$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/C3F53A0654F011E7BE4A6431C4F9AE02.roa File: C3F53A0654F011E7BE4A6431C4F9AE02.roa (raw, json) Hash identifier: uTzcih1KaqTWD5o3aEAbBRCjnKgSsq3hesblpLVQM8s= Subject key identifier: 70:CC:F1:A0:28:45:71:06:79:81:7C:97:FE:2B:D3:9F:33:6F:16:18 Certificate issuer: /CN=A91C1A37/serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Certificate serial: 313B Authority key identifier: CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/C3F53A0654F011E7BE4A6431C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:12:32 +0000 ROA not before: Fri 02 May 2025 15:51:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 32934 IP address blocks: 45.64.40.0/22 maxlen: 24 103.4.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12603 (0x313b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A37, serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Validity Not Before: May 2 15:51:58 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a402ff-7031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0e:99:91:5f:24:08:47:a8:18:ae:ec:7b:1e: 99:4d:a6:76:cd:68:58:d9:20:72:dc:e8:06:ee:cd: a2:4d:6c:4c:88:fc:f7:cd:f4:f8:3f:4d:be:13:33: b0:eb:4c:1a:1e:4d:01:31:c6:29:11:09:b2:c7:dd: 73:4a:bc:9c:10:6d:a7:cb:ec:0d:7c:d4:95:c1:0a: f5:99:d9:fd:a9:9a:55:9b:f2:8d:01:62:25:7b:15: fe:a8:7e:fa:92:c5:a1:11:e0:95:23:35:44:f5:74: a2:c3:85:76:a5:f6:2a:28:5f:2f:74:87:37:85:20: c3:f7:ef:a6:59:86:a1:7f:00:2a:f1:2d:c7:34:65: b0:54:30:87:bd:e6:5c:29:6c:3d:ec:0b:2a:85:6d: f0:0c:d3:00:de:7f:12:c6:1d:6f:5f:00:5a:0f:ae: 82:2e:49:0b:c2:d7:1e:2d:c3:83:bd:9a:1f:06:4b: 5c:f7:85:0f:06:23:0c:96:a1:9d:ba:25:f0:31:7d: 8a:1a:0c:0c:fe:67:f2:d8:35:54:22:a4:32:c6:09: 9e:59:44:14:ec:e6:b7:45:ab:ad:84:c6:31:0d:4f: 00:85:c3:ae:b4:bb:4c:03:21:19:e3:3e:27:d3:a7: b6:26:f2:dd:2f:9f:e3:b3:f5:75:4e:3f:86:56:ac: ed:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:CC:F1:A0:28:45:71:06:79:81:7C:97:FE:2B:D3:9F:33:6F:16:18 X509v3 Authority Key Identifier: keyid:CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/C3F53A0654F011E7BE4A6431C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.64.40.0/22 103.4.96.0/22 Signature Algorithm: sha256WithRSAEncryption 01:e6:dc:f6:16:2c:86:78:df:75:e6:05:b4:5c:24:0c:2a:72: 65:1b:dd:72:19:da:fb:a3:5e:36:d2:03:8b:e4:af:f0:fe:7d: c0:ac:de:27:35:9f:f2:49:f0:bd:55:69:4d:c3:6b:50:d7:11: ec:47:42:b3:05:74:c5:81:63:18:b4:16:ce:ae:39:27:af:3a: 05:d8:90:b3:84:f7:db:34:30:28:83:8d:38:d6:db:ec:9f:26: 12:05:ad:23:60:a9:06:61:6b:0a:e2:4c:6e:f5:d6:71:b5:46: 9d:a3:b4:79:7c:34:d2:b5:da:61:a0:b5:0f:82:28:b4:b3:bc: d4:7b:2c:5f:2e:e9:83:84:34:a5:37:63:76:77:cc:3f:99:d9: 62:29:18:c1:c1:8c:4e:2d:b3:cd:92:95:b7:b1:62:17:84:07: 70:53:15:96:cf:bf:fc:21:52:8c:42:2d:e5:f4:41:6c:e1:ce: 51:c6:eb:45:82:e7:ca:85:f0:c0:50:d8:16:64:7d:cd:47:bf: 3f:61:dc:08:c2:9f:0d:2a:75:19:1c:73:42:d9:ff:06:a3:60: 55:1d:03:96:a9:86:1c:4f:1b:45:3a:19:1c:14:f2:67:b4:ec: 0e:7a:21:b3:8b:90:40:e3:e7:7f:dc:d3:38:bc:9c:7c:1d:ec: 91:ba:fa:77 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICMTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBMzcxMTAvBgNVBAUTKENDODQzRTE0MEEyRTNFRkJFMEI5NDlERTBFRDgwMzgz OTA2MDU0MUQwHhcNMjUwNTAyMTU1MTU4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDJmZi03MDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQ6ZkV8kCEeoGK7sex6ZTaZ2zWhY2SBy3OgG7s2iTWxMiPz3zfT4P02+EzOw 60waHk0BMcYpEQmyx91zSrycEG2ny+wNfNSVwQr1mdn9qZpVm/KNAWIlexX+qH76 ksWhEeCVIzVE9XSiw4V2pfYqKF8vdIc3hSDD9++mWYahfwAq8S3HNGWwVDCHveZc KWw97AsqhW3wDNMA3n8Sxh1vXwBaD66CLkkLwtceLcODvZofBktc94UPBiMMlqGd uiXwMX2KGgwM/mfy2DVUIqQyxgmeWUQU7Oa3RauthMYxDU8AhcOutLtMAyEZ4z4n 06e2JvLdL5/js/V1Tj+GVqztYQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFHDM8aAo RXEGeYF8l/4r058zbxYYMB8GA1UdIwQYMBaAFMyEPhQKLj774LlJ3g7YA4OQYFQd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUEzNy82ODY4RTAyOEU3 RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2dmd1VW5lRHRnRGc1QmdW QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJUS1GQW91UHZ2Z3VVbmVEdGdEZzVCZ1ZCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFBMzcvNjg2OEUwMjhFN0YwMTFFMjhDMjgwNTg0NTkxMUVBMzIvQzNGNTNBMDY1 NEYwMTFFN0JFNEE2NDMxQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLUAoAwQCZwRgMA0GCSqGSIb3DQEBCwUAA4IBAQAB5tz2FiyGeN91 5gW0XCQMKnJlG91yGdr7o1420gOL5K/w/n3ArN4nNZ/ySfC9VWlNw2tQ1xHsR0Kz BXTFgWMYtBbOrjknrzoF2JCzhPfbNDAog4041tvsnyYSBa0jYKkGYWsK4kxu9dZx tUado7R5fDTStdphoLUPgii0s7zUeyxfLumDhDSlN2N2d8w/mdliKRjBwYxOLbPN kpW3sWIXhAdwUxWWz7/8IVKMQi3l9EFs4c5RxutFgufKhfDAUNgWZH3NR78/YdwI wp8NKnUZHHNC2f8Go2BVHQOWqYYcTxtFOhkcFPJntOwOeiGzi5BA4+d/3NM4vJx8 HeyRuvp3 -----END CERTIFICATE-----Generated at Mon Mar 2 18:26:59 2026 by rpki-client