$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1B09C20A9CD711EE8D4B0835C4F9AE02.roa File: 1B09C20A9CD711EE8D4B0835C4F9AE02.roa (raw, json) Hash identifier: iuCuOVGGw7h8GRcGcuIJ1MRpIK+069nl7NuNXpL0hyk= Subject key identifier: 2D:DA:8C:08:86:29:9B:30:52:6B:63:33:02:65:A8:F6:03:D6:ED:5B Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Certificate serial: 086C Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1B09C20A9CD711EE8D4B0835C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:24:45 +0000 ROA not before: Wed 02 Jul 2025 22:31:20 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 56683 IP address blocks: 45.114.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2156 (0x86c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D0D2, serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Validity Not Before: Jul 2 22:31:20 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4846d-f8d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:dc:24:ea:da:f6:a6:27:05:87:b9:b6:be:3d: 8b:0e:3a:3d:80:61:40:d0:86:c3:02:c0:c5:d9:00: 25:bf:7b:2e:c0:5a:e7:b0:d1:90:2e:98:d3:ac:39: f7:ff:69:e8:9c:30:53:87:8a:09:ba:cb:c5:f4:5d: e2:91:5b:5b:26:d8:d1:9d:d8:e8:11:1d:e3:a7:24: 9a:63:e6:34:73:9e:13:2f:6a:78:bc:76:f6:8b:ac: 52:73:1c:95:9b:55:60:60:04:d7:af:e6:03:a9:f5: a7:5d:52:82:50:7f:02:a1:20:d3:06:75:d4:51:c2: 9e:35:bf:03:a6:c5:8f:e4:5d:a8:15:80:0f:49:4f: c2:59:b8:52:d6:ea:bf:72:5f:c2:c6:0f:82:72:43: c6:d8:47:86:83:72:c6:76:3d:79:bc:93:36:1a:1b: 94:6b:ce:02:32:f4:e0:0a:f8:1f:e7:b9:23:3e:58: 3b:01:0e:eb:1b:f4:1f:65:dd:72:79:2e:90:11:5f: 45:bc:0d:72:3b:7d:e2:69:8a:b9:a7:27:26:0d:a6: 59:14:cc:97:80:ae:fe:8b:cc:c3:6c:7a:69:22:85: 7e:b0:38:42:05:78:14:b5:37:4d:6d:af:9b:c5:6a: 19:5c:80:ab:c1:95:98:3a:db:61:cc:05:e2:7c:c2: a1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:DA:8C:08:86:29:9B:30:52:6B:63:33:02:65:A8:F6:03:D6:ED:5B X509v3 Authority Key Identifier: keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1B09C20A9CD711EE8D4B0835C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.114.188.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:7f:bf:90:b8:2b:4d:30:fd:e1:d2:5c:d2:2d:0b:30:1c:89: c6:53:90:fb:dc:77:e8:b2:78:76:3d:09:d1:b9:04:24:a2:9d: f2:aa:f2:68:20:76:1f:dd:8d:aa:22:20:f7:c5:44:e2:4f:73: 9c:42:1a:f2:40:51:d1:2a:a2:c7:87:3d:2b:97:80:cb:a7:d9: 90:21:4e:e8:5b:7e:3c:7a:d7:16:8a:d1:5e:a2:1b:12:fa:da: 5e:17:4a:f7:e8:d8:1c:40:0a:4b:f5:aa:2d:e7:cb:79:6e:d2: 2a:c8:b6:69:95:f2:57:61:80:fb:4d:c1:fe:1d:f3:7c:96:ba: ec:f5:d2:ad:3c:9e:d6:78:77:04:ba:32:dc:55:3e:1d:ed:10: 81:26:61:96:aa:a4:c1:59:78:52:b0:d0:02:f9:e4:7d:a3:50: fe:a9:ad:d5:b1:4b:15:11:2a:11:dd:5c:c3:b4:36:99:12:be: 15:42:7a:2c:69:b3:2a:fe:37:58:49:21:cf:ff:4a:d4:f4:59: c2:77:bf:16:c9:36:9b:6a:ad:6a:22:b9:30:04:c3:55:d2:76: bb:09:73:10:a9:7a:72:69:c8:89:1e:34:12:74:4c:da:d1:b2: 19:37:ab:77:7c:85:33:53:b9:78:bf:ed:ca:4e:85:8c:63:b9: 9f:d6:fa:4f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQwRDIxMTAvBgNVBAUTKEQ1RTUzQUYxMTU5OTdDN0ZBM0I4NjU1MkY5NUY1MTE0 QUYzNDA1RTkwHhcNMjUwNzAyMjIzMTIwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODQ2ZC1mOGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9wk6tr2picFh7m2vj2LDjo9gGFA0IbDAsDF2QAlv3suwFrnsNGQLpjTrDn3 /2nonDBTh4oJusvF9F3ikVtbJtjRndjoER3jpySaY+Y0c54TL2p4vHb2i6xScxyV m1VgYATXr+YDqfWnXVKCUH8CoSDTBnXUUcKeNb8DpsWP5F2oFYAPSU/CWbhS1uq/ cl/Cxg+CckPG2EeGg3LGdj15vJM2GhuUa84CMvTgCvgf57kjPlg7AQ7rG/QfZd1y eS6QEV9FvA1yO33iaYq5pycmDaZZFMyXgK7+i8zDbHppIoV+sDhCBXgUtTdNba+b xWoZXICrwZWYOtthzAXifMKhawIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC3ajAiG KZswUmtjMwJlqPYD1u1bMB8GA1UdIwQYMBaAFNXlOvEVmXx/o7hlUvlfURSvNAXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDBEMi81OTM3RDQzRTM1 QUQxMUVCODFFRUFEMTJDNEY5QUUwMi8xZVU2OFJXWmZILWp1R1ZTLVY5UkZLODBC ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFlVTY4UldaZkgtanVHVlMtVjlSRks4MEJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQwRDIvNTkzN0Q0M0UzNUFEMTFFQjgxRUVBRDEyQzRGOUFFMDIvMUIwOUMyMEE5 Q0Q3MTFFRThENEIwODM1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQALXK8MA0GCSqGSIb3DQEBCwUAA4IBAQBef7+QuCtNMP3h0lzSLQsw HInGU5D73Hfosnh2PQnRuQQkop3yqvJoIHYf3Y2qIiD3xUTiT3OcQhryQFHRKqLH hz0rl4DLp9mQIU7oW348etcWitFeohsS+tpeF0r36NgcQApL9aot58t5btIqyLZp lfJXYYD7TcH+HfN8lrrs9dKtPJ7WeHcEujLcVT4d7RCBJmGWqqTBWXhSsNAC+eR9 o1D+qa3VsUsVESoR3VzDtDaZEr4VQnosabMq/jdYSSHP/0rU9FnCd78WyTabaq1q IrkwBMNV0na7CXMQqXpyaciJHjQSdEza0bIZN6t3fIUzU7l4v+3KToWMY7mf1vpP -----END CERTIFICATE-----Generated at Thu Mar 26 02:25:57 2026 by rpki-client