$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/4D45F08C1E3B11EFB02B0184C4F9AE02.roa File: 4D45F08C1E3B11EFB02B0184C4F9AE02.roa (raw, json) Hash identifier: RDqSCknL1jZFVym6MS1/uQ44TqYBmVK4Y2kT+xNFjqw= Subject key identifier: DE:E9:ED:DF:2C:80:F5:D8:22:3E:13:1F:B8:13:10:6B:31:E1:73:A2 Certificate issuer: /CN=A91AE9F6/serialNumber=B1E8C11C140E0FA751E8BFA65A59C715DD7E1C53 Certificate serial: 0150 Authority key identifier: B1:E8:C1:1C:14:0E:0F:A7:51:E8:BF:A6:5A:59:C7:15:DD:7E:1C:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sejBHBQOD6dR6L-mWlnHFd1-HFM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/4D45F08C1E3B11EFB02B0184C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:39:16 +0000 ROA not before: Fri 19 Sep 2025 06:13:50 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38079 IP address blocks: 202.12.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.crl rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sejBHBQOD6dR6L-mWlnHFd1-HFM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:15:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE9F6, serialNumber=B1E8C11C140E0FA751E8BFA65A59C715DD7E1C53 Validity Not Before: Sep 19 06:13:50 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a584f4-5e2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1e:a9:04:39:5a:87:c4:ba:2e:9f:4b:1c:b9: b2:63:53:37:a0:ef:46:e3:f4:7b:03:bf:aa:fc:36: 32:11:57:99:11:df:ef:21:22:a5:6f:27:69:64:3a: a6:78:0d:57:f7:8c:2c:8e:22:a8:7d:1f:92:9d:8d: bd:f5:4f:7b:31:db:35:ad:cb:11:a8:77:99:e4:75: c7:6d:18:b0:9a:ba:a8:2a:10:18:d1:e7:bd:d2:7e: 7f:74:11:6a:00:bb:bf:92:21:1a:d2:c2:39:92:a3: 7e:03:2d:9f:fd:8a:e4:cf:84:ce:fb:fc:5b:b4:6a: aa:11:a3:fb:59:70:79:58:a0:08:56:c6:9d:d1:1d: 96:38:0d:70:83:68:e4:1b:3b:d7:fc:c6:7a:f3:26: ae:a5:83:c1:1a:62:6e:54:d9:77:5c:61:36:6d:88: fc:64:2a:20:3f:43:e1:3b:d7:c7:ee:76:94:8c:24: e6:bf:0e:4c:52:46:9b:bf:e9:e2:dd:4f:56:bf:27: 53:2c:5b:2c:5a:f3:0b:81:03:56:9f:fc:fb:d1:f5: 2e:22:49:2a:dc:9e:c2:db:4f:60:cf:4e:15:86:ee: 2e:ad:b8:83:97:a9:95:09:ba:a5:59:23:af:cb:22: d3:a3:e2:72:69:fb:65:80:58:16:91:b2:d6:49:ff: c8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E9:ED:DF:2C:80:F5:D8:22:3E:13:1F:B8:13:10:6B:31:E1:73:A2 X509v3 Authority Key Identifier: keyid:B1:E8:C1:1C:14:0E:0F:A7:51:E8:BF:A6:5A:59:C7:15:DD:7E:1C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sejBHBQOD6dR6L-mWlnHFd1-HFM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/4D45F08C1E3B11EFB02B0184C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.12.91.0/24 