:d0:78:ec:b8:36:6a: c0:7e:f0:15:5d:7c:d6:c0:c9:5c:72:a8:d1:c7:ec:c7:6e:42: 45:8d:7a:ec -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyODAxMTAvBgNVBAUTKDFBNDg0M0U4OUYyNDQ0QjJDRERCODExOEFBOEEyRjQ0 MTgwRTg0OTgwHhcNMjYwMTA5MDIyMjA0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NThkYy0xZGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqIurBW0dfoQlzW5pIB3qia7D9h37kqYrlv155bW3eM2aU7ToVSE6xqyjbEb qG1AB5S13t0AtiFV7vzKX5WP9SMC4R4AqjBFImHrHdSKe0u9RmmJkApw4NVuPNXo fDa2bNIoacBbUOj3r+O67M9NGOcXiSeYyDqExt0O0MXdf4jQPz/fcP8wUeN6WN2Q Qe8VJLWzV3VPe4HPXPjVy5NT1WnE6Asj4GZrkVCYJyswOUgZPZ6HuptoiWSBh8Fd pdJP4yfrZZTB6mNc5F26BOEeGJZnGutqNxJWBxERz4jR/dcWk4ntglyRO4CruYdz H8Ytqs6+ppYGpasmTA/6Ouq3mQIDAQABo4IChjCCAoIwHQYDVR0OBBYEFNgupQ3Z WKSPYEKaTLDmvun1wj05MB8GA1UdIwQYMBaAFBpIQ+ifJESyzduBGKqKL0QYDoSY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI4MC9DMDRCMUI3NjA5 NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JMTE4yNEVZcW9vdlJCZ09o SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjUyODAvQzA0QjFCNzYwOTVGMTFFRUFEMEVEMDRDQzRGOUFFMDIvQjU1NjlCODgw OTYzMTFFRTlFQ0I2NDREQzRGOUFFMDIucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAY BAIAATASAwQDMQA4AwQBZyQ2AwQCZ/c4MBgEAgACMBIDBwAkAdqgAFUDBwAkAdqg AFcwDQYJKoZIhvcNAQELBQADggEBAAriV/2UC5t3aYH7QjADDwskWQ8/7xro7Rkf jrN34cOsyIjGNlYLOv5frhr6JSUyqKULNwLcKo1P8SGaN8xMyn1xlapiBdHWhrtO DeTs5ndxZEvl8II0fztsemcWIHUH121I1feNUet3LWughUDYdCzxyCYR+yw4yjvY sLLUP7PRog90j0HfSvLpfAHEWeXlUWpS5SyhqnJmrOti+lr/8H5VA0FtiVFY5V/m OOaEsCHYIBoiRw65oQG41cCsChLxvJeQgiy5zjcemlo8RUBGzreCAYJws4DIxGxn 53oEWS2es6BnVtB47Lg2asB+8BVdfNbAyVxyqNHH7MduQkWNeuw= -----END CERTIFICATE-----Generated at Mon Mar 2 05:45:51 2026 by rpki-client