$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F08/5B17F6D207D011EAA4848644C4F9AE02/DD70B00CA17B11EAB16F4954C4F9AE02.roa File: DD70B00CA17B11EAB16F4954C4F9AE02.roa (raw, json) Hash identifier: ZZmQHUw3TTN+bbSECc35E7vWbU+hDUGHOpstVPhjmQY= Subject key identifier: 43:A2:61:59:56:11:E9:65:73:3F:14:9E:E2:09:44:3C:FC:33:07:C9 Certificate issuer: /CN=A9158F08/serialNumber=B2A784EE85F5538367297B51C0868F8F1C02F911 Certificate serial: 09CB Authority key identifier: B2:A7:84:EE:85:F5:53:83:67:29:7B:51:C0:86:8F:8F:1C:02:F9:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqeE7oX1U4NnKXtRwIaPjxwC-RE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F08/5B17F6D207D011EAA4848644C4F9AE02/DD70B00CA17B11EAB16F4954C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:00:46 +0000 ROA not before: Wed 26 Mar 2025 18:27:01 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 62660 IP address blocks: 45.250.72.0/22 maxlen: 24 103.226.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F08/5B17F6D207D011EAA4848644C4F9AE02/sqeE7oX1U4NnKXtRwIaPjxwC-RE.crl rsync://rpki.apnic.net/member_repository/A9158F08/5B17F6D207D011EAA4848644C4F9AE02/sqeE7oX1U4NnKXtRwIaPjxwC-RE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqeE7oX1U4NnKXtRwIaPjxwC-RE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2507 (0x9cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F08, serialNumber=B2A784EE85F5538367297B51C0868F8F1C02F911 Validity Not Before: Mar 26 18:27:01 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48cde-4015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7f:59:c2:c3:db:ce:24:78:c2:fa:f3:e3:9c: 45:cf:50:48:84:6b:7c:cd:ef:97:23:8a:d3:04:10: 38:61:da:8c:f7:ff:66:93:09:9a:13:23:2a:d7:89: 5d:24:74:44:47:69:39:1b:2a:59:00:99:53:2e:dc: c6:d4:7b:66:8e:6b:86:16:7c:f5:6e:61:64:4b:3f: bc:86:b7:92:de:b7:b9:d6:3f:04:1a:69:1a:0d:75: b5:4d:63:04:33:66:0b:73:19:e9:9e:91:fc:ff:4b: ca:f8:fd:ab:c8:5d:ff:b0:d3:e5:d1:9f:10:cf:d1: 49:f5:45:44:07:f8:76:df:41:20:b6:cd:4c:41:df: 32:be:36:6a:50:fd:e5:e5:5f:80:8e:a5:bc:1e:a1: 75:3e:ba:c7:a1:90:8d:1c:1e:e2:dd:e1:12:19:ca: ed:ad:2a:cc:ce:d9:f1:f1:9c:c5:e5:41:3a:59:5a: de:04:0a:ef:85:a3:15:6d:e6:d5:18:dc:63:de:af: bc:1f:45:3c:ea:ad:a9:df:5d:e2:61:84:89:04:16: dd:32:0f:df:b6:1e:6c:07:ac:b3:bd:4b:8b:9b:c3: f7:bf:26:fd:1c:bc:1a:60:5e:ba:7e:be:dd:35:40: 21:c4:39:c6:bd:0a:38:5a:03:7b:40:cb:53:ab:30: 6d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A2:61:59:56:11:E9:65:73:3F:14:9E:E2:09:44:3C:FC:33:07:C9 X509v3 Authority Key Identifier: keyid:B2:A7:84:EE:85:F5:53:83:67:29:7B:51:C0:86:8F:8F:1C:02:F9:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F08/5B17F6D207D011EAA4848644C4F9AE02/sqeE7oX1U4NnKXtRwIaPjxwC-RE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqeE7oX1U4NnKXtRwIaPjxwC-RE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F08/5B17F6D207D011EAA4848644C4F9AE02/DD70B00CA17B11EAB16F4954C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.250.72.0/22 103.226.68.0/22 Signature Algorithm: sha256WithRSAEncryption 36:9c:3c:63:3b:63:bf:0a:21:a9:cf:64:3d:ec:61:19:e6:1d: 4c:cc:dd:b2:31:93:ee:2c:f1:a8:6f:2e:52:b3:08:6f:22:e0: b8:fb:9a:fb:b5:95:fb:84:08:36:e5:c3:04:c8:e6:72:aa:25: 5e:ea:39:f0:19:24:41:96:e2:44:98:a5:54:ec:8e:23:ee:b5: b1:13:32:5e:d3:94:38:a0:8b:01:78:b8:d9:e7:77:e1:5e:6b: e5:43:45:b8:a7:d2:55:65:12:61:33:99:5f:ee:e4:fc:54:db: be:56:53:82:2c:e3:fe:03:ab:70:fd:f6:b8:db:3a:c3:bf:31: ac:f2:13:f0:ed:db:85:ac:08:f8:e3:79:6c:7f:21:8d:33:48: e5:aa:3e:db:a2:41:27:a1:2d:3d:23:16:96:6f:60:1b:f9:69: ac:8d:11:bc:16:ab:50:4c:92:e8:42:3b:09:f6:17:cc:4a:8d: 7d:a1:8c:aa:34:db:a7:08:96:1e:54:e4:0f:61:3d:6e:8f:c2: 0d:c8:22:7c:ac:25:8c:63:0c:e0:a1:dd:79:8d:ce:90:3b:02: 23:25:ee:bf:be:9d:b5:3b:e9:ca:42:29:20:e9:08:69:1b:fb: 64:20:c5:d2:9e:de:89:1a:90:bc:71:01:d6:46:b2:25:64:4c: 4c:d8:cc:f4 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGMDgxMTAvBgNVBAUTKEIyQTc4NEVFODVGNTUzODM2NzI5N0I1MUMwODY4RjhG MUMwMkY5MTEwHhcNMjUwMzI2MTgyNzAxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGNkZS00MDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApH9ZwsPbziR4wvrz45xFz1BIhGt8ze+XI4rTBBA4YdqM9/9mkwmaEyMq14ld JHRER2k5GypZAJlTLtzG1HtmjmuGFnz1bmFkSz+8hreS3re51j8EGmkaDXW1TWME M2YLcxnpnpH8/0vK+P2ryF3/sNPl0Z8Qz9FJ9UVEB/h230Egts1MQd8yvjZqUP3l 5V+AjqW8HqF1PrrHoZCNHB7i3eESGcrtrSrMztnx8ZzF5UE6WVreBArvhaMVbebV GNxj3q+8H0U86q2p313iYYSJBBbdMg/fth5sB6yzvUuLm8P3vyb9HLwaYF66fr7d NUAhxDnGvQo4WgN7QMtTqzBt7wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFEOiYVlW Eellcz8UnuIJRDz8MwfJMB8GA1UdIwQYMBaAFLKnhO6F9VODZyl7UcCGj48cAvkR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEYwOC81QjE3RjZEMjA3 RDAxMUVBQTQ4NDg2NDRDNEY5QUUwMi9zcWVFN29YMVU0Tm5LWHRSd0lhUGp4d0Mt UkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxZUU3b1gxVTRObktYdFJ3SWFQanh3Qy1SRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThGMDgvNUIxN0Y2RDIwN0QwMTFFQUE0ODQ4NjQ0QzRGOUFFMDIvREQ3MEIwMENB MTdCMTFFQUIxNkY0OTU0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLfpIAwQCZ+JEMA0GCSqGSIb3DQEBCwUAA4IBAQA2nDxjO2O/CiGp z2Q97GEZ5h1MzN2yMZPuLPGoby5SswhvIuC4+5r7tZX7hAg25cMEyOZyqiVe6jnw GSRBluJEmKVU7I4j7rWxEzJe05Q4oIsBeLjZ53fhXmvlQ0W4p9JVZRJhM5lf7uT8 VNu+VlOCLOP+A6tw/fa42zrDvzGs8hPw7duFrAj443lsfyGNM0jlqj7bokEnoS09 IxaWb2Ab+WmsjRG8FqtQTJLoQjsJ9hfMSo19oYyqNNunCJYeVOQPYT1uj8INyCJ8 rCWMYwzgod15jc6QOwIjJe6/vp21O+nKQikg6QhpG/tkIMXSnt6JGpC8cQHWRrIl ZExM2Mz0 -----END CERTIFICATE-----Generated at Mon Mar 2 22:19:31 2026 by rpki-client