$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/1D77B4081BD911EAB49CC840C4F9AE02.roa File: 1D77B4081BD911EAB49CC840C4F9AE02.roa (raw, json) Hash identifier: OW7bqpEFe7SvDOP9JKARQF/4Dv4BbGM5LIvC7KwAqes= Subject key identifier: 12:6A:08:75:AA:0B:BD:4A:0A:6F:0C:B7:64:A7:AF:F5:BD:B4:99:C4 Certificate issuer: /CN=A9128DE9/serialNumber=81813D6AF96CF0A0748071CDBB1E270F6B5C6113 Certificate serial: 0C9F Authority key identifier: 81:81:3D:6A:F9:6C:F0:A0:74:80:71:CD:BB:1E:27:0F:6B:5C:61:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYE9avls8KB0gHHNux4nD2tcYRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/1D77B4081BD911EAB49CC840C4F9AE02.roa Signing time: Tue 12 May 2026 09:23:04 +0000 ROA not before: Tue 12 May 2026 09:23:04 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135600 IP address blocks: 45.114.4.0/23 maxlen: 23 45.114.6.0/23 maxlen: 23 103.67.170.0/24 maxlen: 24 103.67.171.0/24 maxlen: 24 202.133.192.0/20 maxlen: 20 202.133.208.0/20 maxlen: 20 203.17.180.0/24 maxlen: 24 203.17.181.0/24 maxlen: 24 203.17.182.0/23 maxlen: 23 2405:d180:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYE9avls8KB0gHHNux4nD2tcYRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3231 (0xc9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=81813D6AF96CF0A0748071CDBB1E270F6B5C6113 Validity Not Before: May 12 09:23:04 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6a02f177-b30a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6d:9a:e1:f5:4f:83:b0:50:f4:4d:2b:d3:2d: f9:42:2c:db:b2:d6:e8:74:dd:5c:3b:ca:6d:50:ef: e6:40:5f:bf:ae:f2:08:6f:dc:2c:30:c1:66:d4:5e: dd:10:4b:6b:1c:a6:b6:56:0f:24:eb:47:29:ee:16: a7:9d:90:ff:12:2e:bf:b6:76:fa:64:c0:6d:9e:2a: 0e:3d:2c:35:98:b0:e7:f0:46:a3:56:24:42:40:92: a4:cf:5b:ed:78:5c:23:6c:07:7e:42:04:88:48:98: 0a:ff:0e:c4:47:e0:63:87:da:99:1b:4f:27:13:67: aa:af:89:1f:d7:e6:f2:52:44:76:4c:90:92:c4:c6: a8:66:c9:f3:bf:7b:0f:79:c5:8b:8c:4e:95:fe:6e: e3:d3:c3:99:75:8e:17:a3:b2:30:44:a9:9d:90:1f: 01:6d:73:85:a9:93:75:21:3c:d3:7e:88:9e:6b:3c: 39:d0:b2:42:2d:96:e5:e6:94:ef:c1:6b:c6:c1:3b: eb:c9:66:ed:55:c5:dc:de:ea:23:c5:a0:79:e6:f0: 64:56:75:6b:95:ee:cb:2e:5a:3b:37:16:86:c5:12: d3:d5:02:d9:9e:b0:be:e7:cd:49:66:a9:2b:84:6a: 3e:7e:49:3f:9a:75:e4:4b:0f:95:33:8c:ea:80:fe: 4a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:6A:08:75:AA:0B:BD:4A:0A:6F:0C:B7:64:A7:AF:F5:BD:B4:99:C4 X509v3 Authority Key Identifier: keyid:81:81:3D:6A:F9:6C:F0:A0:74:80:71:CD:BB:1E:27:0F:6B:5C:61:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYE9avls8KB0gHHNux4nD2tcYRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/1D77B4081BD911EAB49CC840C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.114.4.0/22 