$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F08/5B17F6D207D011EAA4848644C4F9AE02/DC4BD210A17B11EAB16F4954C4F9AE02.roa File: DC4BD210A17B11EAB16F4954C4F9AE02.roa (raw, json) Hash identifier: 6TPmegHt1AjpFvO8G0V6HPeTiea1yCSK8Hn4TAgtC7M= Subject key identifier: 2E:30:C3:F0:A6:06:43:D4:E6:B9:25:F1:CC:CF:F7:FD:EF:79:71:3F Certificate issuer: /CN=A9158F08/serialNumber=B2A784EE85F5538367297B51C0868F8F1C02F911 Certificate serial: 09C9 Authority key identifier: B2:A7:84:EE:85:F5:53:83:67:29:7B:51:C0:86:8F:8F:1C:02:F9:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqeE7oX1U4NnKXtRwIaPjxwC-RE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F08/5B17F6D207D011EAA4848644C4F9AE02/DC4BD210A17B11EAB16F4954C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:00:44 +0000 ROA not before: Wed 26 Mar 2025 18:27:00 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 14618 IP address blocks: 45.250.72.0/22 maxlen: 24 103.226.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F08/5B17F6D207D011EAA4848644C4F9AE02/sqeE7oX1U4NnKXtRwIaPjxwC-RE.crl rsync://rpki.apnic.net/member_repository/A9158F08/5B17F6D207D011EAA4848644C4F9AE02/sqeE7oX1U4NnKXtRwIaPjxwC-RE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqeE7oX1U4NnKXtRwIaPjxwC-RE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2505 (0x9c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F08, serialNumber=B2A784EE85F5538367297B51C0868F8F1C02F911 Validity Not Before: Mar 26 18:27:00 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48cdc-c194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fa:18:7d:52:b9:e2:83:bf:16:ca:e2:6f:e2: de:8e:4c:d3:4b:70:82:29:75:ef:d4:fa:e8:9e:55: ee:ca:c2:cf:ed:89:36:d0:86:6b:f1:0e:0c:dc:f1: b2:af:68:0f:b0:b7:41:74:eb:d8:6c:b4:83:63:70: 5d:50:d5:db:58:c1:ac:98:6d:41:79:b3:49:dc:d8: d2:45:cb:10:05:f0:5a:e5:8e:98:e6:1e:a6:34:a9: 17:ad:93:a0:53:fe:64:a6:8a:97:c1:64:6f:40:b9: 6b:52:fd:47:21:37:4a:b6:01:dc:da:52:bb:a4:7f: ee:d6:32:ee:cf:f9:a4:6c:e6:df:98:ea:af:1d:3f: 70:16:f9:0b:5b:01:c0:b5:3c:95:09:6c:6b:43:dd: f0:db:bb:9d:c6:7e:a4:5b:2d:cc:83:5b:8f:a7:97: 92:9c:8e:25:b0:4c:19:d2:b0:9b:fd:a9:02:57:ec: b0:ea:22:4a:d4:c6:a4:5c:8b:b7:4c:3a:1e:4f:f7: 40:29:14:0d:dc:9a:29:b4:d6:b0:53:a6:cf:53:1f: a0:72:ed:99:76:77:69:5d:d8:b3:15:cc:f9:c8:89: d9:bd:4f:ab:48:82:a6:6b:59:3d:f5:1d:5e:ad:4a: b8:8e:c1:74:59:8c:fc:23:07:ae:cf:f2:14:ad:3e: 31:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:30:C3:F0:A6:06:43:D4:E6:B9:25:F1:CC:CF:F7:FD:EF:79:71:3F X509v3 Authority Key Identifier: keyid:B2:A7:84:EE:85:F5:53:83:67:29:7B:51:C0:86:8F:8F:1C:02:F9:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F08/5B17F6D207D011EAA4848644C4F9AE02/sqeE7oX1U4NnKXtRwIaPjxwC-RE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqeE7oX1U4NnKXtRwIaPjxwC-RE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F08/5B17F6D207D011EAA4848644C4F9AE02/DC4BD210A17B11EAB16F4954C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.250.72.0/22 103.226.68.