$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/2870E2347EB211F09B907A6BC4F9AE02.roa File: 2870E2347EB211F09B907A6BC4F9AE02.roa (raw, json) Hash identifier: zoP0yZpe7A/PmAMETHHU9C24brqTIMCILHJY9SJnpHM= Subject key identifier: 2C:CE:AE:8D:41:7E:7C:A4:E8:FE:1E:78:5A:F1:6F:E3:D2:1A:09:9F Certificate issuer: /CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Certificate serial: 0409 Authority key identifier: 2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/2870E2347EB211F09B907A6BC4F9AE02.roa Signing time: Tue 05 May 2026 01:31:12 +0000 ROA not before: Tue 05 May 2026 01:31:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64245 IP address blocks: 45.114.119.0/24 maxlen: 24 2402:2f80:42::/48 maxlen: 48 2402:2f80:64::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:40:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1033 (0x409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA44, serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Validity Not Before: May 5 01:31:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f94860-29ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2e:53:3b:71:57:bf:d7:94:1b:42:71:8d:1a: 74:56:5d:3a:7a:4d:e0:e0:41:58:f9:9d:a3:04:6e: 10:3c:d2:e2:0a:e5:ef:71:56:a5:ef:9c:b8:b5:d8: 66:b1:54:b2:fa:0c:b7:93:08:6e:e2:8f:4b:ae:28: f5:29:e2:96:8f:e9:1c:1c:57:0d:20:60:50:2a:78: 16:1c:95:81:09:1e:bf:73:a8:5d:0b:eb:3d:cb:4b: dc:b9:15:29:b5:73:26:10:37:e6:1d:81:52:4f:90: 9c:66:8f:85:e3:a6:ed:2c:6e:ea:03:7c:98:fc:5e: 66:42:65:e6:3e:e9:2a:75:55:32:82:c4:57:d3:ef: b0:52:5f:e6:b6:7f:ab:a6:a3:3d:9d:be:ee:39:ef: 96:a7:94:82:eb:0e:77:b0:c0:23:70:42:69:17:d9: 11:94:83:49:83:a2:cf:8c:bc:4a:18:29:17:03:ce: 11:2e:0d:cb:54:1b:ab:8c:90:82:22:f6:8a:ec:86: 6a:ed:bb:5e:4c:d9:d6:e0:64:b3:66:15:6e:bf:16: bb:88:d2:2c:af:1f:e3:8c:f6:71:2f:3d:ae:b8:d7: 80:91:02:3c:07:23:a1:52:22:5e:76:0e:62:8e:b8: 3a:a3:6e:bc:24:39:6f:e5:92:09:21:74:12:db:f7: a3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:CE:AE:8D:41:7E:7C:A4:E8:FE:1E:78:5A:F1:6F:E3:D2:1A:09:9F X509v3 Authority Key Identifier: keyid:2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/2870E2347EB211F09B907A6BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.114.119.0/24 IPv6: 2402:2f80:42::/48 2402:2f80:64::/48 Signature Algorithm: sha256WithRSAEncryption 15:e1:5a:ba:8f:c7:a3:d6:fb:88:77:75:5c:e9:b5:31:11:f7: e4:85:11:73:8d:fb:30:ba:15:87:91:8f:48:3a:ed:30:a0:81: 9a:0f:32:bd:ac:50:34:b2:6b:cb:9c:00:33:96:a0:1a:db:8d: c6:64:57:14:6d:7a:c6:46:aa:3d:bd:2e:a8:0b:d3:73:4d:3c: 55:f4:47:89:95:8e:9a:28:1b:76:24:fa:0b:c9:65:1f:c5:55: e3:78:a0:d3:e9:fd:14:65:33:a6:eb:a9:7c:e5:7d:60:70:9d: 07:ed:6d:57:73:d6:10:62:f5:99:fa:ed:ab:96:f0:dc:d4:5d: a7:11:d1:db:32:3f:4b:6e:db:d4:0f:6d:89:1f:4f:b4:e7:d3: 76:9b:f8:51:b5:90:3c:00:ac:e2:85:3a:14:62:fd:21:45:29: e3:fb:7d:d6:a5:8a:7a:0a:15:04:c0:e6:45:ec:62:da:bb:29: e4:77:c8:e4:1b:33:e4:45:b1:7e:83:8d:ee:d9:37:40:3c:b7: de:e9:86:65:b1:b7:45:fc:ca:f5:ab:d9:d7:49:75:89:f3:1f: f2:40:bf:6d:32:20:0e:04:3c:87:98:72:12:1a:69:e8:23:3c: 0c:4a:42:86:4e:b2:e4:9b:13:dd:a0:e2:6c:7f:01:37:e2:bb: 2f:fd:2d:f4 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICBAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFBNDQxMTAvBgNVBAUTKDJDQzMzRkJDQjg2NDA4NDAyMDg5NEE3MkREMDg4NTA1 QUY5QkI2NkQwHhcNMjYwNTA1MDEzMTEyWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY5NDg2MC0yOWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoy5TO3FXv9eUG0JxjRp0Vl06ek3g4EFY+Z2jBG4QPNLiCuXvcVal75y4tdhm sVSy+gy3kwhu4o9Lrij1KeKWj+kcHFcNIGBQKngWHJWBCR6/c6hdC+s9y0vcuRUp tXMmEDfmHYFST5CcZo+F46btLG7qA3yY/F5mQmXmPukqdVUygsRX0++wUl/mtn+r pqM9nb7uOe+Wp5SC6w53sMAjcEJpF9kRlINJg6LPjLxKGCkXA84RLg3LVBurjJCC IvaK7IZq7bteTNnW4GSzZhVuvxa7iNIsrx/jjPZxLz2uuNeAkQI8ByOhUiJedg5i jrg6o268JDlv5ZIJIXQS2/ej5wIDAQABo4ICejCCAnYwHQYDVR0OBBYEFCzOro1B fnyk6P4eeFrxb+PSGgmfMB8GA1UdIwQYMBaAFCzDP7y4ZAhAIIlKct0IhQWvm7Zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUE0NC85Q0MwMEE5Q0M3 RkYxMUVDOUJEQkZFNEJDNEY5QUUwMi9MTU1fdkxoa0NFQWdpVXB5M1FpRkJhLWJ0 bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNTV92TGhrQ0VBZ2lVcHkzUWlGQmEtYnRtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFBNDQvOUNDMDBBOUNDN0ZGMTFFQzlCREJGRTRCQzRGOUFFMDIvMjg3MEUyMzQ3 RUIyMTFGMDlCOTA3QTZCQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQALXJ3MBgEAgACMBIDBwAkAi+AAEIDBwAkAi+AAGQwDQYJKoZIhvcN AQELBQADggEBABXhWrqPx6PW+4h3dVzptTER9+SFEXON+zC6FYeRj0g67TCggZoP Mr2sUDSya8ucADOWoBrbjcZkVxRtesZGqj29LqgL03NNPFX0R4mVjpooG3Yk+gvJ ZR/FVeN4oNPp/RRlM6brqXzlfWBwnQftbVdz1hBi9Zn67auW8NzUXacR0dsyP0tu 29QPbYkfT7Tn03ab+FG1kDwArOKFOhRi/SFFKeP7fdalinoKFQTA5kXsYtq7KeR3 yOQbM+RFsX6Dje7ZN0A8t97phmWxt0X8yvWr2ddJdYnzH/JAv20yIA4EPIeYchIa aegjPAxKQoZOsuSbE92g4mx/ATfiuy/9LfQ= -----END CERTIFICATE-----Generated at Wed May 13 07:19:40 2026 by rpki-client