$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/D36F0B6ECF4411ECB6B61825C4F9AE02.roa File: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (raw, json) Hash identifier: Ylv7wHI65XMnQYhoDyQSygUwHrURYMjzNieL/UaPiGU= Subject key identifier: B3:65:FE:B8:52:56:40:69:B1:87:D8:9D:D5:3A:2B:5F:21:DE:35:97 Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 0506 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/D36F0B6ECF4411ECB6B61825C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:14:27 +0000 ROA not before: Sat 20 Dec 2025 17:14:46 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 48266 IP address blocks: 45.129.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1286 (0x506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Dec 20 17:14:46 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a58d33-7594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:50:02:99:68:60:b5:9a:4e:45:ce:74:35:3a: c8:9e:94:4b:88:a6:8f:ae:7b:40:1e:0c:ae:13:2a: 4c:74:95:db:75:f2:b7:50:1a:2e:f1:08:06:f5:e4: 08:8d:16:38:fa:5b:fc:2f:9a:bb:89:d5:40:3e:f4: 4a:bc:88:88:0f:3c:53:b0:03:8b:a2:16:1e:81:82: 6f:22:ff:1a:4d:35:48:1e:32:ba:86:9b:5c:11:4c: 8f:7b:75:a8:2c:e4:d9:52:2a:9e:43:67:a5:3b:b2: 6f:3e:fc:37:9f:d5:63:bb:a8:eb:ec:fb:46:87:5c: 13:67:22:80:98:fa:36:a4:9e:46:91:aa:36:2d:c4: d9:08:80:8a:2a:e4:1d:45:37:d9:c1:0d:53:c7:19: 7a:b9:42:a5:ce:97:e6:8d:5e:1a:e7:22:d8:56:5d: c2:24:bd:e0:69:44:a7:10:72:e4:ae:75:81:9f:8d: 05:c0:7e:84:fd:e7:d4:59:37:bb:52:c6:65:3d:b2: 12:e8:7e:49:8f:3d:1c:d7:88:9d:98:36:a0:de:9d: 1c:99:0b:55:b6:cc:99:78:57:cb:3e:29:d2:14:0b: 50:60:81:52:81:9a:90:4c:80:ab:1c:0a:09:41:a3: 06:e7:0d:d3:b5:45:7c:b5:e6:6d:42:66:54:a8:8c: 74:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:65:FE:B8:52:56:40:69:B1:87:D8:9D:D5:3A:2B:5F:21:DE:35:97 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/D36F0B6ECF4411ECB6B61825C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.129.228.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:ca:86:68:a0:e1:85:8e:7d:15:17:97:95:8b:aa:7e:7a:60: 5c:ab:14:09:e9:41:a4:12:8c:ae:48:d0:8e:10:0d:c0:60:3b: 4b:bc:2a:05:42:a6:da:f6:61:05:80:c4:7d:79:e7:24:8c:c3: e7:46:b1:7a:ed:e7:75:51:63:cb:63:b0:10:67:d0:2f:bb:55: ca:f0:fb:97:ca:04:85:f3:5e:60:d3:47:3a:90:06:98:bd:bf: 93:24:08:a7:04:a5:31:4c:85:e6:f3:3a:d9:47:4f:63:23:5a: 83:71:54:67:e0:91:ea:ab:18:8d:47:68:80:b8:a5:ad:94:54: 91:93:03:f5:66:94:f5:30:3e:0a:f7:54:0f:4a:19:a3:bc:9f: 17:ce:f7:c1:5d:c3:99:93:b0:9c:24:a0:cb:7f:98:fa:0f:d5: 57:58:77:97:67:55:b2:78:e7:a1:e8:22:97:68:3a:5f:96:bf: 7b:c2:5e:8e:51:5f:3e:42:9c:b3:71:17:48:d4:1a:e9:2a:30: aa:70:8d:ac:3d:b3:bc:0b:39:5a:d2:27:a8:38:dd:5d:27:07: c7:de:63:ee:69:a5:ec:66:9c:e2:d1:86:74:a0:2b:77:48:d5: 79:05:3f:a0:17:32:c2:b1:a9:97:f5:22:14:36:fc:96:da:38: ec:86:7c:9c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjUxMjIwMTcxNDQ2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGQzMy03NTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoVACmWhgtZpORc50NTrInpRLiKaPrntAHgyuEypMdJXbdfK3UBou8QgG9eQI jRY4+lv8L5q7idVAPvRKvIiIDzxTsAOLohYegYJvIv8aTTVIHjK6hptcEUyPe3Wo LOTZUiqeQ2elO7JvPvw3n9Vju6jr7PtGh1wTZyKAmPo2pJ5Gkao2LcTZCICKKuQd RTfZwQ1Txxl6uUKlzpfmjV4a5yLYVl3CJL3gaUSnEHLkrnWBn40FwH6E/efUWTe7 UsZlPbIS6H5Jjz0c14idmDag3p0cmQtVtsyZeFfLPinSFAtQYIFSgZqQTICrHAoJ QaMG5w3TtUV8teZtQmZUqIx0fQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLNl/rhS VkBpsYfYndU6K18h3jWXMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNUI0QzRFMzY1OTY5MTFFQzk0QTNFNzcwQzRGOUFFMDIvRDM2RjBCNkVD RjQ0MTFFQ0I2QjYxODI1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQALYHkMA0GCSqGSIb3DQEBCwUAA4IBAQBuyoZooOGFjn0VF5eVi6p+ emBcqxQJ6UGkEoyuSNCOEA3AYDtLvCoFQqba9mEFgMR9eeckjMPnRrF67ed1UWPL Y7AQZ9Avu1XK8PuXygSF815g00c6kAaYvb+TJAinBKUxTIXm8zrZR09jI1qDcVRn 4JHqqxiNR2iAuKWtlFSRkwP1ZpT1MD4K91QPShmjvJ8XzvfBXcOZk7CcJKDLf5j6 D9VXWHeXZ1WyeOeh6CKXaDpflr97wl6OUV8+QpyzcRdI1BrpKjCqcI2sPbO8Czla 0ieoON1dJwfH3mPuaaXsZpzi0YZ0oCt3SNV5BT+gFzLCsamX9SIUNvyW2jjshnyc -----END CERTIFICATE-----Generated at Fri Mar 13 15:57:24 2026 by rpki-client