$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/C3ACDB568E9311E9AA8A2877C4F9AE02.roa File: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (raw, json) Hash identifier: 7oC71FjkJ5B715SyOcRhNyUfxRr9+87yPAPblr+sAys= Subject key identifier: 20:95:ED:96:80:B5:F1:78:AD:40:0E:56:D9:6B:0B:F7:43:AB:B7:85 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C7D Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/C3ACDB568E9311E9AA8A2877C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:33:49 +0000 ROA not before: Thu 06 Mar 2025 16:34:20 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 41179 IP address blocks: 45.112.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:03:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7293 (0x1c7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Mar 6 16:34:20 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a44e4d-37cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2f:1c:a3:e3:b5:68:d2:7c:1a:d7:2d:dd:b4: d2:a0:94:bd:05:ee:d7:4f:a3:95:ab:82:e1:48:4f: 99:9f:fc:ac:72:58:a2:02:be:97:e3:52:f1:33:81: 64:71:eb:f7:8f:fd:a7:b2:f5:24:1d:e8:13:c9:9b: db:a6:ac:ba:0e:b3:9f:6a:0b:e1:c4:92:a8:44:83: 3a:f9:c8:0a:9a:43:75:dc:5a:be:60:61:9d:5d:cf: ba:2c:15:c7:e0:0b:6e:28:27:61:1c:d8:19:88:26: 20:83:f1:f1:43:9b:c1:f9:44:ce:0f:b7:40:60:10: 2b:37:af:9c:89:dc:e3:db:d7:a3:f4:51:c2:27:23: 3b:27:bc:d2:c8:ba:0a:65:a7:ac:45:ac:09:95:2f: b5:c5:75:0a:d6:77:2e:92:0f:7d:86:6c:19:76:d3: 1d:e3:4e:f1:21:ed:0f:44:9b:6b:88:bd:3d:eb:93: d2:7e:f1:9e:64:ae:88:93:90:58:ed:8a:ec:f9:32: aa:81:42:5d:82:bc:cf:a1:76:a9:0e:6b:06:b2:5f: ca:b1:84:61:54:e6:8a:28:9f:60:4b:2f:70:b1:93: a9:ed:8e:e8:16:a3:5a:bc:e6:25:27:63:f6:8c:ef: f8:6e:35:9d:cd:46:ff:30:7a:06:3d:b5:b7:96:fb: be:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:95:ED:96:80:B5:F1:78:AD:40:0E:56:D9:6B:0B:F7:43:AB:B7:85 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/C3ACDB568E9311E9AA8A2877C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.112.86.0/24 Signature Algorithm: sha256WithRSAEncryption 39:a4:1b:59:14:e2:90:39:44:20:d8:f9:dd:e2:e6:9c:fe:76: 12:cb:16:02:b1:aa:93:0a:43:7b:f5:9b:e5:ed:2d:c2:9e:52: 24:6b:72:60:32:9f:68:fe:07:00:0c:90:57:2e:c4:35:b7:7a: 4b:c9:19:45:5a:d4:ae:31:0f:42:4b:57:82:b7:53:be:43:57: 91:0a:f1:17:46:37:92:f8:23:85:46:b7:ed:7f:b0:46:96:0c: 68:d0:22:eb:98:e4:7c:e6:d0:77:d9:32:66:57:3b:31:2f:ab: 10:80:06:27:24:56:7b:94:77:20:a9:4a:1b:83:4a:3c:b7:12: 0e:28:e7:00:c9:b4:9b:48:61:bc:ea:a7:eb:49:a4:2d:6a:46: a5:7a:5c:27:09:5f:4e:5a:9a:ec:cd:a1:9c:e5:4b:ed:6f:6f: e2:bd:c7:71:ca:2e:bf:a5:27:90:61:2a:84:e3:a2:6e:f5:1c: 85:01:5c:8f:09:00:88:1a:c4:96:da:91:ce:c2:a0:04:eb:3a: bc:52:5c:a0:dc:bb:57:10:2c:03:72:b4:81:9b:ea:a8:0d:e6: 8a:f5:ac:df:f7:45:38:8f:ce:9a:e8:c0:64:01:18:06:d4:5b: 7b:41:59:25:d6:69:ae:d0:46:b3:bf:9f:15:89:a3:8e:9b:30: 14:23:6a:6d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICHH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUwMzA2MTYzNDIwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGU0ZC0zN2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoy8co+O1aNJ8Gtct3bTSoJS9Be7XT6OVq4LhSE+Zn/yscliiAr6X41LxM4Fk cev3j/2nsvUkHegTyZvbpqy6DrOfagvhxJKoRIM6+cgKmkN13Fq+YGGdXc+6LBXH 4AtuKCdhHNgZiCYgg/HxQ5vB+UTOD7dAYBArN6+cidzj29ej9FHCJyM7J7zSyLoK ZaesRawJlS+1xXUK1ncukg99hmwZdtMd407xIe0PRJtriL0965PSfvGeZK6Ik5BY 7Yrs+TKqgUJdgrzPoXapDmsGsl/KsYRhVOaKKJ9gSy9wsZOp7Y7oFqNavOYlJ2P2 jO/4bjWdzUb/MHoGPbW3lvu+BQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCCV7ZaA tfF4rUAOVtlrC/dDq7eFMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkFGMjAvNjVBOUEyNDJGNUM0MTFFNjhBQUEwMDg1QzRGOUFFMDIvQzNBQ0RCNTY4 RTkzMTFFOUFBOEEyODc3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQALXBWMA0GCSqGSIb3DQEBCwUAA4IBAQA5pBtZFOKQOUQg2Pnd4uac /nYSyxYCsaqTCkN79Zvl7S3CnlIka3JgMp9o/gcADJBXLsQ1t3pLyRlFWtSuMQ9C S1eCt1O+Q1eRCvEXRjeS+COFRrftf7BGlgxo0CLrmOR85tB32TJmVzsxL6sQgAYn JFZ7lHcgqUobg0o8txIOKOcAybSbSGG86qfrSaQtakalelwnCV9OWprszaGc5Uvt b2/ivcdxyi6/pSeQYSqE46Ju9RyFAVyPCQCIGsSW2pHOwqAE6zq8Ulyg3LtXECwD crSBm+qoDeaK9azf90U4j86a6MBkARgG1Ft7QVkl1mmu0Eazv58ViaOOmzAUI2pt -----END CERTIFICATE-----Generated at Mon Mar 2 11:18:21 2026 by rpki-client