Signature Algorithm: sha256WithRSAEncryption 53:ff:1b:d1:16:4e:0a:5a:df:45:a8:00:49:bc:12:1d:c9:53: 39:3c:a2:4c:48:70:65:d7:a7:8f:af:8b:8d:1a:d8:72:bc:cf: 59:1d:66:d4:75:b3:89:8d:cc:20:c8:fe:75:03:4c:70:3e:ae: d3:62:5a:b3:52:3c:e5:74:b9:f9:db:e3:49:2c:29:4d:61:66: 37:97:2f:6e:a4:d2:7f:1b:ff:98:d8:0e:d5:09:2a:55:e6:67: dc:92:c5:02:e3:6c:24:53:3f:d6:c9:7f:33:96:a8:ee:2a:a9: b7:77:8c:e4:e2:38:25:3b:a3:c6:6b:f5:9e:cb:d2:0c:96:c5: 7f:0e:f2:4a:bc:81:5b:a5:a6:bb:8c:7b:52:bd:55:82:8f:f4: 78:d9:a7:68:13:6e:a9:3e:d8:42:56:e0:6d:5d:27:5c:f6:9e: 45:66:50:34:a6:ff:1b:42:ca:b4:f5:c1:28:5c:8b:bb:64:d3: 47:a9:53:05:cd:fe:ee:0b:05:40:80:c1:2f:91:ce:ca:ba:ca: ec:d5:48:c0:d2:88:f5:04:d4:cb:a6:cf:c9:14:63:77:42:b9: 54:cc:a5:09:af:9f:48:59:b3:ef:94:94:8a:8d:ea:45:dc:a4: d3:57:0b:ce:f6:d3:a9:0b:ab:d6:09:6f:c9:6f:37:ed:60:cf: 79:c1:f5:1c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5RjYxMTAvBgNVBAUTKEIxRThDMTFDMTQwRTBGQTc1MUU4QkZBNjVBNTlDNzE1 REQ3RTFDNTMwHhcNMjUwOTE5MDYxMzUwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODRmNC01ZTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArR6pBDlah8S6Lp9LHLmyY1M3oO9G4/R7A7+q/DYyEVeZEd/vISKlbydpZDqm eA1X94wsjiKofR+SnY299U97Mds1rcsRqHeZ5HXHbRiwmrqoKhAY0ee90n5/dBFq ALu/kiEa0sI5kqN+Ay2f/Yrkz4TO+/xbtGqqEaP7WXB5WKAIVsad0R2WOA1wg2jk GzvX/MZ68yaupYPBGmJuVNl3XGE2bYj8ZCogP0PhO9fH7naUjCTmvw5MUkabv+ni 3U9WvydTLFssWvMLgQNWn/z70fUuIkkq3J7C209gz04Vhu4urbiDl6mVCbqlWSOv yyLTo+JyaftlgFgWkbLWSf/IIQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFN7p7d8s gPXYIj4TH7gTEGsx4XOiMB8GA1UdIwQYMBaAFLHowRwUDg+nUei/plpZxxXdfhxT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTlGNi84RjIzQ0U4NDFE NUYxMUVGQjgzNzREM0RDNEY5QUUwMi9zZWpCSEJRT0Q2ZFI2TC1tV2xuSEZkMS1I Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NlakJIQlFPRDZkUjZMLW1XbG5IRmQxLUhGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUU5RjYvOEYyM0NFODQxRDVGMTFFRkI4Mzc0RDNEQzRGOUFFMDIvNEQ0NUYwOEMx RTNCMTFFRkIwMkIwMTg0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAygxbMA0GCSqGSIb3DQEBCwUAA4IBAQBT/xvRFk4KWt9FqABJvBId yVM5PKJMSHBl16ePr4uNGthyvM9ZHWbUdbOJjcwgyP51A0xwPq7TYlqzUjzldLn5 2+NJLClNYWY3ly9upNJ/G/+Y2A7VCSpV5mfcksUC42wkUz/WyX8zlqjuKqm3d4zk 4jglO6PGa/Wey9IMlsV/DvJKvIFbpaa7jHtSvVWCj/R42adoE26pPthCVuBtXSdc 9p5FZlA0pv8bQsq09cEoXIu7ZNNHqVMFzf7uCwVAgMEvkc7Kusrs1UjA0oj1BNTL ps/JFGN3QrlUzKUJr59IWbPvlJSKjepF3KTTVwvO9tOpC6vWCW/JbzftYM95wfUc -----END CERTIFICATE-----Generated at Thu Mar 26 19:04:37 2026 by rpki-client