$ rpki-client -vvf rpki.apnic.net/member_repository/A91188F4/928DB0F64CA311EC823A8965C4F9AE02/7CAFA5C44CA711EC9D22716BC4F9AE02.roa File: 7CAFA5C44CA711EC9D22716BC4F9AE02.roa (raw, json) Hash identifier: FCX1sDJ2lcFZeK81Yi1zKSTIFWnL4W2ESjtnUZrEFH4= Subject key identifier: B2:74:6F:0C:60:3F:25:40:A4:FA:96:0D:88:A2:36:97:A9:B9:B6:02 Certificate issuer: /CN=A91188F4/serialNumber=C962A1EFB1D685EA9F0E85B41766828F6A13EFE5 Certificate serial: 04F8 Authority key identifier: C9:62:A1:EF:B1:D6:85:EA:9F:0E:85:B4:17:66:82:8F:6A:13:EF:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yWKh77HWheqfDoW0F2aCj2oT7-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91188F4/928DB0F64CA311EC823A8965C4F9AE02/7CAFA5C44CA711EC9D22716BC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:58:09 +0000 ROA not before: Fri 25 Jul 2025 00:36:40 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 22552 IP address blocks: 45.121.136.0/22 maxlen: 24 103.61.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91188F4/928DB0F64CA311EC823A8965C4F9AE02/yWKh77HWheqfDoW0F2aCj2oT7-U.crl rsync://rpki.apnic.net/member_repository/A91188F4/928DB0F64CA311EC823A8965C4F9AE02/yWKh77HWheqfDoW0F2aCj2oT7-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yWKh77HWheqfDoW0F2aCj2oT7-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 23:13:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1272 (0x4f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91188F4, serialNumber=C962A1EFB1D685EA9F0E85B41766828F6A13EFE5 Validity Not Before: Jul 25 00:36:40 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a40db1-408f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:91:0a:c8:ce:bb:00:85:58:00:d9:c4:47:a6: 70:29:a0:36:15:e2:4e:1a:cd:58:86:6f:78:71:e7: ce:ed:28:17:43:d3:38:f6:bf:fb:82:d7:44:cb:8b: af:1c:86:dc:c8:76:2d:20:2c:cc:1d:f2:a1:86:22: b4:8f:80:bd:df:00:45:5d:3b:82:14:78:86:68:71: 9d:54:50:ea:30:45:ba:1c:38:d2:f7:96:29:93:7e: 56:fe:9b:77:16:6c:ad:dc:f2:2b:84:02:7a:84:df: f9:3f:75:95:d8:0d:bc:f5:e6:e3:0e:19:eb:66:fb: b2:01:9f:13:7c:a0:4a:eb:89:5c:4f:0b:d2:0d:d9: 8a:8f:b9:77:5e:eb:33:dd:67:7c:13:1d:b2:32:87: db:07:0c:57:3e:61:f8:ba:b7:80:72:1d:77:6f:74: 98:1d:0d:57:d6:36:de:9a:ee:34:32:4a:a7:8f:93: 4b:07:7e:da:d8:c1:c8:ca:f6:eb:38:a9:e3:28:4a: 29:b8:ea:93:cf:4b:05:2a:05:76:70:d0:39:4b:0f: d2:8a:84:31:06:e6:02:64:37:3d:8b:33:97:90:33: 2e:dd:c7:87:ae:c2:30:69:b4:2f:2b:66:91:30:a2: db:78:1f:84:3f:4b:3a:22:cb:21:0e:d1:01:a4:e5: d3:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:74:6F:0C:60:3F:25:40:A4:FA:96:0D:88:A2:36:97:A9:B9:B6:02 X509v3 Authority Key Identifier: keyid:C9:62:A1:EF:B1:D6:85:EA:9F:0E:85:B4:17:66:82:8F:6A:13:EF:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91188F4/928DB0F64CA311EC823A8965C4F9AE02/yWKh77HWheqfDoW0F2aCj2oT7-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yWKh77HWheqfDoW0F2aCj2oT7-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91188F4/928DB0F64CA311EC823A8965C4F9AE02/7CAFA5C44CA711EC9D22716BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.121.136.0/22 103.61.236.0/22 Signature Algorithm: sha256WithRSAEncryption 19:15:e5:65:cd:49:6f:f3:e4:ad:24:f7:d4:4a:3f:9f:06:5d: a5:c1:4f:ef:4c:50:fd:2a:78:7b:f5:48:c6:b3:7e:d9:00:da: ef:eb:b1:06:74:3d:4d:8d:a6:9b:18:b9:09:95:59:1b:2d:ab: 0b:9a:f7:0f:7e:0b:32:c9:62:26:53:e6:cc:c6:42:2b:6e:75: e1:18:4a:a7:17:d4:f9:6d:77:44:53:73:18:17:90:66:b6:9c: e1:3b:68:72:4f:63:5b:f9:6e:b6:ee:ef:c9:97:c9:ec:bd:e1: 86:84:f4:a5:01:52:d5:0f:11:6a:ae:d2:50:9e:97:61:c7:ac: b6:b0:ed:6a:5b:96:a7:1c:a2:d0:53:87:52:9f:d1:85:27:c1: 99:02:91:2d:6f:7c:bb:9e:a9:66:ed:e5:be:5f:7e:c4:ab:b8: 7d:b5:54:53:ba:fe:26:34:f7:4d:e8:58:8b:a5:80:67:10:39: 86:f3:61:8a:c4:f8:a6:fe:e8:69:fe:9c:fe:7b:f3:c3:ad:90: fd:50:76:eb:43:15:7e:16:98:2d:15:fe:92:eb:13:4d:48:54: c0:03:48:23:c1:d2:9d:c6:ca:f8:c6:58:d2:e5:fc:14:fa:72: 79:8d:d7:20:42:ff:64:d4:e5:57:01:2e:de:a1:20:f9:4e:cb: ae:1a:36:17 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg4RjQxMTAvBgNVBAUTKEM5NjJBMUVGQjFENjg1RUE5RjBFODVCNDE3NjY4MjhG NkExM0VGRTUwHhcNMjUwNzI1MDAzNjQwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGRiMS00MDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pEKyM67AIVYANnER6ZwKaA2FeJOGs1Yhm94cefO7SgXQ9M49r/7gtdEy4uv HIbcyHYtICzMHfKhhiK0j4C93wBFXTuCFHiGaHGdVFDqMEW6HDjS95Ypk35W/pt3 Fmyt3PIrhAJ6hN/5P3WV2A289ebjDhnrZvuyAZ8TfKBK64lcTwvSDdmKj7l3Xusz 3Wd8Ex2yMofbBwxXPmH4ureAch13b3SYHQ1X1jbemu40Mkqnj5NLB37a2MHIyvbr OKnjKEopuOqTz0sFKgV2cNA5Sw/SioQxBuYCZDc9izOXkDMu3ceHrsIwabQvK2aR MKLbeB+EP0s6IsshDtEBpOXTFwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFLJ0bwxg PyVApPqWDYiiNpepubYCMB8GA1UdIwQYMBaAFMlioe+x1oXqnw6FtBdmgo9qE+/l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODhGNC85MjhEQjBGNjRD QTMxMUVDODIzQTg5NjVDNEY5QUUwMi95V0toNzdIV2hlcWZEb1cwRjJhQ2oyb1Q3 LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lXS2g3N0hXaGVxZkRvVzBGMmFDajJvVDctVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg4RjQvOTI4REIwRjY0Q0EzMTFFQzgyM0E4OTY1QzRGOUFFMDIvN0NBRkE1QzQ0 Q0E3MTFFQzlEMjI3MTZCQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLXmIAwQCZz3sMA0GCSqGSIb3DQEBCwUAA4IBAQAZFeVlzUlv8+St JPfUSj+fBl2lwU/vTFD9Knh79UjGs37ZANrv67EGdD1NjaabGLkJlVkbLasLmvcP fgsyyWImU+bMxkIrbnXhGEqnF9T5bXdEU3MYF5BmtpzhO2hyT2Nb+W627u/Jl8ns veGGhPSlAVLVDxFqrtJQnpdhx6y2sO1qW5anHKLQU4dSn9GFJ8GZApEtb3y7nqlm 7eW+X37Eq7h9tVRTuv4mNPdN6FiLpYBnEDmG82GKxPim/uhp/pz+e/PDrZD9UHbr QxV+FpgtFf6S6xNNSFTAA0gjwdKdxsr4xljS5fwU+nJ5jdcgQv9k1OVXAS7eoSD5 TsuuGjYX -----END CERTIFICATE-----Generated at Sun Mar 22 03:33:46 2026 by rpki-client