$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/2B9FBCB0DEC911EBA828524CC4F9AE02.roa File: 2B9FBCB0DEC911EBA828524CC4F9AE02.roa (raw, json) Hash identifier: YiSRee5vl7EyJJPjfDEZ2260d09lp/o9qHx1R/OGGjM= Subject key identifier: CC:F2:E5:CF:AC:64:B7:2D:88:A8:A5:60:BF:E1:93:AD:46:E0:64:56 Certificate issuer: /CN=A91ACBB7/serialNumber=746241ADA77DDBDFEA0FE144EFE21391E3FC4FD9 Certificate serial: 0D6A Authority key identifier: 74:62:41:AD:A7:7D:DB:DF:EA:0F:E1:44:EF:E2:13:91:E3:FC:4F:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGJBrad929_qD-FE7-ITkeP8T9k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/2B9FBCB0DEC911EBA828524CC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:34:38 +0000 ROA not before: Fri 28 Mar 2025 18:29:38 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 58715 IP address blocks: 45.114.84.0/22 maxlen: 24 103.54.36.0/22 maxlen: 24 2403:41c0::/32 maxlen: 36 2403:41c0:fc00::/48 maxlen: 48 2403:41c0:fc05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/dGJBrad929_qD-FE7-ITkeP8T9k.crl rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/dGJBrad929_qD-FE7-ITkeP8T9k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGJBrad929_qD-FE7-ITkeP8T9k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:14:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3434 (0xd6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACBB7, serialNumber=746241ADA77DDBDFEA0FE144EFE21391E3FC4FD9 Validity Not Before: Mar 28 18:29:38 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a45c8e-5ae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c2:33:a8:84:95:01:38:3c:d5:e7:2b:6c:0d: 52:21:26:73:fc:b0:3c:9e:35:ed:41:a5:58:ed:e8: 64:f3:0a:42:59:f7:53:ca:9d:24:ac:21:08:c1:47: 52:16:35:c6:4c:1e:91:83:d8:f1:4a:63:0c:36:30: 49:ed:84:c2:bf:53:99:87:58:e7:13:cc:f2:05:e3: d6:e4:48:1e:b8:a5:da:fb:b1:5c:eb:a3:f7:7a:82: bf:5e:5a:6d:22:d0:57:72:fa:da:67:01:fb:46:19: 1f:aa:61:91:b5:5b:43:47:97:62:72:b5:bd:0c:a3: b1:c6:b4:99:78:05:dc:ee:cb:12:7f:fc:68:c1:be: c8:41:23:e3:34:1c:25:ff:f3:37:81:f4:24:5c:c8: a3:36:c8:a9:d3:a1:67:81:68:bd:79:60:a4:b9:b8: 62:fe:f8:b9:e3:b5:03:8c:ad:a3:25:41:87:54:05: 49:dd:c4:8f:e2:1a:41:21:b8:88:66:2b:27:41:ef: 97:69:ce:91:90:90:9c:8d:55:58:73:43:ba:08:cf: f5:c6:a3:4c:ee:49:88:9b:0e:60:96:05:1c:70:b5: e5:4c:b5:72:4e:87:ee:38:c9:74:fd:b2:24:8c:69: 68:a1:3d:5f:1f:10:0e:7e:1c:96:23:f0:77:a4:d3: dc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F2:E5:CF:AC:64:B7:2D:88:A8:A5:60:BF:E1:93:AD:46:E0:64:56 X509v3 Authority Key Identifier: