$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/D6373CB80CD211EFB50E0B5EC4F9AE02.roa File: D6373CB80CD211EFB50E0B5EC4F9AE02.roa (raw, json) Hash identifier: Vw5Q6aGZen/i8DNFItLlI1Gb1wCmBs0b9LxCUDz/zpw= Subject key identifier: DF:F2:13:9D:C7:75:A5:64:6F:FA:65:0D:A8:EF:62:4E:2F:61:04:5F Certificate issuer: /CN=A9146B76/serialNumber=CA15C5908D072DD821714EC67E1175E3AA9112E6 Certificate serial: 084A Authority key identifier: CA:15:C5:90:8D:07:2D:D8:21:71:4E:C6:7E:11:75:E3:AA:91:12:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhXFkI0HLdghcU7GfhF146qREuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/D6373CB80CD211EFB50E0B5EC4F9AE02.roa Signing time: Fri 10 Apr 2026 21:26:23 +0000 ROA not before: Fri 10 Apr 2026 21:26:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55720 IP address blocks: 45.116.176.0/24 maxlen: 24 45.116.177.0/24 maxlen: 24 45.116.179.0/24 maxlen: 24 103.228.52.0/24 maxlen: 24 103.228.53.0/24 maxlen: 24 103.228.54.0/24 maxlen: 24 103.228.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/yhXFkI0HLdghcU7GfhF146qREuY.crl rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/yhXFkI0HLdghcU7GfhF146qREuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhXFkI0HLdghcU7GfhF146qREuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2122 (0x84a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B76, serialNumber=CA15C5908D072DD821714EC67E1175E3AA9112E6 Validity Not Before: Apr 10 21:26:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d96aff-c653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3c:e5:d0:0a:d2:b2:0e:75:ad:80:5e:a4:a9: a5:95:a1:d9:f0:71:e3:f0:45:2b:47:90:7d:af:78: de:7d:38:94:43:ff:94:06:64:2d:3a:00:ca:eb:3b: 20:4b:05:fe:8e:0e:7d:e8:63:76:00:c0:25:70:09: 33:1b:75:29:ab:53:a7:b2:37:66:94:75:6f:c7:a4: 91:aa:49:cb:ab:ca:d5:70:13:62:6b:32:af:35:6f: 95:d8:26:84:3b:97:7a:03:09:7d:16:28:59:14:3f: 23:33:10:5a:26:d3:03:4a:58:75:c9:39:f9:e6:2a: ea:e7:3e:7e:29:a4:31:5e:e8:83:cf:93:27:5b:8e: f0:a5:72:3a:25:c3:94:a5:78:d0:a8:80:7c:ef:2e: c1:e6:60:3e:e9:30:5d:95:b0:d5:58:3a:fc:49:c5: b4:2e:f6:76:e4:3e:29:1e:e6:d9:9f:ed:3f:34:e2: 30:ce:1e:44:d0:37:89:ff:e0:75:7d:e3:3d:64:8f: 20:03:77:35:21:96:d6:01:00:7a:5e:cf:a2:dd:7c: 61:08:ab:c1:e8:ab:8a:ce:73:bc:02:01:f2:a8:b4: 3f:1e:2e:b0:8d:79:28:4e:1a:c5:3e:10:4d:4d:df: ab:12:39:58:77:45:46:8e:64:37:60:c3:f9:ce:00: 65:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:F2:13:9D:C7:75:A5:64:6F:FA:65:0D:A8:EF:62:4E:2F:61:04:5F X509v3 Authority Key Identifier: keyid:CA:15:C5:90:8D:07:2D:D8:21:71:4E:C6:7E:11:75:E3:AA:91:12:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/yhXFkI0HLdghcU7GfhF146qREuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhXFkI0HLdghcU7GfhF146qREuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/D6373CB80CD211EFB50E0B5EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.116.176.0/23 