$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/0C64C6B2821011F0B329B866C4F9AE02.roa File: 0C64C6B2821011F0B329B866C4F9AE02.roa (raw, json) Hash identifier: UuZBWjQy/vvCDj1GH11Ut9+9Pjsx/5KL/8Qu7tKsi7U= Subject key identifier: CC:AF:3B:5E:81:DB:B4:5C:9A:57:50:A2:51:7A:FC:FC:7D:2B:46:AF Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 08A3 Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/0C64C6B2821011F0B329B866C4F9AE02.roa Signing time: Mon 16 Mar 2026 20:27:42 +0000 ROA not before: Mon 16 Mar 2026 20:27:42 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 134196 IP address blocks: 45.124.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2211 (0x8a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Mar 16 20:27:42 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b867be-3d3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4b:8e:38:a0:f5:6d:4d:b6:6e:f3:e5:f7:ec: 0a:85:6a:b4:7a:2e:83:6b:ad:c0:8b:56:f1:c4:61: 18:42:f3:d7:b9:9c:c6:bb:a4:40:79:15:1e:14:1e: ec:7f:7f:ae:67:a8:38:34:a2:74:3b:18:2d:98:c8: 91:04:26:a9:81:34:06:46:fe:6c:df:73:ce:ec:37: 78:45:7e:f3:f9:aa:25:d1:6b:f7:2a:f8:a7:3a:cf: 77:af:84:c4:ab:ce:2d:0c:b8:cc:93:f5:c6:7b:d0: a9:f2:4d:02:fa:d6:34:dd:a4:df:c8:36:ed:f9:5f: 0b:7c:37:88:fc:c0:2b:e5:d5:a3:96:19:8b:97:1e: 92:7b:9e:4a:88:05:2e:64:15:ce:f2:f3:aa:62:37: c8:1c:04:e8:bd:20:20:15:1d:ec:ab:75:74:fd:c1: 43:eb:46:6a:a3:14:c5:b5:ed:ad:7c:35:44:3f:92: 8c:75:b1:6d:05:48:55:bc:8c:c2:ea:4f:fc:c5:b9: 6d:ea:2f:e1:98:2b:07:6c:c9:1e:e7:4e:15:bd:f9: 0d:bb:68:5a:58:02:92:f9:ec:04:8d:67:07:da:31: 9c:fb:b7:7c:a3:8d:3b:af:66:f9:1b:0c:fb:99:7a: f4:ce:d3:79:fd:7a:e3:ac:10:87:4a:ee:fa:d0:8d: 33:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:AF:3B:5E:81:DB:B4:5C:9A:57:50:A2:51:7A:FC:FC:7D:2B:46:AF X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/0C64C6B2821011F0B329B866C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.124.24.0/22 Signature Algorithm: sha256WithRSAEncryption 37:e6:28:6d:7a:64:5d:ea:63:de:24:ee:87:0b:df:d7:55:e0: b2:b6:80:c3:6a:cc:eb:fd:c4:13:d9:8c:3f:31:f6:66:b1:2d: d7:12:d7:19:ea:cf:60:88:d6:7f:93:aa:9c:d4:11:85:5f:98: 9f:ac:7d:0c:0c:43:4e:30:5d:88:40:33:16:68:7a:ff:1a:b3: b4:a8:2a:0a:8c:5e:3c:89:aa:64:46:50:88:1c:56:64:92:bb: b6:21:d1:f2:2a:4d:81:3a:ca:88:d1:18:cb:7b:46:0c:cb:6c: 4a:d1:eb:21:b6:f5:8c:1a:aa:ca:da:24:67:6e:d2:8c:01:aa: 97:5e:cf:3c:65:2b:bc:7f:a4:77:3d:da:12:11:84:e7:0c:19: 63:3d:ce:c0:23:c6:4e:1d:fb:45:12:04:f8:92:b9:1d:90:43: 18:8f:eb:76:62:99:6f:d0:0e:41:80:3b:f2:12:f8:53:b7:c9: 52:ae:5e:a6:f0:45:93:8f:e0:1c:ac:a5:5a:c3:aa:7b:a5:dc: 8e:63:c5:d7:fb:a6:18:99:cf:0f:b3:f6:ef:a4:70:e1:80:1b: 29:3e:0c:43:43:65:a6:bc:49:fc:06:a6:6a:fd:62:1d:5a:09: b9:ec:70:93:b2:5b:0d:bc:80:9a:e5:c1:90:29:62:1a:4b:a9: 32:11:e4:4c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjYwMzE2MjAyNzQyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI4NjdiZS0zZDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0uOOKD1bU22bvPl9+wKhWq0ei6Da63Ai1bxxGEYQvPXuZzGu6RAeRUeFB7s f3+uZ6g4NKJ0OxgtmMiRBCapgTQGRv5s33PO7Dd4RX7z+aol0Wv3KvinOs93r4TE q84tDLjMk/XGe9Cp8k0C+tY03aTfyDbt+V8LfDeI/MAr5dWjlhmLlx6Se55KiAUu ZBXO8vOqYjfIHATovSAgFR3sq3V0/cFD60ZqoxTFte2tfDVEP5KMdbFtBUhVvIzC 6k/8xblt6i/hmCsHbMke504VvfkNu2haWAKS+ewEjWcH2jGc+7d8o407r2b5Gwz7 mXr0ztN5/XrjrBCHSu760I0zMQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMyvO16B 27RcmldQolF6/Px9K0avMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk3QzIvNEU0MjZERThGQkVBMTFFQTk0MEExRDE5QzRGOUFFMDIvMEM2NEM2QjI4 MjEwMTFGMEIzMjlCODY2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCLXwYMA0GCSqGSIb3DQEBCwUAA4IBAQA35ihtemRd6mPeJO6HC9/X VeCytoDDaszr/cQT2Yw/MfZmsS3XEtcZ6s9giNZ/k6qc1BGFX5ifrH0MDENOMF2I QDMWaHr/GrO0qCoKjF48iapkRlCIHFZkkru2IdHyKk2BOsqI0RjLe0YMy2xK0esh tvWMGqrK2iRnbtKMAaqXXs88ZSu8f6R3PdoSEYTnDBljPc7AI8ZOHftFEgT4krkd kEMYj+t2Yplv0A5BgDvyEvhTt8lSrl6m8EWTj+AcrKVaw6p7pdyOY8XX+6YYmc8P s/bvpHDhgBspPgxDQ2WmvEn8BqZq/WIdWgm57HCTslsNvICa5cGQKWIaS6kyEeRM -----END CERTIFICATE-----Generated at Thu Mar 26 16:27:39 2026 by rpki-client