$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/06F011A2134B11F0AA41F90AC4F9AE02.roa File: 06F011A2134B11F0AA41F90AC4F9AE02.roa (raw, json) Hash identifier: syS+9guCxEoztAFQkgarn4bONRAd62QCH19yi6osoP4= Subject key identifier: C7:C7:97:C5:65:63:51:9E:5C:A4:14:D9:64:B6:89:EE:73:74:87:5F Certificate issuer: /CN=A91FDBE8/serialNumber=F35409394866FB408A0D188E0B7D00CC5A73948E Certificate serial: 083E Authority key identifier: F3:54:09:39:48:66:FB:40:8A:0D:18:8E:0B:7D:00:CC:5A:73:94:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/06F011A2134B11F0AA41F90AC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:25:22 +0000 ROA not before: Tue 30 Sep 2025 21:54:06 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38880 IP address blocks: 45.65.60.0/22 maxlen: 22 45.65.60.0/24 maxlen: 24 45.65.61.0/24 maxlen: 24 45.65.62.0/24 maxlen: 24 45.65.63.0/24 maxlen: 24 45.114.204.0/22 maxlen: 22 45.114.204.0/24 maxlen: 24 45.114.205.0/24 maxlen: 24 45.114.206.0/24 maxlen: 24 45.114.207.0/24 maxlen: 24 103.37.8.0/23 maxlen: 23 103.37.8.0/24 maxlen: 24 103.37.9.0/24 maxlen: 24 103.52.168.0/23 maxlen: 23 103.52.168.0/24 maxlen: 24 103.52.169.0/24 maxlen: 24 103.80.136.0/22 maxlen: 22 103.80.136.0/24 maxlen: 24 103.80.137.0/24 maxlen: 24 103.80.138.0/24 maxlen: 24 103.80.139.0/24 maxlen: 24 2402:3680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.crl rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2110 (0x83e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDBE8, serialNumber=F35409394866FB408A0D188E0B7D00CC5A73948E Validity Not Before: Sep 30 21:54:06 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a43032-7c9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a9:01:9f:ef:55:f7:e3:74:8e:f9:b9:a8:4d: 1d:aa:73:07:48:f6:67:4d:b6:06:42:34:cd:26:e8: db:ca:f4:8d:dc:2e:16:ca:c6:f6:24:9b:bf:40:75: 29:42:09:5d:5d:e5:e6:2f:c4:f2:59:cb:75:be:dc: e6:25:c6:3b:1a:58:3a:a6:c3:2e:9b:89:4e:32:67: 38:91:03:0f:a4:a7:00:db:98:f7:19:7c:77:99:71: 6b:fc:16:ed:5c:e4:88:0d:9f:9e:e8:fa:e6:69:91: da:b4:3d:31:22:a0:dc:96:8f:eb:ea:14:69:10:9f: 45:42:27:86:bc:44:1b:1f:40:e2:dc:37:bc:39:fc: 02:9f:64:c7:c2:5d:9a:9b:35:7c:4d:3a:90:63:f8: c5:71:fb:d7:e3:76:ec:c8:c3:34:16:0c:97:6e:62: 24:4b:cd:4d:79:0e:df:68:1d:79:aa:04:86:d6:98: 7e:d8:76:4e:b4:20:c6:e7:d9:0c:6b:6d:88:1c:0d: 49:59:ab:10:28:a7:2c:db:b9:f4:55:7c:6c:19:18: 86:44:01:c2:4f:95:55:81:02:85:2a:18:5b:2f:ab: 53:36:d9:68:a8:2a:1e:42:45:39:46:1a:99:a7:89: a8:1e:9e:4b:4e:fc:43:99:29:a9:32:99:b0:35:44: 6c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C7:97:C5:65:63:51:9E:5C:A4:14:D9:64:B6:89:EE:73:74:87:5F X509v3 Authority Key Identifier: keyid:F3:54:09:39:48:66:FB:40:8A:0D:18:8E:0B:7D:00:CC:5A:73:94:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/06F011A2134B11F0AA41F90AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.65.60.0/22 