$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/E9DE96C44C3611EEA9D59630C4F9AE02.roa File: E9DE96C44C3611EEA9D59630C4F9AE02.roa (raw, json) Hash identifier: YR38FTpF9jLSZul+VunGzdgEFG4k6+Tv0P6JyZfkOMI= Subject key identifier: B4:7B:C5:43:DC:B9:8D:E1:37:B6:99:94:B1:1C:FE:7F:EA:67:36:DE Certificate issuer: /CN=A91FDD4D/serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Certificate serial: 2250 Authority key identifier: 72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/E9DE96C44C3611EEA9D59630C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:54:08 +0000 ROA not before: Tue 04 Mar 2025 16:33:17 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 55811 IP address blocks: 27.124.96.0/20 maxlen: 20 45.113.196.0/22 maxlen: 22 103.53.116.0/22 maxlen: 22 103.53.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8784 (0x2250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Validity Not Before: Mar 4 16:33:17 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a4611f-70d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:42:2d:11:15:44:a8:bf:5c:26:2d:9d:0b:b4: d3:b3:b0:08:2c:68:62:e3:d7:4b:f6:30:7a:fc:b1: a3:37:6d:63:52:7c:5e:17:d8:78:87:ca:ff:29:e3: 92:72:56:ba:db:63:be:07:79:51:43:34:a5:24:bd: e4:4d:f1:ca:2e:bf:aa:54:04:e5:4f:60:5b:13:7c: 22:9b:34:79:84:47:96:79:48:58:b3:61:29:dd:3b: 6d:ef:3e:51:fb:06:a9:32:fe:34:be:93:11:10:f6: d6:7d:e9:9c:d7:03:dd:ca:42:65:dc:24:7e:1b:3d: 60:51:64:2b:45:e2:ac:cb:9f:78:e5:52:41:1f:d3: 6e:e9:ad:eb:73:14:8c:00:32:2c:2a:2f:1d:b7:c6: 17:3f:53:68:50:70:a5:05:ca:2f:46:01:21:d4:76: 31:e7:68:24:bd:5f:8d:d9:7b:86:d3:37:0e:4d:dc: 7e:ff:db:2b:2e:64:9f:ac:6f:5f:0a:ef:66:b9:2e: 2f:4d:d9:e8:56:9e:35:c5:4d:49:bb:2a:e7:58:d8: 68:a9:28:d7:14:07:1d:8a:87:f3:cf:75:4e:e3:c0: 77:58:a1:81:cc:4a:56:6f:d5:a5:da:2a:ca:f2:03: 33:ec:9e:dd:5f:26:0f:b6:9d:33:95:b2:f1:2b:88: 2d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:7B:C5:43:DC:B9:8D:E1:37:B6:99:94:B1:1C:FE:7F:EA:67:36:DE X509v3 Authority Key Identifier: keyid:72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/E9DE96C44C3611EEA9D59630C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.124.96.0/20 45.113.196.0/22 103.53.116.0/22 Signature Algorithm: sha256WithRSAEncryption ce:50:d7:83:2e:1f:71:fa:93:cf:60:09:79:89:70:9a:a2:24: e5:06:47:04:2b:4f:eb:30:36:b2:86:ed:8e:dc:e0:6f:f2:b7: 8b:fe:7a:16:41:a0:ac:b2:47:83:c3:9d:79:43:a8:1f:e0:80: 69:83:dc:bf:55:f4:b6:6c:29:af:2c:80:53:6e:aa:34:4f:f1: 74:3a:9b:a3:70:8f:7a:fd:15:7b:2d:c4:26:ed:07:68:35:36: 18:4a:48:72:fd:4b:b9:a1:1b:43:15:9d:ca:71:7a:69:e5:9d: 4c:0b:d2:6d:c8:dd:28:d7:0f:97:de:5f:61:b3:d4:a8:91:c3: 05:79:ba:45:ef:f3:7b:4e:16:19:b7:32:55:ce:b1:9f:10:af: c3:3a:d6:7d:f8:c9:54:a5:40:a2:d3:66:cf:5e:79:6d:af:b7: a4:6f:ae:3c:78:57:c6:60:76:b3:08:e3:9f:c5:13:7c:bb:77: b7:72:c2:73:97:77:b9:53:18:33:42:1a:59:51:31:03:c9:e7: 7c:16:e5:ee:28:46:a4:94:88:90:a9:ab:71:c5:69:05:ca:9b: 09:da:36:61:98:04:7d:e0:59:37:93:bf:dc:48:94:39:7b:2b: ff:85:80:5c:67:ce:20:f2:a7:03:68:89:6a:65:80:05:4a:db: 0d:c4:21:ee -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICIlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKDcyQUZCQUVCQzlFQ0REQTJFRUQyRDQ5QjEzRTYwNDhF QTNFNDFFNjAwHhcNMjUwMzA0MTYzMzE3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjExZi03MGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukItERVEqL9cJi2dC7TTs7AILGhi49dL9jB6/LGjN21jUnxeF9h4h8r/KeOS cla622O+B3lRQzSlJL3kTfHKLr+qVATlT2BbE3wimzR5hEeWeUhYs2Ep3Ttt7z5R +wapMv40vpMREPbWfemc1wPdykJl3CR+Gz1gUWQrReKsy5945VJBH9Nu6a3rcxSM ADIsKi8dt8YXP1NoUHClBcovRgEh1HYx52gkvV+N2XuG0zcOTdx+/9srLmSfrG9f Cu9muS4vTdnoVp41xU1JuyrnWNhoqSjXFAcdiofzz3VO48B3WKGBzEpWb9Wl2irK 8gMz7J7dXyYPtp0zlbLxK4gtBwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFLR7xUPc uY3hN7aZlLEc/n/qZzbeMB8GA1UdIwQYMBaAFHKvuuvJ7N2i7tLUmxPmBI6j5B5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC9CQUUxMDhDNEVB NjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNhTHUwdFNiRS1ZRWpxUGtI bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxLTY2OG5zM2FMdTB0U2JFLVlFanFQa0htQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRENEQvQkFFMTA4QzRFQTYwMTFFNTg4MTU3NzBDQzRGOUFFMDIvRTlERTk2QzQ0 QzM2MTFFRUE5RDU5NjMwQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQEG3xgAwQCLXHEAwQCZzV0MA0GCSqGSIb3DQEBCwUAA4IBAQDOUNeD Lh9x+pPPYAl5iXCaoiTlBkcEK0/rMDayhu2O3OBv8reL/noWQaCsskeDw515Q6gf 4IBpg9y/VfS2bCmvLIBTbqo0T/F0OpujcI96/RV7LcQm7QdoNTYYSkhy/Uu5oRtD FZ3KcXpp5Z1MC9JtyN0o1w+X3l9hs9SokcMFebpF7/N7ThYZtzJVzrGfEK/DOtZ9 +MlUpUCi02bPXnltr7ekb648eFfGYHazCOOfxRN8u3e3csJzl3e5UxgzQhpZUTED yed8FuXuKEaklIiQqatxxWkFypsJ2jZhmAR94Fk3k7/cSJQ5eyv/hYBcZ84g8qcD aIlqZYAFStsNxCHu -----END CERTIFICATE-----Generated at Mon Mar 2 08:34:11 2026 by rpki-client