$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/2B9FBCB0DEC911EBA828524CC4F9AE02.roa File: 2B9FBCB0DEC911EBA828524CC4F9AE02.roa (raw, json) Hash identifier: MCYhaXeWm4Azn45D+8Hoz0m3yVVZUkz11sIQ3TDfy9w= Subject key identifier: 07:C8:1D:F6:03:84:F5:52:56:34:FF:86:14:FB:B7:C8:20:DB:B4:54 Certificate issuer: /CN=A91ACBB7/serialNumber=746241ADA77DDBDFEA0FE144EFE21391E3FC4FD9 Certificate serial: 0D80 Authority key identifier: 74:62:41:AD:A7:7D:DB:DF:EA:0F:E1:44:EF:E2:13:91:E3:FC:4F:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGJBrad929_qD-FE7-ITkeP8T9k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/2B9FBCB0DEC911EBA828524CC4F9AE02.roa Signing time: Thu 02 Apr 2026 18:22:21 +0000 ROA not before: Thu 02 Apr 2026 18:22:21 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 58715 IP address blocks: 45.114.84.0/22 maxlen: 24 103.54.36.0/22 maxlen: 24 2403:41c0::/32 maxlen: 36 2403:41c0:fc00::/48 maxlen: 48 2403:41c0:fc05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/dGJBrad929_qD-FE7-ITkeP8T9k.crl rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/dGJBrad929_qD-FE7-ITkeP8T9k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGJBrad929_qD-FE7-ITkeP8T9k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:55:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3456 (0xd80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACBB7, serialNumber=746241ADA77DDBDFEA0FE144EFE21391E3FC4FD9 Validity Not Before: Apr 2 18:22:21 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69ceb3dd-a2e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:14:5c:da:40:f2:49:bd:d3:f6:ab:ae:73:9d: 14:7a:d8:44:5c:26:fb:73:ac:a8:93:f4:82:91:90: 0b:74:70:d3:f6:da:91:dc:0c:cd:47:1e:94:e0:f5: 87:5c:45:d0:91:de:d1:dc:26:af:f6:42:69:40:4c: a0:8b:4a:c7:99:ce:54:f8:a4:94:44:12:cd:79:d1: 7e:88:e1:35:07:a0:b1:4d:c6:f3:72:74:57:29:30: ae:b5:74:01:b8:89:8b:ad:bb:e3:4e:09:29:1e:eb: 55:32:90:0e:93:08:ac:59:7c:c6:5d:4d:e9:b0:cf: 7f:82:0a:92:33:4e:03:3d:a0:09:c5:1a:22:e9:53: 6e:84:77:e5:4a:0d:30:db:6c:26:c4:30:a2:fc:19: 36:14:8b:17:95:7f:73:5f:f6:f8:1c:f3:41:45:39: 2f:c7:b1:57:2a:ee:f0:3a:8f:88:1c:88:c3:1b:03: 7e:fb:22:11:34:99:02:d6:91:2b:97:ac:bb:07:d5: be:d2:c3:f2:14:9f:ff:ca:fb:80:a5:aa:38:0b:13: f0:d9:78:8d:96:65:96:11:9b:38:a7:4c:de:6d:e1: 37:00:41:ea:6e:cb:80:b8:69:2d:6f:6b:e5:75:e9: 7f:b0:e4:4f:6c:28:b7:a1:ef:1e:c7:2a:b0:dd:a8: 47:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C8:1D:F6:03:84:F5:52:56:34:FF:86:14:FB:B7:C8:20:DB:B4:54 X509v3 Authority Key Identifier: