$ rpki-client -vvf rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/CA44DDA6C5A111EAA8D93F54C4F9AE02.roa File: CA44DDA6C5A111EAA8D93F54C4F9AE02.roa (raw, json) Hash identifier: FnGXHW3NTkfV5VQ0kQwJy6k6mXA3xyfslsGAqppArLE= Subject key identifier: 02:48:4E:6D:F8:22:86:0A:78:03:C7:43:CE:DC:38:F4:E5:30:A3:B7 Certificate issuer: /CN=A9145C9B/serialNumber=64A06EDAF39757E428D41E71206974FD9FFA73BD Certificate serial: 0920 Authority key identifier: 64:A0:6E:DA:F3:97:57:E4:28:D4:1E:71:20:69:74:FD:9F:FA:73:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/CA44DDA6C5A111EAA8D93F54C4F9AE02.roa Signing time: Wed 06 May 2026 20:25:10 +0000 ROA not before: Wed 06 May 2026 20:25:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 17451 IP address blocks: 45.126.184.0/22 maxlen: 22 45.126.184.0/24 maxlen: 24 45.126.185.0/24 maxlen: 24 45.126.186.0/24 maxlen: 24 45.126.187.0/24 maxlen: 24 103.195.56.0/22 maxlen: 22 103.195.56.0/24 maxlen: 24 103.195.57.0/24 maxlen: 24 103.195.58.0/24 maxlen: 24 103.195.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.crl rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2336 (0x920) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145C9B, serialNumber=64A06EDAF39757E428D41E71206974FD9FFA73BD Validity Not Before: May 6 20:25:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69fba3a6-f6d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9b:da:5f:8e:83:f9:36:8f:6c:c9:c1:e5:a1: 8b:2b:7c:d7:ae:c3:b8:7e:62:5c:af:ff:69:f9:f9: fc:12:77:9b:6c:ce:b7:19:ec:c6:48:5e:8d:1c:ab: 33:87:dc:7c:9d:84:81:05:cc:f2:f3:93:c8:a5:a9: 2f:50:e8:a2:b1:64:d7:36:16:c1:5c:b8:09:e7:19: 6f:69:a7:64:18:22:10:5e:5a:d8:ea:ab:a2:c7:2f: 88:29:15:12:ce:f6:b7:48:3b:d2:e6:cf:3f:4a:c8: 9c:bc:7d:fd:df:71:e3:b8:cc:8c:6e:9f:e5:13:61: 62:e4:86:99:54:a4:94:5c:33:7f:8c:95:77:b8:b5: b6:ce:9d:53:1f:06:4b:e8:53:31:b1:1c:98:7b:42: 46:33:d9:2d:21:1f:fd:28:8e:28:a6:a5:a1:d5:42: 57:7f:49:e7:99:28:4c:80:a0:99:e8:f7:cb:f0:1a: 7e:3b:c5:c6:06:d7:ca:d2:48:89:90:92:f5:76:ec: df:f3:72:d2:f3:38:ef:9d:36:af:bc:e5:a9:89:84: ee:4e:db:88:b4:e1:92:04:50:1e:b7:fd:99:8f:38: 1f:57:9a:0b:cb:33:21:26:ee:09:29:29:28:a0:07: ea:1e:2f:b9:11:84:b1:62:ce:93:07:a2:e9:72:66: 52:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:48:4E:6D:F8:22:86:0A:78:03:C7:43:CE:DC:38:F4:E5:30:A3:B7 X509v3 Authority Key Identifier: keyid:64:A0:6E:DA:F3:97:57:E4:28:D4:1E:71:20:69:74:FD:9F:FA:73:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/CA44DDA6C5A111EAA8D93F54C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.126.184.0/22 103.195.56.