$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/C4CB04C4E2A911EBB4631960C4F9AE02.roa File: C4CB04C4E2A911EBB4631960C4F9AE02.roa (raw, json) Hash identifier: jy3+b4NPo7lR9GDIUu2cqRVy4QiOqMsmkaXdSxbFTTA= Subject key identifier: CD:15:35:BE:E2:CA:72:3C:F1:C8:D1:80:FA:B3:43:BC:86:A6:6D:2E Certificate issuer: /CN=A91F3B6C/serialNumber=9B09E95FE46ABDBC9F9020585F9A583267773FC9 Certificate serial: 0608 Authority key identifier: 9B:09:E9:5F:E4:6A:BD:BC:9F:90:20:58:5F:9A:58:32:67:77:3F:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/C4CB04C4E2A911EBB4631960C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:29:39 +0000 ROA not before: Mon 12 May 2025 23:53:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55581 IP address blocks: 27.116.36.0/22 maxlen: 24 45.125.120.0/22 maxlen: 24 103.166.56.0/23 maxlen: 24 103.194.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1544 (0x608) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B6C, serialNumber=9B09E95FE46ABDBC9F9020585F9A583267773FC9 Validity Not Before: May 12 23:53:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a44d53-7b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:91:ee:e3:71:5f:af:d8:fd:79:6d:1c:8b:86: 0d:5f:f2:49:a9:ed:63:37:82:69:54:01:3d:b9:47: 6b:1e:62:7d:b6:59:cf:da:68:c6:cf:4f:5a:5a:fd: 2a:72:36:1b:99:c0:d4:19:3b:f1:04:12:69:59:7e: ca:32:1f:5a:90:23:86:32:db:ac:51:b4:69:b9:c8: c6:b3:4d:46:29:e1:51:e9:71:2f:f4:7d:f1:5e:9b: 57:ac:08:5d:66:37:96:17:90:39:6c:01:3c:e3:bc: 33:bd:43:53:8a:e4:10:2a:73:fd:cb:d9:5e:39:a3: 64:e0:54:b5:ed:27:04:51:0c:1b:50:a4:48:5f:8a: 15:b9:2e:d0:15:d4:98:7e:ca:d6:be:b2:a8:ff:61: c9:77:63:15:d7:1f:e5:55:37:62:6e:8f:d6:b3:41: 2f:59:cb:01:b6:b5:65:b2:5d:10:65:4b:63:23:0c: d1:4a:c5:e8:ca:d2:50:14:b3:2f:4d:1d:5b:a8:c4: fe:09:bf:79:21:91:ff:ee:2d:69:11:1a:92:90:01: 0a:d5:4b:9b:e6:3d:44:6b:7e:9c:a5:e4:44:df:72: 47:09:56:30:05:5c:f4:a4:98:8f:c3:3c:47:56:7a: 1f:cb:0b:ae:22:0d:57:25:4b:b5:24:e2:a5:e1:06: c4:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:15:35:BE:E2:CA:72:3C:F1:C8:D1:80:FA:B3:43:BC:86:A6:6D:2E X509v3 Authority Key Identifier: keyid:9B:09:E9:5F:E4:6A:BD:BC:9F:90:20:58:5F:9A:58:32:67:77:3F:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/C4CB04C4E2A911EBB4631960C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.116.36.0/22 45.125.120.0/22 103.166.56.0/23 103.194.0.0/22 Signature Algorithm: sha256WithRSAEncryption 26:0d:23:eb:7a:90:be:fd:7f:38:5a:c1:71:55:2a:da:f7:16: 