$ rpki-client -vvf rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa File: 3E730FA28E8111EAB2038B6BC4F9AE02.roa (raw, json) Hash identifier: MbmLimkFuSlgFVmwvMerhH0HRfGD7YASloMLcfnu2aE= Subject key identifier: 64:41:80:C4:90:03:A3:6D:A8:E0:C8:02:34:8E:57:32:EE:76:BB:6D Certificate issuer: /CN=A91293F4/serialNumber=E6A54BAD7D176E4447A9E94F24480327C1B40C9E Certificate serial: 0A24 Authority key identifier: E6:A5:4B:AD:7D:17:6E:44:47:A9:E9:4F:24:48:03:27:C1:B4:0C:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:04:12 +0000 ROA not before: Wed 08 Oct 2025 20:21:13 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45355 IP address blocks: 45.117.244.0/22 maxlen: 22 103.1.180.0/22 maxlen: 22 103.101.240.0/22 maxlen: 22 202.129.228.0/22 maxlen: 22 2400:6d00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.crl rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2596 (0xa24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91293F4, serialNumber=E6A54BAD7D176E4447A9E94F24480327C1B40C9E Validity Not Before: Oct 8 20:21:13 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4718b-30d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:22:b3:82:09:c3:36:28:81:9a:4a:92:e7:49: b8:ad:c6:19:50:df:7d:0d:49:53:1e:3f:14:b4:1e: 3c:ec:a8:d1:37:9a:2b:1f:38:51:b2:f1:ca:dc:90: 09:16:58:86:7a:b7:23:1c:a8:08:35:8d:f7:70:69: 6a:3c:e3:99:03:84:5b:eb:51:f3:b9:ef:dd:af:0b: 5d:09:69:1c:f6:94:62:81:5e:6a:95:49:b0:90:df: 0f:83:72:23:eb:ac:0f:73:d3:84:29:bf:77:bb:a5: 3d:8d:f0:68:8e:01:e2:29:80:d8:f4:c0:1f:01:61: 41:f7:0c:50:0f:b1:46:6c:78:88:a8:ef:3c:36:b3: 1c:8a:e2:fd:4a:f4:f9:3a:78:9d:ee:81:0d:3b:13: 2b:2b:9a:04:59:fe:3b:d7:6c:12:4f:2a:ce:76:ec: f1:53:1f:a0:5b:bb:b6:57:98:8c:b6:52:44:2c:72: ea:87:30:a2:1f:dc:66:97:b0:87:b9:19:31:ce:9f: 7a:07:7e:7b:a5:66:90:60:4c:56:c9:94:14:bb:68: e1:a2:7d:02:c7:e9:7d:50:be:f9:be:84:8b:e2:22: 45:57:c0:fa:e8:f7:b0:f3:c3:7c:ba:7e:fd:6b:4b: 94:31:be:cf:5f:90:ae:e3:12:23:3c:77:57:23:32: eb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:41:80:C4:90:03:A3:6D:A8:E0:C8:02:34:8E:57:32:EE:76:BB:6D X509v3 Authority Key Identifier: keyid:E6:A5:4B:AD:7D:17:6E:44:47:A9:E9:4F:24:48:03:27:C1:B4:0C:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.117.244.0/22 103.1.180.0/22 103.101.240.0/22 202.129.228.0/22 IPv6: 2400:6d00::/32 Signature Algorithm: sha256WithRSAEncryption b2:f5:e1:d1:1e:84:58:4a:4d:f0:5f:ec:6a:7f:e5:8f:76:ca: 