$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D2E7286A6B111E997D5EA57C4F9AE02.roa File: 1D2E7286A6B111E997D5EA57C4F9AE02.roa (raw, json) Hash identifier: QgnZ4sc6Puwjs/s8k5cb77PzqC45+lyxM26KCi/2eRw= Subject key identifier: EA:1A:C0:F0:D6:30:FE:FB:2B:ED:45:90:FC:77:41:F9:78:72:5D:2A Certificate issuer: /CN=A91CEF3E/serialNumber=F896CC4F53C2A67B3046E7AB29033D50F482D488 Certificate serial: 0F12 Authority key identifier: F8:96:CC:4F:53:C2:A6:7B:30:46:E7:AB:29:03:3D:50:F4:82:D4:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D2E7286A6B111E997D5EA57C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:32:08 +0000 ROA not before: Fri 02 Jan 2026 18:14:50 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 23881 IP address blocks: 45.121.192.0/24 maxlen: 24 45.121.193.0/24 maxlen: 24 45.121.194.0/24 maxlen: 24 45.121.195.0/24 maxlen: 24 103.15.180.0/24 maxlen: 24 103.15.181.0/24 maxlen: 24 103.15.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3858 (0xf12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E, serialNumber=F896CC4F53C2A67B3046E7AB29033D50F482D488 Validity Not Before: Jan 2 18:14:50 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a59f68-dc6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e4:c5:71:8a:fa:2e:f4:05:c6:73:78:c6:0f: 55:0f:ae:79:b0:e3:4f:4a:e0:5f:b9:8a:7d:b5:36: cc:91:d6:7a:cc:8c:b2:79:80:23:34:e3:c6:26:f6: d2:48:05:79:76:31:b1:07:4f:8d:76:10:ab:db:91: f7:d9:24:e3:05:f3:da:0f:d9:2d:ec:9a:d7:5a:db: 20:1c:59:0d:29:4d:90:c4:dc:17:f3:05:87:97:a7: 95:4a:45:7d:e3:c3:ee:35:66:f1:c7:c2:a8:6f:4c: 12:7a:3c:72:f8:2c:0e:53:76:54:98:d4:90:e0:ed: c4:53:a7:c4:65:ce:46:37:1e:22:e6:81:e2:ed:c6: 89:b0:32:bb:fc:0f:cf:a7:72:82:27:71:0b:26:5f: 25:f3:87:4f:d2:5d:02:11:92:ee:b0:f9:bb:e5:f2: c9:e7:05:b2:0b:f4:38:bc:cf:93:e0:62:d9:d1:de: cc:01:b9:1f:42:3a:63:d9:75:d3:6a:4c:fe:3f:8a: 80:f5:0c:3e:d9:73:4b:74:4f:99:d4:b3:2d:f8:15: 6d:18:06:a9:40:40:aa:8f:5d:d4:d6:f8:b8:ee:ea: 62:47:55:f5:f4:30:4d:58:85:98:c5:b5:52:e7:ac: 52:8b:fa:45:5f:59:4e:5d:51:78:c4:76:54:9f:75: 4f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:1A:C0:F0:D6:30:FE:FB:2B:ED:45:90:FC:77:41:F9:78:72:5D:2A X509v3 Authority Key Identifier: keyid:F8:96:CC:4F:53:C2:A6:7B:30:46:E7:AB:29:03:3D:50:F4:82:D4:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D2E7286A6B111E997D5EA57C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.121.192.0/22 103.15.180.0/23 103.15.183.