$ rpki-client -vvf rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/86019882E2A311EEA6A97425C4F9AE02.roa File: 86019882E2A311EEA6A97425C4F9AE02.roa (raw, json) Hash identifier: hO4YiYMVmM99L20vcdLgyW1Kt1Bixo2dZg5mfT4ST7s= Subject key identifier: 77:E5:F2:7D:BA:AF:08:6C:35:AB:AF:40:0F:81:F5:5A:AF:47:7E:6F Certificate issuer: /CN=A91B517C/serialNumber=9FAF8341675EF438964199362542572C8928540C Certificate serial: 0187 Authority key identifier: 9F:AF:83:41:67:5E:F4:38:96:41:99:36:25:42:57:2C:89:28:54:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6-DQWde9DiWQZk2JUJXLIkoVAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/86019882E2A311EEA6A97425C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:42:28 +0000 ROA not before: Tue 27 May 2025 05:41:09 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 63981 IP address blocks: 45.117.96.0/22 maxlen: 22 45.117.96.0/24 maxlen: 24 45.117.97.0/24 maxlen: 24 45.117.98.0/24 maxlen: 24 45.117.99.0/24 maxlen: 24 45.251.64.0/23 maxlen: 24 45.251.66.0/24 maxlen: 24 103.29.140.0/22 maxlen: 24 103.117.76.0/22 maxlen: 24 103.220.8.0/22 maxlen: 24 203.166.220.0/22 maxlen: 24 2405:a480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/n6-DQWde9DiWQZk2JUJXLIkoVAw.crl rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/n6-DQWde9DiWQZk2JUJXLIkoVAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6-DQWde9DiWQZk2JUJXLIkoVAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B517C, serialNumber=9FAF8341675EF438964199362542572C8928540C Validity Not Before: May 27 05:41:09 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a593c4-42cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:26:9b:78:f9:13:06:c0:34:28:ca:5f:01:1e: bf:4a:9d:c3:bf:eb:b8:ba:8a:a6:36:69:ed:90:fc: 72:0b:3f:c7:fa:02:82:24:1d:51:c5:d2:1c:59:7f: df:a6:78:aa:26:59:83:fc:7d:fc:cf:bd:3c:9a:5e: 7f:eb:5c:a4:84:20:b6:8c:62:cc:e7:a6:28:ef:c9: fc:f9:62:17:f1:1c:4f:40:22:a4:b6:47:47:1c:3f: 04:15:af:1e:bd:91:99:a0:86:0f:fa:d2:65:5d:c2: 2f:4a:19:66:aa:8c:69:6e:69:da:41:b2:00:b8:f5: 9d:e6:06:c2:2a:aa:d4:33:e1:87:6c:84:a4:2a:81: c6:6a:1e:83:cf:b1:06:a7:e8:2c:18:10:cb:45:ae: 5d:d0:c5:33:74:43:3a:45:a6:29:e2:60:c9:c1:9f: d5:97:5e:69:63:94:f7:65:8a:39:3c:46:d5:e9:9b: 9f:28:05:67:a4:89:57:5c:08:6f:23:eb:1b:f1:72: 31:45:4a:12:a2:be:99:3a:26:31:d3:b8:7e:50:c2: ed:de:04:65:49:e5:d7:a3:ee:37:5a:ce:b9:ad:96: 8b:bc:62:e3:8c:a0:86:c4:3a:2e:b5:a9:e3:99:79: cc:56:87:2e:22:c9:17:15:c8:e1:9e:3d:30:fb:8d: 2d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E5:F2:7D:BA:AF:08:6C:35:AB:AF:40:0F:81:F5:5A:AF:47:7E:6F X509v3 Authority Key Identifier: keyid:9F:AF:83:41:67:5E:F4:38:96:41:99:36:25:42:57:2C:89:28:54:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/n6-DQWde9DiWQZk2JUJXLIkoVAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6-DQWde9DiWQZk2JUJXLIkoVAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/86019882E2A311EEA6A97425C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.117.96.0/22 