$ rpki-client -vvf rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/CA44DDA6C5A111EAA8D93F54C4F9AE02.roa File: CA44DDA6C5A111EAA8D93F54C4F9AE02.roa (raw, json) Hash identifier: okmXmHYulLyxDZHeOTwAQb95eohRY4pGXYv8eeAWmU4= Subject key identifier: 7C:5B:B2:B2:80:7A:E7:2C:B4:25:A5:D9:18:04:9E:3C:E8:F4:6A:71 Certificate issuer: /CN=A9145C9B/serialNumber=64A06EDAF39757E428D41E71206974FD9FFA73BD Certificate serial: 08FA Authority key identifier: 64:A0:6E:DA:F3:97:57:E4:28:D4:1E:71:20:69:74:FD:9F:FA:73:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/CA44DDA6C5A111EAA8D93F54C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:33:54 +0000 ROA not before: Fri 04 Apr 2025 21:03:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17451 IP address blocks: 45.126.184.0/22 maxlen: 22 45.126.184.0/24 maxlen: 24 45.126.185.0/24 maxlen: 24 45.126.186.0/24 maxlen: 24 45.126.187.0/24 maxlen: 24 103.195.56.0/22 maxlen: 22 103.195.56.0/24 maxlen: 24 103.195.57.0/24 maxlen: 24 103.195.58.0/24 maxlen: 24 103.195.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.crl rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 20:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2298 (0x8fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145C9B, serialNumber=64A06EDAF39757E428D41E71206974FD9FFA73BD Validity Not Before: Apr 4 21:03:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a40802-aab3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f6:47:3f:fa:64:5b:f7:c1:82:78:01:9f:4b: fb:bd:ac:07:3a:a1:c1:6e:21:db:cb:d8:1e:a1:6e: bd:0c:06:89:d8:88:e5:83:8a:27:30:7f:4d:d6:72: 81:bd:c5:65:6e:4c:be:d2:19:f3:1d:b9:2e:91:29: bd:3f:0f:d4:b6:3c:75:83:b1:39:ad:dc:b8:52:ff: fe:6d:8a:2b:7c:9f:59:c8:7b:2b:0a:41:67:f9:3b: 59:e0:09:35:2f:e2:e1:ad:a6:70:f3:e5:99:b1:64: 1d:86:2a:7d:1c:89:23:c7:02:aa:ce:07:6d:c5:13: 6b:d7:a2:d3:82:4d:2c:5d:b6:86:c8:e0:b8:8b:fa: 82:e2:d8:dc:c9:04:86:23:32:9c:8e:e1:a3:b1:72: 59:9e:ca:6e:92:0a:4e:7a:28:bc:54:c8:13:a8:fd: 75:04:dc:85:33:a1:07:06:12:db:5f:c7:fe:b8:b0: c4:15:54:7d:03:d7:20:6c:0c:37:0c:13:f7:5a:79: 6b:5f:43:3a:20:fa:5d:a5:0d:b6:68:52:9e:87:ff: 17:07:13:45:ae:32:1e:cf:83:76:98:65:0e:1f:85: 44:9d:46:86:d3:6d:d7:09:15:e6:7c:fb:7c:cd:82: 74:c1:7f:3d:84:0e:6b:17:c7:c7:ae:44:1d:08:e6: a5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:5B:B2:B2:80:7A:E7:2C:B4:25:A5:D9:18:04:9E:3C:E8:F4:6A:71 X509v3 Authority Key Identifier: keyid:64:A0:6E:DA:F3:97:57:E4:28:D4:1E:71:20:69:74:FD:9F:FA:73:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/CA44DDA6C5A111EAA8D93F54C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.126.184.0/22 