$ rpki-client -vvf rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/5D8DFB5684CA11EF9F92574DC4F9AE02.roa File: 5D8DFB5684CA11EF9F92574DC4F9AE02.roa (raw, json) Hash identifier: ui+QIvOSSm4JsqVWIgvAnE+tPuj6skIC4z/Y5KBBL/w= Subject key identifier: 23:40:E4:38:B7:D3:CD:C0:9D:87:2B:88:0A:9C:65:DE:2D:AD:80:19 Certificate issuer: /CN=A91276FA/serialNumber=5533A7C57BF4DB1E538F9E77E0B4868B8F90C582 Certificate serial: 0120 Authority key identifier: 55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/5D8DFB5684CA11EF9F92574DC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:41:03 +0000 ROA not before: Thu 23 Oct 2025 08:20:11 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 55933 IP address blocks: 45.125.16.0/22 maxlen: 24 103.242.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.crl rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:04:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276FA, serialNumber=5533A7C57BF4DB1E538F9E77E0B4868B8F90C582 Validity Not Before: Oct 23 08:20:11 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a5855f-00dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4f:82:6b:fc:8f:19:4d:2c:bf:59:ea:e4:a9: d6:71:6c:09:11:7f:e7:f5:05:a9:11:6f:d8:22:f1: c6:7a:9f:4e:76:35:cf:b4:9e:65:db:10:7d:ee:19: e4:8e:be:f8:aa:2a:ca:1a:54:39:e7:b4:4c:bc:ac: b5:f9:64:e9:cb:17:52:6c:9e:37:f8:93:41:fd:90: d7:31:31:60:b8:82:cc:64:0a:99:51:39:4b:4d:15: a5:27:7f:eb:79:3a:f2:de:c8:28:bf:e9:7a:cf:86: 5f:e5:0f:f8:1a:be:7f:91:c8:a2:0f:07:aa:b9:02: de:8e:a3:91:30:d7:e6:d3:1f:dd:c3:78:33:40:c1: 9b:7d:f3:97:e7:2b:6a:c2:1f:71:0b:54:60:c6:2d: dc:f9:ce:8b:29:cb:86:f1:4f:8d:42:cd:0c:1a:13: 25:2f:a8:33:df:9f:60:f2:c0:70:55:5b:38:9d:eb: 71:b0:35:04:c6:c7:9c:70:53:74:9b:95:d4:34:40: 6c:68:c3:e2:02:c6:2c:05:39:d4:a6:36:9b:4a:9c: 4d:81:d1:fd:ea:71:7f:27:91:ca:a0:b5:ca:6f:9b: 73:3c:60:e4:fb:64:f2:d8:0f:58:42:0a:f0:8c:a6: e3:ce:d6:0e:9e:66:43:8e:0b:26:b0:8b:27:be:b2: 7b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:40:E4:38:B7:D3:CD:C0:9D:87:2B:88:0A:9C:65:DE:2D:AD:80:19 X509v3 Authority Key Identifier: keyid:55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/5D8DFB5684CA11EF9F92574DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.125.16.0/22 103.242.132.0/22 Signature Algorithm: sha256WithRSAEncryption 60:0b:ba:58:62:e8:53:93:62:d3:91:fd:45:e2:cf:15:4f:01: a5:6f:2f:0b:df:3c:31:2e:ae:d8:c8:4c:f2:df:03:5c:88:0d: 7e:6f:82:5e:44:f9:9d:a1:58:e7:32:55:e7:e8:9f:09:27:bb: d5:95:11:81:46:6e:4f:09:52:55:ae:f3:eb:38:68:3b:32:14: d3:71:b6:db:9b:6c:46:53:67:4a:fb:ee:16:fd:24:eb:b0:5a: 5c:53:cf:9b:48:14:93:96:01:9d:64:af:b4:cf:56:53:98:45: 1f:e4:75:6a:c8:33:36:62:f2:2b:b7:e3:4d:79:0c:c3:5e:6d: f7:5e:62:18:43:b1:84:1d:85:40:1c:a0:49:95:6b:e5:43:5f: fd:37:43:01:8a:b0:1c:5e:03:93:b6:2a:f2:0e:ce:27:01:3b: 84:76:8e:4b:de:4e:04:5b:76:f9:7e:b6:82:b3:f1:0c:cd:44: 59:d1:14:d9:21:1e:9f:05:0e:98:65:0f:8b:37:d0:df:df:14: dd:c7:30:4c:d7:d4:f6:d4:3e:4b:c9:23:11:e5:fb:44:b1:6b: 97:21:05:2b:5a:92:53:17:99:5d:ea:ab:0c:c4:12:08:22:39: 7a:35:1f:83:77:5f:82:fc:fb:01:fc:83:17:30:47:20:c1:f1: 6c:ca:d1:0d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2RkExMTAvBgNVBAUTKDU1MzNBN0M1N0JGNERCMUU1MzhGOUU3N0UwQjQ4NjhC OEY5MEM1ODIwHhcNMjUxMDIzMDgyMDExWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODU1Zi0wMGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0k+Ca/yPGU0sv1nq5KnWcWwJEX/n9QWpEW/YIvHGep9OdjXPtJ5l2xB97hnk jr74qirKGlQ557RMvKy1+WTpyxdSbJ43+JNB/ZDXMTFguILMZAqZUTlLTRWlJ3/r eTry3sgov+l6z4Zf5Q/4Gr5/kciiDwequQLejqORMNfm0x/dw3gzQMGbffOX5ytq wh9xC1Rgxi3c+c6LKcuG8U+NQs0MGhMlL6gz359g8sBwVVs4netxsDUExseccFN0 m5XUNEBsaMPiAsYsBTnUpjabSpxNgdH96nF/J5HKoLXKb5tzPGDk+2Ty2A9YQgrw jKbjztYOnmZDjgsmsIsnvrJ7ZQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCNA5Di3 083AnYcriAqcZd4trYAZMB8GA1UdIwQYMBaAFFUzp8V79NseU4+ed+C0houPkMWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZGQS85QzUyQTdFODg0 QzkxMUVGQjU0RDBDNDlDNEY5QUUwMi9WVE9ueFh2MDJ4NVRqNTUzNExTR2k0LVF4 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZUT254WHYwMng1VGo1NTM0TFNHaTQtUXhZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc2RkEvOUM1MkE3RTg4NEM5MTFFRkI1NEQwQzQ5QzRGOUFFMDIvNUQ4REZCNTY4 NENBMTFFRjlGOTI1NzREQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLX0QAwQCZ/KEMA0GCSqGSIb3DQEBCwUAA4IBAQBgC7pYYuhTk2LT kf1F4s8VTwGlby8L3zwxLq7YyEzy3wNciA1+b4JeRPmdoVjnMlXn6J8JJ7vVlRGB Rm5PCVJVrvPrOGg7MhTTcbbbm2xGU2dK++4W/STrsFpcU8+bSBSTlgGdZK+0z1ZT mEUf5HVqyDM2YvIrt+NNeQzDXm33XmIYQ7GEHYVAHKBJlWvlQ1/9N0MBirAcXgOT tiryDs4nATuEdo5L3k4EW3b5fraCs/EMzURZ0RTZIR6fBQ6YZQ+LN9Df3xTdxzBM 19T21D5LySMR5ftEsWuXIQUrWpJTF5ld6qsMxBIIIjl6NR+Dd1+C/PsB/IMXMEcg wfFsytEN -----END CERTIFICATE-----Generated at Thu Mar 26 11:31:11 2026 by rpki-client