keyid:74:62:41:AD:A7:7D:DB:DF:EA:0F:E1:44:EF:E2:13:91:E3:FC:4F:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/dGJBrad929_qD-FE7-ITkeP8T9k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGJBrad929_qD-FE7-ITkeP8T9k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/2B9FBCB0DEC911EBA828524CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.114.84.0/22 103.54.36.0/22 IPv6: 2403:41c0::/32 Signature Algorithm: sha256WithRSAEncryption b7:96:9e:4f:09:be:09:84:ce:65:b3:83:a6:df:28:15:3a:67: ca:02:cc:06:4e:63:37:5d:87:8d:4d:1b:61:7d:40:47:0f:f0: ea:71:b0:d9:88:6b:cc:12:8d:7c:5c:a0:6d:cb:f1:2b:f4:78: 03:c0:67:8c:5a:3f:e1:73:5d:79:f8:3e:3c:63:02:a5:cd:cd: e2:1b:c5:eb:e7:83:44:31:d4:90:8b:57:6d:a0:06:bd:15:5a: fa:8e:e4:e9:ff:99:19:61:68:3a:f4:01:62:2a:47:df:0d:2d: 7b:0d:0d:74:2d:22:e5:bd:13:5c:e9:49:fd:d5:4b:35:2e:10: 14:3d:db:03:5d:1f:d9:47:27:a9:2d:fd:c0:d3:fb:e8:dc:a1: d5:ec:29:18:46:82:56:81:7f:ea:29:fa:17:f3:13:00:28:a9: 22:1a:6f:73:a0:3b:f0:4a:04:40:95:b0:e8:47:50:17:7c:ea: ef:22:7e:5c:61:00:ff:7f:d7:01:a4:08:7d:71:8a:e1:84:d1: 9a:f7:90:4f:7a:1f:b0:cc:61:af:61:8e:d0:07:58:28:13:ec: de:85:ec:a0:4d:7e:6e:39:71:26:48:7e:f3:8b:87:4c:72:64: ec:ea:72:71:ac:53:c1:49:f0:7b:b4:70:fa:16:67:1a:bb:01: ea:3f:c0:df -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNCQjcxMTAvBgNVBAUTKDc0NjI0MUFEQTc3RERCREZFQTBGRTE0NEVGRTIxMzkx RTNGQzRGRDkwHhcNMjYwNDAyMTgyMjIxWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlYjNkZC1hMmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRRc2kDySb3T9quuc50UethEXCb7c6yok/SCkZALdHDT9tqR3AzNRx6U4PWH XEXQkd7R3Cav9kJpQEygi0rHmc5U+KSURBLNedF+iOE1B6CxTcbzcnRXKTCutXQB uImLrbvjTgkpHutVMpAOkwisWXzGXU3psM9/ggqSM04DPaAJxRoi6VNuhHflSg0w 22wmxDCi/Bk2FIsXlX9zX/b4HPNBRTkvx7FXKu7wOo+IHIjDGwN++yIRNJkC1pEr l6y7B9W+0sPyFJ//yvuApao4CxPw2XiNlmWWEZs4p0zebeE3AEHqbsuAuGktb2vl del/sORPbCi3oe8exyqw3ahHBQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFAfIHfYD hPVSVjT/hhT7t8gg27RUMB8GA1UdIwQYMBaAFHRiQa2nfdvf6g/hRO/iE5Hj/E/Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0JCNy81RTFGQ0VCQ0Yz RjkxMUU5QjhBODMxMEFDNEY5QUUwMi9kR0pCcmFkOTI5X3FELUZFNy1JVGtlUDhU OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RHSkJyYWQ5MjlfcUQtRkU3LUlUa2VQOFQ5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNCQjcvNUUxRkNFQkNGM0Y5MTFFOUI4QTgzMTBBQzRGOUFFMDIvMkI5RkJDQjBE RUM5MTFFQkE4Mjg1MjRDQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCLXJUAwQCZzYkMA0EAgACMAcDBQAkA0HAMA0GCSqGSIb3DQEBCwUA A4IBAQC3lp5PCb4JhM5ls4Om3ygVOmfKAswGTmM3XYeNTRthfUBHD/DqcbDZiGvM Eo18XKBty/Er9HgDwGeMWj/hc115+D48YwKlzc3iG8Xr54NEMdSQi1dtoAa9FVr6 juTp/5kZYWg69AFiKkffDS17DQ10LSLlvRNc6Un91Us1LhAUPdsDXR/ZRyepLf3A 0/vo3KHV7CkYRoJWgX/qKfoX8xMAKKkiGm9zoDvwSgRAlbDoR1AXfOrvIn5cYQD/ f9cBpAh9cYrhhNGa95BPeh+wzGGvYY7QB1goE+zeheygTX5uOXEmSH7zi4dMcmTs 6nJxrFPBSfB7tHD6FmcauwHqP8Df -----END CERTIFICATE-----Generated at Fri Apr 17 15:00:36 2026 by rpki-client