$ rpki-client -vvf rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/FF46137EA51C11EC8394365BC4F9AE02.roa File: FF46137EA51C11EC8394365BC4F9AE02.roa (raw, json) Hash identifier: iuWH4XsJsz0loBqcOc0cY5MFt/NYR3pQCRGo6mfAtWM= Subject key identifier: 76:D9:8C:58:57:89:6C:00:26:07:79:16:7D:F3:39:DE:5F:77:D3:D2 Certificate issuer: /CN=A9114DDF/serialNumber=E8671750344F18C2AF747FFAF255850EBC79D01F Certificate serial: 041C Authority key identifier: E8:67:17:50:34:4F:18:C2:AF:74:7F:FA:F2:55:85:0E:BC:79:D0:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6GcXUDRPGMKvdH_68lWFDrx50B8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/FF46137EA51C11EC8394365BC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:03:35 +0000 ROA not before: Tue 07 Oct 2025 00:58:30 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134553 IP address blocks: 45.126.88.0/22 maxlen: 22 45.126.88.0/24 maxlen: 24 45.126.89.0/24 maxlen: 24 45.126.90.0/24 maxlen: 24 45.126.91.0/24 maxlen: 24 103.236.228.0/22 maxlen: 22 103.236.228.0/24 maxlen: 24 103.236.229.0/24 maxlen: 24 103.236.230.0/24 maxlen: 24 103.236.231.0/24 maxlen: 24 2001:df1:2a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/6GcXUDRPGMKvdH_68lWFDrx50B8.crl rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/6GcXUDRPGMKvdH_68lWFDrx50B8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6GcXUDRPGMKvdH_68lWFDrx50B8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:52:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1052 (0x41c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114DDF, serialNumber=E8671750344F18C2AF747FFAF255850EBC79D01F Validity Not Before: Oct 7 00:58:30 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a45547-07ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a4:01:0c:48:99:e5:ae:4f:bd:2c:c8:2d:ec: bd:54:e5:0f:b1:4d:d8:38:87:f7:c4:7c:89:32:d3: 23:c7:ce:61:ce:7e:2c:6a:df:74:54:ee:5c:67:00: 4c:d0:28:08:84:15:1f:8f:10:ce:8e:1b:56:e0:b6: 3a:21:96:d4:d8:44:0f:12:3f:66:1b:ae:c9:76:27: 96:d1:e8:d8:d9:46:0d:84:00:57:c1:b5:3c:49:a9: 52:bf:55:64:d2:ab:39:d2:05:80:19:fe:aa:62:49: 24:89:43:08:11:d3:6f:8c:42:09:63:be:ac:b6:eb: 17:7e:bf:9a:b2:5c:e5:5e:7c:b6:47:37:ca:d3:93: aa:49:ed:9d:ae:9b:f4:d0:69:99:7e:37:7b:06:99: 83:40:b4:49:a2:75:48:98:ef:e3:9b:7f:95:30:af: 5b:1a:b7:b4:e6:3d:20:a9:db:39:24:be:69:a5:92: cb:59:7e:f2:e4:f5:44:53:d6:53:cd:27:89:fe:c1: b3:6b:b7:72:e2:9a:3a:ed:f0:a0:b7:00:eb:d3:5d: 98:f9:4f:96:10:ae:c1:8a:dd:e6:62:fa:b3:69:26: ce:25:4c:3b:66:ba:5f:46:93:e8:7d:b4:07:89:05: d9:ba:90:5f:f7:c3:a7:61:ae:41:85:84:e5:05:72: 5a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D9:8C:58:57:89:6C:00:26:07:79:16:7D:F3:39:DE:5F:77:D3:D2 X509v3 Authority Key Identifier: keyid:E8:67:17:50:34:4F:18:C2:AF:74:7F:FA:F2:55:85:0E:BC:79:D0:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/6GcXUDRPGMKvdH_68lWFDrx50B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6GcXUDRPGMKvdH_68lWFDrx50B8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/FF46137EA51C11EC8394365BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.126.88.0/22 103.236.228.0/22 IPv6: 2001:df1:2a00::/48 Signature Algorithm: sha256WithRSAEncryption 0e:f8:27:8b:0e:0a:48:ed:f3:e6:35:d8:0a:c1:c1:e1:77:57: 8f:be:57:ba:ba:ce:05:ca:78:0d:55:3f:b7:df:37:13:50:59: 90:66:91:46:6e:bb:85:82:77:97:99:03:39:80:cb:d0:8e:05: b1:11:0e:2a:c4:25:6c:fd:bb:da:24:26:2d:2b:ff:f1:1c:b6: d6:c1:19:88:0c:05:16:23:e6:13:67:a5:04:69:d4:04:10:94: d5:14:4c:fa:8e:50:9e:86:88:37:5d:db:20:26:27:c6:af:13: ad:ab:e9:9f:21:96:8c:5e:a1:a7:96:30:61:16:01:dc:22:9b: 9c:88:20:89:9b:a6:e1:b1:c0:03:a7:5c:5d:fc:c8:2c:ce:51: 4b:93:7b:c7:72:6b:28:f7:17:26:ec:08:8b:e5:bb:d7:0d:f9: 36:77:1e:9f:90:56:e8:35:f8:6f:d9:0e:e7:15:97:cc:4b:53: 2a:33:df:04:37:d3:c0:16:7a:a2:29:19:ba:b3:da:d2:61:40: 05:1d:bd:40:89:a2:dc:cb:2c:ea:10:aa:5a:1e:3f:c6:8d:ba: 11:02:e4:24:bb:82:50:af:76:00:09:85:4f:0b:bf:75:fc:f3: c2:3b:ba:51:a9:6e:37:ef:46:c0:5b:37:f0:e4:07:51:83:f7: da:69:06:9a -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICBBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTREREYxMTAvBgNVBAUTKEU4NjcxNzUwMzQ0RjE4QzJBRjc0N0ZGQUYyNTU4NTBF QkM3OUQwMUYwHhcNMjUxMDA3MDA1ODMwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTU0Ny0wN2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmqQBDEiZ5a5PvSzILey9VOUPsU3YOIf3xHyJMtMjx85hzn4sat90VO5cZwBM 0CgIhBUfjxDOjhtW4LY6IZbU2EQPEj9mG67JdieW0ejY2UYNhABXwbU8SalSv1Vk 0qs50gWAGf6qYkkkiUMIEdNvjEIJY76stusXfr+aslzlXny2RzfK05OqSe2drpv0 0GmZfjd7BpmDQLRJonVImO/jm3+VMK9bGre05j0gqds5JL5ppZLLWX7y5PVEU9ZT zSeJ/sGza7dy4po67fCgtwDr012Y+U+WEK7Bit3mYvqzaSbOJUw7ZrpfRpPofbQH iQXZupBf98OnYa5BhYTlBXJawwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFHbZjFhX iWwAJgd5Fn3zOd5fd9PSMB8GA1UdIwQYMBaAFOhnF1A0TxjCr3R/+vJVhQ68edAf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNERERi81QjA2RkVGMkE1 MEExMUVDQjI3NzhENUNDNEY5QUUwMi82R2NYVURSUEdNS3ZkSF82OGxXRkRyeDUw QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZHY1hVRFJQR01LdmRIXzY4bFdGRHJ4NTBCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTREREYvNUIwNkZFRjJBNTBBMTFFQ0IyNzc4RDVDQzRGOUFFMDIvRkY0NjEzN0VB NTFDMTFFQzgzOTQzNjVCQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQCLX5YAwQCZ+zkMA8EAgACMAkDBwAgAQ3xKgAwDQYJKoZIhvcNAQEL BQADggEBAA74J4sOCkjt8+Y12ArBweF3V4++V7q6zgXKeA1VP7ffNxNQWZBmkUZu u4WCd5eZAzmAy9COBbERDirEJWz9u9okJi0r//EcttbBGYgMBRYj5hNnpQRp1AQQ lNUUTPqOUJ6GiDdd2yAmJ8avE62r6Z8hloxeoaeWMGEWAdwim5yIIImbpuGxwAOn XF38yCzOUUuTe8dyayj3FybsCIvlu9cN+TZ3Hp+QVug1+G/ZDucVl8xLUyoz3wQ3 08AWeqIpGbqz2tJhQAUdvUCJotzLLOoQqloeP8aNuhEC5CS7glCvdgAJhU8Lv3X8 88I7ulGpbjfvRsBbN/DkB1GD99ppBpo= -----END CERTIFICATE-----Generated at Mon Mar 2 06:19:31 2026 by rpki-client