$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/D47B21C24FFE11EAA0E4ED42C4F9AE02.roa File: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (raw, json) Hash identifier: 0sjZzbtNPaRKIT8BWTNvX39eUNvRnj582Bf5dTCbgrM= Subject key identifier: C0:55:68:19:B3:D6:B9:5D:84:92:18:4E:2E:89:9F:2B:60:85:79:0E Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0D51 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/D47B21C24FFE11EAA0E4ED42C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:56:46 +0000 ROA not before: Tue 10 Feb 2026 18:15:34 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 24373 IP address blocks: 45.119.4.0/23 maxlen: 23 45.119.4.0/24 maxlen: 24 103.133.93.0/24 maxlen: 24 203.34.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3409 (0xd51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Feb 10 18:15:34 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a47dde-851e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:2e:58:f6:32:70:38:c1:26:73:c9:2c:8e:eb: 65:a4:89:3c:41:77:2a:69:d4:bb:43:9f:e2:ed:d5: 4f:c3:3b:0d:5e:ac:b4:65:b8:79:8d:fd:ee:70:b8: 08:2e:74:4b:15:dd:0b:44:6c:3c:d6:de:10:eb:b8: c5:15:ed:65:a8:da:65:eb:7b:a7:26:33:5e:96:b3: 68:9d:b6:84:39:d0:40:56:4f:58:0f:5a:bf:9e:ce: 23:54:dd:1d:f5:87:b2:13:3e:53:e8:4c:6b:d9:d6: 98:c2:1e:dc:d5:5c:0e:29:ed:35:74:95:c7:62:0a: 63:59:aa:dd:47:bc:4f:50:f6:55:9f:2d:32:e3:e7: 67:69:aa:ac:d2:4b:d1:84:dc:6e:27:4e:20:91:06: 83:09:0a:0c:7b:33:ba:4c:c0:39:23:7e:6e:6e:7a: f4:38:59:38:21:0f:c9:fd:d3:2c:78:4a:43:5b:c0: d3:bb:7b:3a:3d:81:10:00:34:ce:30:c0:29:ea:51: b2:22:52:3a:08:4e:d1:7e:12:c8:ca:b7:c1:da:0e: 85:53:60:85:42:b8:e4:03:b5:46:69:42:6d:86:b7: 61:7b:5a:4e:e6:27:0f:00:9c:97:01:c2:b0:5e:06: c9:a6:96:69:01:0f:97:26:ef:43:a0:e3:3e:a6:56: 85:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:55:68:19:B3:D6:B9:5D:84:92:18:4E:2E:89:9F:2B:60:85:79:0E X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/D47B21C24FFE11EAA0E4ED42C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.119.4.0/23 103.133.93.0/24 203.34.110.0/24 Signature Algorithm: sha256WithRSAEncryption 12:c2:49:0f:87:40:b5:10:f2:d7:6c:b0:19:0e:55:ed:7b:0e: fc:f7:60:58:a3:cc:ba:b3:4c:6e:e2:1b:50:19:ed:0d:f5:59: cc:d8:b6:9c:d7:a6:ee:bd:ad:2a:ec:6a:a4:0f:6e:2e:16:19: 22:1e:01:3e:4c:f0:35:bd:b2:ba:51:33:d6:bf:59:b3:20:e5: f4:89:09:79:97:3c:22:36:1f:53:4e:fb:ab:40:e9:65:23:87: 75:b2:8c:e8:18:61:1a:94:0d:99:4c:d7:06:c1:cf:f5:66:55: 32:12:15:4e:77:e7:c4:ae:36:59:ef:c1:57:67:57:15:53:dc: e8:4c:2b:49:a3:f1:a6:6f:1f:26:b1:55:5b:6d:cf:1a:09:c0: 82:21:ad:8d:de:6d:4b:ac:3f:0a:b0:99:ff:02:77:fd:f8:18: 76:ce:ec:34:0e:0e:ce:b2:f0:a3:f7:df:00:06:65:27:4c:cc: 71:e9:8d:a2:8b:fe:43:22:c7:b6:b1:1f:b4:da:bd:19:98:9a: 04:d3:6e:49:6f:47:bc:eb:62:32:3f:00:23:4f:13:23:e6:dd: 41:2f:b8:4e:3c:62:25:63:c9:ed:79:10:09:7f:14:b3:f9:28: 6d:33:36:e0:3d:9d:70:b7:1f:a7:01:c6:b2:8d:d8:ac:08:ec: 2c:f5:16:fd -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICDVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjYwMjEwMTgxNTM0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2RkZS04NTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmS5Y9jJwOMEmc8ksjutlpIk8QXcqadS7Q5/i7dVPwzsNXqy0Zbh5jf3ucLgI LnRLFd0LRGw81t4Q67jFFe1lqNpl63unJjNelrNonbaEOdBAVk9YD1q/ns4jVN0d 9YeyEz5T6Exr2daYwh7c1VwOKe01dJXHYgpjWardR7xPUPZVny0y4+dnaaqs0kvR hNxuJ04gkQaDCQoMezO6TMA5I35ubnr0OFk4IQ/J/dMseEpDW8DTu3s6PYEQADTO MMAp6lGyIlI6CE7RfhLIyrfB2g6FU2CFQrjkA7VGaUJthrdhe1pO5icPAJyXAcKw XgbJppZpAQ+XJu9DoOM+plaFTwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFMBVaBmz 1rldhJIYTi6JnytghXkOMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRFQjUvQUZFQTI5QzIwNjE5MTFFQTg1NEEzNTE2QzRGOUFFMDIvRDQ3QjIxQzI0 RkZFMTFFQUEwRTRFRDQyQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQBLXcEAwQAZ4VdAwQAyyJuMA0GCSqGSIb3DQEBCwUAA4IBAQASwkkP h0C1EPLXbLAZDlXtew7892BYo8y6s0xu4htQGe0N9VnM2Lac16buva0q7GqkD24u FhkiHgE+TPA1vbK6UTPWv1mzIOX0iQl5lzwiNh9TTvurQOllI4d1sozoGGEalA2Z TNcGwc/1ZlUyEhVOd+fErjZZ78FXZ1cVU9zoTCtJo/Gmbx8msVVbbc8aCcCCIa2N 3m1LrD8KsJn/Anf9+Bh2zuw0Dg7OsvCj998ABmUnTMxx6Y2ii/5DIse2sR+02r0Z mJoE025Jb0e862IyPwAjTxMj5t1BL7hOPGIlY8nteRAJfxSz+ShtMzbgPZ1wtx+n AcayjdisCOws9Rb9 -----END CERTIFICATE-----Generated at Mon Mar 2 09:50:02 2026 by rpki-client