$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/76B5C744B45E11EAB71DF94AC4F9AE02.roa File: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (raw, json) Hash identifier: OrYwlHpiSmZNjD507c7+5SVsF6TOXtHT7d2m6BJQ+nQ= Subject key identifier: AC:3E:2F:BC:1A:1E:95:EB:A0:A4:57:D0:52:3C:E2:5C:E2:EA:88:91 Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 3524 Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/76B5C744B45E11EAB71DF94AC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:31:35 +0000 ROA not before: Mon 02 Feb 2026 15:11:53 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 45634 IP address blocks: 45.64.128.0/22 maxlen: 22 45.64.128.0/24 maxlen: 24 45.64.129.0/24 maxlen: 24 45.64.130.0/24 maxlen: 24 45.64.131.0/24 maxlen: 24 112.140.184.0/22 maxlen: 22 112.140.184.0/24 maxlen: 24 112.140.185.0/24 maxlen: 24 112.140.186.0/24 maxlen: 24 112.140.187.0/24 maxlen: 24 180.210.200.0/21 maxlen: 21 180.210.200.0/24 maxlen: 24 180.210.201.0/24 maxlen: 24 180.210.202.0/24 maxlen: 24 180.210.203.0/24 maxlen: 24 180.210.204.0/24 maxlen: 24 180.210.205.0/24 maxlen: 24 180.210.206.0/24 maxlen: 24 180.210.207.0/24 maxlen: 24 2401:c100::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13604 (0x3524) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: Feb 2 15:11:53 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a44dc7-4be0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:52:27:14:07:29:00:9e:38:ba:c1:a8:9e:69: 68:d2:7c:18:43:15:b8:1f:53:03:93:f8:8b:fc:f5: 68:2d:27:4c:60:0b:23:62:d3:0c:ec:43:3d:dc:c3: 97:e5:f6:05:bc:cf:ae:d1:f9:d0:0e:85:f9:5f:b8: 05:8d:63:a4:68:f6:e4:be:3c:70:37:9e:8e:69:06: 69:08:1b:4c:74:19:c1:b8:ec:7d:c8:5a:f4:d6:1c: 54:c2:d0:a1:f1:c6:ed:90:41:77:05:39:30:fe:ce: 9f:a8:5c:ee:ef:f6:50:a5:83:79:1c:70:6a:fb:59: 6c:f0:23:06:78:fa:2a:fe:d1:0e:e9:a4:88:9a:83: f8:08:41:3b:d4:c9:c0:df:20:65:73:76:b3:bc:63: 07:4b:26:f1:17:57:99:3e:4a:cc:aa:69:3c:c8:ce: 16:0c:7a:71:b4:60:3d:44:7a:33:b5:5a:ce:49:58: 2e:ed:4c:d2:d2:03:51:94:95:2c:8c:c3:b8:77:89: cb:dc:f8:92:81:6d:67:5c:5f:38:9f:df:f4:e9:b3: 55:9f:09:c2:7b:56:5e:48:5f:1d:f6:05:e7:bb:17: d0:0b:b8:19:5e:8d:e6:dd:cf:fc:24:c3:b7:fe:e7: ef:a8:5d:84:b7:40:d1:72:b7:7a:7c:e5:d5:24:62: e0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3E:2F:BC:1A:1E:95:EB:A0:A4:57:D0:52:3C:E2:5C:E2:EA:88:91 X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/76B5C744B45E11EAB71DF94AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.64.128.0/22 112.140.184.0/22 180.210.200.0/21 IPv6: 2401:c100::/32 Signature Algorithm: sha256WithRSAEncryption 16:c9:42:0a:19:fd:c4:9a:fd:52:2c:bf:b0:5d:77:c0:bb:6b: 43:c8:25:d9:34:0a:cf:fe:55:49:99:f7:c7:35:4a:a9:f0:7f: 20:2c:15:72:2c:b5:c4:d0:16:26:63:2e:b3:cb:ce:02:aa:8b: 8d:61:80:c9:9a:58:ff:a8:8a:96:c6:8d:3a:e1:63:e8:0e:bd: 3b:68:40:81:85:c0:91:5e:64:79:94:66:d8:bd:64:db:c5:57: 59:bd:94:7a:ee:1d:6a:80:08:78:a4:f0:ba:82:d7:c5:f8:18: 49:aa:a5:dd:07:e7:98:76:f2:72:1f:e9:52:6c:b7:96:13:6c: 12:78:6d:af:64:f3:56:7d:0a:83:0a:66:f6:66:4b:3a:90:c2: e3:fa:82:ce:4f:2a:02:db:95:f1:96:5b:74:d7:99:b5:2f:bd: 00:7f:e6:86:a8:d9:96:ca:bd:c2:ed:02:da:56:36:00:b3:c4: e2:db:77:15:2e:12:d7:2c:4d:93:1f:17:49:5f:9e:3f:c6:28: d3:a1:4e:2e:9d:7c:cf:15:f2:cf:8f:6e:d8:6b:81:d0:b2:cf: 9e:b0:ad:4e:5f:6f:79:93:14:c2:69:0f:44:25:ca:b2:b2:c0: d5:b2:da:16:3c:c9:62:ff:71:50:4a:44:d6:46:12:14:35:bf: 40:48:ae:ae -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICNSQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjYwMjAyMTUxMTUzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGRjNy00YmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFInFAcpAJ44usGonmlo0nwYQxW4H1MDk/iL/PVoLSdMYAsjYtMM7EM93MOX 5fYFvM+u0fnQDoX5X7gFjWOkaPbkvjxwN56OaQZpCBtMdBnBuOx9yFr01hxUwtCh 8cbtkEF3BTkw/s6fqFzu7/ZQpYN5HHBq+1ls8CMGePoq/tEO6aSImoP4CEE71MnA 3yBlc3azvGMHSybxF1eZPkrMqmk8yM4WDHpxtGA9RHoztVrOSVgu7UzS0gNRlJUs jMO4d4nL3PiSgW1nXF84n9/06bNVnwnCe1ZeSF8d9gXnuxfQC7gZXo3m3c/8JMO3 /ufvqF2Et0DRcrd6fOXVJGLgUwIDAQABo4ICezCCAncwHQYDVR0OBBYEFKw+L7wa HpXroKRX0FI84lzi6oiRMB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFDQjIvMzdENUEzREUxRDlDMTFFMjg5MkU4QjhBMDhCMDJDRDIvNzZCNUM3NDRC NDVFMTFFQUI3MURGOTRBQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCLUCAAwQCcIy4AwQDtNLIMA0EAgACMAcDBQAkAcEAMA0GCSqGSIb3 DQEBCwUAA4IBAQAWyUIKGf3Emv1SLL+wXXfAu2tDyCXZNArP/lVJmffHNUqp8H8g LBVyLLXE0BYmYy6zy84CqouNYYDJmlj/qIqWxo064WPoDr07aECBhcCRXmR5lGbY vWTbxVdZvZR67h1qgAh4pPC6gtfF+BhJqqXdB+eYdvJyH+lSbLeWE2wSeG2vZPNW fQqDCmb2Zks6kMLj+oLOTyoC25Xxllt015m1L70Af+aGqNmWyr3C7QLaVjYAs8Ti 23cVLhLXLE2THxdJX54/xijToU4unXzPFfLPj27Ya4HQss+esK1OX295kxTCaQ9E JcqyssDVstoWPMli/3FQSkTWRhIUNb9ASK6u -----END CERTIFICATE-----Generated at Mon Mar 2 07:43:09 2026 by rpki-client