$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/4114509A597511EFA2B79A84C4F9AE02.roa File: 4114509A597511EFA2B79A84C4F9AE02.roa (raw, json) Hash identifier: 0n2WFP3OGMlXX26nzPcGgu1jYPaSSjw1YClglsZ8Waw= Subject key identifier: D5:4C:EC:13:38:C8:84:A3:0C:FD:3D:71:49:F7:8D:0D:38:B4:C6:F6 Certificate issuer: /CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Certificate serial: 041F Authority key identifier: 91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/4114509A597511EFA2B79A84C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:55:54 +0000 ROA not before: Sat 07 Jun 2025 01:09:16 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140599 IP address blocks: 45.115.224.0/22 maxlen: 22 45.115.224.0/24 maxlen: 24 45.115.225.0/24 maxlen: 24 45.115.226.0/24 maxlen: 24 45.115.227.0/24 maxlen: 24 103.56.4.0/22 maxlen: 24 103.150.220.0/24 maxlen: 24 103.150.221.0/24 maxlen: 24 2001:df3:8e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1055 (0x41f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432, serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Validity Not Before: Jun 7 01:09:16 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3ff1a-30b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bc:2d:14:c2:2f:2c:a5:39:4c:6c:0e:fd:bd: 74:6a:30:64:10:ae:3a:12:6a:27:a1:e3:04:38:f8: 80:42:a2:5d:ff:36:b2:31:f8:9b:3f:b2:04:99:01: 76:a7:6f:fb:6f:33:c0:63:56:7b:53:09:ce:54:5b: aa:e9:eb:17:9f:78:8d:62:79:c6:f8:10:20:84:d7: 6f:03:a0:b2:91:30:c5:94:23:45:44:68:da:41:6a: c5:4e:57:ec:f6:a7:2f:89:3d:f4:da:7f:22:ec:71: c3:b1:05:25:04:34:f8:59:96:3d:01:c1:1a:5c:78: a7:b0:0f:5e:fd:15:08:34:a8:f2:41:35:f1:7b:8d: 41:d6:ee:d1:80:56:2b:c4:8b:70:d4:05:3c:6a:4d: 2f:6f:f8:05:40:a2:5a:5a:e2:6d:2d:65:01:71:5d: ef:57:c4:d1:65:e9:a7:3d:ec:3d:87:07:a7:dc:b5: e4:e6:2c:72:5c:32:a5:c9:fb:34:45:ac:14:bb:a8: 61:d1:e8:9f:8e:a9:f3:2e:df:1c:aa:a7:9f:60:0a: 0e:74:9e:9f:2f:19:fe:66:bb:91:1b:55:ec:d2:92: 43:fe:dc:03:36:20:48:3d:65:22:a6:88:39:ca:05: 56:ff:70:4f:ba:23:d3:ca:6f:6e:e8:22:bd:5a:7e: 30:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:4C:EC:13:38:C8:84:A3:0C:FD:3D:71:49:F7:8D:0D:38:B4:C6:F6 X509v3 Authority Key Identifier: keyid:91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/4114509A597511EFA2B79A84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.115.224.0/22 103.56.4.0/22 103.150.220.0/23 IPv6: 2001:df3:8e80::/48 Signature Algorithm: sha256WithRSAEncryption 