$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/DFEA30745C3011EEB250DE0EC4F9AE02.roa File: DFEA30745C3011EEB250DE0EC4F9AE02.roa (raw, json) Hash identifier: i/znacwdWC+cJbSfpSGuIUnxdzdxG75j2+xmoBgpqDI= Subject key identifier: 0E:DA:A0:4E:1E:FB:7A:F8:37:C0:21:95:69:CC:1F:CD:E2:B3:86:14 Certificate issuer: /CN=A91AAEC2/serialNumber=3D3891A46CBCBAB47478DEA40D2908F67CCE3B2A Certificate serial: 0912 Authority key identifier: 3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/DFEA30745C3011EEB250DE0EC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:53:06 +0000 ROA not before: Fri 08 Aug 2025 21:01:56 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135580 IP address blocks: 45.255.252.0/22 maxlen: 24 103.65.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.crl rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2322 (0x912) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEC2, serialNumber=3D3891A46CBCBAB47478DEA40D2908F67CCE3B2A Validity Not Before: Aug 8 21:01:56 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a428a2-fa54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:dd:fd:f6:22:d0:5a:af:90:f2:5c:3b:c3:a0: 30:9b:c0:87:05:77:80:6e:f9:38:66:05:60:c6:a0: 0e:43:c8:a9:28:c2:f5:1d:76:10:20:e0:0f:5d:cc: 4a:8f:9c:1c:eb:16:49:30:ed:c1:b2:d9:29:a7:bf: a6:6e:f7:bc:60:62:d6:dc:4e:13:e4:4f:da:06:ee: 5f:eb:3b:f3:12:39:74:00:96:78:e8:af:ce:dc:92: 90:ae:5c:e1:31:48:2d:f5:e5:6f:7c:b5:fe:f1:17: 19:08:eb:6c:a4:93:82:f2:42:05:94:76:97:b5:59: 5b:14:d7:40:3b:52:ce:bb:3a:c9:48:a9:b6:33:b5: 4d:8f:fc:93:5c:ae:32:30:82:a8:c2:64:c8:4a:58: 53:bc:f4:3d:97:ef:db:64:fd:47:08:32:77:08:ff: 1f:60:42:52:a0:83:be:7b:f3:e6:fd:3f:12:85:75: 8c:95:2d:9f:cb:67:fa:49:4b:32:7d:d6:6f:5e:9a: ea:8f:70:9c:97:f0:15:9c:51:5d:94:9c:f1:e9:c1: d8:2c:c9:47:31:a9:00:33:51:dd:97:7d:a4:10:f7: 7e:ad:a6:47:80:13:d5:77:57:bd:fd:78:94:19:64: 51:df:f9:b7:bf:cc:ef:2c:41:8e:b9:0e:a9:64:d0: 4c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:DA:A0:4E:1E:FB:7A:F8:37:C0:21:95:69:CC:1F:CD:E2:B3:86:14 X509v3 Authority Key Identifier: keyid:3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/DFEA30745C3011EEB250DE0EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.255.252.0/22 103.65.176.0/22 Signature Algorithm: sha256WithRSAEncryption b1:e6:45:67:82:ab:f8:c5:48:90:fa:72:0a:3e:2f:11:19:04: 08:8d:9b:a2:ac:79:a4:15:cb:cf:d4:2a:04:1d:4f:58:02:7b: bf:29:69:93:95:5e:9e:80:60:81:70:e0:61:80:90:de:96:99: cd:20:43:88:52:bb:86:ef:c6:ed:4a:ed:e6:63:14:23:0d:59: 0d:5c:f0:08:24:57:7d:39:31:ec:b2:82:2e:fe:d9:29:82:63: be:3c:ed:75:9f:9f:df:a3:40:92:03:fa:4e:c3:ef:ec:15:02: 77:11:4c:56:ab:87:31:97:68:74:3c:9c:3a:47:18:a3:ce:d3: 3f:7b:8c:8e:ad:cc:a4:76:7f:c5:57:be:95:c6:46:66:35:fb: 20:d5:44:85:95:24:d8:7a:c0:45:3c:ee:3f:07:c1:27:28:09: 14:a0:ba:69:cf:8f:8c:93:cf:5c:65:1a:47:32:41:81:6e:4a: ff:56:05:67:f0:6b:41:d7:f5:65:5e:60:69:18:b0:74:75:bb: 0e:ce:c0:96:d2:57:6d:06:f0:91:7d:98:93:dc:62:7c:e4:29: b7:09:ca:53:55:5c:6d:1a:e1:ac:69:db:06:a3:08:ee:ae:20: 17:d4:fd:65:67:46:03:f6:fd:64:38:e2:26:2c:4b:d3:ce:7f: 30:18:53:f2 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQzIxMTAvBgNVBAUTKDNEMzg5MUE0NkNCQ0JBQjQ3NDc4REVBNDBEMjkwOEY2 N0NDRTNCMkEwHhcNMjUwODA4MjEwMTU2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjhhMi1mYTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5d399iLQWq+Q8lw7w6Awm8CHBXeAbvk4ZgVgxqAOQ8ipKML1HXYQIOAPXcxK j5wc6xZJMO3Bstkpp7+mbve8YGLW3E4T5E/aBu5f6zvzEjl0AJZ46K/O3JKQrlzh MUgt9eVvfLX+8RcZCOtspJOC8kIFlHaXtVlbFNdAO1LOuzrJSKm2M7VNj/yTXK4y MIKowmTISlhTvPQ9l+/bZP1HCDJ3CP8fYEJSoIO+e/Pm/T8ShXWMlS2fy2f6SUsy fdZvXprqj3Ccl/AVnFFdlJzx6cHYLMlHMakAM1Hdl32kEPd+raZHgBPVd1e9/XiU GWRR3/m3v8zvLEGOuQ6pZNBM6QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFA7aoE4e +3r4N8AhlWnMH83is4YUMB8GA1UdIwQYMBaAFD04kaRsvLq0dHjepA0pCPZ8zjsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVDMi8yRERERDI2Q0My QzAxMUVBOTNENTg1N0ZDNEY5QUUwMi9QVGlScEd5OHVyUjBlTjZrRFNrSTluek9P eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BUaVJwR3k4dXJSMGVONmtEU2tJOW56T095by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQzIvMkREREQyNkNDMkMwMTFFQTkzRDU4NTdGQzRGOUFFMDIvREZFQTMwNzQ1 QzMwMTFFRUIyNTBERTBFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLf/8AwQCZ0GwMA0GCSqGSIb3DQEBCwUAA4IBAQCx5kVngqv4xUiQ +nIKPi8RGQQIjZuirHmkFcvP1CoEHU9YAnu/KWmTlV6egGCBcOBhgJDelpnNIEOI UruG78btSu3mYxQjDVkNXPAIJFd9OTHssoIu/tkpgmO+PO11n5/fo0CSA/pOw+/s FQJ3EUxWq4cxl2h0PJw6RxijztM/e4yOrcykdn/FV76VxkZmNfsg1USFlSTYesBF PO4/B8EnKAkUoLppz4+Mk89cZRpHMkGBbkr/VgVn8GtB1/VlXmBpGLB0dbsOzsCW 0ldtBvCRfZiT3GJ85Cm3CcpTVVxtGuGsadsGowjuriAX1P1lZ0YD9v1kOOImLEvT zn8wGFPy -----END CERTIFICATE-----Generated at Mon Mar 2 07:27:15 2026 by rpki-client