20:81:13:45:58:89:7f:54:92:0a:93:33:b7:d4:88:c2:fb:9d: 2c:85:86:c3:6a:16:c3:68:7c:92:41:fc:5e:ff:f0:7a:ee:6e: c9:93:35:b6:70:3f:24:3d:e5:40:60:5a:c1:77:23:fc:e8:ad: e0:31:12:b1:92:f4:82:40:89:20:31:68:6e:1b:01:be:ef:44: db:32:6f:af:23:91:2a:44:37:ac:a1:9a:e4:b1:7c:a9:c9:5f: 20:df:b0:86:c1:e5:b5:d8:ac:21:23:85:03:69:ab:87:ad:ba: a5:0a:3a:1f:85:7b:b9:86:3b:66:d1:b2:a6:08:96:61:bc:d4: 06:da:e9:2c:a1:1b:71:c8:25:d8:1e:8a:66:9e:fc:1c:92:c7: ab:58:74:75:ee:09:2b:21:fd:df:17:40:a1:e3:88:3d:fa:1c: 3f:27:cc:bc:55:d9:c2:c5:12:76:d7:bd:8e:78:98:e3:1a:1f: b3:b9:26:d7:5c:3c:bf:b3:ec:4b:7c:6f:5b:70:81:e3:bb:e3: c8:df:a9:db:fc:bc:ad:10:7f:6b:db:05:46:d6:96:be:1e:d5: 5b:06:04:71:a1:9c:75:6a:67:89:37:62:8c:09:55:7a:80:8b: e9:9c:c5:6b -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICCiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkzRjQxMTAvBgNVBAUTKEU2QTU0QkFEN0QxNzZFNDQ0N0E5RTk0RjI0NDgwMzI3 QzFCNDBDOUUwHhcNMjUxMDA4MjAyMTEzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzE4Yi0zMGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuiKzggnDNiiBmkqS50m4rcYZUN99DUlTHj8UtB487KjRN5orHzhRsvHK3JAJ FliGercjHKgINY33cGlqPOOZA4Rb61Hzue/drwtdCWkc9pRigV5qlUmwkN8Pg3Ij 66wPc9OEKb93u6U9jfBojgHiKYDY9MAfAWFB9wxQD7FGbHiIqO88NrMciuL9SvT5 Onid7oENOxMrK5oEWf4712wSTyrOduzxUx+gW7u2V5iMtlJELHLqhzCiH9xml7CH uRkxzp96B357pWaQYExWyZQUu2jhon0Cx+l9UL75voSL4iJFV8D66Pew88N8un79 a0uUMb7PX5Cu4xIjPHdXIzLrgwIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFGRBgMSQ A6NtqODIAjSOVzLudrttMB8GA1UdIwQYMBaAFOalS619F25ER6npTyRIAyfBtAye MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTNGNC8xRjY5NUVFQzhF N0YxMUVBQTk1ODRDNjdDNEY5QUUwMi81cVZMclgwWGJrUkhxZWxQSkVnREo4RzBE SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVxVkxyWDBYYmtSSHFlbFBKRWdESjhHMERKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjkzRjQvMUY2OTVFRUM4RTdGMTFFQUE5NTg0QzY3QzRGOUFFMDIvM0U3MzBGQTI4 RTgxMTFFQUIyMDM4QjZCQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQCLXX0AwQCZwG0AwQCZ2XwAwQCyoHkMA0EAgACMAcDBQAkAG0AMA0G CSqGSIb3DQEBCwUAA4IBAQCy9eHRHoRYSk3wX+xqf+WPdsoggRNFWIl/VJIKkzO3 1IjC+50shYbDahbDaHySQfxe//B67m7JkzW2cD8kPeVAYFrBdyP86K3gMRKxkvSC QIkgMWhuGwG+70TbMm+vI5EqRDesoZrksXypyV8g37CGweW12KwhI4UDaauHrbql CjofhXu5hjtm0bKmCJZhvNQG2uksoRtxyCXYHopmnvwckserWHR17gkrIf3fF0Ch 44g9+hw/J8y8VdnCxRJ2172OeJjjGh+zuSbXXDy/s+xLfG9bcIHju+PI36nb/Lyt EH9r2wVG1pa+HtVbBgRxoZx1ameJN2KMCVV6gIvpnMVr -----END CERTIFICATE-----Generated at Mon Mar 2 13:48:52 2026 by rpki-client