$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/324C60ACDD2211F0BB0B52AC636F56BC.roa File: 324C60ACDD2211F0BB0B52AC636F56BC.roa (raw, json) Hash identifier: DeEQGurqm7eSpSsYzXwNaAtssPLf2RiuTFIL21AIcCE= Subject key identifier: 00:27:04:8B:73:AA:91:36:9B:90:6A:BA:EF:29:1E:7D:7F:BD:5D:00 Certificate issuer: /CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Certificate serial: 065C Authority key identifier: 78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/324C60ACDD2211F0BB0B52AC636F56BC.roa Signing time: Mon 30 Mar 2026 23:29:15 +0000 ROA not before: Mon 30 Mar 2026 23:29:15 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 204800 IP address blocks: 45.120.148.0/22 maxlen: 24 103.227.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:35:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1628 (0x65c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5D8A, serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Validity Not Before: Mar 30 23:29:15 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cb074a-b2b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3e:43:02:49:3d:79:a8:b2:f1:45:08:3d:81: 07:19:c1:09:65:14:15:c3:5b:7d:27:08:6d:4d:af: 37:36:8b:b3:60:ef:40:34:0f:56:91:07:7a:6e:89: d3:73:91:ff:5c:d1:54:48:57:7d:ed:fe:6d:38:21: 3a:5e:24:1f:ef:dc:25:82:07:24:c3:35:e6:53:e1: c0:43:18:c1:b0:7b:e5:07:e1:77:40:89:46:70:e9: 76:e8:d9:ba:a5:40:06:ca:d8:26:36:56:74:f9:a7: eb:1f:49:a6:60:d0:86:79:c8:da:c5:0f:23:b1:d5: cd:ac:78:e9:49:33:3f:e5:53:b8:9e:ff:eb:e8:f6: f9:2a:7a:36:0c:f9:30:cf:c4:bd:3f:e4:52:da:7b: ba:e2:70:7f:4c:00:00:27:6d:3b:33:c5:c7:b8:3e: c3:e4:5d:24:27:0d:71:0a:06:da:79:00:97:89:c1: a1:5a:c9:7f:82:fa:37:15:bc:2a:aa:64:44:a7:0b: bf:d1:d2:f0:76:28:54:75:3d:21:9a:f8:d7:ab:6d: db:46:20:75:e2:ee:97:c6:76:93:e5:b8:79:9a:59: 11:91:41:15:d8:8b:e7:f3:26:4d:d7:31:0e:ad:0c: c6:2d:96:b7:6d:2e:df:e1:d2:e6:a0:fa:d4:69:c4: 87:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:27:04:8B:73:AA:91:36:9B:90:6A:BA:EF:29:1E:7D:7F:BD:5D:00 X509v3 Authority Key Identifier: keyid:78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/324C60ACDD2211F0BB0B52AC636F56BC.roa sbgp-ipAddrBlock: critical IPv4: 45.120.148.0/22 103.227.176.0/22 Signature Algorithm: sha256WithRSAEncryption 33:07:01:0f:49:41:05:ed:e1:81:29:7e:26:89:44:49:a1:ce: 0b:25:5d:2f:7a:d2:c6:48:ae:fe:a7:21:a0:be:95:1c:b1:61: 6c:f7:9d:ab:de:d7:1a:f5:dc:dd:fb:cd:af:07:49:84:03:c1: 35:c6:82:57:bc:ec:26:78:83:4b:a7:bd:6c:e2:eb:33:83:44: c6:66:3f:c7:57:d0:78:7c:22:a6:3c:5f:0f:c2:db:c3:f3:5f: 78:e0:33:cb:e9:84:d2:05:4d:03:3a:64:ff:93:da:0b:29:cb: e8:ae:03:24:e7:80:94:26:45:54:0c:9b:88:63:7a:14:ff:27: da:ff:c5:78:a2:10:6e:d0:ca:00:5c:6c:66:0d:7d:43:e8:fb: 03:84:41:b0:9e:66:6e:a6:45:c4:84:88:53:8c:6f:8b:cd:ba: f0:3e:7d:36:3e:b7:57:51:18:f8:ed:30:54:74:5e:b9:a8:25: bc:d6:e5:7a:bb:7c:0d:21:bb:b0:31:80:f7:64:3f:62:39:17: bf:d3:51:2d:f3:e3:c0:e3:03:31:0c:99:ce:53:62:09:47:96: 2b:a1:a1:65:65:02:05:c0:68:90:3f:19:fb:97:d2:c6:b8:66: 43:38:0b:41:25:79:21:4f:3e:02:ce:e7:47:d3:8a:fb:c9:4e: e8:02:38:b1 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVEOEExMTAvBgNVBAUTKDc4NTdEMTFBNTFEQ0FFOUMyRTA4ODZBMTBDRTA2RjU1 RjVCODQzMDAwHhcNMjYwMzMwMjMyOTE1WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiMDc0YS1iMmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnj5DAkk9eaiy8UUIPYEHGcEJZRQVw1t9JwhtTa83NouzYO9ANA9WkQd6bonT c5H/XNFUSFd97f5tOCE6XiQf79wlggckwzXmU+HAQxjBsHvlB+F3QIlGcOl26Nm6 pUAGytgmNlZ0+afrH0mmYNCGecjaxQ8jsdXNrHjpSTM/5VO4nv/r6Pb5Kno2DPkw z8S9P+RS2nu64nB/TAAAJ207M8XHuD7D5F0kJw1xCgbaeQCXicGhWsl/gvo3Fbwq qmREpwu/0dLwdihUdT0hmvjXq23bRiB14u6XxnaT5bh5mlkRkUEV2Ivn8yZN1zEO rQzGLZa3bS7f4dLmoPrUacSHDwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFAAnBItz qpE2m5Bquu8pHn1/vV0AMB8GA1UdIwQYMBaAFHhX0RpR3K6cLgiGoQzgb1X1uEMA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUQ4QS9CQTJGMUI5QUNB RUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jwd3VDSWFoRE9CdlZmVzRR d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGZlJHbEhjcnB3dUNJYWhET0J2VmZXNFF3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVEOEEvQkEyRjFCOUFDQUVFMTFFQkEyRkJEMDU2QzRGOUFFMDIvMzI0QzYwQUNE RDIyMTFGMEJCMEI1MkFDNjM2RjU2QkMucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLXiUAwQCZ+OwMA0GCSqGSIb3DQEBCwUAA4IBAQAzBwEPSUEF7eGB KX4miURJoc4LJV0vetLGSK7+pyGgvpUcsWFs952r3tca9dzd+82vB0mEA8E1xoJX vOwmeINLp71s4uszg0TGZj/HV9B4fCKmPF8PwtvD81944DPL6YTSBU0DOmT/k9oL KcvorgMk54CUJkVUDJuIY3oU/yfa/8V4ohBu0MoAXGxmDX1D6PsDhEGwnmZupkXE hIhTjG+LzbrwPn02PrdXURj47TBUdF65qCW81uV6u3wNIbuwMYD3ZD9iORe/01Et 8+PA4wMxDJnOU2IJR5YroaFlZQIFwGiQPxn7l9LGuGZDOAtBJXkhTz4CzudH04r7 yU7oAjix -----END CERTIFICATE-----Generated at Fri Apr 17 09:50:49 2026 by rpki-client