$ rpki-client -vvf rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/65EADA381A8011ECAD1E4B30C4F9AE02.roa File: 65EADA381A8011ECAD1E4B30C4F9AE02.roa (raw, json) Hash identifier: JnOy+FoOe/T3buarsSCxJg2aqsuOaCREbS0TqxvnOsA= Subject key identifier: 0D:A0:39:F4:AE:7D:D3:4D:55:9C:11:27:2F:12:FD:A2:7D:9A:AD:16 Certificate issuer: /CN=A91859A3/serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Certificate serial: 1019 Authority key identifier: B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/65EADA381A8011ECAD1E4B30C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:35:50 +0000 ROA not before: Wed 26 Feb 2025 18:16:09 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135333 IP address blocks: 45.121.239.0/24 maxlen: 24 103.214.148.0/22 maxlen: 24 124.109.16.0/22 maxlen: 22 124.109.16.0/24 maxlen: 24 124.109.17.0/24 maxlen: 24 124.109.18.0/24 maxlen: 24 124.109.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:33:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4121 (0x1019) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859A3, serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Validity Not Before: Feb 26 18:16:09 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a42496-88de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:aa:bf:21:87:21:60:c5:2a:3d:99:a5:32:bf: 79:b9:4e:b9:23:ca:1c:da:16:23:83:1d:a5:7e:55: c3:72:d6:74:b4:70:ba:9b:b6:19:0b:81:1e:18:bb: db:80:57:ed:45:98:1b:01:29:17:b2:b6:bb:1e:c8: 1f:d0:b1:3f:d8:b2:ee:84:5d:b1:33:c9:f8:8c:33: f4:49:3f:9a:52:31:d4:c5:6d:1e:20:44:1d:e2:af: 6f:e1:e0:a8:f5:e3:47:67:d3:06:ef:68:3b:9e:78: de:b5:8c:1f:fe:b8:d6:ce:fd:82:0e:ae:c3:fd:c1: 3f:3b:4e:fe:8e:e1:2c:c2:9f:38:6e:4e:b7:da:c8: be:a8:c3:a2:6c:51:2e:d6:c1:db:79:9a:7e:e2:e0: 2b:33:40:14:f1:6e:84:e2:0b:b7:11:69:41:cb:8b: 38:cd:3b:66:60:18:3d:43:0c:c1:85:38:3c:32:68: 47:f6:6b:fb:21:54:cd:9f:07:86:39:d2:01:c3:df: 49:19:cd:aa:9f:3a:2a:f9:0d:7c:c9:78:05:75:ff: 24:56:e3:6d:0c:51:1d:c7:da:64:b7:5e:3c:1d:5c: d8:99:16:db:c8:2c:de:68:66:b7:74:20:f8:1b:d2: c4:51:b8:28:35:18:9d:88:8e:f7:80:d4:a9:0d:67: 16:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A0:39:F4:AE:7D:D3:4D:55:9C:11:27:2F:12:FD:A2:7D:9A:AD:16 X509v3 Authority Key Identifier: keyid:B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/65EADA381A8011ECAD1E4B30C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.121.239.0/24 103.214.148.0/22 124.109.16.0/22 Signature Algorithm: sha256WithRSAEncryption 85:15:74:c0:3b:1d:53:93:0f:c7:f3:2d:8a:88:f8:31:6c:9b: e5:81:02:c3:56:ae:2b:51:52:35:1c:9f:20:d8:ab:ca:41:ca: 70:fb:34:77:0c:dc:3b:c8:98:8d:a9:f2:f2:2b:5e:59:51:a2: 1e:b9:f9:1d:a8:45:dd:c6:3a:c3:38:59:14:ea:29:00:91:55: 13:29:e9:bb:ce:42:1c:9b:42:ee:03:15:eb:1f:33:fd:44:f6: f5:8f:62:a5:55:5c:d2:6e:23:c5:a0:dd:d4:fb:92:90:6f:64: 97:a8:45:1e:ff:36:16:fe:54:89:0b:0e:e2:a0:d0:a6:fd:2b: 6c:ac:c9:21:bf:71:18:91:8b:43:64:62:f1:40:2a:52:1d:96: c6:81:06:d3:54:61:7b:36:35:c6:ce:94:24:1f:e0:91:82:2c: a3:44:36:61:c6:31:bd:c9:5f:f5:c7:d8:cf:d1:52:8d:92:d4: 14:05:49:a2:a5:03:70:7b:36:cb:b0:a9:ff:2f:92:16:f5:04: 77:c1:51:95:cf:ba:16:17:a9:ed:95:b4:c5:45:b7:e5:3d:db: 30:e8:96:b9:78:e9:4c:1b:c3:87:a2:8e:51:82:d0:b8:7a:71: f2:33:32:d6:49:88:cd:b4:a3:a1:76:82:3f:a6:f0:45:c0:32: cb:60:53:7c -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QTMxMTAvBgNVBAUTKEI4NDFDODBCRTgxOEM2MUFBRTg0MTc5NDBDQTNFNjlD QzE0MURGOEYwHhcNMjUwMjI2MTgxNjA5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjQ5Ni04OGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6q/IYchYMUqPZmlMr95uU65I8oc2hYjgx2lflXDctZ0tHC6m7YZC4EeGLvb gFftRZgbASkXsra7Hsgf0LE/2LLuhF2xM8n4jDP0ST+aUjHUxW0eIEQd4q9v4eCo 9eNHZ9MG72g7nnjetYwf/rjWzv2CDq7D/cE/O07+juEswp84bk632si+qMOibFEu 1sHbeZp+4uArM0AU8W6E4gu3EWlBy4s4zTtmYBg9QwzBhTg8MmhH9mv7IVTNnweG OdIBw99JGc2qnzoq+Q18yXgFdf8kVuNtDFEdx9pkt148HVzYmRbbyCzeaGa3dCD4 G9LEUbgoNRidiI73gNSpDWcWnQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFA2gOfSu fdNNVZwRJy8S/aJ9mq0WMB8GA1UdIwQYMBaAFLhByAvoGMYaroQXlAyj5pzBQd+P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlBMy83NjQzNUZFRTYz ODExMUU5OUE1MUE2NDJDNEY5QUUwMi91RUhJQy1nWXhocXVoQmVVREtQbW5NRkIz NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VFSElDLWdZeGhxdWhCZVVES1Btbk1GQjM0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU5QTMvNzY0MzVGRUU2MzgxMTFFOTlBNTFBNjQyQzRGOUFFMDIvNjVFQURBMzgx QTgwMTFFQ0FEMUU0QjMwQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQALXnvAwQCZ9aUAwQCfG0QMA0GCSqGSIb3DQEBCwUAA4IBAQCFFXTA Ox1Tkw/H8y2KiPgxbJvlgQLDVq4rUVI1HJ8g2KvKQcpw+zR3DNw7yJiNqfLyK15Z UaIeufkdqEXdxjrDOFkU6ikAkVUTKem7zkIcm0LuAxXrHzP9RPb1j2KlVVzSbiPF oN3U+5KQb2SXqEUe/zYW/lSJCw7ioNCm/StsrMkhv3EYkYtDZGLxQCpSHZbGgQbT VGF7NjXGzpQkH+CRgiyjRDZhxjG9yV/1x9jP0VKNktQUBUmipQNwezbLsKn/L5IW 9QR3wVGVz7oWF6ntlbTFRbflPdsw6Ja5eOlMG8OHoo5RgtC4enHyMzLWSYjNtKOh doI/pvBFwDLLYFN8 -----END CERTIFICATE-----Generated at Mon Mar 2 04:57:58 2026 by rpki-client