$ rpki-client -vvf rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/76B90530747811EDA48E0D52C4F9AE02.roa File: 76B90530747811EDA48E0D52C4F9AE02.roa (raw, json) Hash identifier: EsDpNgLrhYg/FBS1knEjEBTDiX3/7RrrGMbwFcOSNcg= Subject key identifier: ED:3E:D9:31:DE:22:2C:A9:32:90:91:B8:F0:8D:8B:08:2B:CC:10:4C Certificate issuer: /CN=A915D99A/serialNumber=D17D77CB0C89B994CDDACBA275270A1E74DCAA27 Certificate serial: 356C Authority key identifier: D1:7D:77:CB:0C:89:B9:94:CD:DA:CB:A2:75:27:0A:1E:74:DC:AA:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/76B90530747811EDA48E0D52C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:10:44 +0000 ROA not before: Mon 10 Mar 2025 14:30:54 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 18024 IP address blocks: 45.64.251.0/24 maxlen: 24 103.245.240.0/23 maxlen: 23 119.2.96.0/20 maxlen: 20 119.2.112.0/20 maxlen: 20 202.144.128.0/20 maxlen: 20 202.144.144.0/20 maxlen: 20 202.144.149.0/24 maxlen: 24 2405:d000::/33 maxlen: 33 2405:d000:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.crl rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13676 (0x356c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D99A, serialNumber=D17D77CB0C89B994CDDACBA275270A1E74DCAA27 Validity Not Before: Mar 10 14:30:54 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a42cc3-446a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:5a:df:64:ae:7b:7e:a8:7a:21:19:26:ef:0f: 88:da:ef:0a:10:37:ba:9f:ef:f1:81:79:37:08:df: 0d:0d:47:3a:f3:64:61:fe:52:59:08:bb:8b:41:66: 80:3a:21:a5:02:5b:72:b1:66:aa:41:81:55:60:19: f3:a8:73:de:80:fc:5d:2c:0a:c6:fa:bc:fc:22:25: ba:ec:ce:80:72:f8:cc:35:d8:64:65:68:0a:0a:58: 17:af:43:54:06:37:cb:6d:d6:e1:ff:70:01:b5:a8: a7:ec:6f:7b:b5:7a:6c:01:8c:61:96:1f:4a:45:48: d4:ed:00:38:9c:87:2c:33:20:b6:56:b0:11:80:c9: 7c:57:df:46:c3:f9:72:b2:3e:26:06:e4:5a:dd:e2: bf:3d:a8:54:43:d1:c5:0e:fb:96:6e:7d:f7:1d:cf: 50:b2:04:ca:7a:f7:84:83:39:3e:7d:50:16:d5:d8: 23:75:13:f1:27:fe:3a:a4:57:20:a4:ba:8f:1f:16: a5:cd:59:89:bf:81:3b:d7:37:e6:a7:9b:48:fd:8c: 23:08:e5:af:8b:40:44:78:15:47:89:1f:d2:91:1d: a0:62:44:a3:98:d5:9b:cb:13:01:28:9a:1b:52:85: 83:40:3f:11:d5:41:1b:7b:04:01:bf:de:67:a4:da: 08:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:3E:D9:31:DE:22:2C:A9:32:90:91:B8:F0:8D:8B:08:2B:CC:10:4C X509v3 Authority Key Identifier: keyid:D1:7D:77:CB:0C:89:B9:94:CD:DA:CB:A2:75:27:0A:1E:74:DC:AA:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/76B90530747811EDA48E0D52C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.64.251.0/24 103.245.240.0/23 119.2.96.0/19 202.144.128.0/19 