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:14:d5:8a:0a:42:b7:d3:f2:3e:a3:55:b6:4f:69:a5:de:fd: 5e:d7:59:2b:d6:b9:5f:0a:51:68:06:43:3f:41:ea:a3:8f:fb: d0:97:2e:d4:d9:79:aa:b4:69:ce:90:9e:64:0b:dc:24:ac:19: eb:86:cd:29:ec:b9:ea:6c:98:c5:43:10:ad:20:9b:b9:1e:69: 7a:a6:5c:48:46:11:bd:cc:d8:cc:c1:40:bf:ac:c1:0e:a6:4b: 24:bb:6f:14:55:b4:77:0d:9f:3d:17:83:78:fb:a4:de:24:b6: 96:bc:0d:d9:23:5b:84:86:6d:d6:b1:8b:d8:58:33:1d:25:6d: e5:17:e2:3e:df:cc:df:80:4a:69:7e:80:d4:61:1b:20:da:7d: 07:34:50:bd:ce:10:0c:2c:0e:9d:00:1a:1d:5d:39:16:87:2a: 9e:b3:89:da:b3:20:19:21:54:bb:0d:46:ed:57:41:88:cb:51: 06:00:62:dd:8c:bb:35:69:f3:29:86:fc:56:d1:1f:02:e4:29: 1e:ef:b9:fc:3c:48:32:c2:a1:1f:9d:0c:ae:bb:2a:0e:e3:c7: d4:54:e0:99:6b:d3:03:1f:64:9b:77:da:1e:e3:99:07:b3:a0: 64:77:78:6a:58:3e:a9:42:f7:06:0b:2b:df:4b:d2:2b:88:4e: f4:5e:3f:21 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVDOUIxMTAvBgNVBAUTKDY0QTA2RURBRjM5NzU3RTQyOEQ0MUU3MTIwNjk3NEZE OUZGQTczQkQwHhcNMjYwNTA2MjAyNTEwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZiYTNhNi1mNmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypvaX46D+TaPbMnB5aGLK3zXrsO4fmJcr/9p+fn8EnebbM63GezGSF6NHKsz h9x8nYSBBczy85PIpakvUOiisWTXNhbBXLgJ5xlvaadkGCIQXlrY6quixy+IKRUS zva3SDvS5s8/SsicvH3933HjuMyMbp/lE2Fi5IaZVKSUXDN/jJV3uLW2zp1THwZL 6FMxsRyYe0JGM9ktIR/9KI4opqWh1UJXf0nnmShMgKCZ6PfL8Bp+O8XGBtfK0kiJ kJL1duzf83LS8zjvnTavvOWpiYTuTtuItOGSBFAet/2ZjzgfV5oLyzMhJu4JKSko oAfqHi+5EYSxYs6TB6LpcmZS6wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFAJITm34 IoYKeAPHQ87cOPTlMKO3MB8GA1UdIwQYMBaAFGSgbtrzl1fkKNQecSBpdP2f+nO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUM5Qi9EMzlGRkU0QUM1 QTAxMUVBODc4NTkwNTNDNEY5QUUwMi9aS0J1MnZPWFYtUW8xQjV4SUdsMF9aXzZj NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLQnUydk9YVi1RbzFCNXhJR2wwX1pfNmM3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVDOUIvRDM5RkZFNEFDNUEwMTFFQTg3ODU5MDUzQzRGOUFFMDIvQ0E0NEREQTZD NUExMTFFQUE4RDkzRjU0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLX64AwQCZ8M4MA0GCSqGSIb3DQEBCwUAA4IBAQBNFNWKCkK30/I+ o1W2T2ml3v1e11kr1rlfClFoBkM/Qeqjj/vQly7U2XmqtGnOkJ5kC9wkrBnrhs0p 7LnqbJjFQxCtIJu5Hml6plxIRhG9zNjMwUC/rMEOpksku28UVbR3DZ89F4N4+6Te JLaWvA3ZI1uEhm3WsYvYWDMdJW3lF+I+38zfgEppfoDUYRsg2n0HNFC9zhAMLA6d ABodXTkWhyqes4nasyAZIVS7DUbtV0GIy1EGAGLdjLs1afMphvxW0R8C5Cke77n8 PEgywqEfnQyuuyoO48fUVOCZa9MDH2Sbd9oe45kHs6Bkd3hqWD6pQvcGCyvfS9Ir iE70Xj8h -----END CERTIFICATE-----Generated at Wed May 6 22:02:52 2026 by rpki-client