$ rpki-client -vvf rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/75AB676E747811EDA48E0D52C4F9AE02.roa File: 75AB676E747811EDA48E0D52C4F9AE02.roa (raw, json) Hash identifier: WgXWHAaIOtzM5Xduzkgb83GHDBG9ZysSf4lZqq29oeQ= Subject key identifier: 4C:FB:3C:B6:B8:CC:56:57:79:9B:F0:B9:71:D1:39:32:FE:00:26:2F Certificate issuer: /CN=A915D99A/serialNumber=D17D77CB0C89B994CDDACBA275270A1E74DCAA27 Certificate serial: 356B Authority key identifier: D1:7D:77:CB:0C:89:B9:94:CD:DA:CB:A2:75:27:0A:1E:74:DC:AA:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/75AB676E747811EDA48E0D52C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:10:43 +0000 ROA not before: Mon 10 Mar 2025 14:30:53 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 17660 IP address blocks: 45.64.248.0/22 maxlen: 22 103.245.240.0/22 maxlen: 22 103.245.242.0/23 maxlen: 23 119.2.96.0/19 maxlen: 19 202.144.128.0/19 maxlen: 19 202.144.128.0/19 maxlen: 24 202.144.128.0/20 maxlen: 20 202.144.144.0/20 maxlen: 20 2405:d000::/32 maxlen: 32 2405:d000::/32 maxlen: 48 2405:d000:7000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.crl rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13675 (0x356b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D99A, serialNumber=D17D77CB0C89B994CDDACBA275270A1E74DCAA27 Validity Not Before: Mar 10 14:30:53 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a42cc2-08d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:17:18:fd:96:9b:87:36:0d:9d:87:f1:c2:9e: 1e:39:64:fa:38:79:76:e2:2f:d4:c6:59:56:3c:d2: 3c:19:83:0f:45:3d:c5:34:b6:c7:d6:0b:c7:f6:1c: 1b:bb:26:6b:d4:e9:ca:ab:a8:9c:71:90:07:b7:42: cb:b9:c5:be:0f:50:6e:2f:7b:fd:c9:18:8a:14:04: 7b:37:f0:10:c3:81:46:c7:b2:41:04:2e:66:d3:9d: dd:61:12:f7:ce:22:0b:2c:38:6c:61:54:e4:11:c8: b3:99:f7:1d:fd:d1:bd:82:b3:92:15:a6:65:76:5b: 4a:52:fe:c4:7e:34:81:3b:fb:8f:14:0b:ae:6b:d7: 70:01:da:aa:2e:1c:52:87:3a:73:d0:5a:cd:37:b8: 2a:6d:19:cf:3a:fc:9f:2b:39:35:61:0b:8c:34:cc: 38:85:1a:ea:9b:da:03:34:5a:86:41:30:46:c5:21: 60:9f:b7:17:77:35:c0:92:44:e7:65:98:38:2e:5d: 73:b2:d7:67:dd:26:1c:b1:94:53:38:37:59:d1:e0: 4e:e5:8a:97:47:89:25:8e:50:35:d3:c2:e1:99:36: 9f:d0:d4:a2:2b:c1:37:f6:9d:f2:e2:11:0c:68:51: d2:da:dc:c4:35:68:37:33:99:d0:c7:4d:25:d7:ed: 51:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:FB:3C:B6:B8:CC:56:57:79:9B:F0:B9:71:D1:39:32:FE:00:26:2F X509v3 Authority Key Identifier: keyid:D1:7D:77:CB:0C:89:B9:94:CD:DA:CB:A2:75:27:0A:1E:74:DC:AA:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/75AB676E747811EDA48E0D52C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.64.248.0/22 103.245.240.0/22 