$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/AB9E7432714911EEBF95153CC4F9AE02.roa File: AB9E7432714911EEBF95153CC4F9AE02.roa (raw, json) Hash identifier: Bbmi/J5Lpn7aHAntaVp/ckgJSOlUGXUjQqXrthSWKgU= Subject key identifier: E0:83:D1:23:92:C7:84:B2:F0:84:6D:0D:5A:5B:FB:3B:EB:08:3C:BC Certificate issuer: /CN=A91FDD4D/serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Certificate serial: 2258 Authority key identifier: 72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/AB9E7432714911EEBF95153CC4F9AE02.roa Signing time: Wed 04 Mar 2026 16:19:35 +0000 ROA not before: Wed 04 Mar 2026 16:19:34 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 134743 IP address blocks: 45.253.128.0/23 maxlen: 24 103.103.104.0/22 maxlen: 24 103.197.212.0/23 maxlen: 24 103.223.136.0/23 maxlen: 24 2405:9f80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:49:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8792 (0x2258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Validity Not Before: Mar 4 16:19:34 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a85b96-2fda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:82:95:e1:20:3b:88:46:64:c8:23:21:b0:28: 07:68:87:09:c2:40:50:72:7f:0b:40:c4:09:b2:c7: 2e:2a:ff:98:22:96:ac:5b:3e:65:f2:06:65:40:4a: a9:f4:14:72:49:93:89:39:03:5a:9d:8f:2a:85:a0: e2:b5:b6:64:44:39:03:5a:0f:2e:aa:22:e4:72:c3: 03:f3:bb:bd:f8:61:4a:6b:87:b2:1e:c6:5f:04:8c: 1e:06:26:7b:b6:c1:da:25:da:c7:c8:52:4a:fe:ac: af:0b:7c:c8:9a:ca:c5:87:b3:49:bb:a4:bd:1c:53: 51:6e:d3:96:35:a0:27:fc:80:47:8f:6d:02:7f:71: 1b:e0:48:8e:70:ab:30:e1:f3:a1:49:47:1a:83:af: f1:6d:27:0b:a4:bd:40:3d:42:a9:9e:a5:aa:b4:ba: 81:ab:40:1b:49:ea:a1:a4:c8:78:6e:5d:52:28:ce: 0e:bd:bc:c3:9e:bd:cd:f6:42:ce:5b:34:ae:24:99: 79:6f:0b:b6:b3:09:cf:2c:a9:e5:64:b9:c6:41:05: b9:f1:8c:87:d9:45:18:77:09:b8:c7:73:31:6e:b0: 40:81:58:3b:87:9f:f1:33:11:43:47:5f:04:a0:74: d7:42:51:e2:de:ba:f7:54:95:d7:68:17:85:62:c2: 9a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:83:D1:23:92:C7:84:B2:F0:84:6D:0D:5A:5B:FB:3B:EB:08:3C:BC X509v3 Authority Key Identifier: keyid:72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/AB9E7432714911EEBF95153CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.253.128.0/23 103.103.104.0/22 103.197.212.0/23 103.223.136.0/23 IPv6: 2405:9f80::/32 Signature Algorithm: sha256WithRSAEncryption 03:44:4c:17:cc:f6:8f:0e:48:e7:66:9b:6d:94:ef:f0:c9:46: ae:b4:82:c2:9b:ec:63:44:b3:23:9b:e5:31:4c:cf:33:7b:ad: c1:3a:f7:6c:b8:a4:b3:a5:72:6e:be:19:a4:09:f9:ae:c8:1a: 18:8b:dc:1a:c6:1b:fc:25:67:83:ac:82:92:7c:4b:29:59:1b: 2f:0d:21:76:62:77:70:ba:74:9a:96:b4:cb:79:2e:7e:ee:04: 07:05:92:d3:82:92:dd:ca:99:b8:09:0d:a6:87:f9:f6:d9:b5: bc:5a:be:c4:19:b6:cd:76:68:16:9a:66:fd:2b:27:ca:2d:2f: a5:db:5d:65:93:2e:6c:98:2b:0f:e0:c1:1a:48:d1:9c:02:c2: 4c:34:dc:c6:2f:04:f6:4a:dd:34:37:59:75:2c:07:7f:ac:1b: 10:12:49:b0:72:8e:a2:38:56:de:c6:f1:a2:b9:f6:fd:76:f3: cb:f9:3d:34:6b:5a:15:da:c0:0b:3a:3a:06:24:c6:8b:b4:b7: de:47:10:ff:2c:e5:eb:35:68:d7:ef:96:f6:1b:ab:fa:6c:a3: 91:1c:ae:a8:4d:d4:0c:68:e8:a4:0c:a8:04:7b:c4:0f:43:2e: 20:00:b2:e2:58:ad:a8:27:0a:68:ac:89:39:7e:76:23:4e:70: 13:25:9b:bd -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICIlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKDcyQUZCQUVCQzlFQ0REQTJFRUQyRDQ5QjEzRTYwNDhF QTNFNDFFNjAwHhcNMjYwMzA0MTYxOTM0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4NWI5Ni0yZmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4KV4SA7iEZkyCMhsCgHaIcJwkBQcn8LQMQJsscuKv+YIpasWz5l8gZlQEqp 9BRySZOJOQNanY8qhaDitbZkRDkDWg8uqiLkcsMD87u9+GFKa4eyHsZfBIweBiZ7 tsHaJdrHyFJK/qyvC3zImsrFh7NJu6S9HFNRbtOWNaAn/IBHj20Cf3Eb4EiOcKsw 4fOhSUcag6/xbScLpL1APUKpnqWqtLqBq0AbSeqhpMh4bl1SKM4OvbzDnr3N9kLO WzSuJJl5bwu2swnPLKnlZLnGQQW58YyH2UUYdwm4x3MxbrBAgVg7h5/xMxFDR18E oHTXQlHi3rr3VJXXaBeFYsKaCQIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFOCD0SOS x4Sy8IRtDVpb+zvrCDy8MB8GA1UdIwQYMBaAFHKvuuvJ7N2i7tLUmxPmBI6j5B5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC9CQUUxMDhDNEVB NjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNhTHUwdFNiRS1ZRWpxUGtI bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxLTY2OG5zM2FMdTB0U2JFLVlFanFQa0htQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRENEQvQkFFMTA4QzRFQTYwMTFFNTg4MTU3NzBDQzRGOUFFMDIvQUI5RTc0MzI3 MTQ5MTFFRUJGOTUxNTNDQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQBLf2AAwQCZ2doAwQBZ8XUAwQBZ9+IMA0EAgACMAcDBQAkBZ+AMA0G CSqGSIb3DQEBCwUAA4IBAQADREwXzPaPDkjnZpttlO/wyUautILCm+xjRLMjm+Ux TM8ze63BOvdsuKSzpXJuvhmkCfmuyBoYi9waxhv8JWeDrIKSfEspWRsvDSF2Yndw unSalrTLeS5+7gQHBZLTgpLdypm4CQ2mh/n22bW8Wr7EGbbNdmgWmmb9KyfKLS+l 211lky5smCsP4MEaSNGcAsJMNNzGLwT2St00N1l1LAd/rBsQEkmwco6iOFbexvGi ufb9dvPL+T00a1oV2sALOjoGJMaLtLfeRxD/LOXrNWjX75b2G6v6bKORHK6oTdQM aOikDKgEe8QPQy4gALLiWK2oJwporIk5fnYjTnATJZu9 -----END CERTIFICATE-----Generated at Thu Mar 26 17:20:43 2026 by rpki-client