$ rpki-client -vvf rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/76B90530747811EDA48E0D52C4F9AE02.roa File: 76B90530747811EDA48E0D52C4F9AE02.roa (raw, json) Hash identifier: prjzJ/kw7tRxzDOItt9cUFw+O9ghSpnIB3ybGSXw9cg= Subject key identifier: F8:3B:07:EA:38:A1:D2:3D:C7:1D:B2:BF:D4:68:C7:3C:FB:A4:4C:A1 Certificate issuer: /CN=A915D99A/serialNumber=D17D77CB0C89B994CDDACBA275270A1E74DCAA27 Certificate serial: 3574 Authority key identifier: D1:7D:77:CB:0C:89:B9:94:CD:DA:CB:A2:75:27:0A:1E:74:DC:AA:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/76B90530747811EDA48E0D52C4F9AE02.roa Signing time: Wed 04 Mar 2026 15:10:34 +0000 ROA not before: Wed 04 Mar 2026 15:10:34 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 18024 IP address blocks: 45.64.251.0/24 maxlen: 24 103.245.240.0/23 maxlen: 23 119.2.96.0/20 maxlen: 20 119.2.112.0/20 maxlen: 20 202.144.128.0/20 maxlen: 20 202.144.144.0/20 maxlen: 20 202.144.149.0/24 maxlen: 24 2405:d000::/33 maxlen: 33 2405:d000:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.crl rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13684 (0x3574) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D99A, serialNumber=D17D77CB0C89B994CDDACBA275270A1E74DCAA27 Validity Not Before: Mar 4 15:10:34 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a84b6a-f996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:65:8f:9f:96:44:c7:fc:f0:ab:9f:68:fd:57: 7a:1e:a3:86:af:52:9e:eb:fc:d3:9c:b5:ee:0a:a8: 3c:6d:8f:5a:8c:34:0c:dc:30:2e:29:55:d1:ae:8b: b1:11:a1:3f:62:07:04:e9:5c:f5:98:39:88:e8:c7: af:18:78:08:ea:9a:92:7a:35:a4:51:7e:c6:26:c3: f4:d1:5c:06:90:27:89:f6:c2:8e:ef:c3:f0:74:65: 93:57:bd:2a:7d:45:cb:6c:d0:04:60:f9:a6:f8:48: b5:f5:e1:56:ea:89:df:46:01:0d:b8:35:fe:e1:43: be:b9:4b:f4:11:0a:21:87:1b:1f:20:3b:2f:63:38: 22:af:47:64:34:bb:b1:c2:7e:44:83:67:4a:52:f1: b3:34:5c:64:79:e7:c4:53:f9:35:ec:ae:e8:e1:1e: 1c:69:33:85:6a:39:6e:be:26:c9:5a:38:39:e6:78: 6e:3d:15:7e:b0:a8:27:2d:1e:0a:91:34:0a:80:91: e0:e7:d0:a2:d5:ae:c9:61:0b:77:d5:c3:23:ac:8b: 7a:d5:07:22:29:a1:60:7d:a4:86:5c:78:67:1c:26: 8f:ca:7b:a4:90:c3:86:6a:25:97:2f:07:c2:f2:86: c0:fd:e9:b2:eb:e4:c8:73:d7:62:36:f0:37:8a:4a: f2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:3B:07:EA:38:A1:D2:3D:C7:1D:B2:BF:D4:68:C7:3C:FB:A4:4C:A1 X509v3 Authority Key Identifier: keyid:D1:7D:77:CB:0C:89:B9:94:CD:DA:CB:A2:75:27:0A:1E:74:DC:AA:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/76B90530747811EDA48E0D52C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.64.251.0/24 103.245.240.0/23 119.2.96.0/19 202.144.128.0/19 