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:b5:bb:07:3d:66:cf:29:39:9b:bb:d9:8d:52:96:7f:1f:d1: 98:86:15:f2:69:21:21:52:47:70:9f:8e:25:3c:07:76:46:51: e0:9f:cd:ca:1e:f7:d6:ac:80:6f:45:e6:e7:9f:9a:29:3d:35: e5:0c:7a:cc:66:19:04:16:3d:b2:09:ea:ae:21:57:74:b8:73: 55:a7:33:e6:3c:31:47:1f:37:81:e1:40:c2:6a:f0:6b:2b:e2: ad:5a:90:36:cb:0c:7c:b6:bb:14:10:7e:27:a2:0f:96:26:26: 01:15:26:b3:be:24:65:77:cb:41:0b:73:46:14:02:1f:35:d7: 70:19:f8:b6:66:b8:e5:6c:41:50:86:eb:71:3f:c8:b3:c8:be: e7:5e:ff:59:f4:41:d2:e6:d7:72:38:a8:4e:72:68:1e:ea:40: 07:a1:ad:b9:29:43:0e:61:5a:bf:6c:97:cb:bd:06:a1:b4:29: af:74:85:26:14:dc:f3:ff:4c:ce:b2:89:8f:49:40:49:d2:80: 10:3e:b5:1d:aa:d4:1a:92:bf:60:b8:ac:df:85:92:04:9b:69: 8e:37:01:27:55:2a:f1:de:c6:ef:1e:f4:ac:6a:4a:4f:8e:16: fc:83:24:1e:88:25:03:7a:94:0c:df:69:7d:f7:64:63:a2:68: dd:df:02:2a -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGMDgxMTAvBgNVBAUTKEIyQTc4NEVFODVGNTUzODM2NzI5N0I1MUMwODY4RjhG MUMwMkY5MTEwHhcNMjUwMzI2MTgyNzAwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGNkYy1jMTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfoYfVK54oO/Fsrib+LejkzTS3CCKXXv1PronlXuysLP7Yk20IZr8Q4M3PGy r2gPsLdBdOvYbLSDY3BdUNXbWMGsmG1BebNJ3NjSRcsQBfBa5Y6Y5h6mNKkXrZOg U/5kpoqXwWRvQLlrUv1HITdKtgHc2lK7pH/u1jLuz/mkbObfmOqvHT9wFvkLWwHA tTyVCWxrQ93w27udxn6kWy3Mg1uPp5eSnI4lsEwZ0rCb/akCV+yw6iJK1MakXIu3 TDoeT/dAKRQN3JoptNawU6bPUx+gcu2ZdndpXdizFcz5yInZvU+rSIKma1k99R1e rUq4jsF0WYz8Iweuz/IUrT4x9wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFC4ww/Cm BkPU5rkl8czP9/3veXE/MB8GA1UdIwQYMBaAFLKnhO6F9VODZyl7UcCGj48cAvkR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEYwOC81QjE3RjZEMjA3 RDAxMUVBQTQ4NDg2NDRDNEY5QUUwMi9zcWVFN29YMVU0Tm5LWHRSd0lhUGp4d0Mt UkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxZUU3b1gxVTRObktYdFJ3SWFQanh3Qy1SRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThGMDgvNUIxN0Y2RDIwN0QwMTFFQUE0ODQ4NjQ0QzRGOUFFMDIvREM0QkQyMTBB MTdCMTFFQUIxNkY0OTU0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLfpIAwQCZ+JEMA0GCSqGSIb3DQEBCwUAA4IBAQCLtbsHPWbPKTmb u9mNUpZ/H9GYhhXyaSEhUkdwn44lPAd2RlHgn83KHvfWrIBvRebnn5opPTXlDHrM ZhkEFj2yCequIVd0uHNVpzPmPDFHHzeB4UDCavBrK+KtWpA2ywx8trsUEH4nog+W JiYBFSazviRld8tBC3NGFAIfNddwGfi2ZrjlbEFQhutxP8izyL7nXv9Z9EHS5tdy OKhOcmge6kAHoa25KUMOYVq/bJfLvQahtCmvdIUmFNzz/0zOsomPSUBJ0oAQPrUd qtQakr9guKzfhZIEm2mONwEnVSrx3sbvHvSsakpPjhb8gyQeiCUDepQM32l992Rj omjd3wIq -----END CERTIFICATE-----Generated at Mon Mar 2 06:27:36 2026 by rpki-client