$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/E397AB78866F11EBA76EED3EC4F9AE02.roa File: E397AB78866F11EBA76EED3EC4F9AE02.roa (raw, json) Hash identifier: 3Nv/ZHqsawJ0Jp2g16W+htBijpcWto8dbP6tcgAmIIk= Subject key identifier: 93:F3:52:DC:39:5D:29:B5:78:5E:E5:63:E8:48:70:7E:90:6E:3C:93 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0D4F Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/E397AB78866F11EBA76EED3EC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:56:44 +0000 ROA not before: Tue 10 Feb 2026 18:15:32 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 138571 IP address blocks: 45.119.4.0/23 maxlen: 23 45.119.4.0/24 maxlen: 24 103.133.92.0/23 maxlen: 24 103.133.94.0/23 maxlen: 24 203.23.176.0/24 maxlen: 24 203.23.177.0/24 maxlen: 24 203.34.110.0/24 maxlen: 24 2404:4a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3407 (0xd4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Feb 10 18:15:32 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a47ddc-2b86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:90:29:85:f9:1d:4f:65:14:9a:94:42:e9:e5: 79:23:e3:bb:52:52:a4:d8:36:67:9c:d3:28:2c:76: 2e:27:63:53:4c:8f:56:f9:e0:b2:d3:43:bb:97:07: cf:65:a3:89:d0:58:af:44:32:ce:6a:cf:1b:e5:f1: a9:18:a2:c9:97:b4:2d:2f:88:f5:55:e4:59:65:e7: dc:90:3e:90:e8:e4:ab:b1:d8:90:41:41:f2:63:f8: 24:fb:2b:f6:07:f9:85:ab:7f:72:97:95:59:47:e6: 94:ac:43:1a:0c:ac:60:02:05:97:47:4e:5b:8a:d8: 88:e6:bd:27:e0:c4:b3:b8:cd:fc:9b:c7:47:30:87: e1:1b:6c:db:e8:de:e8:67:3a:4a:68:15:10:fa:7c: e3:b2:5e:96:73:05:38:17:cb:76:11:24:87:85:c8: cb:66:50:1f:9d:26:59:c6:4f:9e:24:10:8e:0e:8e: 68:02:6a:f5:d1:bc:e3:76:2c:84:3e:dd:3d:b5:7e: fd:43:df:aa:7a:7b:78:eb:56:c7:2c:9f:11:73:f7: 64:51:30:e1:ea:78:ac:da:65:53:46:5e:4b:6d:2e: 58:d5:19:d0:ac:1c:a0:ed:d3:54:87:d9:7f:70:76: 74:96:49:6b:46:66:64:dc:4b:2a:71:80:31:c4:96: ed:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F3:52:DC:39:5D:29:B5:78:5E:E5:63:E8:48:70:7E:90:6E:3C:93 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/E397AB78866F11EBA76EED3EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.119.4.0/23 103.133.92.0/22 203.23.176.0/23 203.34.110.0/24 IPv6: 2404:4a40::/32 Signature Algorithm: sha256WithRSAEncryption 39:03:3d:1a:22:49:10:55:5d:08:cf:93:03:5b:bc:c6:93:36: d5:29:35:35:36:ed:10:dd:bc:1c:6d:8e:a8:aa:dd:dd:39:d4: b1:37:21:5c:df:95:bc:52:a9:c6:6d:9c:44:d2:06:3a:c2:9b: d4:22:9e:47:0a:1b:ad:b6:0d:d4:15:ab:fb:f1:31:2c:a4:6d: a5:52:fa:09:90:2c:17:7b:f6:a9:7c:64:9d:1b:3e:be:07:fe: 63:66:51:54:20:56:4c:ec:a5:bc:83:7d:3d:77:8f:fc:a1:5e: 6f:8b:a3:5e:2a:e1:ce:51:7d:2b:48:51:47:d5:d2:85:ab:99: fb:18:c2:8c:f4:73:5c:72:51:6f:da:56:5a:9c:15:59:2f:fa: 85:d1:96:28:f4:73:cc:be:f8:b3:cf:c3:73:05:e1:0a:aa:d1: 0a:93:83:2e:aa:c3:88:c0:34:ed:cd:f8:f6:09:e9:47:eb:89: a2:5f:d4:24:a0:a7:4f:40:1f:b7:49:b9:37:e4:3b:60:62:a1: 37:6a:08:a0:f3:dd:b4:70:eb:31:d4:6e:b8:05:da:f7:ec:d3: 71:fa:b5:b7:73:37:54:a1:ff:33:e6:72:03:4d:c0:8f:9c:85: 8b:fe:6c:47:4e:ee:15:86:b3:aa:fb:a1:c2:86:b0:6f:c1:6a: a2:9b:30:6c -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICDU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjYwMjEwMTgxNTMyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2RkYy0yYjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5AphfkdT2UUmpRC6eV5I+O7UlKk2DZnnNMoLHYuJ2NTTI9W+eCy00O7lwfP ZaOJ0FivRDLOas8b5fGpGKLJl7QtL4j1VeRZZefckD6Q6OSrsdiQQUHyY/gk+yv2 B/mFq39yl5VZR+aUrEMaDKxgAgWXR05bitiI5r0n4MSzuM38m8dHMIfhG2zb6N7o ZzpKaBUQ+nzjsl6WcwU4F8t2ESSHhcjLZlAfnSZZxk+eJBCODo5oAmr10bzjdiyE Pt09tX79Q9+qent461bHLJ8Rc/dkUTDh6nis2mVTRl5LbS5Y1RnQrByg7dNUh9l/ cHZ0lklrRmZk3EsqcYAxxJbtGQIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFJPzUtw5 XSm1eF7lY+hIcH6QbjyTMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRFQjUvQUZFQTI5QzIwNjE5MTFFQTg1NEEzNTE2QzRGOUFFMDIvRTM5N0FCNzg4 NjZGMTFFQkE3NkVFRDNFQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQBLXcEAwQCZ4VcAwQByxewAwQAyyJuMA0EAgACMAcDBQAkBEpAMA0G CSqGSIb3DQEBCwUAA4IBAQA5Az0aIkkQVV0Iz5MDW7zGkzbVKTU1Nu0Q3bwcbY6o qt3dOdSxNyFc35W8UqnGbZxE0gY6wpvUIp5HChuttg3UFav78TEspG2lUvoJkCwX e/apfGSdGz6+B/5jZlFUIFZM7KW8g309d4/8oV5vi6NeKuHOUX0rSFFH1dKFq5n7 GMKM9HNcclFv2lZanBVZL/qF0ZYo9HPMvvizz8NzBeEKqtEKk4MuqsOIwDTtzfj2 CelH64miX9QkoKdPQB+3Sbk35DtgYqE3agig8920cOsx1G64Bdr37NNx+rW3czdU of8z5nIDTcCPnIWL/mxHTu4VhrOq+6HChrBvwWqimzBs -----END CERTIFICATE-----Generated at Mon Mar 2 04:34:19 2026 by rpki-client