$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa File: 8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa (raw, json) Hash identifier: 3VA1KwUIIhxyT4ghxT229oTXXd7seGOOX/95PCsXUZM= Subject key identifier: 59:06:B4:12:6D:39:86:21:9E:43:0A:2D:99:82:AE:74:CC:0C:1A:FC Certificate issuer: /CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Certificate serial: 05F2 Authority key identifier: 5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:53:15 +0000 ROA not before: Sun 03 Aug 2025 00:05:36 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 134550 IP address blocks: 45.123.200.0/22 maxlen: 22 45.123.200.0/24 maxlen: 24 45.123.201.0/24 maxlen: 24 45.123.202.0/24 maxlen: 24 45.123.203.0/24 maxlen: 24 103.192.44.0/22 maxlen: 22 103.192.44.0/24 maxlen: 24 103.192.45.0/24 maxlen: 24 103.192.46.0/24 maxlen: 24 103.192.47.0/24 maxlen: 24 2402:9280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28EB, serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Validity Not Before: Aug 3 00:05:36 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a40c8b-7748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:51:10:1c:59:b7:08:45:4e:b2:27:f5:a8:3f: 9e:27:1e:50:4d:12:8a:cc:48:d7:59:95:7a:83:e3: 9c:9d:c8:28:75:fc:7c:3b:9d:68:cf:01:33:4d:1d: a2:b6:08:7a:0e:52:e8:c2:ea:29:80:d5:5a:d2:25: 5b:21:b2:c5:a9:23:b6:e1:8e:0f:8a:66:ed:48:69: 47:78:df:28:a9:1e:97:55:97:49:3c:d7:37:fc:e5: fa:46:9a:33:0e:f2:64:01:77:74:84:99:e2:47:d8: d6:e0:68:ab:52:f5:c6:91:20:b4:ab:6b:6b:10:f2: 8e:d1:74:87:6c:20:e3:05:67:3b:b1:92:44:f4:72: be:06:00:eb:d5:e0:74:a6:af:10:8b:48:4c:da:67: 85:e1:2f:c8:1b:68:98:66:92:52:fc:c8:4a:f6:25: 69:34:b9:78:01:6e:bb:f1:1c:69:d7:63:c5:93:58: b2:4a:c5:6d:9c:9b:b7:f2:98:cf:2a:3d:ce:04:64: 46:c7:d6:7a:2d:15:fc:b2:31:e4:80:33:8b:5d:68: 70:0a:6f:83:67:64:1d:39:e4:00:10:74:f5:34:72: 5c:38:2c:a3:ec:89:f8:68:0e:07:4f:f7:6b:bb:67: c1:ea:87:f9:6f:11:7a:2d:fa:98:86:90:84:0f:de: 96:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:06:B4:12:6D:39:86:21:9E:43:0A:2D:99:82:AE:74:CC:0C:1A:FC X509v3 Authority Key Identifier: keyid:5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.123.200.0/22 103.192.44.0/22 IPv6: 2402:9280::/32 Signature Algorithm: sha256WithRSAEncryption 30:c5:89:fd:e5:33:1d:1e:6d:bd:14:8b:24:59:cd:ef:67:a1: ae:5c:42:3c:b2:88:a8:3d:86:89:af:48:e7:07:f9:f8:94:6b: 85:9b:af:cf:3e:3e:91:67:0c:1d:ce:0e:28:e4:95:44:9a:97: 22:bb:34:04:72:a3:ee:9c:95:87:09:6b:a5:52:96:b1:91:22: 3a:ea:75:25:37:8f:0f:b0:34:0d:8b:31:85:95:04:fe:40:e6: 77:3c:f1:97:32:45:33:9f:e4:ad:0c:46:1d:36:33:a7:f4:9b: d5:c1:86:64:57:76:81:73:5f:62:ee:a3:17:69:65:dd:13:15: b8:93:57:bb:66:d7:a2:25:13:7d:3d:7b:8f:b1:6f:7e:b2:94: f3:b5:cb:a7:c8:20:73:7d:2f:87:ae:30:98:bb:5b:43:02:c6: 51:dd:f2:2d:ff:67:6d:f1:9a:ca:e0:d2:50:b9:69:fe:29:8b: d5:ad:f1:ce:66:56:dc:d1:cc:44:bb:06:c6:dd:4b:71:67:04: 29:ce:d4:c5:0a:c0:47:2a:94:c0:67:11:7b:f5:3e:e6:1d:7f: 89:ea:7c:03:3a:df:9b:b1:08:dc:86:03:ba:b2:0b:f2:35:29: 2d:b6:08:df:5b:a9:e5:08:f7:6a:98:d9:45:74:62:5a:0f:4b: cc:ed:97:18 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RUIxMTAvBgNVBAUTKDVDMzY1QjE3MzFDQTdDRTdEQjgxREQ1NzEzMEJENEQ2 NDMwMTlCNUUwHhcNMjUwODAzMDAwNTM2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGM4Yi03NzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VEQHFm3CEVOsif1qD+eJx5QTRKKzEjXWZV6g+Ocncgodfx8O51ozwEzTR2i tgh6DlLowuopgNVa0iVbIbLFqSO24Y4PimbtSGlHeN8oqR6XVZdJPNc3/OX6Rpoz DvJkAXd0hJniR9jW4GirUvXGkSC0q2trEPKO0XSHbCDjBWc7sZJE9HK+BgDr1eB0 pq8Qi0hM2meF4S/IG2iYZpJS/MhK9iVpNLl4AW678Rxp12PFk1iySsVtnJu38pjP Kj3OBGRGx9Z6LRX8sjHkgDOLXWhwCm+DZ2QdOeQAEHT1NHJcOCyj7In4aA4HT/dr u2fB6of5bxF6LfqYhpCED96W/wIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFFkGtBJt OYYhnkMKLZmCrnTMDBr8MB8GA1UdIwQYMBaAFFw2Wxcxynzn24HdVxML1NZDAZte MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFQi83NzE0OEFDNkVC MDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZPZmJnZDFYRXd2VTFrTUJt MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEWmJGekhLZk9mYmdkMVhFd3ZVMWtNQm0xNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI4RUIvNzcxNDhBQzZFQjA5MTFFQjlDNzU5MTgwQzRGOUFFMDIvOEU5MEFBMDJF QjBCMTFFQkEwQjZERDg0QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCLXvIAwQCZ8AsMA0EAgACMAcDBQAkApKAMA0GCSqGSIb3DQEBCwUA A4IBAQAwxYn95TMdHm29FIskWc3vZ6GuXEI8soioPYaJr0jnB/n4lGuFm6/PPj6R Zwwdzg4o5JVEmpciuzQEcqPunJWHCWulUpaxkSI66nUlN48PsDQNizGFlQT+QOZ3 PPGXMkUzn+StDEYdNjOn9JvVwYZkV3aBc19i7qMXaWXdExW4k1e7ZteiJRN9PXuP sW9+spTztcunyCBzfS+HrjCYu1tDAsZR3fIt/2dt8ZrK4NJQuWn+KYvVrfHOZlbc 0cxEuwbG3UtxZwQpztTFCsBHKpTAZxF79T7mHX+J6nwDOt+bsQjchgO6sgvyNSkt tgjfW6nlCPdqmNlFdGJaD0vM7ZcY -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:07 2026 by rpki-client