$ rpki-client -vvf rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/2ED1150C561D11E7B003DF26C4F9AE02.roa File: 2ED1150C561D11E7B003DF26C4F9AE02.roa (raw, json) Hash identifier: eFsi0supPDWAmie8xnnHpeYK8WQXmTl5WULrm0kon3k= Subject key identifier: D5:D9:38:56:ED:F6:D2:EB:04:3A:11:78:19:23:8A:38:67:6A:00:52 Certificate issuer: /CN=A91C83EA/serialNumber=F76750515BB762D1800C5AE6C6C2DB24FE952D02 Certificate serial: 2B1E Authority key identifier: F7:67:50:51:5B:B7:62:D1:80:0C:5A:E6:C6:C2:DB:24:FE:95:2D:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92dQUVu3YtGADFrmxsLbJP6VLQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/2ED1150C561D11E7B003DF26C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:26:14 +0000 ROA not before: Wed 06 Aug 2025 15:52:28 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45177 IP address blocks: 45.64.48.0/22 maxlen: 24 103.233.220.0/22 maxlen: 24 2401:1880::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/92dQUVu3YtGADFrmxsLbJP6VLQI.crl rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/92dQUVu3YtGADFrmxsLbJP6VLQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92dQUVu3YtGADFrmxsLbJP6VLQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:31:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11038 (0x2b1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C83EA, serialNumber=F76750515BB762D1800C5AE6C6C2DB24FE952D02 Validity Not Before: Aug 6 15:52:28 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42256-8d08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:06:4b:ec:5e:e9:ef:7d:60:dd:16:e4:3e:a5: ee:8d:36:90:00:8d:ee:d0:94:3e:d5:23:9b:2f:fa: 60:eb:b3:e5:5e:39:e3:e8:81:a5:4b:5f:d7:38:aa: 09:9f:30:af:5f:6b:28:d8:ec:e4:76:d1:5b:5b:6c: 0f:cd:6c:90:d4:70:c0:7a:80:e5:f1:05:4e:5f:f4: 3f:ef:f1:2a:66:a2:5a:dc:c8:12:45:a9:17:c8:01: ca:91:ea:33:33:c8:f5:9d:8a:30:e8:2a:cc:f3:2f: 82:3d:68:c0:34:d8:17:8f:4f:20:71:b3:95:35:cf: 52:74:07:20:7f:61:12:70:24:ad:6a:c8:1c:2f:ff: ea:af:c1:c5:49:9f:55:9b:21:d1:7f:55:46:04:8a: da:15:fa:2f:63:3a:f0:b9:42:a7:19:47:ee:6b:17: 4c:3b:72:1e:30:ec:50:f6:fb:e2:04:0f:4f:d8:bb: 92:2a:23:a8:27:ca:ca:ea:3b:9e:07:6a:2c:1f:34: 7e:f7:af:93:29:8c:76:67:92:9a:12:6e:34:b2:d5: b4:09:ab:c8:40:87:a8:64:5e:78:4a:fd:df:47:71: 15:f4:30:d6:10:e7:37:73:e4:a3:09:01:7a:82:68: 95:e7:1d:67:2f:5e:82:64:30:01:77:f7:bc:ac:d7: 32:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D9:38:56:ED:F6:D2:EB:04:3A:11:78:19:23:8A:38:67:6A:00:52 X509v3 Authority Key Identifier: keyid:F7:67:50:51:5B:B7:62:D1:80:0C:5A:E6:C6:C2:DB:24:FE:95:2D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/92dQUVu3YtGADFrmxsLbJP6VLQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92dQUVu3YtGADFrmxsLbJP6VLQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/2ED1150C561D11E7B003DF26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.64.48.0/22 