$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/45FE96F6A5F611EFA16E4B2FC4F9AE02.roa File: 45FE96F6A5F611EFA16E4B2FC4F9AE02.roa (raw, json) Hash identifier: 4DPDsju8pXlErtWtC4xBJ8ufxgxSHiE9Btw+6EPp5hM= Subject key identifier: 6D:63:FC:1F:9E:EA:F0:9E:5C:14:ED:D0:EC:D2:C8:97:0F:21:1A:68 Certificate issuer: /CN=A911C53D/serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Certificate serial: 06FA Authority key identifier: A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/45FE96F6A5F611EFA16E4B2FC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:22:20 +0000 ROA not before: Fri 04 Jul 2025 23:04:25 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 141749 IP address blocks: 202.14.152.0/24 maxlen: 24 203.20.94.0/24 maxlen: 24 203.24.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1786 (0x6fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53D, serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Validity Not Before: Jul 4 23:04:25 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a5ab2c-ece9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:7e:06:a7:bf:41:bd:dc:e4:fa:0a:ad:08:57: 49:e5:4d:ad:a6:ae:26:99:7a:c0:f5:b5:03:a0:97: 4e:fc:a8:ec:14:45:05:c1:cf:5f:09:65:2a:f1:89: 46:4f:fa:d0:71:e5:89:46:0e:81:43:82:91:1f:ce: 25:d0:82:51:15:ee:57:f8:e4:10:76:84:ed:40:ca: 87:db:31:16:c2:47:6e:49:5b:96:a2:39:d2:cd:25: 46:31:3f:b6:68:ce:37:a3:31:0d:c3:be:06:39:78: aa:67:a3:30:ae:84:c7:6f:e4:1d:ea:97:a9:2b:b1: 3c:40:fe:56:fb:b5:49:23:5c:37:9d:71:47:f3:26: 92:0b:25:8e:fd:b3:d2:1d:3c:fd:b5:66:7f:89:2f: b3:ec:34:8a:d6:d3:49:68:2b:37:ad:de:9d:e2:1e: 96:4f:2e:06:cc:7f:15:79:6e:ec:17:5d:76:18:e5: 20:2c:5a:a4:fd:4b:55:44:11:15:16:d8:3d:69:ae: 58:1f:e9:46:05:a1:37:42:c5:6f:30:9a:4f:86:51: 2a:7c:8b:30:55:02:80:8a:4e:2a:a7:ed:bb:3f:6d: 97:3f:4d:a2:fb:73:ea:af:df:84:17:95:71:ae:6a: 71:96:9c:44:4a:5b:d7:ea:86:bd:cd:a0:f6:a0:4a: 89:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:63:FC:1F:9E:EA:F0:9E:5C:14:ED:D0:EC:D2:C8:97:0F:21:1A:68 X509v3 Authority Key Identifier: keyid:A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/45FE96F6A5F611EFA16E4B2FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.14.152.0/24 203.20.94.0/24 203.24.48.0/24 Signature Algorithm: sha256WithRSAEncryption 43:66:af:96:fa:a8:38:83:e8:ca:7e:26:b0:dc:f2:7e:8e:b4: fa:20:f5:33:78:50:9f:fc:73:b4:e1:f9:e4:4b:ea:4c:63:6e: e3:c9:62:09:fc:f6:14:b9:07:f5:f8:03:79:66:39:eb:e1:05: b5:33:6f:72:27:f5:68:8d:ba:20:af:4d:0b:91:0d:c9:6b:c9: d3:8c:24:72:46:88:bf:8f:a4:d0:aa:58:43:1a:17:49:46:d2: 8c:0b:ed:da:df:5c:14:6d:39:74:53:a9:70:cb:f0:1d:dc:36: 1c:17:a4:92:3f:00:04:39:17:df:72:d2:8b:96:3a:e6:22:05: ab:ff:75:f2:ba:ad:dd:f8:bd:cb:b1:f4:3d:b1:55:34:5c:37: 73:c8:df:a5:de:d6:d2:c2:f6:ed:52:e1:ab:a1:49:ea:6a:a1: da:d5:2a:f4:a4:a2:ba:3c:7b:e3:ff:3d:2f:f0:33:4c:1e:c5: 21:9d:96:a6:39:16:75:86:c5:cd:3e:5a:68:9b:ac:fc:4c:a9: 85:ae:c5:77:9f:2c:6e:9a:46:85:7b:5b:ad:8b:18:89:e9:c8: 24:bc:b2:34:bc:de:f3:6e:8c:a8:ab:01:cd:e2:77:9f:53:6f: f2:1c:0d:63:27:ec:0a:f4:d9:30:ca:2f:1e:89:93:ba:4b:4c: 07:c6:c2:d4 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICBvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1M0QxMTAvBgNVBAUTKEE1Qzc2M0U4QTk1RjZCOUFCMjQxMTM2MDFEQTgxNTNB MTU5MTI2RUUwHhcNMjUwNzA0MjMwNDI1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YWIyYy1lY2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlH4Gp79Bvdzk+gqtCFdJ5U2tpq4mmXrA9bUDoJdO/KjsFEUFwc9fCWUq8YlG T/rQceWJRg6BQ4KRH84l0IJRFe5X+OQQdoTtQMqH2zEWwkduSVuWojnSzSVGMT+2 aM43ozENw74GOXiqZ6MwroTHb+Qd6pepK7E8QP5W+7VJI1w3nXFH8yaSCyWO/bPS HTz9tWZ/iS+z7DSK1tNJaCs3rd6d4h6WTy4GzH8VeW7sF112GOUgLFqk/UtVRBEV Ftg9aa5YH+lGBaE3QsVvMJpPhlEqfIswVQKAik4qp+27P22XP02i+3Pqr9+EF5Vx rmpxlpxESlvX6oa9zaD2oEqJ1QIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFG1j/B+e 6vCeXBTt0OzSyJcPIRpoMB8GA1UdIwQYMBaAFKXHY+ipX2uaskETYB2oFToVkSbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzUzRC84NEI1OEY2NjhD RkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1cXlRUk5nSGFnVk9oV1JK dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjZGo2S2xmYTVxeVFSTmdIYWdWT2hXUkp1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM1M0QvODRCNThGNjY4Q0ZCMTFFQjlEQzYyQzNCQzRGOUFFMDIvNDVGRTk2RjZB NUY2MTFFRkExNkU0QjJGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAyg6YAwQAyxReAwQAyxgwMA0GCSqGSIb3DQEBCwUAA4IBAQBDZq+W +qg4g+jKfiaw3PJ+jrT6IPUzeFCf/HO04fnkS+pMY27jyWIJ/PYUuQf1+AN5Zjnr 4QW1M29yJ/Vojbogr00LkQ3Ja8nTjCRyRoi/j6TQqlhDGhdJRtKMC+3a31wUbTl0 U6lwy/Ad3DYcF6SSPwAEORffctKLljrmIgWr/3Xyuq3d+L3LsfQ9sVU0XDdzyN+l 3tbSwvbtUuGroUnqaqHa1Sr0pKK6PHvj/z0v8DNMHsUhnZamORZ1hsXNPlpom6z8 TKmFrsV3nyxumkaFe1utixiJ6cgkvLI0vN7zboyoqwHN4nefU2/yHA1jJ+wK9Nkw yi8eiZO6S0wHxsLU -----END CERTIFICATE-----Generated at Thu Mar 26 08:51:24 2026 by rpki-client