$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/10DAE05EB04811EABB4AEF61C4F9AE02.roa File: 10DAE05EB04811EABB4AEF61C4F9AE02.roa (raw, json) Hash identifier: YijLflInNWKirZ+Amp3ReIzopyb5zO6JUo1pwdICiQ4= Subject key identifier: 28:F1:AB:56:C4:B5:E9:40:42:99:14:87:E9:2B:58:A0:BE:47:A6:04 Certificate issuer: /CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Certificate serial: 35F8 Authority key identifier: 16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/10DAE05EB04811EABB4AEF61C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:45:07 +0000 ROA not before: Tue 09 Dec 2025 07:25:44 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38040 IP address blocks: 45.64.76.0/24 maxlen: 24 45.64.77.0/24 maxlen: 24 45.64.78.0/24 maxlen: 24 45.64.79.0/24 maxlen: 24 103.21.24.0/24 maxlen: 24 103.21.25.0/24 maxlen: 24 103.21.26.0/24 maxlen: 24 103.21.27.0/24 maxlen: 24 180.180.248.0/24 maxlen: 24 180.180.249.0/24 maxlen: 24 180.180.251.0/24 maxlen: 24 180.180.252.0/24 maxlen: 24 180.180.253.0/24 maxlen: 24 180.180.254.0/24 maxlen: 24 180.180.255.0/24 maxlen: 24 203.113.63.0/24 maxlen: 24 203.153.50.0/23 maxlen: 24 203.190.250.0/24 maxlen: 24 203.190.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:25:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13816 (0x35f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF4FE, serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Validity Not Before: Dec 9 07:25:44 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a48933-bba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:02:4a:b6:3d:c7:cf:73:ac:80:c7:0c:d2:21: 13:16:2b:c8:0e:39:41:e6:2b:67:d9:af:61:0b:54: 17:ec:71:aa:bd:00:3a:51:5e:d1:79:5b:2e:75:9c: 38:a1:0d:56:05:32:ed:fb:b1:a6:6f:14:35:f6:99: fa:76:cc:fa:48:65:7e:c9:3b:32:f5:b1:4f:cc:25: 77:8a:f5:6b:8e:3e:00:ed:95:10:97:96:76:9a:13: 62:64:0e:b4:82:86:35:fd:90:58:ab:a3:88:71:a9: 98:73:a0:62:53:09:00:8f:a8:16:2e:73:0d:89:01: f9:b0:3d:10:22:74:57:8f:91:9e:fb:f1:8b:2b:6f: 6b:e9:c5:10:2b:26:25:cd:96:ce:b2:a8:67:9a:01: 92:47:b7:fa:69:4e:9d:00:4c:07:bc:d3:b7:d8:2c: 8c:61:9e:fc:49:fb:72:33:6d:29:29:32:a3:bd:3c: dd:d9:6c:63:06:9e:6d:02:cb:ad:0c:76:54:64:c0: bb:88:19:d8:39:6d:66:9c:6a:b5:59:1f:5f:db:c8: 65:10:57:ce:b2:87:8e:d1:a0:6c:7f:8a:b0:c0:8b: 58:03:90:5b:15:06:19:41:fa:2e:0a:6b:fb:94:09: cf:7b:2a:e5:9b:72:45:36:5e:5e:51:15:ae:da:34: 19:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F1:AB:56:C4:B5:E9:40:42:99:14:87:E9:2B:58:A0:BE:47:A6:04 X509v3 Authority Key Identifier: keyid:16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/10DAE05EB04811EABB4AEF61C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.64.76.0/22 