$ rpki-client -vvf rpki.apnic.net/member_repository/A91F644E/E43B6E4A405D11E7B01BA145C4F9AE02/312DC5B8405E11E7A28FCE45C4F9AE02.roa File: 312DC5B8405E11E7A28FCE45C4F9AE02.roa (raw, json) Hash identifier: ubMXw1DN1Mth2kZSk15bAoQVe5M3BHAcgEcTU6mYRfc= Subject key identifier: B9:EA:94:73:62:94:92:D4:FC:B0:39:FC:B6:C3:43:8C:40:D6:D9:88 Certificate issuer: /CN=A91F644E/serialNumber=3266306A7038DC9B015327C72556405F39FCE60B Certificate serial: 1AF9 Authority key identifier: 32:66:30:6A:70:38:DC:9B:01:53:27:C7:25:56:40:5F:39:FC:E6:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmYwanA43JsBUyfHJVZAXzn85gs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F644E/E43B6E4A405D11E7B01BA145C4F9AE02/312DC5B8405E11E7A28FCE45C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:42:11 +0000 ROA not before: Mon 06 Oct 2025 16:45:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134544 IP address blocks: 45.126.0.0/24 maxlen: 24 45.126.1.0/24 maxlen: 24 103.35.252.0/24 maxlen: 24 103.35.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F644E/E43B6E4A405D11E7B01BA145C4F9AE02/MmYwanA43JsBUyfHJVZAXzn85gs.crl rsync://rpki.apnic.net/member_repository/A91F644E/E43B6E4A405D11E7B01BA145C4F9AE02/MmYwanA43JsBUyfHJVZAXzn85gs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmYwanA43JsBUyfHJVZAXzn85gs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6905 (0x1af9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F644E, serialNumber=3266306A7038DC9B015327C72556405F39FCE60B Validity Not Before: Oct 6 16:45:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a44233-84be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:2e:ed:07:a5:8b:0e:25:7a:72:ff:71:42:2f: de:27:02:91:58:26:78:7f:ae:e4:cc:be:e4:09:20: c3:ca:25:07:04:f4:3d:71:58:05:37:47:db:74:22: ed:5a:c0:f4:36:38:b0:9b:0f:f4:b9:18:60:c1:05: ac:af:b5:d0:21:e1:1f:31:1d:be:2a:be:25:ea:17: ad:43:60:1e:7e:75:f3:7c:79:8f:e7:b0:3d:39:3e: d5:e9:98:34:94:a3:de:82:07:85:6c:7c:d2:85:53: 81:d5:3e:a8:9f:02:b7:d4:59:f7:d1:6d:77:dd:45: f3:77:99:6e:30:00:d1:49:06:10:85:36:73:15:c6: ea:1f:65:eb:d9:c1:44:39:80:66:98:48:28:90:bd: 70:08:cc:37:88:b6:b9:c0:9a:35:f0:de:90:ed:c5: a3:6b:22:22:45:b1:7a:fe:1d:24:75:4f:a9:dc:16: 45:d6:2b:db:0c:61:47:dd:55:cb:26:c4:3b:66:ca: fa:9c:4d:f8:aa:eb:9e:f2:f5:06:60:e1:35:0a:e6: 70:f7:04:27:86:e3:5d:e7:92:a3:46:a4:65:93:85: 5c:50:ad:e3:fe:4e:a2:27:61:d6:82:c2:1d:59:ea: 08:14:46:04:18:29:fa:c3:13:5b:0f:9e:f8:6c:95: c6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:EA:94:73:62:94:92:D4:FC:B0:39:FC:B6:C3:43:8C:40:D6:D9:88 X509v3 Authority Key Identifier: