$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/D4578CBCE0F811F0841404A85E6F56BC.roa File: D4578CBCE0F811F0841404A85E6F56BC.roa (raw, json) Hash identifier: kVIQF28+VXWQvXZxpxDtZOt5V7kSBnZhEpXWdQv6LfU= Subject key identifier: A5:2D:92:43:15:38:51:F5:A1:6C:D3:30:D6:35:16:B3:CC:42:32:1F Certificate issuer: /CN=A91AB1C2/serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347 Certificate serial: 2D Authority key identifier: 18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/D4578CBCE0F811F0841404A85E6F56BC.roa Signing time: Sun 01 Mar 2026 05:54:11 +0000 ROA not before: Wed 24 Dec 2025 18:46:17 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 199073 IP address blocks: 144.79.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:14:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1C2, serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347 Validity Not Before: Dec 24 18:46:17 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a3d483-c5c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:13:ed:6f:65:e9:e9:71:0b:80:62:16:ba:82: d6:08:b0:81:49:35:61:48:95:02:13:21:62:69:11: 79:31:f6:b8:f4:62:d7:be:b7:f4:a1:53:08:7a:50: 60:6d:f4:87:b5:0c:4f:28:3b:96:30:3e:ef:31:56: 0c:61:59:de:28:35:a6:b8:a8:92:d6:e7:fc:29:eb: 27:fd:df:9e:ad:56:ee:f6:79:35:ad:97:22:ca:13: a2:33:b3:23:ff:f1:4d:b7:6d:5e:3d:61:63:61:a4: 36:9f:eb:77:55:d9:af:66:ba:d6:28:c6:45:9c:e4: fa:67:cb:db:7e:18:21:73:e6:e7:84:ab:10:cc:6b: 8d:be:7f:c1:6e:6b:e1:1c:cc:74:2b:1f:6c:e7:0b: b8:75:65:86:21:9c:04:5f:93:3a:b0:c1:10:9a:8e: c5:57:55:c4:54:5c:7e:b4:64:a8:54:29:dc:05:23: d3:f9:73:d2:e9:6d:d3:81:b6:8e:0f:6d:69:6c:99: c6:af:f0:c0:b0:69:59:0b:f5:34:5e:7e:63:ec:3c: e2:a1:96:a3:d9:82:c5:bc:0c:43:90:61:85:3e:ea: fd:d1:5f:cb:53:f3:13:f5:35:94:de:c1:fd:8e:6c: f8:c3:cf:28:07:f2:8e:e7:4b:90:63:e2:f4:ca:c4: e0:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:2D:92:43:15:38:51:F5:A1:6C:D3:30:D6:35:16:B3:CC:42:32:1F X509v3 Authority Key Identifier: keyid:18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/D4578CBCE0F811F0841404A85E6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 144.79.170.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:a6:d8:0d:c4:4c:6d:4e:f9:71:0e:d7:06:38:5a:93:15:af: 2d:14:62:2d:c2:f5:d5:5c:59:47:a2:61:00:47:88:ad:42:5d: 7e:3c:61:cd:27:2f:c9:70:c1:13:81:3c:80:68:fe:d8:6e:fd: 5e:5e:83:91:f2:ac:68:59:2b:bb:44:96:74:0c:1d:ea:33:63: fa:c6:0d:fb:fa:79:18:3d:00:55:85:11:f1:8c:87:8e:51:bd: 38:68:1c:75:a2:8f:3b:b0:a7:d6:0f:fc:d0:c0:95:8d:cc:3a: 5d:1c:de:a6:00:c2:92:09:d9:29:f3:31:80:53:af:19:71:65: 43:92:b7:6b:61:39:aa:26:93:e1:a7:0e:95:c1:06:b9:6d:7b: 6a:20:41:b9:5e:ea:c6:0d:d0:d1:71:d4:46:b1:bc:38:ca:84: 62:54:93:61:66:40:cd:28:06:ba:72:32:ad:ea:d2:b7:59:c8: 44:cc:2e:2f:3d:54:25:96:15:b2:a0:28:6a:f1:f8:02:a0:37: ff:22:38:f0:3c:83:ca:12:eb:b6:08:53:f1:ae:03:04:86:89: cf:b3:b8:4d:6b:88:d6:72:11:6f:a8:44:83:5e:6c:48:61:82: 55:70:8a:ba:97:53:a4:f7:6b:39:24:f4:d7:3f:b5:65:9d:35: 11:71:73:02 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QjFDMjExMC8GA1UEBRMoMTg0MzJENTFFNjJEREE3MjlEMUZGMUJFMUI4MUZCRjU1 QkQ4QjM0NzAeFw0yNTEyMjQxODQ2MTdaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNDgzLWM1YzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+E+1vZenpcQuAYha6gtYIsIFJNWFIlQITIWJpEXkx9rj0Yte+t/ShUwh6UGBt 9Ie1DE8oO5YwPu8xVgxhWd4oNaa4qJLW5/wp6yf9356tVu72eTWtlyLKE6IzsyP/ 8U23bV49YWNhpDaf63dV2a9mutYoxkWc5Ppny9t+GCFz5ueEqxDMa42+f8Fua+Ec zHQrH2znC7h1ZYYhnARfkzqwwRCajsVXVcRUXH60ZKhUKdwFI9P5c9LpbdOBto4P bWlsmcav8MCwaVkL9TRefmPsPOKhlqPZgsW8DEOQYYU+6v3RX8tT8xP1NZTewf2O bPjDzygH8o7nS5Bj4vTKxODvAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUpS2SQxU4 UfWhbNMw1jUWs8xCMh8wHwYDVR0jBBgwFoAUGEMtUeYt2nKdH/G+G4H79VvYs0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMUMyLzA1OUY3Q0JDRENB MzExRjA4NUQ2RjE1QjQzNkY1NkJDL0dFTXRVZVl0Mm5LZEhfRy1HNEg3OVZ2WXMw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR0VNdFVlWXQybktkSF9HLUc0SDc5VnZZczBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjFDMi8wNTlGN0NCQ0RDQTMxMUYwODVENkYxNUI0MzZGNTZCQy9ENDU3OENCQ0Uw RjgxMUYwODQxNDA0QTg1RTZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGQT6owDQYJKoZIhvcNAQELBQADggEBADum2A3ETG1O+XEO1wY4WpMV ry0UYi3C9dVcWUeiYQBHiK1CXX48Yc0nL8lwwROBPIBo/thu/V5eg5HyrGhZK7tE lnQMHeozY/rGDfv6eRg9AFWFEfGMh45RvThoHHWijzuwp9YP/NDAlY3MOl0c3qYA wpIJ2SnzMYBTrxlxZUOSt2thOaomk+GnDpXBBrlte2ogQble6sYN0NFx1EaxvDjK hGJUk2FmQM0oBrpyMq3q0rdZyETMLi89VCWWFbKgKGrx+AKgN/8iOPA8g8oS67YI U/GuAwSGic+zuE1riNZyEW+oRINebEhhglVwirqXU6T3azkk9Nc/tWWdNRFxcwI= -----END CERTIFICATE-----Generated at Mon Mar 2 07:36:34 2026 by rpki-client