103.233.220.0/22 IPv6: 2401:1880::/32 Signature Algorithm: sha256WithRSAEncryption 3b:00:51:8c:0b:02:4e:ab:5f:ab:79:8a:38:15:73:df:01:b3: 32:71:63:2d:3d:75:22:4c:04:ef:f6:99:b9:24:dc:e2:90:0f: 08:34:e3:e0:3d:ed:df:50:fe:b7:8b:d0:ac:05:2b:22:03:f8: 99:f2:f4:df:a9:81:9e:d2:5d:d4:2c:32:f2:cf:32:5d:a3:e9: 6c:3a:3f:12:3b:60:8f:19:5d:ab:7c:fe:29:df:d6:9e:1a:36: 10:89:12:69:69:32:39:9b:5b:46:e4:4f:d2:80:51:5d:50:0b: 74:c1:8f:94:6e:da:87:5f:76:2e:5a:76:85:3d:ef:0a:ac:b8: ee:1a:86:c7:39:ba:83:61:b7:20:d0:f8:94:53:de:14:58:9c: 9c:da:60:ee:96:f5:8e:db:aa:07:a7:03:67:f0:63:7d:71:c6: 84:83:d8:3d:4a:09:73:e0:c5:f1:f0:29:33:82:be:7f:03:d9: 16:d0:36:15:09:c3:89:3c:0b:8a:6d:64:48:d6:d6:df:d7:a0: f3:20:fe:e6:d5:c2:58:c4:b8:ac:22:18:73:24:53:3a:55:e6: 83:9a:9d:45:9a:0a:1a:f4:b9:69:30:95:a3:8c:0c:af:1f:8c: df:f3:f2:9b:e5:5c:32:0f:b2:05:ec:65:3a:7b:63:c6:be:a0: d5:51:f8:54 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICKx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzRUExMTAvBgNVBAUTKEY3Njc1MDUxNUJCNzYyRDE4MDBDNUFFNkM2QzJEQjI0 RkU5NTJEMDIwHhcNMjUwODA2MTU1MjI4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjI1Ni04ZDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7QZL7F7p731g3RbkPqXujTaQAI3u0JQ+1SObL/pg67PlXjnj6IGlS1/XOKoJ nzCvX2so2OzkdtFbW2wPzWyQ1HDAeoDl8QVOX/Q/7/EqZqJa3MgSRakXyAHKkeoz M8j1nYow6CrM8y+CPWjANNgXj08gcbOVNc9SdAcgf2EScCStasgcL//qr8HFSZ9V myHRf1VGBIraFfovYzrwuUKnGUfuaxdMO3IeMOxQ9vviBA9P2LuSKiOoJ8rK6jue B2osHzR+96+TKYx2Z5KaEm40stW0CavIQIeoZF54Sv3fR3EV9DDWEOc3c+SjCQF6 gmiV5x1nL16CZDABd/e8rNcyqQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFNXZOFbt 9tLrBDoReBkjijhnagBSMB8GA1UdIwQYMBaAFPdnUFFbt2LRgAxa5sbC2yT+lS0C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODNFQS9EODJDNjFFODFD NDUxMUU0OTRBNzZGMUJDNEY5QUUwMi85MmRRVVZ1M1l0R0FERnJteHNMYkpQNlZM UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkyZFFVVnUzWXRHQURGcm14c0xiSlA2VkxRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzgzRUEvRDgyQzYxRTgxQzQ1MTFFNDk0QTc2RjFCQzRGOUFFMDIvMkVEMTE1MEM1 NjFEMTFFN0IwMDNERjI2QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCLUAwAwQCZ+ncMA0EAgACMAcDBQAkARiAMA0GCSqGSIb3DQEBCwUA A4IBAQA7AFGMCwJOq1+reYo4FXPfAbMycWMtPXUiTATv9pm5JNzikA8INOPgPe3f UP63i9CsBSsiA/iZ8vTfqYGe0l3ULDLyzzJdo+lsOj8SO2CPGV2rfP4p39aeGjYQ iRJpaTI5m1tG5E/SgFFdUAt0wY+UbtqHX3YuWnaFPe8KrLjuGobHObqDYbcg0PiU U94UWJyc2mDulvWO26oHpwNn8GN9ccaEg9g9Sglz4MXx8Ckzgr5/A9kW0DYVCcOJ PAuKbWRI1tbf16DzIP7m1cJYxLisIhhzJFM6VeaDmp1Fmgoa9LlpMJWjjAyvH4zf 8/Kb5VwyD7IF7GU6e2PGvqDVUfhU -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:18 2026 by rpki-client