keyid:32:66:30:6A:70:38:DC:9B:01:53:27:C7:25:56:40:5F:39:FC:E6:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F644E/E43B6E4A405D11E7B01BA145C4F9AE02/MmYwanA43JsBUyfHJVZAXzn85gs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmYwanA43JsBUyfHJVZAXzn85gs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F644E/E43B6E4A405D11E7B01BA145C4F9AE02/312DC5B8405E11E7A28FCE45C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.126.0.0/23 103.35.252.0/23 Signature Algorithm: sha256WithRSAEncryption aa:00:55:01:c9:5e:ac:fe:1c:7e:bb:a7:d1:24:64:18:3c:ab: d2:4d:00:50:e7:26:15:fd:95:b3:d0:ca:c6:b1:9b:cb:40:f8: b1:4e:33:10:f2:10:a5:11:20:02:10:5b:86:7e:62:e3:76:01: ab:f8:51:a3:af:cd:58:69:c9:5c:16:0b:2d:cc:0d:4a:c5:6e: 24:d5:1d:44:92:03:40:d8:85:07:ed:4d:f7:c6:09:08:1d:e2: 1f:4b:42:5f:93:87:85:48:32:a5:51:d6:1d:bb:fe:ef:fc:b3: 2f:d1:7f:f7:f9:89:66:e6:b5:ff:60:11:58:99:8d:9d:49:a4: c3:39:19:50:ac:0b:fd:03:a9:bc:b3:66:3c:6d:cd:df:29:0a: 8c:4e:a7:fb:83:c6:fa:e2:3a:a2:3b:de:02:68:36:f5:58:55: ab:8d:ce:c7:c9:0f:7a:0e:b2:2c:4a:5f:ac:e6:f0:ac:3a:4e: ee:68:74:c5:ec:a6:80:f2:8f:67:01:dc:4e:47:32:02:d9:50: b0:e8:f9:4c:ff:77:52:72:04:f2:1e:a1:e7:31:ad:04:d1:a7: d8:c6:f7:86:11:7e:cc:77:8f:5a:6f:73:7e:7d:c1:30:ee:fd: f9:de:cb:f9:73:4a:a5:72:bb:8d:46:44:f2:e8:18:f8:c7:e4: 2e:2c:1d:fb -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICGvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY0NEUxMTAvBgNVBAUTKDMyNjYzMDZBNzAzOERDOUIwMTUzMjdDNzI1NTY0MDVG MzlGQ0U2MEIwHhcNMjUxMDA2MTY0NTIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDIzMy04NGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2i7tB6WLDiV6cv9xQi/eJwKRWCZ4f67kzL7kCSDDyiUHBPQ9cVgFN0fbdCLt WsD0Njiwmw/0uRhgwQWsr7XQIeEfMR2+Kr4l6hetQ2AefnXzfHmP57A9OT7V6Zg0 lKPeggeFbHzShVOB1T6onwK31Fn30W133UXzd5luMADRSQYQhTZzFcbqH2Xr2cFE OYBmmEgokL1wCMw3iLa5wJo18N6Q7cWjayIiRbF6/h0kdU+p3BZF1ivbDGFH3VXL JsQ7Zsr6nE34quue8vUGYOE1CuZw9wQnhuNd55KjRqRlk4VcUK3j/k6iJ2HWgsId WeoIFEYEGCn6wxNbD574bJXGXQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFLnqlHNi lJLU/LA5/LbDQ4xA1tmIMB8GA1UdIwQYMBaAFDJmMGpwONybAVMnxyVWQF85/OYL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjQ0RS9FNDNCNkU0QTQw NUQxMUU3QjAxQkExNDVDNEY5QUUwMi9NbVl3YW5BNDNKc0JVeWZISlZaQVh6bjg1 Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tWXdhbkE0M0pzQlV5ZkhKVlpBWHpuODVncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY0NEUvRTQzQjZFNEE0MDVEMTFFN0IwMUJBMTQ1QzRGOUFFMDIvMzEyREM1Qjg0 MDVFMTFFN0EyOEZDRTQ1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBLX4AAwQBZyP8MA0GCSqGSIb3DQEBCwUAA4IBAQCqAFUByV6s/hx+ u6fRJGQYPKvSTQBQ5yYV/ZWz0MrGsZvLQPixTjMQ8hClESACEFuGfmLjdgGr+FGj r81YaclcFgstzA1KxW4k1R1EkgNA2IUH7U33xgkIHeIfS0Jfk4eFSDKlUdYdu/7v /LMv0X/3+Ylm5rX/YBFYmY2dSaTDORlQrAv9A6m8s2Y8bc3fKQqMTqf7g8b64jqi O94CaDb1WFWrjc7HyQ96DrIsSl+s5vCsOk7uaHTF7KaA8o9nAdxORzIC2VCw6PlM /3dScgTyHqHnMa0E0afYxveGEX7Md49ab3N+fcEw7v353sv5c0qlcruNRkTy6Bj4 x+QuLB37 -----END CERTIFICATE-----Generated at Thu Mar 26 11:15:57 2026 by rpki-client