IPv6: 2405:d000::/32 Signature Algorithm: sha256WithRSAEncryption 3e:a4:8b:02:82:29:32:f3:b2:b9:1a:4f:80:56:19:7a:0d:87: 86:b4:89:58:4a:dd:a7:21:66:8d:fb:7b:25:48:93:71:8c:d0: 7b:26:3d:c5:a0:69:7d:cf:4f:a7:55:2e:30:71:19:af:6d:f4: 7d:39:08:94:31:a8:82:b3:e0:be:5c:a8:ad:9b:38:25:4d:86: 00:64:68:57:fa:22:8d:33:44:f5:59:0a:c8:a7:15:41:b8:2b: d0:24:3e:c7:8c:04:a3:01:98:28:81:20:aa:e4:87:4e:50:47: 00:2c:f9:8f:b3:7d:9f:5e:ba:c2:05:5f:1a:38:86:f8:ed:23: 4c:b2:7f:89:92:73:7f:8d:86:4c:03:7d:24:9b:14:aa:7d:1f: 49:f7:54:3f:71:a1:e4:5f:df:d1:8b:a6:9f:da:8f:e1:06:ab: 3a:10:b2:c9:9a:21:64:5a:f7:de:02:42:b3:36:cf:a4:51:f8: a8:0d:f0:48:9f:f9:88:41:e0:61:d3:99:06:46:97:07:da:f2: bd:1b:aa:3d:9d:4f:04:ac:e6:99:fc:7d:5c:ed:c2:fb:69:4b: e6:a9:3c:3d:a9:73:8d:20:30:43:b2:eb:99:ea:9b:d8:95:ac: 51:15:bb:65:6d:02:b4:3d:2d:7f:0a:61:c8:06:61:31:59:49: c9:a0:a1:48 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICNXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5OUExMTAvBgNVBAUTKEQxN0Q3N0NCMEM4OUI5OTRDRERBQ0JBMjc1MjcwQTFF NzREQ0FBMjcwHhcNMjYwMzA0MTUxMDM0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4NGI2YS1mOTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmWPn5ZEx/zwq59o/Vd6HqOGr1Ke6/zTnLXuCqg8bY9ajDQM3DAuKVXRroux EaE/YgcE6Vz1mDmI6MevGHgI6pqSejWkUX7GJsP00VwGkCeJ9sKO78PwdGWTV70q fUXLbNAEYPmm+Ei19eFW6onfRgENuDX+4UO+uUv0EQohhxsfIDsvYzgir0dkNLux wn5Eg2dKUvGzNFxkeefEU/k17K7o4R4caTOFajluvibJWjg55nhuPRV+sKgnLR4K kTQKgJHg59Ci1a7JYQt31cMjrIt61QciKaFgfaSGXHhnHCaPynukkMOGaiWXLwfC 8obA/emy6+TIc9diNvA3ikryJQIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFPg7B+o4 odI9xx2yv9Roxzz7pEyhMB8GA1UdIwQYMBaAFNF9d8sMibmUzdrLonUnCh503Kon MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk5QS8xNzg4MjJEQTFE ODUxMUUyQTgyQTdDREIwOEIwMkNEMi8wWDEzeXd5SnVaVE4yc3VpZFNjS0huVGNx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBYMTN5d3lKdVpUTjJzdWlkU2NLSG5UY3FpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ5OUEvMTc4ODIyREExRDg1MTFFMkE4MkE3Q0RCMDhCMDJDRDIvNzZCOTA1MzA3 NDc4MTFFREE0OEUwRDUyQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQALUD7AwQBZ/XwAwQFdwJgAwQFypCAMA0EAgACMAcDBQAkBdAAMA0G CSqGSIb3DQEBCwUAA4IBAQA+pIsCgiky87K5Gk+AVhl6DYeGtIlYSt2nIWaN+3sl SJNxjNB7Jj3FoGl9z0+nVS4wcRmvbfR9OQiUMaiCs+C+XKitmzglTYYAZGhX+iKN M0T1WQrIpxVBuCvQJD7HjASjAZgogSCq5IdOUEcALPmPs32fXrrCBV8aOIb47SNM sn+JknN/jYZMA30kmxSqfR9J91Q/caHkX9/Ri6af2o/hBqs6ELLJmiFkWvfeAkKz Ns+kUfioDfBIn/mIQeBh05kGRpcH2vK9G6o9nU8ErOaZ/H1c7cL7aUvmqTw9qXON IDBDsuuZ6pvYlaxRFbtlbQK0PS1/CmHIBmExWUnJoKFI -----END CERTIFICATE-----Generated at Thu Mar 26 07:16:15 2026 by rpki-client