103.67.170.0/23 202.133.192.0/19 203.17.180.0/22 IPv6: 2405:d180:8000::/34 Signature Algorithm: sha256WithRSAEncryption 71:83:e2:9b:59:cc:60:c7:4a:24:f2:f3:5b:37:5a:6a:2a:1a: cd:5b:71:a9:81:de:47:e5:a5:db:3d:9f:ae:f1:f8:6f:ae:43: 0c:14:e4:4c:bd:27:e3:7e:63:79:18:a2:7f:6b:08:1a:f1:ef: c2:07:a0:ff:b7:bf:18:93:9c:f7:8d:a2:a5:f2:57:b0:7e:2d: a0:2d:c0:f2:fb:55:4f:ce:99:8b:82:03:77:67:8f:27:7a:b2: b1:a9:c9:8c:19:72:b5:0e:9f:cf:e1:6e:04:56:e1:1f:48:1b: e9:a0:69:31:7b:1e:b0:12:13:e6:bb:20:59:c1:6e:58:ad:cd: bf:cc:a4:64:27:53:12:7d:71:a8:c7:30:b5:59:46:47:da:07: 1e:a7:25:ba:97:34:5d:43:a7:61:95:59:2a:e2:c8:86:45:36: 23:42:ff:5a:80:c2:d4:d2:4b:c5:23:46:7d:e9:d6:23:5f:89: df:4a:fd:3d:76:59:da:15:bc:de:86:8b:1e:5e:5a:fc:26:11: 63:d5:83:d1:dc:be:20:28:85:aa:ba:2c:8c:9d:3c:94:a0:25: 27:7b:70:69:d7:bd:fb:ad:0b:c5:59:d6:46:39:d8:31:a0:f2: f4:f2:07:73:85:50:12:8d:2a:d4:3e:57:7c:54:06:77:70:07: 89:de:2a:0e -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgICDJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDgxODEzRDZBRjk2Q0YwQTA3NDgwNzFDREJCMUUyNzBG NkI1QzYxMTMwHhcNMjYwNTEyMDkyMzA0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAyZjE3Ny1iMzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqm2a4fVPg7BQ9E0r0y35QizbstbodN1cO8ptUO/mQF+/rvIIb9wsMMFm1F7d EEtrHKa2Vg8k60cp7hannZD/Ei6/tnb6ZMBtnioOPSw1mLDn8EajViRCQJKkz1vt eFwjbAd+QgSISJgK/w7ER+Bjh9qZG08nE2eqr4kf1+byUkR2TJCSxMaoZsnzv3sP ecWLjE6V/m7j08OZdY4Xo7IwRKmdkB8BbXOFqZN1ITzTfoieazw50LJCLZbl5pTv wWvGwTvryWbtVcXc3uojxaB55vBkVnVrle7LLlo7NxaGxRLT1QLZnrC+581JZqkr hGo+fkk/mnXkSw+VM4zqgP5KMwIDAQABo4ICgjCCAn4wHQYDVR0OBBYEFBJqCHWq C71KCm8Mt2Snr/W9tJnEMB8GA1UdIwQYMBaAFIGBPWr5bPCgdIBxzbseJw9rXGET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9ENjlCNDVFODFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9nWUU5YXZsczhLQjBnSEhOdXg0bkQydGNZ Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZRTlhdmxzOEtCMGdISE51eDRuRDJ0Y1lSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhERTkvRDY5QjQ1RTgxQkQ1MTFFQTgwQ0JDRjM2QzRGOUFFMDIvMUQ3N0I0MDgx QkQ5MTFFQUI0OUNDODQwQzRGOUFFMDIucm9hMEEGCCsGAQUFBwEHAQH/BDIwMDAe BAIAATAYAwQCLXIEAwQBZ0OqAwQFyoXAAwQCyxG0MA4EAgACMAgDBgYkBdGAgDAN BgkqhkiG9w0BAQsFAAOCAQEAcYPim1nMYMdKJPLzWzdaaioazVtxqYHeR+Wl2z2f rvH4b65DDBTkTL0n435jeRiif2sIGvHvwgeg/7e/GJOc942ipfJXsH4toC3A8vtV T86Zi4IDd2ePJ3qysanJjBlytQ6fz+FuBFbhH0gb6aBpMXsesBIT5rsgWcFuWK3N v8ykZCdTEn1xqMcwtVlGR9oHHqclupc0XUOnYZVZKuLIhkU2I0L/WoDC1NJLxSNG fenWI1+J30r9PXZZ2hW83oaLHl5a/CYRY9WD0dy+ICiFqrosjJ08lKAlJ3twade9 +60LxVnWRjnYMaDy9PIHc4VQEo0q1D5XfFQGd3AHid4qDg== -----END CERTIFICATE-----Generated at Wed May 13 12:23:01 2026 by rpki-client