$ rpki-client -vvf rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/65EADA381A8011ECAD1E4B30C4F9AE02.roa File: 65EADA381A8011ECAD1E4B30C4F9AE02.roa (raw, json) Hash identifier: Btv6VMAjhz/7gHDz8tz5vzOXf88yboA619m83tithOo= Subject key identifier: 0C:27:41:31:86:99:8C:0D:6D:8C:D0:93:07:4C:B7:1B:E9:99:CE:91 Certificate issuer: /CN=A91859A3/serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Certificate serial: 101F Authority key identifier: B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/65EADA381A8011ECAD1E4B30C4F9AE02.roa Signing time: Mon 02 Mar 2026 18:20:39 +0000 ROA not before: Mon 02 Mar 2026 18:20:39 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 135333 IP address blocks: 45.121.239.0/24 maxlen: 24 103.214.148.0/22 maxlen: 24 124.109.16.0/22 maxlen: 22 124.109.16.0/24 maxlen: 24 124.109.17.0/24 maxlen: 24 124.109.18.0/24 maxlen: 24 124.109.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:19:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4127 (0x101f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859A3, serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Validity Not Before: Mar 2 18:20:39 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a5d4f7-841e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6c:7d:af:6b:7f:0b:6b:60:db:c4:5e:5b:50: b9:09:a5:59:86:0a:fd:26:51:5a:c5:3f:9b:70:22: eb:c9:d5:e1:bf:33:4c:a6:7c:22:11:f1:a9:fd:1a: da:cb:ef:bf:27:4a:f2:4c:73:43:d3:14:80:08:95: 13:5e:a6:91:a6:5e:36:3e:aa:b1:d3:51:8c:1c:7e: 6e:3f:b0:77:8d:87:ba:44:ff:5f:5f:6f:d9:2b:83: 74:fe:df:90:f5:0e:9f:ae:a9:49:35:7f:60:b6:82: 40:76:36:73:6d:49:b3:2d:95:33:e7:3d:ea:cb:df: 2f:8b:76:85:fd:5f:7f:cc:bf:59:21:3f:24:09:17: 2f:f3:05:30:23:0c:82:d2:06:8a:bc:5c:8a:32:d8: a4:99:94:d9:80:57:a0:75:70:40:cf:32:45:20:a7: c6:93:59:c7:71:94:cc:22:49:80:8a:05:6f:d9:d6: e0:41:f8:ea:bd:5e:29:56:6e:42:81:69:f8:72:a8: 73:d7:4f:44:4b:8c:11:9a:41:dc:d5:df:7e:ae:3b: e0:16:07:5c:9a:9c:a2:43:9f:03:56:cf:ce:6b:cf: ec:ca:28:72:f5:4e:d3:e2:3d:89:7d:c1:28:ca:c1: e2:b4:69:85:8b:68:1c:79:f2:6b:aa:4b:d7:02:72: cc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:27:41:31:86:99:8C:0D:6D:8C:D0:93:07:4C:B7:1B:E9:99:CE:91 X509v3 Authority Key Identifier: keyid:B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/65EADA381A8011ECAD1E4B30C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.121.239.0/24 103.214.148.0/22 124.109.16.0/22 Signature Algorithm: sha256WithRSAEncryption 22:85:16:7d:97:71:fc:ce:86:73:eb:cd:5b:a4:c9:e5:60:5c: c0:73:62:77:38:9f:7f:3f:80:09:7c:dd:57:ab:65:98:7c:12: 6c:13:64:45:e8:c6:d2:fc:07:64:c5:a3:ce:ec:99:f2:2d:b0: c8:2c:15:04:be:8b:89:4d:73:a8:87:b0:71:68:3c:c3:1c:2b: b8:3e:45:3e:96:73:ed:5f:35:cf:2b:85:52:7b:8c:37:a4:e3: 6b:87:fe:ae:02:33:b0:75:87:57:94:e7:c7:b4:cf:dd:fe:72: 27:a0:0a:35:22:fa:82:db:b7:4a:19:5d:4a:e3:01:14:27:84: b7:fb:41:60:8c:3d:bb:dd:93:19:c8:23:bb:ef:d8:d6:92:99: 9f:bc:09:ec:e8:47:23:80:c0:c7:5a:77:79:6a:60:17:30:21: 2a:e9:25:15:7a:3a:a7:ea:b7:29:32:34:33:a8:1a:db:c7:cd: b2:bf:06:ef:5a:ca:de:cd:c0:f7:de:bd:82:bc:f9:f2:e7:4e: 29:a4:33:8d:06:f9:6a:64:18:03:80:80:3a:e7:1f:f3:05:8d: ca:80:28:c6:bf:83:98:99:41:93:9c:ed:99:9f:6c:a2:e6:35: 43:cc:b7:68:80:f9:55:22:ac:89:cf:37:38:27:73:79:ca:c1: 1b:86:ac:de -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QTMxMTAvBgNVBAUTKEI4NDFDODBCRTgxOEM2MUFBRTg0MTc5NDBDQTNFNjlD QzE0MURGOEYwHhcNMjYwMzAyMTgyMDM5WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ZDRmNy04NDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWx9r2t/C2tg28ReW1C5CaVZhgr9JlFaxT+bcCLrydXhvzNMpnwiEfGp/Rra y++/J0ryTHND0xSACJUTXqaRpl42Pqqx01GMHH5uP7B3jYe6RP9fX2/ZK4N0/t+Q 9Q6frqlJNX9gtoJAdjZzbUmzLZUz5z3qy98vi3aF/V9/zL9ZIT8kCRcv8wUwIwyC 0gaKvFyKMtikmZTZgFegdXBAzzJFIKfGk1nHcZTMIkmAigVv2dbgQfjqvV4pVm5C gWn4cqhz109ES4wRmkHc1d9+rjvgFgdcmpyiQ58DVs/Oa8/syihy9U7T4j2JfcEo ysHitGmFi2gcefJrqkvXAnLM4QIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFAwnQTGG mYwNbYzQkwdMtxvpmc6RMB8GA1UdIwQYMBaAFLhByAvoGMYaroQXlAyj5pzBQd+P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlBMy83NjQzNUZFRTYz ODExMUU5OUE1MUE2NDJDNEY5QUUwMi91RUhJQy1nWXhocXVoQmVVREtQbW5NRkIz NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VFSElDLWdZeGhxdWhCZVVES1Btbk1GQjM0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU5QTMvNzY0MzVGRUU2MzgxMTFFOTlBNTFBNjQyQzRGOUFFMDIvNjVFQURBMzgx QTgwMTFFQ0FEMUU0QjMwQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQALXnvAwQCZ9aUAwQCfG0QMA0GCSqGSIb3DQEBCwUAA4IBAQAihRZ9 l3H8zoZz681bpMnlYFzAc2J3OJ9/P4AJfN1Xq2WYfBJsE2RF6MbS/AdkxaPO7Jny LbDILBUEvouJTXOoh7BxaDzDHCu4PkU+lnPtXzXPK4VSe4w3pONrh/6uAjOwdYdX lOfHtM/d/nInoAo1IvqC27dKGV1K4wEUJ4S3+0FgjD273ZMZyCO779jWkpmfvAns 6EcjgMDHWnd5amAXMCEq6SUVejqn6rcpMjQzqBrbx82yvwbvWsrezcD33r2CvPny 504ppDONBvlqZBgDgIA65x/zBY3KgCjGv4OYmUGTnO2Zn2yi5jVDzLdogPlVIqyJ zzc4J3N5ysEbhqze -----END CERTIFICATE-----Generated at Thu Mar 26 07:58:20 2026 by rpki-client