103.195.56.0/22 Signature Algorithm: sha256WithRSAEncryption 58:d9:ab:2b:be:55:e6:cf:94:7c:4e:9a:fb:57:cf:05:99:48: 69:28:b7:09:80:49:28:ed:88:e4:69:73:5c:46:79:e9:2f:75: 09:6f:3a:39:87:9e:59:f6:eb:20:42:9d:09:b3:31:a3:1a:21: 89:b5:c4:d1:cf:38:cb:21:26:0f:a6:d0:26:0d:47:a7:f0:2d: d4:67:de:52:e4:ac:6f:36:c2:e9:70:09:0e:0d:15:d0:7d:c4: 80:c8:ee:ee:70:75:d8:62:88:5c:05:9c:86:79:04:09:72:46: 9c:94:d0:a5:8d:8b:c3:54:af:24:39:2b:91:8a:04:4e:9c:0c: 04:ae:80:2e:b7:7d:fe:03:ce:b6:87:f3:43:dd:46:9d:c7:f9: 05:22:ca:92:54:11:39:b7:5f:d8:2e:af:9a:4e:ec:10:61:98: 9c:d9:6b:29:25:22:06:85:88:60:c2:90:ef:f7:37:44:2b:56: 08:ef:82:d5:c1:19:74:99:71:e9:87:fb:d9:fb:ef:7e:98:1c: 78:b1:c1:52:64:a5:97:a4:72:24:4e:60:70:3b:99:e4:3f:76: 77:09:d1:b3:c6:2b:bf:c5:f7:56:67:07:07:d1:77:45:b2:65: 43:30:73:5d:d5:54:bb:26:7b:06:93:88:ff:51:8d:24:af:4a: 90:8c:06:40 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVDOUIxMTAvBgNVBAUTKDY0QTA2RURBRjM5NzU3RTQyOEQ0MUU3MTIwNjk3NEZE OUZGQTczQkQwHhcNMjUwNDA0MjEwMzIyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDgwMi1hYWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPZHP/pkW/fBgngBn0v7vawHOqHBbiHby9geoW69DAaJ2Ijlg4onMH9N1nKB vcVlbky+0hnzHbkukSm9Pw/Utjx1g7E5rdy4Uv/+bYorfJ9ZyHsrCkFn+TtZ4Ak1 L+LhraZw8+WZsWQdhip9HIkjxwKqzgdtxRNr16LTgk0sXbaGyOC4i/qC4tjcyQSG IzKcjuGjsXJZnspukgpOeii8VMgTqP11BNyFM6EHBhLbX8f+uLDEFVR9A9cgbAw3 DBP3WnlrX0M6IPpdpQ22aFKeh/8XBxNFrjIez4N2mGUOH4VEnUaG023XCRXmfPt8 zYJ0wX89hA5rF8fHrkQdCOalhwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFHxbsrKA eucstCWl2RgEnjzo9GpxMB8GA1UdIwQYMBaAFGSgbtrzl1fkKNQecSBpdP2f+nO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUM5Qi9EMzlGRkU0QUM1 QTAxMUVBODc4NTkwNTNDNEY5QUUwMi9aS0J1MnZPWFYtUW8xQjV4SUdsMF9aXzZj NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLQnUydk9YVi1RbzFCNXhJR2wwX1pfNmM3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVDOUIvRDM5RkZFNEFDNUEwMTFFQTg3ODU5MDUzQzRGOUFFMDIvQ0E0NEREQTZD NUExMTFFQUE4RDkzRjU0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLX64AwQCZ8M4MA0GCSqGSIb3DQEBCwUAA4IBAQBY2asrvlXmz5R8 Tpr7V88FmUhpKLcJgEko7YjkaXNcRnnpL3UJbzo5h55Z9usgQp0JszGjGiGJtcTR zzjLISYPptAmDUen8C3UZ95S5KxvNsLpcAkODRXQfcSAyO7ucHXYYohcBZyGeQQJ ckaclNCljYvDVK8kOSuRigROnAwEroAut33+A862h/ND3Uadx/kFIsqSVBE5t1/Y Lq+aTuwQYZic2WspJSIGhYhgwpDv9zdEK1YI74LVwRl0mXHph/vZ++9+mBx4scFS ZKWXpHIkTmBwO5nkP3Z3CdGzxiu/xfdWZwcH0XdFsmVDMHNd1VS7JnsGk4j/UY0k r0qQjAZA -----END CERTIFICATE-----Generated at Fri Mar 20 00:33:07 2026 by rpki-client