45.114.204.0/22 103.37.8.0/23 103.52.168.0/23 103.80.136.0/22 IPv6: 2402:3680::/32 Signature Algorithm: sha256WithRSAEncryption 94:19:f2:73:b0:4d:dc:72:5d:7e:d0:d2:38:5c:8b:f9:3d:0d: 50:20:e1:ca:20:fa:61:3c:29:cb:b8:a5:02:4b:66:5c:1f:46: 7f:6e:cb:39:f4:5e:d0:68:8b:8d:b2:e9:f9:8b:64:45:4f:6f: 79:1a:df:39:da:02:80:91:94:86:ae:e1:b9:9d:ba:b2:24:e1: b5:80:c1:49:f0:aa:c9:54:54:74:be:89:48:b8:19:f4:e2:78: 48:2b:66:be:39:81:7a:30:c0:a9:47:1b:e9:d1:9a:2c:b0:35: 50:5f:dc:e6:99:14:e3:31:49:d6:18:66:4d:b1:e4:34:e7:99: d9:1d:e4:b9:7f:e7:86:a2:a9:29:24:38:e2:74:05:16:da:cb: af:6d:a9:1d:ca:f3:30:f2:93:e4:db:8d:05:c2:11:57:3b:ab: fd:77:8a:3d:3c:cc:66:2f:9a:aa:9f:66:65:21:18:82:d8:0f: 78:6c:fe:a5:14:4b:36:73:fa:f1:d9:d7:68:3c:81:bb:d1:c3: b9:39:89:41:b4:93:14:f1:86:56:96:9d:27:ef:78:41:d1:c3: 6a:31:3b:b6:fc:0a:b2:ce:9b:e7:47:34:d3:96:6e:3a:ef:d6: 1b:dd:23:bf:c3:28:33:9f:1f:40:3b:fc:01:a8:72:03:c7:68: 3a:8a:07:8c -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICCD4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRCRTgxMTAvBgNVBAUTKEYzNTQwOTM5NDg2NkZCNDA4QTBEMTg4RTBCN0QwMEND NUE3Mzk0OEUwHhcNMjUwOTMwMjE1NDA2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzAzMi03YzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6kBn+9V9+N0jvm5qE0dqnMHSPZnTbYGQjTNJujbyvSN3C4Wysb2JJu/QHUp QgldXeXmL8TyWct1vtzmJcY7Glg6psMum4lOMmc4kQMPpKcA25j3GXx3mXFr/Bbt XOSIDZ+e6PrmaZHatD0xIqDclo/r6hRpEJ9FQieGvEQbH0Di3De8OfwCn2THwl2a mzV8TTqQY/jFcfvX43bsyMM0FgyXbmIkS81NeQ7faB15qgSG1ph+2HZOtCDG59kM a22IHA1JWasQKKcs27n0VXxsGRiGRAHCT5VVgQKFKhhbL6tTNtloqCoeQkU5RhqZ p4moHp5LTvxDmSmpMpmwNURstQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFMfHl8Vl Y1GeXKQU2WS2ie5zdIdfMB8GA1UdIwQYMBaAFPNUCTlIZvtAig0Yjgt9AMxac5SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREJFOC85RDM2MzE3ODE1 MkIxMUVCOUJENEVCNDZDNEY5QUUwMi84MVFKT1VobS0wQ0tEUmlPQzMwQXpGcHps STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgxUUpPVWhtLTBDS0RSaU9DMzBBekZwemxJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRCRTgvOUQzNjMxNzgxNTJCMTFFQjlCRDRFQjQ2QzRGOUFFMDIvMDZGMDExQTIx MzRCMTFGMEFBNDFGOTBBQzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQCLUE8AwQCLXLMAwQBZyUIAwQBZzSoAwQCZ1CIMA0EAgACMAcDBQAk AjaAMA0GCSqGSIb3DQEBCwUAA4IBAQCUGfJzsE3ccl1+0NI4XIv5PQ1QIOHKIPph PCnLuKUCS2ZcH0Z/bss59F7QaIuNsun5i2RFT295Gt852gKAkZSGruG5nbqyJOG1 gMFJ8KrJVFR0volIuBn04nhIK2a+OYF6MMCpRxvp0ZossDVQX9zmmRTjMUnWGGZN seQ055nZHeS5f+eGoqkpJDjidAUW2suvbakdyvMw8pPk240FwhFXO6v9d4o9PMxm L5qqn2ZlIRiC2A94bP6lFEs2c/rx2ddoPIG70cO5OYlBtJMU8YZWlp0n73hB0cNq MTu2/AqyzpvnRzTTlm4679Yb3SO/wygznx9AO/wBqHIDx2g6igeM -----END CERTIFICATE-----Generated at Thu Mar 26 12:39:12 2026 by rpki-client