119.2.96.0/19 202.144.128.0/19 IPv6: 2405:d000::/32 Signature Algorithm: sha256WithRSAEncryption 49:7b:3f:aa:74:97:c2:c7:5d:38:55:aa:2b:21:02:ee:61:5c: 74:c9:6c:ae:ab:1f:37:cc:18:90:5b:b0:45:68:b3:4c:17:26: 8d:0d:88:45:b0:bf:c0:74:57:29:fb:f4:02:b4:3d:f6:b5:5e: 71:59:4a:0c:cb:ee:17:43:f7:b2:90:61:04:2d:ba:da:df:cc: 71:5d:56:ed:43:5c:71:8b:4c:2f:4f:fe:7b:af:fb:cb:3b:c2: 5b:b6:41:1d:f4:9a:bc:55:6e:82:05:79:26:79:8b:21:d8:74: ef:23:db:32:bc:da:e7:6a:86:b3:21:fe:78:ac:07:ac:e7:63: 7b:bc:48:67:e6:6c:44:96:15:3c:04:b0:1c:d3:e7:11:a3:d1: 6a:33:d7:b8:8b:c5:81:7f:9e:e6:2e:5f:64:a0:46:90:d7:6d: fa:3b:b6:2e:4e:25:07:bc:5d:6a:b5:3b:f6:6e:13:5f:f3:00: e5:b0:4b:8f:1b:b7:73:5c:98:02:3f:58:3d:1d:ae:e3:1d:11: 44:0f:c0:77:35:e6:3e:48:35:18:19:2d:68:9b:3c:cb:cb:fd: 89:11:83:59:83:67:43:96:22:e7:74:0a:f9:15:aa:c4:45:ef: 5e:9a:d4:53:6a:77:0d:b7:65:5d:3a:d9:c8:fe:de:0c:9b:8a: 65:f1:2c:b5 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICNWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5OUExMTAvBgNVBAUTKEQxN0Q3N0NCMEM4OUI5OTRDRERBQ0JBMjc1MjcwQTFF NzREQ0FBMjcwHhcNMjUwMzEwMTQzMDUzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmNjMi0wOGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBcY/ZabhzYNnYfxwp4eOWT6OHl24i/UxllWPNI8GYMPRT3FNLbH1gvH9hwb uyZr1OnKq6iccZAHt0LLucW+D1BuL3v9yRiKFAR7N/AQw4FGx7JBBC5m053dYRL3 ziILLDhsYVTkEcizmfcd/dG9grOSFaZldltKUv7EfjSBO/uPFAuua9dwAdqqLhxS hzpz0FrNN7gqbRnPOvyfKzk1YQuMNMw4hRrqm9oDNFqGQTBGxSFgn7cXdzXAkkTn ZZg4Ll1zstdn3SYcsZRTODdZ0eBO5YqXR4kljlA108LhmTaf0NSiK8E39p3y4hEM aFHS2tzENWg3M5nQx00l1+1RHwIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFEz7PLa4 zFZXeZvwuXHROTL+ACYvMB8GA1UdIwQYMBaAFNF9d8sMibmUzdrLonUnCh503Kon MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk5QS8xNzg4MjJEQTFE ODUxMUUyQTgyQTdDREIwOEIwMkNEMi8wWDEzeXd5SnVaVE4yc3VpZFNjS0huVGNx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBYMTN5d3lKdVpUTjJzdWlkU2NLSG5UY3FpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ5OUEvMTc4ODIyREExRDg1MTFFMkE4MkE3Q0RCMDhCMDJDRDIvNzVBQjY3NkU3 NDc4MTFFREE0OEUwRDUyQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQCLUD4AwQCZ/XwAwQFdwJgAwQFypCAMA0EAgACMAcDBQAkBdAAMA0G CSqGSIb3DQEBCwUAA4IBAQBJez+qdJfCx104VaorIQLuYVx0yWyuqx83zBiQW7BF aLNMFyaNDYhFsL/AdFcp+/QCtD32tV5xWUoMy+4XQ/eykGEELbra38xxXVbtQ1xx i0wvT/57r/vLO8JbtkEd9Jq8VW6CBXkmeYsh2HTvI9syvNrnaoazIf54rAes52N7 vEhn5mxElhU8BLAc0+cRo9FqM9e4i8WBf57mLl9koEaQ1236O7YuTiUHvF1qtTv2 bhNf8wDlsEuPG7dzXJgCP1g9Ha7jHRFED8B3NeY+SDUYGS1omzzLy/2JEYNZg2dD liLndAr5FarERe9emtRTancNt2VdOtnI/t4Mm4pl8Sy1 -----END CERTIFICATE-----Generated at Mon Mar 2 07:10:32 2026 by rpki-client