$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/99D9487EEAFE11EE9EFB1977C4F9AE02.roa File: 99D9487EEAFE11EE9EFB1977C4F9AE02.roa (raw, json) Hash identifier: m1EeRwkdcEvpDu3TXq62XSloGjXNqPxFV+Kf2mIko4M= Subject key identifier: DD:13:FC:52:C8:44:DF:06:80:7E:61:30:97:94:90:D1:32:E2:9E:5A Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 0316 Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/99D9487EEAFE11EE9EFB1977C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:37:52 +0000 ROA not before: Thu 05 Jun 2025 03:10:41 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151487 IP address blocks: 123.108.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 790 (0x316) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550, serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: Jun 5 03:10:41 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a48780-5a03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:46:f6:fe:fc:df:4d:b3:d8:ca:75:74:be:ab: e6:85:05:44:6d:e0:fb:ad:d5:b8:71:06:d1:f7:b6: 2d:90:eb:ed:4a:32:cb:ee:14:b7:6f:4a:13:a2:fd: 7a:75:2f:09:3f:e9:ff:b6:c8:e1:c3:e2:9e:32:bf: d3:00:f3:1b:ca:51:18:45:93:74:d5:0f:b7:06:5d: 61:5b:ec:f3:fc:90:23:a6:6f:73:c8:69:83:ae:58: 2a:89:2b:40:a1:7a:3c:2a:da:68:66:a4:69:fd:eb: a1:69:97:17:65:c9:75:3b:be:51:55:b3:fe:5d:96: 4d:19:8d:97:14:f4:5f:29:b6:11:c7:ae:e3:b6:9b: da:88:d1:fd:8f:f0:f8:12:dc:c8:25:3e:ac:28:35: 71:4e:db:12:e6:6e:89:d8:ba:24:37:82:b8:a3:a1: 34:98:6e:dc:8d:d6:60:16:da:22:2b:87:8d:cf:8e: 7e:87:aa:87:a7:67:1e:24:0c:f6:58:f4:24:eb:a2: 8c:d4:c3:5e:1c:a8:e9:a0:10:6b:87:af:81:38:ab: 9f:71:a8:42:5b:80:64:a6:b4:33:db:95:12:82:22: db:d8:bd:15:34:85:72:60:a1:43:60:d1:67:4d:73: e3:a4:20:51:fc:6a:ef:3f:fc:14:01:51:7e:74:6f: 6c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:13:FC:52:C8:44:DF:06:80:7E:61:30:97:94:90:D1:32:E2:9E:5A X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/99D9487EEAFE11EE9EFB1977C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.108.70.0/24 Signature Algorithm: sha256WithRSAEncryption bb:76:38:6c:7d:7d:df:29:52:06:9f:71:93:74:25:cf:1c:af: f3:a0:19:2a:51:ac:aa:b9:1e:b2:ec:26:35:7e:6c:19:c4:ba: 85:7d:a2:07:b8:49:77:6a:59:4d:25:bb:66:1b:32:a7:e5:b9: 1f:b4:0e:c3:1a:53:52:98:f2:a7:29:cb:de:05:e4:37:d5:ee: f1:7c:12:84:0b:7d:49:e6:ce:8f:66:a9:14:a0:07:61:48:8c: 21:58:0d:b8:e1:af:db:cc:4c:12:6f:5e:71:ee:25:46:4c:40: 42:3c:99:d7:82:b6:45:7b:85:44:9c:58:66:23:65:d2:de:7c: d1:d0:f5:ae:59:79:09:29:07:72:b2:26:41:e5:af:82:4c:10: 5b:b0:8d:28:fd:28:1f:0b:16:e3:47:b1:d1:c8:4a:c8:32:32: 02:bd:6b:7d:54:df:34:bd:a6:34:3e:55:90:58:c8:00:92:34: 3a:bb:f9:74:8e:ef:1f:7f:8a:7a:01:ea:08:9d:2e:cf:5e:18: aa:0d:da:f2:84:a2:ba:5b:79:a4:aa:17:e7:a0:79:1d:ab:e8: cb:ec:58:85:26:21:78:e7:5a:92:04:20:ad:8e:3a:e6:66:30: 27:03:d8:a0:d8:ba:ca:e8:b2:5c:8b:4e:75:46:11:40:69:1f: 89:db:3b:c3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjUwNjA1MDMxMDQxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODc4MC01YTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskb2/vzfTbPYynV0vqvmhQVEbeD7rdW4cQbR97YtkOvtSjLL7hS3b0oTov16 dS8JP+n/tsjhw+KeMr/TAPMbylEYRZN01Q+3Bl1hW+zz/JAjpm9zyGmDrlgqiStA oXo8KtpoZqRp/euhaZcXZcl1O75RVbP+XZZNGY2XFPRfKbYRx67jtpvaiNH9j/D4 EtzIJT6sKDVxTtsS5m6J2LokN4K4o6E0mG7cjdZgFtoiK4eNz45+h6qHp2ceJAz2 WPQk66KM1MNeHKjpoBBrh6+BOKufcahCW4BkprQz25USgiLb2L0VNIVyYKFDYNFn TXPjpCBR/GrvP/wUAVF+dG9sdQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFN0T/FLI RN8GgH5hMJeUkNEy4p5aMB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvOTlEOTQ4N0VF QUZFMTFFRTlFRkIxOTc3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAe2xGMA0GCSqGSIb3DQEBCwUAA4IBAQC7djhsfX3fKVIGn3GTdCXP HK/zoBkqUayquR6y7CY1fmwZxLqFfaIHuEl3allNJbtmGzKn5bkftA7DGlNSmPKn KcveBeQ31e7xfBKEC31J5s6PZqkUoAdhSIwhWA244a/bzEwSb15x7iVGTEBCPJnX grZFe4VEnFhmI2XS3nzR0PWuWXkJKQdysiZB5a+CTBBbsI0o/SgfCxbjR7HRyErI MjICvWt9VN80vaY0PlWQWMgAkjQ6u/l0ju8ff4p6AeoInS7PXhiqDdryhKK6W3mk qhfnoHkdq+jL7FiFJiF451qSBCCtjjrmZjAnA9ig2LrK6LJci051RhFAaR+J2zvD -----END CERTIFICATE-----Generated at Thu Mar 26 09:55:32 2026 by rpki-client