$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/C3ACDB568E9311E9AA8A2877C4F9AE02.roa File: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (raw, json) Hash identifier: GM2/Zg+eI19YNP6sUwovNgmANsfWwnnAjBpybeU+09Q= Subject key identifier: BC:6A:72:6D:E1:47:83:A7:B8:10:F0:A0:FA:76:49:2C:FE:E4:59:E5 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C94 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/C3ACDB568E9311E9AA8A2877C4F9AE02.roa Signing time: Thu 02 Apr 2026 16:19:40 +0000 ROA not before: Thu 02 Apr 2026 16:19:40 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 41179 IP address blocks: 45.112.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7316 (0x1c94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Apr 2 16:19:40 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69ce971c-805e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a5:63:97:c6:59:d5:1a:17:61:56:ab:79:43: a0:6b:c2:3b:c7:8b:43:b4:cf:34:27:1c:b7:9e:a9: 35:3d:26:47:00:19:34:15:7a:21:3e:43:7b:f4:25: 0a:3e:73:3f:15:f8:a5:e1:6d:67:48:9a:8d:23:64: ae:f5:f2:4f:4e:a7:97:fb:ab:12:47:79:06:99:71: c6:1a:12:64:1d:36:b0:3f:db:58:51:8d:2d:15:6d: 2c:8e:bd:7b:cc:be:7d:56:ea:36:61:79:c3:b2:ad: 09:9c:4b:57:c5:06:43:1a:87:de:38:93:80:b0:fc: 7d:47:cb:6a:9a:59:7c:0d:4c:99:36:7d:79:00:16: 0b:3b:01:7c:79:d9:b1:cc:2a:d6:02:ad:89:4a:07: 7b:36:da:23:de:47:a4:1a:43:70:16:fc:c2:47:a3: 03:e2:c3:54:64:cc:29:64:f0:5a:7b:d6:cd:04:a0: 23:07:e5:d1:2e:79:6c:cd:4c:8e:23:70:cb:3a:01: 07:94:ab:a1:39:0d:c7:fe:17:52:3e:4a:85:01:dd: ff:1c:6e:0f:79:75:c6:e3:08:dd:89:9e:e4:7b:8a: 52:45:00:2a:dd:5a:0d:54:81:68:65:ce:37:df:c0: 3d:29:23:27:64:b7:5c:cc:32:5e:8b:5b:bd:2a:fb: 83:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:6A:72:6D:E1:47:83:A7:B8:10:F0:A0:FA:76:49:2C:FE:E4:59:E5 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/C3ACDB568E9311E9AA8A2877C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.112.86.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:b8:e4:ac:09:18:6b:34:4d:fb:c2:b4:27:58:63:b2:0d:c9: 9e:aa:60:36:6c:a9:1f:12:31:b0:5d:0f:2b:82:a9:36:ca:55: cb:46:e8:3d:00:64:2f:5d:d7:fa:2e:40:04:1b:03:a6:49:af: a5:88:3b:c1:c2:01:2a:fb:2c:5d:6e:e5:e5:d0:12:61:d5:5e: b4:e9:03:74:d4:a6:80:8b:0a:d1:6f:5b:ed:c1:89:95:61:48: c5:d5:77:46:08:dd:76:1e:fc:95:22:7c:1b:47:9a:bc:7a:bc: 36:62:82:e9:54:d4:00:58:75:2d:f8:e9:c9:9e:71:c9:60:14: 18:9c:a7:5a:7c:ed:cc:2d:22:04:19:e0:ab:28:ae:df:d9:25: b2:16:a6:10:27:df:17:ea:61:2c:fa:2a:91:d2:f7:a9:b9:b9: 1c:e4:42:26:e3:91:e8:26:58:b1:5c:be:7a:69:45:25:e6:1c: e5:79:48:72:c6:ed:cd:5c:b2:19:8c:67:e4:be:d1:7c:12:ef: 3b:17:aa:2c:09:26:fd:6c:c0:4a:c9:48:1d:ac:41:c1:ea:7b: 38:7b:1f:bc:c3:2d:3b:6b:47:83:13:40:f6:95:a3:22:b8:fe: 56:e1:f7:48:df:26:48:cf:2d:ae:99:30:45:1e:c9:8d:28:7b: dd:da:30:aa -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICHJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjYwNDAyMTYxOTQwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlOTcxYy04MDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoqVjl8ZZ1RoXYVareUOga8I7x4tDtM80Jxy3nqk1PSZHABk0FXohPkN79CUK PnM/Ffil4W1nSJqNI2Su9fJPTqeX+6sSR3kGmXHGGhJkHTawP9tYUY0tFW0sjr17 zL59Vuo2YXnDsq0JnEtXxQZDGofeOJOAsPx9R8tqmll8DUyZNn15ABYLOwF8edmx zCrWAq2JSgd7Ntoj3kekGkNwFvzCR6MD4sNUZMwpZPBae9bNBKAjB+XRLnlszUyO I3DLOgEHlKuhOQ3H/hdSPkqFAd3/HG4PeXXG4wjdiZ7ke4pSRQAq3VoNVIFoZc43 38A9KSMnZLdczDJei1u9KvuDdwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLxqcm3h R4OnuBDwoPp2SSz+5FnlMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkFGMjAvNjVBOUEyNDJGNUM0MTFFNjhBQUEwMDg1QzRGOUFFMDIvQzNBQ0RCNTY4 RTkzMTFFOUFBOEEyODc3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQALXBWMA0GCSqGSIb3DQEBCwUAA4IBAQA+uOSsCRhrNE37wrQnWGOy DcmeqmA2bKkfEjGwXQ8rgqk2ylXLRug9AGQvXdf6LkAEGwOmSa+liDvBwgEq+yxd buXl0BJh1V606QN01KaAiwrRb1vtwYmVYUjF1XdGCN12HvyVInwbR5q8erw2YoLp VNQAWHUt+OnJnnHJYBQYnKdafO3MLSIEGeCrKK7f2SWyFqYQJ98X6mEs+iqR0vep ubkc5EIm45HoJlixXL56aUUl5hzleUhyxu3NXLIZjGfkvtF8Eu87F6osCSb9bMBK yUgdrEHB6ns4ex+8wy07a0eDE0D2laMiuP5W4fdI3yZIzy2umTBFHsmNKHvd2jCq -----END CERTIFICATE-----Generated at Fri Apr 17 18:37:25 2026 by rpki-client