$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5486/856A249CA98211EA932DEC54C4F9AE02/E206DC460DEA11F0A924CF5CC4F9AE02.roa File: E206DC460DEA11F0A924CF5CC4F9AE02.roa (raw, json) Hash identifier: 9cZAA819ZNYxdN7xk7f1AZKeDye0bv4EBp7wGGivMIU= Subject key identifier: 3A:A3:0E:37:D6:7B:CF:3C:8E:83:09:82:2A:A7:DC:34:C9:AA:2A:49 Certificate issuer: /CN=A91B5486/serialNumber=2E304A3D92499D9D7D338A3EA02F7C5348425B17 Certificate serial: 09FE Authority key identifier: 2E:30:4A:3D:92:49:9D:9D:7D:33:8A:3E:A0:2F:7C:53:48:42:5B:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LjBKPZJJnZ19M4o-oC98U0hCWxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5486/856A249CA98211EA932DEC54C4F9AE02/E206DC460DEA11F0A924CF5CC4F9AE02.roa Signing time: Tue 24 Mar 2026 20:26:11 +0000 ROA not before: Tue 24 Mar 2026 20:26:11 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 140951 IP address blocks: 45.248.200.0/22 maxlen: 24 103.23.168.0/24 maxlen: 24 103.23.169.0/24 maxlen: 24 103.23.170.0/24 maxlen: 24 103.23.171.0/24 maxlen: 24 103.217.160.0/24 maxlen: 24 103.217.161.0/24 maxlen: 24 103.217.162.0/23 maxlen: 23 103.217.162.0/24 maxlen: 24 103.217.163.0/24 maxlen: 24 103.242.73.0/24 maxlen: 24 103.242.74.0/24 maxlen: 24 103.242.75.0/24 maxlen: 24 220.158.132.0/23 maxlen: 23 220.158.132.0/24 maxlen: 24 220.158.133.0/24 maxlen: 24 2401:47c0:1e00::/40 maxlen: 40 2401:47c0:1f00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5486/856A249CA98211EA932DEC54C4F9AE02/LjBKPZJJnZ19M4o-oC98U0hCWxc.crl rsync://rpki.apnic.net/member_repository/A91B5486/856A249CA98211EA932DEC54C4F9AE02/LjBKPZJJnZ19M4o-oC98U0hCWxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LjBKPZJJnZ19M4o-oC98U0hCWxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2558 (0x9fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5486, serialNumber=2E304A3D92499D9D7D338A3EA02F7C5348425B17 Validity Not Before: Mar 24 20:26:11 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c2f363-0ac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:53:ec:63:76:5c:eb:f9:86:a7:d1:dd:9c:99: 98:03:ff:fd:96:a2:c6:f9:6f:2e:0e:6b:3a:1d:23: 5b:52:9d:95:81:ae:ab:d6:6d:2f:eb:7f:78:90:4a: 84:e8:1c:69:d9:15:7a:5e:e8:92:84:fc:7c:5c:0d: 55:c9:71:a7:aa:3d:fa:0f:e7:1a:a5:fd:2c:b3:f8: 27:f0:3f:c4:05:29:76:fb:e1:01:77:4a:91:50:17: 92:d1:fe:dc:fa:aa:4a:b3:f6:8d:e3:bd:0d:2b:9f: f8:cc:28:c7:8d:33:9f:a0:ea:49:9c:53:93:d6:73: 2f:18:e3:5a:bb:e2:a0:fc:dd:60:7d:ca:91:b5:4f: c8:10:13:22:8a:86:39:c1:77:ef:db:cc:97:78:bf: 50:d4:d0:72:f6:57:21:3b:30:76:84:7f:f7:cf:3f: fd:bc:e0:03:ab:4e:b2:c0:4b:30:be:c0:81:d4:5a: e6:1e:22:8a:fe:e4:8e:a2:5b:dc:79:38:3a:47:18: 42:de:05:be:f7:70:54:86:5e:6a:ab:e6:a8:69:f4: 35:6b:0a:14:b7:84:12:9b:7d:40:94:52:c9:87:59: 74:62:7d:b4:64:28:44:6b:9d:9c:60:3d:21:f3:f0: a7:82:95:fb:9f:be:13:86:f2:02:29:05:ec:9e:bb: 79:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A3:0E:37:D6:7B:CF:3C:8E:83:09:82:2A:A7:DC:34:C9:AA:2A:49 X509v3 Authority Key Identifier: keyid:2E:30:4A:3D:92:49:9D:9D:7D:33:8A:3E:A0:2F:7C:53:48:42:5B:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5486/856A249CA98211EA932DEC54C4F9AE02/LjBKPZJJnZ19M4o-oC98U0hCWxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LjBKPZJJnZ19M4o-oC98U0hCWxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5486/856A249CA98211EA932DEC54C4F9AE02/E206DC460DEA11F0A924CF5CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.248.200.0/22 103.23.168.0/22 103.217.160.0/22 103.242.73.0-103.242.75.255 220.158.132.0/23 IPv6: 2401:47c0:1e00::/39 Signature Algorithm: sha256WithRSAEncryption 10:b8:7b:83:b5:e1:2e:b7:04:23:b7:a7:6c:79:8a:f3:78:7c: 75:50:75:e3:a1:f7:a7:f7:a3:cd:92:1d:2b:99:43:06:f0:91: a0:5b:0e:6e:92:03:75:24:f4:16:83:5d:d9:32:da:e7:75:8b: 70:1d:74:e5:82:89:05:df:d5:07:99:85:b0:eb:79:5a:37:e3: 4b:2e:88:97:c4:ed:2c:24:5d:28:68:a9:bb:a4:c6:3c:ad:9a: 72:fc:e4:b8:ed:7e:b2:a7:42:82:5a:8b:4b:9c:6e:7b:e5:fe: f4:63:6a:22:a9:06:2d:f0:bc:93:e7:19:bb:7b:89:23:3d:52: b7:66:87:39:f6:f0:2c:a9:36:a3:3a:8b:a3:e0:91:1f:ad:5a: c4:e3:ec:fb:95:31:c2:07:cf:ee:c8:03:50:c4:7b:79:9a:25: 2a:38:a3:e9:ea:ba:39:74:38:eb:11:32:26:79:b3:33:93:44: 14:9f:e5:0c:97:a8:1b:1e:4e:5c:39:da:09:e5:7b:14:09:7d: ad:0c:d2:4f:eb:34:c6:11:40:25:5b:5a:e7:2c:a6:af:33:1e: 74:d2:1b:12:09:fd:f3:3b:ed:95:95:1d:1c:51:ac:1d:44:51: 72:4f:53:97:03:25:34:5a:49:b7:b8:8e:87:f3:86:da:2f:ec: 75:16:f1:00 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgICCf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU0ODYxMTAvBgNVBAUTKDJFMzA0QTNEOTI0OTlEOUQ3RDMzOEEzRUEwMkY3QzUz NDg0MjVCMTcwHhcNMjYwMzI0MjAyNjExWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWMyZjM2My0wYWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFPsY3Zc6/mGp9HdnJmYA//9lqLG+W8uDms6HSNbUp2Vga6r1m0v6394kEqE 6Bxp2RV6XuiShPx8XA1VyXGnqj36D+capf0ss/gn8D/EBSl2++EBd0qRUBeS0f7c +qpKs/aN470NK5/4zCjHjTOfoOpJnFOT1nMvGONau+Kg/N1gfcqRtU/IEBMiioY5 wXfv28yXeL9Q1NBy9lchOzB2hH/3zz/9vOADq06ywEswvsCB1FrmHiKK/uSOolvc eTg6RxhC3gW+93BUhl5qq+aoafQ1awoUt4QSm31AlFLJh1l0Yn20ZChEa52cYD0h 8/CngpX7n74ThvICKQXsnrt5OwIDAQABo4ICkDCCAowwHQYDVR0OBBYEFDqjDjfW e888joMJgiqn3DTJqipJMB8GA1UdIwQYMBaAFC4wSj2SSZ2dfTOKPqAvfFNIQlsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTQ4Ni84NTZBMjQ5Q0E5 ODIxMUVBOTMyREVDNTRDNEY5QUUwMi9MakJLUFpKSm5aMTlNNG8tb0M5OFUwaENX eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xqQktQWkpKbloxOU00by1vQzk4VTBoQ1d4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU0ODYvODU2QTI0OUNBOTgyMTFFQTkzMkRFQzU0QzRGOUFFMDIvRTIwNkRDNDYw REVBMTFGMEE5MjRDRjVDQzRGOUFFMDIucm9hME8GCCsGAQUFBwEHAQH/BEAwPjAs BAIAATAmAwQCLfjIAwQCZxeoAwQCZ9mgMAwDBABn8kkDBAJn8kgDBAHcnoQwDgQC AAIwCAMGASQBR8AeMA0GCSqGSIb3DQEBCwUAA4IBAQAQuHuDteEutwQjt6dseYrz eHx1UHXjofen96PNkh0rmUMG8JGgWw5ukgN1JPQWg13ZMtrndYtwHXTlgokF39UH mYWw63laN+NLLoiXxO0sJF0oaKm7pMY8rZpy/OS47X6yp0KCWotLnG575f70Y2oi qQYt8LyT5xm7e4kjPVK3Zoc59vAsqTajOouj4JEfrVrE4+z7lTHCB8/uyANQxHt5 miUqOKPp6ro5dDjrETImebMzk0QUn+UMl6gbHk5cOdoJ5XsUCX2tDNJP6zTGEUAl W1rnLKavMx500hsSCf3zO+2VlR0cUawdRFFyT1OXAyU0Wkm3uI6H84baL+x1FvEA -----END CERTIFICATE-----Generated at Thu Mar 26 15:01:02 2026 by rpki-client