66:cd:0f:49:2e:b9:b9:6c:fc:93:6e:21:82:85:8f:12:2c:97: 0a:40:d4:ff:aa:a7:6b:cf:88:e4:35:5d:de:d6:af:63:a1:42: 89:05:65:ba:80:01:1c:98:b6:2e:e7:50:27:85:31:30:49:49: f8:14:67:7b:fb:8c:6b:ad:e1:c1:89:68:cc:43:cc:77:20:a2: 73:06:49:fe:be:8c:3e:fa:6a:fe:db:44:da:01:f1:6e:2b:0c: f3:7c:ef:5a:74:4a:4f:27:54:af:90:0a:61:1c:75:3b:66:bd: 9d:14:e9:9f:5b:c1:81:9e:9f:80:88:5e:36:31:0b:3c:2f:1e: 66:1b:dd:3e:1b:6c:1a:62:f6:27:e2:78:f0:7d:36:2d:ba:c4: 1a:53:c6:45:56:4d:0e:c6:fe:4e:48:e5:0a:21:bb:42:a7:42: 2c:d1:78:a8:74:7b:a4:07:7e:af:a0:85:f5:17:3d:f6:ca:c1: f7:22:0f:3b:cd:3a:9a:88:26:e3:b3:ab:6f:ef:70:32:6b:66: a9:bb:10:f1:e8:31:d1:bc:ec:69:0a:84:4a:a8:cd:a5:40:74: 9e:5e:53:5f:3b:93:a5:8f:b8:e5:4e:73:da:99:ed:58:34:b7: 5e:f7:56:71 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICBggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCNkMxMTAvBgNVBAUTKDlCMDlFOTVGRTQ2QUJEQkM5RjkwMjA1ODVGOUE1ODMy Njc3NzNGQzkwHhcNMjUwNTEyMjM1MzQ4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGQ1My03YjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05Hu43Ffr9j9eW0ci4YNX/JJqe1jN4JpVAE9uUdrHmJ9tlnP2mjGz09aWv0q cjYbmcDUGTvxBBJpWX7KMh9akCOGMtusUbRpucjGs01GKeFR6XEv9H3xXptXrAhd ZjeWF5A5bAE847wzvUNTiuQQKnP9y9leOaNk4FS17ScEUQwbUKRIX4oVuS7QFdSY fsrWvrKo/2HJd2MV1x/lVTdibo/Ws0EvWcsBtrVlsl0QZUtjIwzRSsXoytJQFLMv TR1bqMT+Cb95IZH/7i1pERqSkAEK1Uub5j1Ea36cpeRE33JHCVYwBVz0pJiPwzxH VnofywuuIg1XJUu1JOKl4QbETwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFM0VNb7i ynI88cjRgPqzQ7yGpm0uMB8GA1UdIwQYMBaAFJsJ6V/kar28n5AgWF+aWDJndz/J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0I2Qy84QjA4OTIwQUUy QTUxMUVCQUQxM0NDMzVDNEY5QUUwMi9td25wWC1ScXZieWZrQ0JZWDVwWU1tZDNQ OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL213bnBYLVJxdmJ5ZmtDQllYNXBZTW1kM1A4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNCNkMvOEIwODkyMEFFMkE1MTFFQkFEMTNDQzM1QzRGOUFFMDIvQzRDQjA0QzRF MkE5MTFFQkI0NjMxOTYwQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQCG3QkAwQCLX14AwQBZ6Y4AwQCZ8IAMA0GCSqGSIb3DQEBCwUAA4IB AQAmDSPrepC+/X84WsFxVSra9xZmzQ9JLrm5bPyTbiGChY8SLJcKQNT/qqdrz4jk NV3e1q9joUKJBWW6gAEcmLYu51AnhTEwSUn4FGd7+4xrreHBiWjMQ8x3IKJzBkn+ vow++mr+20TaAfFuKwzzfO9adEpPJ1SvkAphHHU7Zr2dFOmfW8GBnp+AiF42MQs8 Lx5mG90+G2waYvYn4njwfTYtusQaU8ZFVk0Oxv5OSOUKIbtCp0Is0XiodHukB36v oIX1Fz32ysH3Ig87zTqaiCbjs6tv73Aya2apuxDx6DHRvOxpCoRKqM2lQHSeXlNf O5Olj7jlTnPame1YNLde91Zx -----END CERTIFICATE-----Generated at Thu Mar 26 16:25:56 2026 by rpki-client