45.251.64.0-45.251.66.255 103.29.140.0/22 103.117.76.0/22 103.220.8.0/22 203.166.220.0/22 IPv6: 2405:a480::/32 Signature Algorithm: sha256WithRSAEncryption ae:9b:e0:ea:2c:a6:7f:3f:21:93:dc:a6:21:8f:ce:db:29:36: 1b:3f:54:9c:40:c0:d9:57:46:3a:98:88:be:6c:f4:38:5c:cd: e8:15:1a:30:e9:12:29:e3:d3:d5:1c:5c:5f:55:6e:33:e3:6d: 1b:7e:54:ec:79:6c:a4:65:c6:d0:e0:4b:41:de:27:06:e1:bf: 8d:6a:48:41:41:21:53:db:96:ec:31:64:7a:51:95:f0:69:15: 5a:32:c6:e0:b3:ec:96:a8:f4:8d:22:5a:d0:d8:bd:92:f9:f8: e8:69:78:23:52:7c:15:f5:52:29:8e:d1:1b:c8:23:a7:04:4e: 1a:9b:ea:3a:78:11:e1:60:8c:48:08:95:cf:08:fe:8b:d8:f1: 91:a3:88:a3:38:1e:c7:bf:68:a8:56:fa:17:b0:67:83:2a:3d: bd:f9:ed:17:b0:21:0b:48:bd:fc:27:61:1e:9f:97:0f:f2:a8: 7f:4e:3f:8d:da:ca:95:89:6c:c4:c8:d8:84:f4:61:8f:2c:6a: 6c:51:d3:9c:20:82:6a:fc:be:67:50:a0:47:f3:b8:5d:27:fa: 89:30:f2:51:bc:4d:57:b3:00:a1:d2:4a:d6:a8:cf:44:11:da: 42:34:f1:da:02:5b:3f:6b:2f:1e:18:55:a5:65:6a:8d:cb:0b: b4:47:aa:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUxN0MxMTAvBgNVBAUTKDlGQUY4MzQxNjc1RUY0Mzg5NjQxOTkzNjI1NDI1NzJD ODkyODU0MEMwHhcNMjUwNTI3MDU0MTA5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTNjNC00MmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSabePkTBsA0KMpfAR6/Sp3Dv+u4uoqmNmntkPxyCz/H+gKCJB1RxdIcWX/f pniqJlmD/H38z708ml5/61ykhCC2jGLM56Yo78n8+WIX8RxPQCKktkdHHD8EFa8e vZGZoIYP+tJlXcIvShlmqoxpbmnaQbIAuPWd5gbCKqrUM+GHbISkKoHGah6Dz7EG p+gsGBDLRa5d0MUzdEM6RaYp4mDJwZ/Vl15pY5T3ZYo5PEbV6ZufKAVnpIlXXAhv I+sb8XIxRUoSor6ZOiYx07h+UMLt3gRlSeXXo+43Ws65rZaLvGLjjKCGxDoutanj mXnMVocuIskXFcjhnj0w+40tVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHfl8n26 rwhsNauvQA+B9VqvR35vMB8GA1UdIwQYMBaAFJ+vg0FnXvQ4lkGZNiVCVyyJKFQM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTE3Qy9DRDM3NjNFNkRD RUQxMUVFQkRFMDBFMzBDNEY5QUUwMi9uNi1EUVdkZTlEaVdRWmsySlVKWExJa29W QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL242LURRV2RlOURpV1FaazJKVUpYTElrb1ZBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjUxN0MvQ0QzNzYzRTZEQ0VEMTFFRUJERTAwRTMwQzRGOUFFMDIvODYwMTk4ODJF MkEzMTFFRUE2QTk3NDI1QzRGOUFFMDIucm9hMFQGCCsGAQUFBwEHAQH/BEUwQzAy BAIAATAsAwQCLXVgMAwDBAYt+0ADBAAt+0IDBAJnHYwDBAJndUwDBAJn3AgDBALL ptwwDQQCAAIwBwMFACQFpIAwDQYJKoZIhvcNAQELBQADggEBAK6b4Oospn8/IZPc piGPztspNhs/VJxAwNlXRjqYiL5s9DhczegVGjDpEinj09UcXF9VbjPjbRt+VOx5 bKRlxtDgS0HeJwbhv41qSEFBIVPbluwxZHpRlfBpFVoyxuCz7Jao9I0iWtDYvZL5 +OhpeCNSfBX1UimO0RvII6cEThqb6jp4EeFgjEgIlc8I/ovY8ZGjiKM4Hse/aKhW +hewZ4MqPb357RewIQtIvfwnYR6flw/yqH9OP43aypWJbMTI2IT0YY8samxR05wg gmr8vmdQoEfzuF0n+okw8lG8TVezAKHSStaoz0QR2kI08doCWz9rLx4YVaVlao3L C7RHqtc= -----END CERTIFICATE-----Generated at Thu Mar 26 09:03:42 2026 by rpki-client