45.116.179.0/24 103.228.52.0/22 Signature Algorithm: sha256WithRSAEncryption bf:c1:6d:19:a7:53:d1:06:59:14:f0:79:e4:39:21:79:2a:a9: 6b:6b:46:f2:f9:62:30:ea:c1:87:5d:4b:9f:45:b9:6c:38:e6: 6a:7c:9a:48:fe:4b:60:39:0f:75:38:e6:5a:f6:8c:3f:6d:29: 91:2f:1c:c7:3a:1a:70:37:5a:20:58:83:b8:d7:d1:3b:63:42: 93:c2:a0:1f:a3:59:c7:8d:59:18:21:67:3e:af:14:68:66:8b: 0d:97:07:20:2c:0a:c7:5e:dd:da:72:75:58:42:f2:de:8f:67: 91:ea:f2:d4:c2:09:e4:d7:cc:54:79:c1:83:23:ab:4f:87:4f: 57:26:d3:93:e8:ae:fa:4c:53:26:ad:5d:46:7f:83:25:4d:1f: 3e:3f:35:60:e8:dc:a2:2f:35:5c:e5:5f:6e:33:29:c4:b3:cb: 3c:76:9f:14:f8:61:70:1b:72:33:87:4f:f9:92:58:2a:42:f8: 07:07:b7:56:5d:f0:a6:27:f4:d3:82:96:3b:7c:cd:25:7c:ec: 71:d0:79:74:da:94:29:dd:98:7e:f2:db:cc:10:5e:50:86:0d: 54:62:11:4f:43:75:41:3a:44:bc:42:01:2d:79:95:5e:e9:93: bb:88:5c:f0:31:26:de:03:69:fe:99:d3:1f:d3:1c:c1:c8:06: c0:21:cd:a4 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCNzYxMTAvBgNVBAUTKENBMTVDNTkwOEQwNzJERDgyMTcxNEVDNjdFMTE3NUUz QUE5MTEyRTYwHhcNMjYwNDEwMjEyNjIzWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ5NmFmZi1jNjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoTzl0ArSsg51rYBepKmllaHZ8HHj8EUrR5B9r3jefTiUQ/+UBmQtOgDK6zsg SwX+jg596GN2AMAlcAkzG3Upq1OnsjdmlHVvx6SRqknLq8rVcBNiazKvNW+V2CaE O5d6Awl9FihZFD8jMxBaJtMDSlh1yTn55irq5z5+KaQxXuiDz5MnW47wpXI6JcOU pXjQqIB87y7B5mA+6TBdlbDVWDr8ScW0LvZ25D4pHubZn+0/NOIwzh5E0DeJ/+B1 feM9ZI8gA3c1IZbWAQB6Xs+i3XxhCKvB6KuKznO8AgHyqLQ/Hi6wjXkoThrFPhBN Td+rEjlYd0VGjmQ3YMP5zgBlGwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFN/yE53H daVkb/plDajvYk4vYQRfMB8GA1UdIwQYMBaAFMoVxZCNBy3YIXFOxn4RdeOqkRLm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkI3Ni82Q0EzMzY5QzA5 RDYxMUVCQjNDM0M2ODVDNEY5QUUwMi95aFhGa0kwSExkZ2hjVTdHZmhGMTQ2cVJF dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3loWEZrSTBITGRnaGNVN0dmaEYxNDZxUkV1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZCNzYvNkNBMzM2OUMwOUQ2MTFFQkIzQzNDNjg1QzRGOUFFMDIvRDYzNzNDQjgw Q0QyMTFFRkI1MEUwQjVFQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQBLXSwAwQALXSzAwQCZ+Q0MA0GCSqGSIb3DQEBCwUAA4IBAQC/wW0Z p1PRBlkU8HnkOSF5Kqlra0by+WIw6sGHXUufRblsOOZqfJpI/ktgOQ91OOZa9ow/ bSmRLxzHOhpwN1ogWIO419E7Y0KTwqAfo1nHjVkYIWc+rxRoZosNlwcgLArHXt3a cnVYQvLej2eR6vLUwgnk18xUecGDI6tPh09XJtOT6K76TFMmrV1Gf4MlTR8+PzVg 6NyiLzVc5V9uMynEs8s8dp8U+GFwG3Izh0/5klgqQvgHB7dWXfCmJ/TTgpY7fM0l fOxx0Hl02pQp3Zh+8tvMEF5Qhg1UYhFPQ3VBOkS8QgEteZVe6ZO7iFzwMSbeA2n+ mdMf0xzByAbAIc2k -----END CERTIFICATE-----Generated at Fri Apr 17 12:22:43 2026 by rpki-client