103.21.24.0/22 180.180.248.0/23 180.180.251.0-180.180.255.255 203.113.63.0/24 203.153.50.0/23 203.190.250.0/23 Signature Algorithm: sha256WithRSAEncryption 75:24:8b:22:66:8f:8a:8b:37:74:dc:3c:ee:1d:4d:36:60:7a: 42:cc:c0:ac:47:3a:e6:83:7b:97:6f:0f:d4:73:13:48:9c:13: 43:96:39:fd:2f:b2:6b:c5:cd:8d:00:fb:38:0e:9f:13:3e:9b: c4:ca:21:c0:d5:7c:60:7f:68:79:d3:b0:48:82:ba:e3:37:06: 33:a1:7a:e5:d1:cb:1c:23:27:74:9c:89:24:7f:91:6f:07:12: 22:3a:6c:ac:d8:2c:2b:13:ea:5b:c9:77:44:98:ac:42:cc:3a: 60:76:d9:7f:99:9b:8c:d5:a0:14:1c:e7:98:7a:db:4b:b0:ed: f4:cf:c4:1b:38:0c:f3:96:14:46:e6:05:9d:36:d2:a1:54:3a: b8:2c:e9:ed:0c:46:32:dc:58:4b:e6:16:79:d8:3f:43:a0:bd: 05:b4:af:f4:4d:b5:fc:57:7b:cb:7e:ad:bd:4b:d2:1d:ed:23: cd:ad:b3:b5:3c:10:4a:21:f6:eb:29:d7:f2:73:d9:c2:73:bd: 38:8d:89:7d:24:54:5a:a3:04:dd:ae:80:1b:d8:a6:ae:66:c9: 3e:e6:c9:42:22:b8:74:f4:1d:ff:1c:84:04:94:0e:db:2f:fe: 49:ed:f4:26:b0:f4:62:2e:da:17:59:f7:d0:b6:12:b6:3d:c7: 51:83:7a:84 -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgICNfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y0RkUxMTAvBgNVBAUTKDE2QjU2NEI3NThERkNENTJDNUNFODkxMTkyRTMxQjcx NUIxQ0JGRTgwHhcNMjUxMjA5MDcyNTQ0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODkzMy1iYmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQJKtj3Hz3OsgMcM0iETFivIDjlB5itn2a9hC1QX7HGqvQA6UV7ReVsudZw4 oQ1WBTLt+7GmbxQ19pn6dsz6SGV+yTsy9bFPzCV3ivVrjj4A7ZUQl5Z2mhNiZA60 goY1/ZBYq6OIcamYc6BiUwkAj6gWLnMNiQH5sD0QInRXj5Ge+/GLK29r6cUQKyYl zZbOsqhnmgGSR7f6aU6dAEwHvNO32CyMYZ78SftyM20pKTKjvTzd2WxjBp5tAsut DHZUZMC7iBnYOW1mnGq1WR9f28hlEFfOsoeO0aBsf4qwwItYA5BbFQYZQfouCmv7 lAnPeyrlm3JFNl5eURWu2jQZewIDAQABo4ICizCCAocwHQYDVR0OBBYEFCjxq1bE telAQpkUh+krWKC+R6YEMB8GA1UdIwQYMBaAFBa1ZLdY381Sxc6JEZLjG3FbHL/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjRGRS9CQTEzMTI0RTFE ODUxMUUyQTc3OTk5REMwOEIwMkNEMi9GclZrdDFqZnpWTEZ6b2tSa3VNYmNWc2N2 LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyVmt0MWpmelZMRnpva1JrdU1iY1ZzY3YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y0RkUvQkExMzEyNEUxRDg1MTFFMkE3Nzk5OURDMDhCMDJDRDIvMTBEQUUwNUVC MDQ4MTFFQUJCNEFFRjYxQzRGOUFFMDIucm9hMEoGCCsGAQUFBwEHAQH/BDswOTA3 BAIAATAxAwQCLUBMAwQCZxUYAwQBtLT4MAsDBAC0tPsDAwC0tAMEAMtxPwMEAcuZ MgMEAcu++jANBgkqhkiG9w0BAQsFAAOCAQEAdSSLImaPios3dNw87h1NNmB6QszA rEc65oN7l28P1HMTSJwTQ5Y5/S+ya8XNjQD7OA6fEz6bxMohwNV8YH9oedOwSIK6 4zcGM6F65dHLHCMndJyJJH+RbwcSIjpsrNgsKxPqW8l3RJisQsw6YHbZf5mbjNWg FBznmHrbS7Dt9M/EGzgM85YURuYFnTbSoVQ6uCzp7QxGMtxYS+YWedg/Q6C9BbSv 9E21/Fd7y36tvUvSHe0jza2ztTwQSiH26ynX8nPZwnO9OI2JfSRUWqME3a6AG9im rmbJPubJQiK4dPQd/xyEBJQO2y/+Se30JrD0Yi7aF1n30LYStj3HUYN6hA== -----END CERTIFICATE-----Generated at Thu Mar 26 07:45:36 2026 by rpki-client