$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4C3/C23F767C998011EAB3373E6FC4F9AE02/E32E2F000EE811EE90BBC818C4F9AE02.roa File: E32E2F000EE811EE90BBC818C4F9AE02.roa (raw, json) Hash identifier: +AX9y9KQEeuEC/aHFVr1TLPV3j+UpCQtxxiHf08hkMQ= Subject key identifier: E7:92:D3:83:6D:A2:B0:0D:66:58:B1:5C:A9:11:F6:FA:94:29:F0:7E Certificate issuer: /CN=A91DB4C3/serialNumber=4EF9473B554AE1A72BA0981FFEFE138E2D480ECC Certificate serial: 09E6 Authority key identifier: 4E:F9:47:3B:55:4A:E1:A7:2B:A0:98:1F:FE:FE:13:8E:2D:48:0E:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvlHO1VK4acroJgf_v4Tji1IDsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4C3/C23F767C998011EAB3373E6FC4F9AE02/E32E2F000EE811EE90BBC818C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:50:13 +0000 ROA not before: Tue 08 Jul 2025 21:00:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134160 IP address blocks: 45.115.232.0/22 maxlen: 24 103.56.12.0/22 maxlen: 24 103.225.216.0/23 maxlen: 23 2402:4880::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB4C3/C23F767C998011EAB3373E6FC4F9AE02/TvlHO1VK4acroJgf_v4Tji1IDsw.crl rsync://rpki.apnic.net/member_repository/A91DB4C3/C23F767C998011EAB3373E6FC4F9AE02/TvlHO1VK4acroJgf_v4Tji1IDsw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvlHO1VK4acroJgf_v4Tji1IDsw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2534 (0x9e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB4C3, serialNumber=4EF9473B554AE1A72BA0981FFEFE138E2D480ECC Validity Not Before: Jul 8 21:00:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a427f5-9431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:02:1c:ce:ea:92:89:2a:d0:e7:bb:10:40:c5: 1a:3e:aa:bc:00:16:7c:45:86:59:fb:e1:38:e1:4b: 0b:2a:74:9e:6d:fb:40:ac:cf:80:06:78:0b:30:db: c2:8b:fb:69:92:ae:de:12:df:28:1a:26:3b:59:ed: 4a:20:1a:e5:64:36:45:f2:0c:57:8b:6a:3e:a8:22: 2b:67:1f:7b:d1:22:41:a5:61:16:d9:a5:fe:e9:b6: 16:51:f8:97:4b:72:06:ab:16:90:44:aa:3a:7d:53: 05:24:29:07:f7:14:d5:f6:3a:2d:9b:dd:d4:9d:08: d3:aa:88:45:56:41:e2:1d:9b:be:89:1e:9c:f5:6e: 76:f3:07:64:59:89:1e:d5:12:cb:7b:f7:ca:95:cb: 10:57:19:88:6b:4e:2a:0a:67:a9:7c:50:91:59:70: fc:27:f0:39:55:85:2e:9b:91:8b:75:79:84:a1:4b: c3:65:e3:ac:e2:42:4a:8b:42:1a:d5:ce:da:6f:b2: 21:c4:7e:3d:87:36:35:bc:97:9b:27:b6:d5:4d:22: 6b:ff:37:bb:f1:c9:17:80:0b:5c:e7:5f:71:29:19: c0:db:ac:58:be:f4:14:2d:6e:e7:6d:9e:38:d1:9f: ff:93:51:30:89:34:79:37:7d:0c:6e:d2:fa:8d:ea: cb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:92:D3:83:6D:A2:B0:0D:66:58:B1:5C:A9:11:F6:FA:94:29:F0:7E X509v3 Authority Key Identifier: keyid:4E:F9:47:3B:55:4A:E1:A7:2B:A0:98:1F:FE:FE:13:8E:2D:48:0E:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB4C3/C23F767C998011EAB3373E6FC4F9AE02/TvlHO1VK4acroJgf_v4Tji1IDsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvlHO1VK4acroJgf_v4Tji1IDsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4C3/C23F767C998011EAB3373E6FC4F9AE02/E32E2F000EE811EE90BBC818C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.115.232.0/22 