$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/F268590C1B9911ED9A50C30EC4F9AE02.roa File: F268590C1B9911ED9A50C30EC4F9AE02.roa (raw, json) Hash identifier: WNQo1gJzwhXWEpc2UK9IPm/NBGxZHgROjQVKTAiSKXc= Subject key identifier: 4E:55:FC:EE:88:C8:E6:27:45:15:F2:20:F6:24:D7:78:22:8C:F1:94 Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0D38 Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/F268590C1B9911ED9A50C30EC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:38:46 +0000 ROA not before: Sun 10 Aug 2025 18:27:28 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45905 IP address blocks: 45.118.244.0/22 maxlen: 24 45.126.74.0/23 maxlen: 24 103.59.36.0/22 maxlen: 24 103.96.36.0/22 maxlen: 24 123.253.196.0/24 maxlen: 24 123.253.197.0/24 maxlen: 24 123.253.198.0/24 maxlen: 24 123.253.199.0/24 maxlen: 24 180.148.208.0/21 maxlen: 24 2405:86c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3384 (0xd38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171, serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: Aug 10 18:27:28 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42546-8b79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ae:f9:1b:5a:17:d7:66:fe:69:47:6c:37:ef: d5:3c:c6:59:22:0a:7f:67:37:d9:df:92:ec:0c:c8: bf:06:c4:29:ce:43:72:3f:01:5b:85:0e:4a:a8:24: 5b:e4:9f:06:03:d3:f7:c9:65:20:7a:df:6d:58:7e: d0:6c:75:a6:08:d7:68:35:bc:b3:d3:60:72:a7:6c: 96:9a:01:21:9f:00:15:71:9b:54:21:cf:f8:d8:b4: 58:77:0e:4e:85:cd:b7:14:84:f4:32:c9:30:ee:92: 78:e6:c8:26:71:97:88:aa:b8:f9:97:88:bf:6a:85: 42:52:92:d4:44:17:63:82:77:c3:ce:b5:85:4a:10: d1:e3:3d:25:be:f9:3f:0f:87:4d:09:f0:00:10:e3: c3:1c:62:05:2c:5b:7e:48:af:9b:08:f5:91:af:1b: 6a:4d:a9:6c:0d:ac:7b:90:30:6e:59:c6:1c:a5:40: 3a:a0:30:ab:1a:c1:c3:5c:fb:a6:a7:8e:1b:ce:37: e8:36:48:91:59:24:e4:9b:53:af:96:36:3f:be:85: f9:73:78:55:b7:2e:28:5c:c4:b8:f7:63:e4:07:38: 0f:2b:ba:b1:bb:ad:2a:5d:59:b2:5e:4f:48:99:5d: 57:d4:8a:8a:15:71:58:80:53:61:1e:b6:33:89:63: d0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:55:FC:EE:88:C8:E6:27:45:15:F2:20:F6:24:D7:78:22:8C:F1:94 X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/F268590C1B9911ED9A50C30EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.118.244.0/22 45.126.74.0/23 103.59.36.0/22 103.96.36.0/22 123.253.196.0/22 180.148.208.0/21 IPv6: 2405:86c0::/32 Signature Algorithm: sha256WithRSAEncryption ab:b5:5a:7f:8b:d2:ff:ab:ef:c9:20:f3:e6:de:81:df:e8:84: 14:7a:35:5e:65:c0:65:3f:19:e4:a7:a4:20:cf:50:6a:c1:53: a9:68:e1:48:14:b8:53:5f:dd:60:a4:8b:54:3a:fd:34:58:98: 46:29:3b:29:f0:f6:79:36:74:74:6c:12:b9:5b:95:37:1a:75: 92:e9:28:fa:76:b3:6c:fd:b8:fe:29:07:81:b4:ae:85:19:6d: dc:f5:e2:e9:c5:5b:54:83:fa:9f:16:be:11:f4:5b:9d:a3:e5: 3b:d4:75:40:46:70:91:4a:e1:24:87:be:b8:c8:0d:4e:90:ab: af:f9:50:09:64:23:ba:90:15:1b:9a:fd:42:e5:d0:0d:e3:55: 60:05:9a:4b:99:69:5d:08:e5:b6:6d:31:04:ca:3b:81:6c:20: 7a:4c:52:8e:2d:7a:e3:96:78:6e:c4:b5:c2:ea:a4:46:03:4b: 13:ae:72:54:2b:02:4c:ff:0d:ae:6c:6c:ea:3e:fa:ef:3e:24: 89:6d:6c:8a:4e:c6:58:98:62:76:ab:c3:a2:b6:24:83:b7:6f: 8d:9a:d6:16:36:41:30:7b:b2:1a:96:7a:3f:e4:2f:bd:6a:f4: 22:e8:4a:72:64:dd:36:38:6f:e5:15:06:90:4b:ed:b1:b0:47: eb:03:b7:ac -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgICDTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjUwODEwMTgyNzI4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjU0Ni04Yjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1675G1oX12b+aUdsN+/VPMZZIgp/ZzfZ35LsDMi/BsQpzkNyPwFbhQ5KqCRb 5J8GA9P3yWUget9tWH7QbHWmCNdoNbyz02Byp2yWmgEhnwAVcZtUIc/42LRYdw5O hc23FIT0Mskw7pJ45sgmcZeIqrj5l4i/aoVCUpLURBdjgnfDzrWFShDR4z0lvvk/ D4dNCfAAEOPDHGIFLFt+SK+bCPWRrxtqTalsDax7kDBuWcYcpUA6oDCrGsHDXPum p44bzjfoNkiRWSTkm1OvljY/voX5c3hVty4oXMS492PkBzgPK7qxu60qXVmyXk9I mV1X1IqKFXFYgFNhHrYziWPQlwIDAQABo4ICjTCCAokwHQYDVR0OBBYEFE5V/O6I yOYnRRXyIPYk13gijPGUMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkExNzEvNEY1N0U5QkVGNDk5MTFFOThGMzdEQzFDQzRGOUFFMDIvRjI2ODU5MEMx Qjk5MTFFRDlBNTBDMzBFQzRGOUFFMDIucm9hMEwGCCsGAQUFBwEHAQH/BD0wOzAq BAIAATAkAwQCLXb0AwQBLX5KAwQCZzskAwQCZ2AkAwQCe/3EAwQDtJTQMA0EAgAC MAcDBQAkBYbAMA0GCSqGSIb3DQEBCwUAA4IBAQCrtVp/i9L/q+/JIPPm3oHf6IQU ejVeZcBlPxnkp6Qgz1BqwVOpaOFIFLhTX91gpItUOv00WJhGKTsp8PZ5NnR0bBK5 W5U3GnWS6Sj6drNs/bj+KQeBtK6FGW3c9eLpxVtUg/qfFr4R9Fudo+U71HVARnCR SuEkh764yA1OkKuv+VAJZCO6kBUbmv1C5dAN41VgBZpLmWldCOW2bTEEyjuBbCB6 TFKOLXrjlnhuxLXC6qRGA0sTrnJUKwJM/w2ubGzqPvrvPiSJbWyKTsZYmGJ2q8Oi tiSDt2+NmtYWNkEwe7Ialno/5C+9avQi6EpyZN02OG/lFQaQS+2xsEfrA7es -----END CERTIFICATE-----Generated at Thu Mar 26 18:53:09 2026 by rpki-client