$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/578B06CC886411EDBF995F42C4F9AE02/5CAB3758374A11EFB612084EC4F9AE02.roa File: 5CAB3758374A11EFB612084EC4F9AE02.roa (raw, json) Hash identifier: ueHqaGP9BcHIMZqPcQWizwyy9v5xkPDp7cUx2N9DhCY= Subject key identifier: FD:28:F4:53:27:43:2B:BD:B1:B0:0E:D7:A8:0E:34:14:F9:F2:E1:09 Certificate issuer: /CN=A91DCD09/serialNumber=4CD9DE372D0348AC33B167A5D78E3013FC03571F Certificate serial: 025F Authority key identifier: 4C:D9:DE:37:2D:03:48:AC:33:B1:67:A5:D7:8E:30:13:FC:03:57:1F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TNneNy0DSKwzsWel144wE_wDVx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/578B06CC886411EDBF995F42C4F9AE02/5CAB3758374A11EFB612084EC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:34:12 +0000 ROA not before: Mon 22 Sep 2025 16:35:24 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134433 IP address blocks: 45.157.168.0/24 maxlen: 24 45.157.169.0/24 maxlen: 24 45.157.170.0/24 maxlen: 24 45.157.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/578B06CC886411EDBF995F42C4F9AE02/TNneNy0DSKwzsWel144wE_wDVx8.crl rsync://rpki.apnic.net/member_repository/A91DCD09/578B06CC886411EDBF995F42C4F9AE02/TNneNy0DSKwzsWel144wE_wDVx8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TNneNy0DSKwzsWel144wE_wDVx8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:35:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09, serialNumber=4CD9DE372D0348AC33B167A5D78E3013FC03571F Validity Not Before: Sep 22 16:35:24 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a44e64-25f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:19:31:48:e2:20:05:36:be:c8:f8:29:bd:dd: 3c:7a:0d:21:91:10:f3:e2:1a:df:67:56:24:18:c7: 40:dc:2b:22:5b:f8:e9:ad:01:13:aa:52:20:91:0b: 53:7f:b6:fc:ba:56:48:c8:44:18:6f:f3:b7:a6:64: 04:38:be:37:c8:55:7c:f1:bc:a7:89:46:ab:55:db: 3a:f3:e8:37:15:a4:2e:ea:da:f0:4d:55:9e:46:24: f3:f1:fb:ef:85:2b:e3:a7:65:2e:68:05:7f:ab:e4: a0:75:6f:54:7f:13:d6:f0:db:08:12:37:df:b4:68: de:1c:ca:b2:25:d7:e3:37:01:03:ed:e4:17:f1:1f: 11:8c:61:4b:bf:4f:8b:36:b4:bb:68:15:f6:6b:de: e9:75:b5:e8:57:de:37:b7:89:a4:5d:e6:ab:70:56: 21:fd:f9:04:6d:bf:a5:9e:a6:7d:c9:27:80:0f:ac: 08:bc:35:6b:4b:e6:29:71:6c:ea:eb:13:8b:e5:04: 43:9a:51:98:2e:d6:2e:0e:0e:f6:0a:8f:28:fa:78: c4:ac:e9:00:87:92:69:38:4f:9c:b3:a8:d6:ef:1b: 6e:c5:74:6a:99:c2:d3:10:3d:6f:73:1a:58:81:43: d6:12:2e:09:43:b1:8a:83:20:bb:81:b5:b3:49:3b: 5a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:28:F4:53:27:43:2B:BD:B1:B0:0E:D7:A8:0E:34:14:F9:F2:E1:09 X509v3 Authority Key Identifier: keyid:4C:D9:DE:37:2D:03:48:AC:33:B1:67:A5:D7:8E:30:13:FC:03:57:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/578B06CC886411EDBF995F42C4F9AE02/TNneNy0DSKwzsWel144wE_wDVx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TNneNy0DSKwzsWel144wE_wDVx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/578B06CC886411EDBF995F42C4F9AE02/5CAB3758374A11EFB612084EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.157.168.0/22 Signature Algorithm: sha256WithRSAEncryption 11:e4:1d:02:fd:c0:da:28:53:78:aa:8c:21:42:4e:c9:2a:44: 8d:62:63:0d:84:12:ef:77:d2:16:f5:75:2d:13:7b:14:da:a8: 47:b7:b7:96:55:43:f5:70:e2:1c:d4:28:61:0f:79:9f:4b:42: 6e:f4:84:80:8b:47:c0:03:cf:fd:3d:3a:55:91:34:72:ca:8b: 22:f6:e7:ea:80:b6:ee:32:50:57:40:c9:e2:aa:0a:d2:21:a1: d1:b6:44:39:9b:6a:fd:5e:c5:cd:38:51:e7:53:07:40:88:42: c8:7a:1d:73:21:b4:17:22:d7:d1:cd:b2:1e:83:cc:9f:3f:8f: cc:45:51:35:b1:54:d4:7c:4e:db:8c:20:4d:60:c0:dd:cd:32: fd:56:1a:62:bb:19:bf:9f:49:e1:0c:b2:79:4e:e7:85:03:b0: 81:e1:0e:32:2a:78:72:de:cc:7c:76:d7:f0:60:6a:13:b0:0d: 52:21:8c:e9:ab:eb:7f:e4:66:e1:47:b4:55:6c:ec:f9:ac:64: 02:0e:66:ba:e5:2a:a9:63:41:51:f9:ff:3f:33:26:6f:e1:1e: 5d:49:a5:8e:11:d7:0b:b1:8f:ba:0e:59:14:38:7c:a0:a6:92: b8:42:f9:79:85:9b:a2:22:09:36:47:18:f4:45:de:65:94:8c: 09:2e:1e:ae -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKDRDRDlERTM3MkQwMzQ4QUMzM0IxNjdBNUQ3OEUzMDEz RkMwMzU3MUYwHhcNMjUwOTIyMTYzNTI0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGU2NC0yNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApRkxSOIgBTa+yPgpvd08eg0hkRDz4hrfZ1YkGMdA3CsiW/jprQETqlIgkQtT f7b8ulZIyEQYb/O3pmQEOL43yFV88byniUarVds68+g3FaQu6trwTVWeRiTz8fvv hSvjp2UuaAV/q+SgdW9UfxPW8NsIEjfftGjeHMqyJdfjNwED7eQX8R8RjGFLv0+L NrS7aBX2a97pdbXoV943t4mkXearcFYh/fkEbb+lnqZ9ySeAD6wIvDVrS+YpcWzq 6xOL5QRDmlGYLtYuDg72Co8o+njErOkAh5JpOE+cs6jW7xtuxXRqmcLTED1vcxpY gUPWEi4JQ7GKgyC7gbWzSTtaiwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFP0o9FMn Qyu9sbAO16gONBT58uEJMB8GA1UdIwQYMBaAFEzZ3jctA0isM7FnpdeOMBP8A1cf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS81NzhCMDZDQzg4 NjQxMUVEQkY5OTVGNDJDNEY5QUUwMi9UTm5lTnkwRFNLd3pzV2VsMTQ0d0Vfd0RW eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RObmVOeTBEU0t3enNXZWwxNDR3RV93RFZ4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvNTc4QjA2Q0M4ODY0MTFFREJGOTk1RjQyQzRGOUFFMDIvNUNBQjM3NTgz NzRBMTFFRkI2MTIwODRFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCLZ2oMA0GCSqGSIb3DQEBCwUAA4IBAQAR5B0C/cDaKFN4qowhQk7J KkSNYmMNhBLvd9IW9XUtE3sU2qhHt7eWVUP1cOIc1ChhD3mfS0Ju9ISAi0fAA8/9 PTpVkTRyyosi9ufqgLbuMlBXQMniqgrSIaHRtkQ5m2r9XsXNOFHnUwdAiELIeh1z IbQXItfRzbIeg8yfP4/MRVE1sVTUfE7bjCBNYMDdzTL9Vhpiuxm/n0nhDLJ5TueF A7CB4Q4yKnhy3sx8dtfwYGoTsA1SIYzpq+t/5GbhR7RVbOz5rGQCDma65SqpY0FR +f8/MyZv4R5dSaWOEdcLsY+6DlkUOHygppK4Qvl5hZuiIgk2Rxj0Rd5llIwJLh6u -----END CERTIFICATE-----Generated at Mon Mar 2 13:01:59 2026 by rpki-client