103.56.12.0/22 103.225.216.0/23 IPv6: 2402:4880::/32 Signature Algorithm: sha256WithRSAEncryption 85:05:b0:f9:d5:00:7f:44:ce:54:63:b4:5c:c9:aa:95:b2:73: 3f:ac:98:f9:12:9c:a3:22:2e:28:6d:70:2c:4b:8f:89:9f:57: 27:d0:39:d3:b7:11:89:6f:c1:dd:f8:de:09:5d:2f:ee:34:2d: 84:a2:fc:1a:38:49:19:0c:a5:96:d1:38:0b:8f:18:ad:3c:5c: 4a:17:2b:a7:9e:c1:55:1d:25:bd:31:4a:b1:e5:9c:b4:c9:d1: 11:be:16:06:5e:3a:5c:59:70:2f:18:fc:4a:b0:9b:ee:87:79: a0:4f:73:eb:1a:3c:2c:9a:10:49:00:6e:fc:25:da:c5:ca:f5: 8c:af:3c:62:2c:85:7c:2f:a0:03:fd:bb:f7:67:b9:57:70:6a: 3a:d8:b2:db:ca:98:a2:1a:8e:de:25:64:bc:6a:84:2b:09:44: 61:70:6a:66:90:d8:47:8b:6a:a1:7a:82:c5:8e:35:2b:8d:51: 75:ab:a4:8f:08:1a:c6:da:55:d3:30:d4:25:3c:aa:a9:df:b9: 43:9f:4a:5b:9d:fe:64:e0:9c:51:aa:e9:c6:20:c9:47:79:b9: 96:d7:e6:cc:80:1a:f9:7d:9a:00:92:d8:2c:cd:db:4a:56:66: 12:c5:24:d6:33:0c:c7:66:aa:e1:8e:dc:cb:90:46:06:73:e2: ab:2f:ca:1f -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICCeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0QzMxMTAvBgNVBAUTKDRFRjk0NzNCNTU0QUUxQTcyQkEwOTgxRkZFRkUxMzhF MkQ0ODBFQ0MwHhcNMjUwNzA4MjEwMDU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjdmNS05NDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wIczuqSiSrQ57sQQMUaPqq8ABZ8RYZZ++E44UsLKnSebftArM+ABngLMNvC i/tpkq7eEt8oGiY7We1KIBrlZDZF8gxXi2o+qCIrZx970SJBpWEW2aX+6bYWUfiX S3IGqxaQRKo6fVMFJCkH9xTV9jotm93UnQjTqohFVkHiHZu+iR6c9W528wdkWYke 1RLLe/fKlcsQVxmIa04qCmepfFCRWXD8J/A5VYUum5GLdXmEoUvDZeOs4kJKi0Ia 1c7ab7IhxH49hzY1vJebJ7bVTSJr/ze78ckXgAtc519xKRnA26xYvvQULW7nbZ44 0Z//k1EwiTR5N30MbtL6jerLywIDAQABo4ICezCCAncwHQYDVR0OBBYEFOeS04Nt orANZlixXKkR9vqUKfB+MB8GA1UdIwQYMBaAFE75RztVSuGnK6CYH/7+E44tSA7M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjRDMy9DMjNGNzY3Qzk5 ODAxMUVBQjMzNzNFNkZDNEY5QUUwMi9UdmxITzFWSzRhY3JvSmdmX3Y0VGppMUlE c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R2bEhPMVZLNGFjcm9KZ2ZfdjRUamkxSURzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI0QzMvQzIzRjc2N0M5OTgwMTFFQUIzMzczRTZGQzRGOUFFMDIvRTMyRTJGMDAw RUU4MTFFRTkwQkJDODE4QzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCLXPoAwQCZzgMAwQBZ+HYMA0EAgACMAcDBQAkAkiAMA0GCSqGSIb3 DQEBCwUAA4IBAQCFBbD51QB/RM5UY7RcyaqVsnM/rJj5EpyjIi4obXAsS4+Jn1cn 0DnTtxGJb8Hd+N4JXS/uNC2EovwaOEkZDKWW0TgLjxitPFxKFyunnsFVHSW9MUqx 5Zy0ydERvhYGXjpcWXAvGPxKsJvuh3mgT3PrGjwsmhBJAG78JdrFyvWMrzxiLIV8 L6AD/bv3Z7lXcGo62LLbypiiGo7eJWS8aoQrCURhcGpmkNhHi2qheoLFjjUrjVF1 q6SPCBrG2lXTMNQlPKqp37lDn0pbnf5k4JxRqunGIMlHebmW1+bMgBr5fZoAktgs zdtKVmYSxSTWMwzHZqrhjtzLkEYGc+KrL8of -----END CERTIFICATE-----Generated at Mon Mar 2 11:17:38 2026 by rpki-client