IPv6: 2405:d000::/32 Signature Algorithm: sha256WithRSAEncryption 45:45:32:01:47:53:25:61:1d:7a:d4:bb:c2:87:db:12:0a:54: 2b:91:54:73:b9:f6:a9:5d:4e:43:41:85:62:8a:2f:b5:02:75: fe:78:02:90:d9:dc:a9:a3:5b:e8:f2:a1:bd:3e:b3:a6:9d:d7: e3:cf:b7:81:23:5b:c5:17:4f:7e:e0:12:03:38:92:00:77:55: 13:f2:3e:24:3b:8b:8e:89:3d:bb:3f:7d:51:11:1c:73:92:d0: fa:2d:dd:e8:95:65:5b:a7:57:91:1e:b8:db:33:65:43:94:b5: 02:2b:b9:e0:82:d8:bc:d5:52:b7:6b:06:74:95:20:f7:5e:e4: 85:16:13:cd:40:1d:62:90:ce:e4:db:68:8e:18:23:4b:9b:a1: ea:f1:7d:83:81:c5:d2:48:17:ca:d4:d5:c9:8a:40:e3:f6:e8: 9f:85:57:e6:2c:d0:4c:28:15:6f:d5:48:f0:88:42:88:ef:ad: 8d:5d:87:c3:f5:e5:58:73:88:a5:88:3b:6c:92:a7:bc:15:84: 67:1e:ac:39:07:33:79:95:cc:48:f8:e6:a1:09:cf:9a:6e:88: f5:9f:1f:36:10:67:4c:eb:81:ab:20:30:d9:84:d2:a1:56:8a: 05:6a:12:ed:90:1b:2a:76:19:01:82:2f:a1:7a:e0:38:bc:11: ff:c5:9f:17 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICNWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5OUExMTAvBgNVBAUTKEQxN0Q3N0NCMEM4OUI5OTRDRERBQ0JBMjc1MjcwQTFF NzREQ0FBMjcwHhcNMjUwMzEwMTQzMDU0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmNjMy00NDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi1rfZK57fqh6IRkm7w+I2u8KEDe6n+/xgXk3CN8NDUc682Rh/lJZCLuLQWaA OiGlAltysWaqQYFVYBnzqHPegPxdLArG+rz8IiW67M6AcvjMNdhkZWgKClgXr0NU BjfLbdbh/3ABtain7G97tXpsAYxhlh9KRUjU7QA4nIcsMyC2VrARgMl8V99Gw/ly sj4mBuRa3eK/PahUQ9HFDvuWbn33Hc9QsgTKeveEgzk+fVAW1dgjdRPxJ/46pFcg pLqPHxalzVmJv4E71zfmp5tI/YwjCOWvi0BEeBVHiR/SkR2gYkSjmNWbyxMBKJob UoWDQD8R1UEbewQBv95npNoIVwIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFO0+2THe IiypMpCRuPCNiwgrzBBMMB8GA1UdIwQYMBaAFNF9d8sMibmUzdrLonUnCh503Kon MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk5QS8xNzg4MjJEQTFE ODUxMUUyQTgyQTdDREIwOEIwMkNEMi8wWDEzeXd5SnVaVE4yc3VpZFNjS0huVGNx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBYMTN5d3lKdVpUTjJzdWlkU2NLSG5UY3FpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ5OUEvMTc4ODIyREExRDg1MTFFMkE4MkE3Q0RCMDhCMDJDRDIvNzZCOTA1MzA3 NDc4MTFFREE0OEUwRDUyQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQALUD7AwQBZ/XwAwQFdwJgAwQFypCAMA0EAgACMAcDBQAkBdAAMA0G CSqGSIb3DQEBCwUAA4IBAQBFRTIBR1MlYR161LvCh9sSClQrkVRzufapXU5DQYVi ii+1AnX+eAKQ2dypo1vo8qG9PrOmndfjz7eBI1vFF09+4BIDOJIAd1UT8j4kO4uO iT27P31RERxzktD6Ld3olWVbp1eRHrjbM2VDlLUCK7nggti81VK3awZ0lSD3XuSF FhPNQB1ikM7k22iOGCNLm6Hq8X2DgcXSSBfK1NXJikDj9uifhVfmLNBMKBVv1Ujw iEKI762NXYfD9eVYc4iliDtskqe8FYRnHqw5BzN5lcxI+OahCc+aboj1nx82EGdM 64GrIDDZhNKhVooFahLtkBsqdhkBgi+heuA4vBH/xZ8X -----END CERTIFICATE-----Generated at Mon Mar 2 12:39:44 2026 by rpki-client