keyid:74:62:41:AD:A7:7D:DB:DF:EA:0F:E1:44:EF:E2:13:91:E3:FC:4F:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/dGJBrad929_qD-FE7-ITkeP8T9k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGJBrad929_qD-FE7-ITkeP8T9k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/2B9FBCB0DEC911EBA828524CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.114.84.0/22 103.54.36.0/22 IPv6: 2403:41c0::/32 Signature Algorithm: sha256WithRSAEncryption 11:a6:63:4b:dd:63:a5:1b:b5:5f:17:3d:e7:ae:e8:fc:dd:e7: b7:ae:45:7a:e5:54:20:81:3d:c4:4c:28:e0:54:0f:12:81:7d: 63:61:e3:2a:bc:21:40:bd:86:2f:db:be:c0:67:ba:c1:67:10: 80:12:38:5e:e8:cc:0b:ff:f0:48:53:e7:8d:16:a5:56:30:35: 0e:0b:ce:bf:69:54:b2:e9:51:59:62:b8:36:88:56:83:ac:a2: 1e:ac:9f:cc:42:55:4a:c3:60:d2:be:e0:b9:b2:cd:85:06:6f: aa:ad:f5:f1:fc:25:d9:80:1d:c0:8f:27:41:c4:b4:f7:2e:11: e0:2b:1d:8f:56:89:47:d3:5a:86:9f:2b:95:5d:76:1c:56:ed: 08:ed:1e:15:24:85:4e:f1:e1:2b:7b:df:5b:4f:33:7d:4f:c3: 91:e7:49:5f:f0:6d:7a:74:af:bd:96:d0:1a:90:01:0e:e2:eb: 05:8a:84:96:20:32:c4:e9:bb:15:1a:26:7a:bb:57:bf:fc:3d: bb:cb:7d:7c:ca:0a:76:29:f4:c1:41:9f:14:87:8a:11:21:37: 3d:67:39:58:a0:86:6a:50:93:26:3c:1b:38:88:4e:45:73:c5: 2b:bd:63:3c:a7:06:c9:61:69:cf:5a:81:4f:cb:74:2f:78:95: 64:c1:2c:9f -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNCQjcxMTAvBgNVBAUTKDc0NjI0MUFEQTc3RERCREZFQTBGRTE0NEVGRTIxMzkx RTNGQzRGRDkwHhcNMjUwMzI4MTgyOTM4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWM4ZS01YWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8IzqISVATg81ecrbA1SISZz/LA8njXtQaVY7ehk8wpCWfdTyp0krCEIwUdS FjXGTB6Rg9jxSmMMNjBJ7YTCv1OZh1jnE8zyBePW5EgeuKXa+7Fc66P3eoK/Xlpt ItBXcvraZwH7RhkfqmGRtVtDR5dicrW9DKOxxrSZeAXc7ssSf/xowb7IQSPjNBwl //M3gfQkXMijNsip06FngWi9eWCkubhi/vi547UDjK2jJUGHVAVJ3cSP4hpBIbiI ZisnQe+Xac6RkJCcjVVYc0O6CM/1xqNM7kmImw5glgUccLXlTLVyTofuOMl0/bIk jGlooT1fHxAOfhyWI/B3pNPcmQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFMzy5c+s ZLctiKilYL/hk61G4GRWMB8GA1UdIwQYMBaAFHRiQa2nfdvf6g/hRO/iE5Hj/E/Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0JCNy81RTFGQ0VCQ0Yz RjkxMUU5QjhBODMxMEFDNEY5QUUwMi9kR0pCcmFkOTI5X3FELUZFNy1JVGtlUDhU OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RHSkJyYWQ5MjlfcUQtRkU3LUlUa2VQOFQ5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNCQjcvNUUxRkNFQkNGM0Y5MTFFOUI4QTgzMTBBQzRGOUFFMDIvMkI5RkJDQjBE RUM5MTFFQkE4Mjg1MjRDQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCLXJUAwQCZzYkMA0EAgACMAcDBQAkA0HAMA0GCSqGSIb3DQEBCwUA A4IBAQARpmNL3WOlG7VfFz3nruj83ee3rkV65VQggT3ETCjgVA8SgX1jYeMqvCFA vYYv277AZ7rBZxCAEjhe6MwL//BIU+eNFqVWMDUOC86/aVSy6VFZYrg2iFaDrKIe rJ/MQlVKw2DSvuC5ss2FBm+qrfXx/CXZgB3AjydBxLT3LhHgKx2PVolH01qGnyuV XXYcVu0I7R4VJIVO8eEre99bTzN9T8OR50lf8G16dK+9ltAakAEO4usFioSWIDLE 6bsVGiZ6u1e//D27y318ygp2KfTBQZ8Uh4oRITc9ZzlYoIZqUJMmPBs4iE5Fc8Ur vWM8pwbJYWnPWoFPy3QveJVkwSyf -----END CERTIFICATE-----Generated at Mon Mar 2 07:26:42 2026 by rpki-client