$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6096E8CCC69111EF839BD231C4F9AE02.roa File: 6096E8CCC69111EF839BD231C4F9AE02.roa (raw, json) Hash identifier: eOr7NaX5Szwv2LgGsi4D0Rl846zr+e7B0NNv3JTGBTE= Subject key identifier: BA:E5:1B:7F:56:E2:49:80:FA:1E:61:69:E0:19:0B:E0:AF:3B:47:1C Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5EF7 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6096E8CCC69111EF839BD231C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:20:27 +0000 ROA not before: Thu 28 Aug 2025 14:57:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45557 IP address blocks: 45.118.136.0/22 maxlen: 24 103.17.88.0/22 maxlen: 24 103.129.80.0/22 maxlen: 24 103.153.218.0/23 maxlen: 24 103.153.220.0/23 maxlen: 24 103.153.222.0/23 maxlen: 24 103.170.248.0/23 maxlen: 24 180.148.0.0/21 maxlen: 24 2404:3a00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24311 (0x5ef7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60d2b-29c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2f:34:75:87:ab:d5:5f:1d:b4:90:ea:27:dc: 99:36:f5:af:e3:47:58:74:8f:bb:14:a5:73:74:db: 56:51:a5:57:a7:46:e0:9d:c5:be:68:5f:45:a2:3f: b9:81:5b:76:4b:52:99:0f:a7:f9:39:ab:d7:be:ec: 5c:13:98:33:e4:9f:cf:48:6e:22:86:f6:ba:90:da: 9b:88:db:aa:23:ce:82:db:be:b2:9e:2a:2a:53:a7: cb:e4:5b:2d:15:11:06:da:b1:3f:23:c0:31:27:c6: 24:94:d9:5d:07:31:37:1d:f2:35:42:78:75:26:ca: 26:6d:73:b7:50:98:13:31:ce:0c:4c:6c:18:ca:ff: f5:0c:b8:8f:29:80:64:d3:35:5a:ee:fe:2c:d6:d5: 8c:51:c4:24:27:54:90:38:ff:7b:e3:f7:6b:7d:a1: 71:81:88:f5:aa:45:b3:d3:6e:1b:c6:55:ab:e1:48: d2:c1:16:bc:f5:f2:c7:52:7f:7f:22:65:ec:50:c3: 36:2f:c4:70:e1:d4:c1:55:77:f1:da:b7:86:9b:b1: 35:a3:16:85:ed:da:0d:96:40:d7:e1:2b:b6:50:19: 5f:9e:86:63:79:d2:96:bf:a7:e9:2e:a7:fd:60:3a: 1e:23:48:ec:e7:79:72:b5:04:fb:f2:05:4c:1e:16: e8:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E5:1B:7F:56:E2:49:80:FA:1E:61:69:E0:19:0B:E0:AF:3B:47:1C X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6096E8CCC69111EF839BD231C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.118.136.0/22 103.17.88.0/22 103.129.80.0/22 103.153.218.0-103.153.223.255 103.170.248.0/23 180.148.0.0/21 IPv6: 2404:3a00::/32 Signature Algorithm: sha256WithRSAEncryption 1d:6b:cd:1d:48:58:aa:07:75:b5:d3:53:c9:3d:ae:79:39:15: 90:20:41:13:e2:0c:3b:ff:c5:3d:f0:e4:f3:01:52:c5:61:5c: 69:61:88:6d:0c:05:24:55:00:ba:1b:d8:e5:2c:4b:e6:37:89: 7e:91:b7:12:7a:c3:98:70:f7:5f:a1:a0:95:11:4a:7c:6e:3d: 71:3c:73:71:ff:a9:92:d8:52:41:ab:81:1f:8f:73:69:4a:7e: cb:92:73:14:8e:77:05:0c:e1:55:e8:23:29:1c:e0:ad:c6:bd: 4d:db:a5:25:ef:18:76:bd:e7:16:44:42:bd:b6:11:94:a9:f4: 15:61:67:ec:a0:22:62:00:13:66:21:f4:c4:ee:65:82:d4:c1: 5b:f7:ed:cc:e7:ed:51:58:c3:a5:5e:3c:c3:e6:de:6c:da:2e: ea:04:65:30:48:d9:64:7f:4b:61:9b:d0:a6:7c:57:23:ec:e0: ba:a9:bb:e1:14:64:87:33:dd:70:f7:b4:76:2f:79:45:fc:2f: 55:08:84:29:6d:2e:a0:9a:bb:2d:26:19:10:4e:23:10:47:00: 73:72:92:bf:54:78:f1:7c:6d:9e:d7:0e:96:07:22:ec:a5:cd: b6:82:68:83:57:d4:9f:41:d1:a6:60:b1:29:fe:eb:f7:30:a5: 88:4d:11:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICXvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGQyYi0yOWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsC80dYer1V8dtJDqJ9yZNvWv40dYdI+7FKVzdNtWUaVXp0bgncW+aF9Foj+5 gVt2S1KZD6f5OavXvuxcE5gz5J/PSG4ihva6kNqbiNuqI86C276ynioqU6fL5Fst FREG2rE/I8AxJ8YklNldBzE3HfI1Qnh1JsombXO3UJgTMc4MTGwYyv/1DLiPKYBk 0zVa7v4s1tWMUcQkJ1SQOP974/drfaFxgYj1qkWz024bxlWr4UjSwRa89fLHUn9/ ImXsUMM2L8Rw4dTBVXfx2reGm7E1oxaF7doNlkDX4Su2UBlfnoZjedKWv6fpLqf9 YDoeI0js53lytQT78gVMHhbo9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLrlG39W 4kmA+h5haeAZC+CvO0ccMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNjA5NkU4Q0ND NjkxMTFFRjgzOUJEMjMxQzRGOUFFMDIucm9hMFQGCCsGAQUFBwEHAQH/BEUwQzAy BAIAATAsAwQCLXaIAwQCZxFYAwQCZ4FQMAwDBAFnmdoDBAVnmcADBAFnqvgDBAO0 lAAwDQQCAAIwBwMFACQEOgAwDQYJKoZIhvcNAQELBQADggEBAB1rzR1IWKoHdbXT U8k9rnk5FZAgQRPiDDv/xT3w5PMBUsVhXGlhiG0MBSRVALob2OUsS+Y3iX6RtxJ6 w5hw91+hoJURSnxuPXE8c3H/qZLYUkGrgR+Pc2lKfsuScxSOdwUM4VXoIykc4K3G vU3bpSXvGHa95xZEQr22EZSp9BVhZ+ygImIAE2Yh9MTuZYLUwVv37czn7VFYw6Ve PMPm3mzaLuoEZTBI2WR/S2Gb0KZ8VyPs4Lqpu+EUZIcz3XD3tHYveUX8L1UIhClt LqCauy0mGRBOIxBHAHNykr9UePF8bZ7XDpYHIuylzbaCaINX1J9B0aZgsSn+6/cw pYhNEVM= -----END CERTIFICATE-----Generated at Thu Mar 26 04:16:09 2026 by rpki-client