21:08:aa:62:da:7d:44:25:1d:99:01:a6:b1:fa:61:6c:2e:9a: 23:d5:1d:05:c3:2f:5e:13:45:bb:bc:09:7e:3b:5a:dd:54:ce: ea:42:06:0d:d0:50:d0:17:15:61:e5:ef:6c:0d:2b:c0:c5:da: dd:c7:0a:43:0d:74:82:19:bd:c4:da:2a:37:e2:84:14:98:e8: 33:11:f6:19:36:2c:ab:ab:11:40:2a:e5:59:cb:14:ba:35:e7: e5:7a:6b:9e:43:d0:03:83:41:75:f0:e8:37:a9:54:76:c1:a7: 57:02:34:ac:a4:07:9e:e9:55:66:35:ae:4c:56:b1:6b:60:88: 1a:1c:b1:ae:0f:92:a7:43:59:c2:aa:4b:f1:d3:6a:4c:be:ca: 4e:d6:5a:0e:fb:84:77:33:1b:45:f9:ac:45:d8:c5:bf:47:c5: 3d:e1:3a:80:d3:77:6c:13:ec:c0:62:76:84:61:35:8d:e8:b1: 01:82:60:8e:4f:c3:c0:c0:40:8f:57:0e:32:45:ca:20:b4:b4: 89:ef:88:03:4d:a8:8d:b8:a5:69:ed:98:d1:05:e0:75:c9:db: 32:d6:9d:fc:07:58:c9:ef:72:b5:e6:ee:03:96:2a:47:68:fc: 02:e2:cd:1a:bc:6c:3c:52:c5:87:37:16:1f:69:9c:b0:69:81: 2a:59:13:2c -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgICBB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKDkxRjNEQzU5Q0QwRkExRDI0MUNCNzg3NTdEMURBQTky QzJBQzlGNjAwHhcNMjUwNjA3MDEwOTE2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmYxYS0zMGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLwtFMIvLKU5TGwO/b10ajBkEK46EmonoeMEOPiAQqJd/zayMfibP7IEmQF2 p2/7bzPAY1Z7UwnOVFuq6esXn3iNYnnG+BAghNdvA6CykTDFlCNFRGjaQWrFTlfs 9qcviT302n8i7HHDsQUlBDT4WZY9AcEaXHinsA9e/RUINKjyQTXxe41B1u7RgFYr xItw1AU8ak0vb/gFQKJaWuJtLWUBcV3vV8TRZemnPew9hwen3LXk5ixyXDKlyfs0 RawUu6hh0eifjqnzLt8cqqefYAoOdJ6fLxn+ZruRG1Xs0pJD/twDNiBIPWUipog5 ygVW/3BPuiPTym9u6CK9Wn4w/wIDAQABo4ICfTCCAnkwHQYDVR0OBBYEFNVM7BM4 yISjDP09cUn3jQ04tMb2MB8GA1UdIwQYMBaAFJHz3FnND6HSQct4dX0dqpLCrJ9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9GNUJGNjk5Q0E0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9kSkJ5M2gxZlIycWtzS3Nu MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmUGNXYzBQb2RKQnkzaDFmUjJxa3NLc24yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA0MzIvRjVCRjY5OUNBNENBMTFFQ0FDNEU1NzQ0QzRGOUFFMDIvNDExNDUwOUE1 OTc1MTFFRkEyQjc5QTg0QzRGOUFFMDIucm9hMDwGCCsGAQUFBwEHAQH/BC0wKzAY BAIAATASAwQCLXPgAwQCZzgEAwQBZ5bcMA8EAgACMAkDBwAgAQ3zjoAwDQYJKoZI hvcNAQELBQADggEBACEIqmLafUQlHZkBprH6YWwumiPVHQXDL14TRbu8CX47Wt1U zupCBg3QUNAXFWHl72wNK8DF2t3HCkMNdIIZvcTaKjfihBSY6DMR9hk2LKurEUAq 5VnLFLo15+V6a55D0AODQXXw6DepVHbBp1cCNKykB57pVWY1rkxWsWtgiBocsa4P kqdDWcKqS/HTaky+yk7WWg77hHczG0X5rEXYxb9HxT3hOoDTd2wT7MBidoRhNY3o sQGCYI5Pw8DAQI9XDjJFyiC0tInviANNqI24pWntmNEF4HXJ2zLWnfwHWMnvcrXm 7gOWKkdo/ALizRq8bDxSxYc3Fh9pnLBpgSpZEyw= -----END CERTIFICATE-----Generated at Thu Mar 26 14:58:12 2026 by rpki-client