$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/2445BC6A6FCE11E9AA5D2439C4F9AE02.roa File: 2445BC6A6FCE11E9AA5D2439C4F9AE02.roa (raw, json) Hash identifier: 1/N+x4tq6/c9xUAJy159IIU+1McF9uoQiXksMGt8yqs= Subject key identifier: 17:72:BE:76:3F:6F:C8:06:66:71:83:ED:0E:7E:47:34:4D:59:BB:48 Certificate issuer: /CN=A91F4288/serialNumber=314F55AE5244C4CDB10F784DFF15D022D3896848 Certificate serial: 1E56 Authority key identifier: 31:4F:55:AE:52:44:C4:CD:B1:0F:78:4D:FF:15:D0:22:D3:89:68:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MU9VrlJExM2xD3hN_xXQItOJaEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/2445BC6A6FCE11E9AA5D2439C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:26:32 +0000 ROA not before: Tue 10 Feb 2026 16:13:30 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 17539 IP address blocks: 45.64.180.0/24 maxlen: 32 45.64.181.0/24 maxlen: 24 45.64.182.0/24 maxlen: 24 45.64.183.0/24 maxlen: 24 103.249.152.0/24 maxlen: 24 103.249.153.0/24 maxlen: 24 103.249.154.0/24 maxlen: 24 103.249.155.0/24 maxlen: 24 203.170.64.0/23 maxlen: 24 203.170.66.0/24 maxlen: 24 203.170.67.0/24 maxlen: 24 203.170.68.0/24 maxlen: 24 203.170.71.0/24 maxlen: 32 203.170.72.0/24 maxlen: 24 203.170.73.0/24 maxlen: 24 203.170.74.0/24 maxlen: 24 203.170.75.0/24 maxlen: 24 203.170.76.0/24 maxlen: 24 203.170.77.0/24 maxlen: 24 203.170.78.0/24 maxlen: 24 203.170.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.crl rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MU9VrlJExM2xD3hN_xXQItOJaEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7766 (0x1e56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4288, serialNumber=314F55AE5244C4CDB10F784DFF15D022D3896848 Validity Not Before: Feb 10 16:13:30 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a476c7-ad99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:5e:42:18:28:e5:f8:90:18:62:89:4f:21:c4: a6:93:0a:87:69:44:07:b8:22:ef:7e:cd:c4:26:50: 7a:b5:33:2e:65:ec:83:b4:02:e3:8a:d1:76:ab:bc: 92:ef:54:dc:72:b7:9f:c4:fb:3b:73:7e:5e:93:cf: cb:de:f2:dc:7f:bb:d2:2a:1c:c0:07:1a:a5:15:49: f8:4f:c0:bc:24:07:31:8d:b2:0c:0f:29:a9:2d:80: ca:a0:ec:3a:17:57:89:77:ec:f3:ed:3f:9a:6e:eb: b1:66:d4:03:f7:6d:f6:f7:e9:b5:fb:e0:ac:60:db: a0:4f:82:2d:a3:fa:f4:cb:dd:17:98:39:63:2e:89: d7:c1:1f:99:e6:34:72:1b:fa:fe:92:f2:2a:8d:84: 66:aa:9d:ff:fa:41:c7:6d:f0:a1:01:ff:81:a4:b8: 0c:f7:67:84:4f:39:55:d0:b2:89:30:9c:80:65:bb: ab:28:cc:a5:18:48:5c:4a:9c:31:c3:ae:eb:14:85: dc:8f:89:01:7d:0d:a6:f7:0b:a1:ec:0d:dc:e1:6e: 7c:65:05:e4:76:00:4d:53:4b:5b:81:19:b7:17:91: 11:95:fb:90:dd:68:77:40:f1:df:29:18:36:dc:55: 63:e4:25:27:15:a2:08:52:0b:12:84:7b:26:c8:d4: 09:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:72:BE:76:3F:6F:C8:06:66:71:83:ED:0E:7E:47:34:4D:59:BB:48 X509v3 Authority Key Identifier: keyid:31:4F:55:AE:52:44:C4:CD:B1:0F:78:4D:FF:15:D0:22:D3:89:68:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MU9VrlJExM2xD3hN_xXQItOJaEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/2445BC6A6FCE11E9AA5D2439C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.64.180.0/22 103.249.152.0/22 203.170.64.0-203.170.68.255 203.170.71.0-203.170.79.255 Signature Algorithm: sha256WithRSAEncryption b5:1b:d2:32:e7:a8:03:e6:57:d5:93:3c:ea:fe:26:ae:43:34: 70:e2:f1:3f:5b:57:35:ea:9c:3d:c9:97:55:47:75:f4:06:33: 40:0f:ea:5a:df:a2:e0:cb:0a:28:47:f7:21:2d:76:2c:60:33: 06:1f:bf:07:a9:d2:ae:49:ac:7b:66:16:c6:a1:fe:1d:2d:a2: db:39:bc:ad:f8:f5:3a:40:d6:cf:d2:ce:95:59:31:ab:ae:44: a2:a1:13:d3:a3:ae:0e:78:17:a1:bc:9a:5c:a1:5d:a5:55:41: d7:35:87:04:31:2c:8d:61:12:32:c2:dd:79:f8:7f:a6:a6:87: 46:9c:c2:ea:08:17:a3:de:c2:2f:4d:dc:f8:7a:91:6f:f2:1b: 9d:c9:bc:4e:02:61:3f:5e:d2:7e:7b:76:c8:51:ff:90:36:35: 1a:91:d1:48:99:a4:fb:2b:67:fe:b7:90:e5:08:db:64:38:bc: a6:97:d3:70:3c:82:87:7d:30:d5:12:88:c6:1d:e0:7e:2d:6d: b1:5b:7d:e5:ab:3a:58:14:c7:27:9e:8b:3d:a6:1e:3d:7e:59: 61:05:ef:70:23:99:82:01:5b:45:43:68:1f:84:43:90:56:b3: 05:ce:0f:41:cb:5b:9c:f5:b4:90:fd:9b:84:cb:0f:3e:06:41: 20:2a:b4:77 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgICHlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyODgxMTAvBgNVBAUTKDMxNEY1NUFFNTI0NEM0Q0RCMTBGNzg0REZGMTVEMDIy RDM4OTY4NDgwHhcNMjYwMjEwMTYxMzMwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzZjNy1hZDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7l5CGCjl+JAYYolPIcSmkwqHaUQHuCLvfs3EJlB6tTMuZeyDtALjitF2q7yS 71TccrefxPs7c35ek8/L3vLcf7vSKhzABxqlFUn4T8C8JAcxjbIMDympLYDKoOw6 F1eJd+zz7T+abuuxZtQD92329+m1++CsYNugT4Ito/r0y90XmDljLonXwR+Z5jRy G/r+kvIqjYRmqp3/+kHHbfChAf+BpLgM92eETzlV0LKJMJyAZburKMylGEhcSpwx w67rFIXcj4kBfQ2m9wuh7A3c4W58ZQXkdgBNU0tbgRm3F5ERlfuQ3Wh3QPHfKRg2 3FVj5CUnFaIIUgsShHsmyNQJPwIDAQABo4ICgjCCAn4wHQYDVR0OBBYEFBdyvnY/ b8gGZnGD7Q5+RzRNWbtIMB8GA1UdIwQYMBaAFDFPVa5SRMTNsQ94Tf8V0CLTiWhI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4OC9BOTNBQTg4MEEy NzIxMUU2QjhCQzk5NkFDNEY5QUUwMi9NVTlWcmxKRXhNMnhEM2hOX3hYUUl0T0ph RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01VOVZybEpFeE0yeEQzaE5feFhRSXRPSmFFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQyODgvQTkzQUE4ODBBMjcyMTFFNkI4QkM5OTZBQzRGOUFFMDIvMjQ0NUJDNkE2 RkNFMTFFOUFBNUQyNDM5QzRGOUFFMDIucm9hMEEGCCsGAQUFBwEHAQH/BDIwMDAu BAIAATAoAwQCLUC0AwQCZ/mYMAwDBAbLqkADBADLqkQwDAMEAMuqRwMEBMuqQDAN BgkqhkiG9w0BAQsFAAOCAQEAtRvSMueoA+ZX1ZM86v4mrkM0cOLxP1tXNeqcPcmX VUd19AYzQA/qWt+i4MsKKEf3IS12LGAzBh+/B6nSrkmse2YWxqH+HS2i2zm8rfj1 OkDWz9LOlVkxq65EoqET06OuDngXobyaXKFdpVVB1zWHBDEsjWESMsLdefh/pqaH RpzC6ggXo97CL03c+HqRb/Ibncm8TgJhP17Sfnt2yFH/kDY1GpHRSJmk+ytn/reQ 5QjbZDi8ppfTcDyCh30w1RKIxh3gfi1tsVt95as6WBTHJ56LPaYePX5ZYQXvcCOZ ggFbRUNoH4RDkFazBc4PQctbnPW0kP2bhMsPPgZBICq0dw== -----END CERTIFICATE-----Generated at Mon Mar 2 10:03:13 2026 by rpki-client