$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/A23D5DE87A6911EA930EB439C4F9AE02.roa File: A23D5DE87A6911EA930EB439C4F9AE02.roa (raw, json) Hash identifier: 0tnUQM8nUOKmP6zcIR5mibnCQ76vuNJWrUF9kNBfQsg= Subject key identifier: 18:E0:86:50:86:03:38:42:31:E4:0A:7F:07:04:CA:D6:B5:31:F6:CE Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 0A88 Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/A23D5DE87A6911EA930EB439C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:48:09 +0000 ROA not before: Wed 04 Jun 2025 20:05:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134201 IP address blocks: 45.118.60.0/22 maxlen: 24 103.58.92.0/22 maxlen: 24 2402:6480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2696 (0xa88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227, serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Jun 4 20:05:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42779-ca77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f2:58:1a:df:8a:cd:30:b1:28:1a:38:cf:4c: 61:b0:a5:0e:d7:15:4f:b6:9a:a1:12:20:d0:89:c9: f1:ff:ec:4d:2d:76:d2:f9:59:5e:ee:c6:fc:19:23: 8f:28:6b:80:9a:f8:e7:35:b5:c7:73:d9:2c:06:dc: be:de:89:9d:19:53:22:42:fd:59:2d:a2:f8:73:5b: 0f:6c:97:65:0a:e1:9c:f4:2f:81:78:75:23:65:d2: 3f:27:97:40:10:64:5a:37:43:42:08:b1:ca:2f:a9: b2:de:f1:95:0f:e3:18:79:e1:3e:c0:78:a5:0b:d4: 7a:4d:4f:43:e0:ed:ad:0c:19:b8:b4:d9:71:7c:34: 42:50:76:e0:d2:8a:f4:6c:3d:a3:aa:5d:5e:74:b1: 24:a6:d4:7a:e8:ea:4f:cb:19:9c:da:f6:0b:0a:29: 40:14:02:e7:87:43:67:b7:70:5a:9d:7f:25:96:89: 76:0a:5d:ec:58:8d:ae:2f:38:10:83:bd:87:b5:7c: 87:80:74:7b:f8:8a:5a:29:aa:0d:9a:31:fc:b0:83: 37:b1:7a:b0:11:92:cb:12:4b:cd:44:b3:d2:d7:2f: 59:47:79:68:5d:60:71:9d:8c:19:46:b2:34:c7:d8: 18:26:bb:99:5f:34:cf:72:0a:58:83:66:0b:6d:e6: 9c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E0:86:50:86:03:38:42:31:E4:0A:7F:07:04:CA:D6:B5:31:F6:CE X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/A23D5DE87A6911EA930EB439C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.118.60.0/22 103.58.92.0/22 IPv6: 2402:6480::/32 Signature Algorithm: sha256WithRSAEncryption 8a:ce:62:61:ef:31:55:c6:ff:89:19:1d:5c:02:ce:06:28:6b: fa:5c:10:69:32:7d:80:fe:92:22:ff:d4:5e:e3:db:02:64:a5: d5:8e:6d:f5:8a:85:41:91:a0:e3:21:43:4e:8d:a8:07:32:ef: c2:a2:21:bd:03:c8:d9:32:f6:f8:6d:97:aa:99:ba:c1:6d:83: 42:d9:b8:7a:cf:b0:0c:52:5c:a7:e2:ac:f5:89:d5:a7:0c:e5: ba:1e:6e:18:05:fd:9e:6e:1e:fe:97:aa:0d:38:5a:4b:89:93: 3d:8f:de:23:3a:7f:5c:f1:bb:7f:8c:45:99:e7:20:55:e0:f6: b7:48:c1:b2:37:81:b8:65:4d:56:ee:8c:73:d2:51:1b:01:d7: 59:2f:fc:da:56:b1:e7:5c:2a:d5:73:d5:7a:bd:26:87:00:be: 71:c6:6e:8d:1d:b3:14:0d:b9:09:a2:ee:3c:f2:73:31:df:65: 43:78:cd:6c:6f:00:0a:18:f3:da:4b:45:a5:0d:5a:4b:33:30: ca:d4:19:7a:48:f7:60:16:36:d6:75:af:eb:af:7a:77:59:53: 94:fe:9d:9c:cf:4f:53:95:2f:9f:e8:57:6a:71:dd:fa:66:53: 32:58:6d:40:27:98:a8:0a:5b:e3:86:47:8c:cc:1b:b2:14:35: e7:ee:17:6b -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjUwNjA0MjAwNTI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mjc3OS1jYTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPJYGt+KzTCxKBo4z0xhsKUO1xVPtpqhEiDQicnx/+xNLXbS+Vle7sb8GSOP KGuAmvjnNbXHc9ksBty+3omdGVMiQv1ZLaL4c1sPbJdlCuGc9C+BeHUjZdI/J5dA EGRaN0NCCLHKL6my3vGVD+MYeeE+wHilC9R6TU9D4O2tDBm4tNlxfDRCUHbg0or0 bD2jql1edLEkptR66OpPyxmc2vYLCilAFALnh0Nnt3BanX8llol2Cl3sWI2uLzgQ g72HtXyHgHR7+IpaKaoNmjH8sIM3sXqwEZLLEkvNRLPS1y9ZR3loXWBxnYwZRrI0 x9gYJruZXzTPcgpYg2YLbeacUwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFBjghlCG AzhCMeQKfwcEyta1MfbOMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjYyMjcvMEQ3MjhBMEE3QTNGMTFFQThFM0Q4MDM1QzRGOUFFMDIvQTIzRDVERTg3 QTY5MTFFQTkzMEVCNDM5QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCLXY8AwQCZzpcMA0EAgACMAcDBQAkAmSAMA0GCSqGSIb3DQEBCwUA A4IBAQCKzmJh7zFVxv+JGR1cAs4GKGv6XBBpMn2A/pIi/9Re49sCZKXVjm31ioVB kaDjIUNOjagHMu/CoiG9A8jZMvb4bZeqmbrBbYNC2bh6z7AMUlyn4qz1idWnDOW6 Hm4YBf2ebh7+l6oNOFpLiZM9j94jOn9c8bt/jEWZ5yBV4Pa3SMGyN4G4ZU1W7oxz 0lEbAddZL/zaVrHnXCrVc9V6vSaHAL5xxm6NHbMUDbkJou488nMx32VDeM1sbwAK GPPaS0WlDVpLMzDK1Bl6SPdgFjbWda/rr3p3WVOU/p2cz09TlS+f6Fdqcd36ZlMy WG1AJ5ioClvjhkeMzBuyFDXn7hdr -----END CERTIFICATE-----Generated at Mon Mar 2 15:15:16 2026 by rpki-client