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:91:aa:9f:44:4c:d0:3d:8e:5d:e1:b5:fb:3d:60:31:fa:61: 7a:d9:f5:11:84:84:90:f8:07:68:8d:50:ad:f8:d4:70:65:76: 28:60:75:22:54:fa:2a:99:e9:1a:bd:c1:0f:ed:b1:0f:21:84: 10:5d:ab:5e:29:ce:be:af:02:1e:31:e7:ce:d7:80:f6:95:13: 22:fb:49:bd:c2:f1:4a:ff:51:5e:fb:fb:28:c1:6e:94:5f:66: 72:e9:9b:f8:7e:ae:b2:d8:15:90:07:35:19:c1:8a:14:8a:6b: 52:31:26:85:40:49:22:68:2a:bf:ec:e2:4f:e6:eb:ea:a6:ae: 19:72:0f:b6:0a:1a:3b:57:c9:72:25:13:0f:f1:e0:53:eb:45: 92:46:92:56:d8:71:99:f4:55:10:4d:45:af:cc:27:d3:d6:90: c0:e9:f8:33:41:f2:47:66:52:c7:78:a2:36:9a:4d:38:4f:91: 00:0e:e8:5e:19:05:7c:91:3a:a5:c9:42:cf:c5:39:21:45:2b: cb:64:3f:d1:45:cc:a2:5a:02:dd:4f:8d:e0:81:fb:b7:03:38: 39:1e:ec:69:7d:88:8b:9d:8f:ba:43:5e:26:5e:d8:6a:aa:de: 40:bd:be:ca:85:a2:40:42:bb:ee:fc:21:7d:8c:c4:1e:86:f3: 4f:62:40:70 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICDxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKEY4OTZDQzRGNTNDMkE2N0IzMDQ2RTdBQjI5MDMzRDUw RjQ4MkQ0ODgwHhcNMjYwMTAyMTgxNDUwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWY2OC1kYzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuTFcYr6LvQFxnN4xg9VD655sONPSuBfuYp9tTbMkdZ6zIyyeYAjNOPGJvbS SAV5djGxB0+NdhCr25H32STjBfPaD9kt7JrXWtsgHFkNKU2QxNwX8wWHl6eVSkV9 48PuNWbxx8Kob0wSejxy+CwOU3ZUmNSQ4O3EU6fEZc5GNx4i5oHi7caJsDK7/A/P p3KCJ3ELJl8l84dP0l0CEZLusPm75fLJ5wWyC/Q4vM+T4GLZ0d7MAbkfQjpj2XXT akz+P4qA9Qw+2XNLdE+Z1LMt+BVtGAapQECqj13U1vi47upiR1X19DBNWIWYxbVS 56xSi/pFX1lOXVF4xHZUn3VPFwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFOoawPDW MP77K+1FkPx3Qfl4cl0qMB8GA1UdIwQYMBaAFPiWzE9TwqZ7MEbnqykDPVD0gtSI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9EMjU0QjVDNDk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi8tSmJNVDFQQ3Buc3dSdWVyS1FNOVVQU0Mx SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1KYk1UMVBDcG5zd1J1ZXJLUU05VVBTQzFJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VGM0UvRDI1NEI1QzQ5ODdCMTFFOTgzRUNDRjEzQzRGOUFFMDIvMUQyRTcyODZB NkIxMTFFOTk3RDVFQTU3QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCLXnAAwQBZw+0AwQAZw+3MA0GCSqGSIb3DQEBCwUAA4IBAQA/kaqf REzQPY5d4bX7PWAx+mF62fURhISQ+AdojVCt+NRwZXYoYHUiVPoqmekavcEP7bEP IYQQXateKc6+rwIeMefO14D2lRMi+0m9wvFK/1Fe+/sowW6UX2Zy6Zv4fq6y2BWQ BzUZwYoUimtSMSaFQEkiaCq/7OJP5uvqpq4Zcg+2Cho7V8lyJRMP8eBT60WSRpJW 2HGZ9FUQTUWvzCfT1pDA6fgzQfJHZlLHeKI2mk04T5EADuheGQV8kTqlyULPxTkh RSvLZD/RRcyiWgLdT43ggfu3Azg5HuxpfYiLnY+6Q14mXthqqt5Avb7KhaJAQrvu /CF9jMQehvNPYkBw -----END CERTIFICATE-----Generated at Thu Mar 26 12:57:21 2026 by rpki-client