$ rpki-client -vvf rpki.apnic.net/member_repository/A917F259/A501DEC4AEB211E994932140C4F9AE02/22BEE7823E6511F1B20B4B5BCD833773.roa File: 22BEE7823E6511F1B20B4B5BCD833773.roa (raw, json) Hash identifier: xa3z/ia41GT5N2AZECsdieRJXA6FM8GWCOKn0/5pr3Y= Subject key identifier: D9:06:38:F4:76:E9:DC:D8:FB:22:1A:9F:D8:6F:41:79:2E:BE:64:E2 Certificate issuer: /CN=A917F259/serialNumber=7FC5941AC872C0A3A0DB1D2F59CFD98D21986F54 Certificate serial: 0EB2 Authority key identifier: 7F:C5:94:1A:C8:72:C0:A3:A0:DB:1D:2F:59:CF:D9:8D:21:98:6F:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f8WUGshywKOg2x0vWc_ZjSGYb1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F259/A501DEC4AEB211E994932140C4F9AE02/22BEE7823E6511F1B20B4B5BCD833773.roa Signing time: Wed 22 Apr 2026 16:05:52 +0000 ROA not before: Wed 22 Apr 2026 16:05:52 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149765 IP address blocks: 45.249.102.0/24 maxlen: 24 45.249.103.0/24 maxlen: 24 103.218.26.0/24 maxlen: 24 103.218.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F259/A501DEC4AEB211E994932140C4F9AE02/f8WUGshywKOg2x0vWc_ZjSGYb1Q.crl rsync://rpki.apnic.net/member_repository/A917F259/A501DEC4AEB211E994932140C4F9AE02/f8WUGshywKOg2x0vWc_ZjSGYb1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f8WUGshywKOg2x0vWc_ZjSGYb1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 17:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3762 (0xeb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F259, serialNumber=7FC5941AC872C0A3A0DB1D2F59CFD98D21986F54 Validity Not Before: Apr 22 16:05:52 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69e8f1e0-decd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:88:56:7e:3a:84:e3:16:da:6e:50:22:5c:8b: c6:40:78:8e:ef:76:9d:e0:4b:3c:df:48:12:5e:50: 52:82:81:5c:39:c3:57:c9:94:a5:ac:6d:93:2c:64: 77:45:4b:3d:24:aa:67:0c:86:72:80:8a:8d:6d:8d: 1c:ec:f6:8d:c4:84:5c:c5:de:ae:d9:bf:22:f4:1f: 07:0f:b4:bf:54:d4:9f:4a:e0:bf:2a:83:f3:e3:96: fc:7e:1f:59:6f:4c:62:eb:2b:77:09:74:f8:4b:5b: e6:14:ec:0e:18:5a:d0:69:fa:aa:43:71:61:5a:59: 96:1b:7b:4a:63:4a:8d:a9:61:29:70:57:b0:83:b4: 19:2d:bd:4a:6c:4e:a7:67:94:77:9a:e4:6f:d6:43: 20:f5:fb:aa:e1:cb:19:fe:98:dc:58:90:4c:e1:77: d1:a4:d9:5f:a9:c7:af:ca:35:74:18:1d:87:eb:d6: f3:7b:f0:7a:b9:5f:8d:a5:b2:56:64:9f:a6:1d:89: 9f:ae:0d:bd:1b:a6:3e:94:70:8e:c9:10:a9:fb:9b: 3e:8e:71:2e:ec:89:90:21:6b:73:4e:95:a3:f3:6b: 26:07:3b:a7:39:31:67:81:36:12:5a:a1:6b:ac:cd: 27:97:54:d9:ed:4b:ff:c0:10:fb:3d:7b:4a:cc:da: 99:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:06:38:F4:76:E9:DC:D8:FB:22:1A:9F:D8:6F:41:79:2E:BE:64:E2 X509v3 Authority Key Identifier: keyid:7F:C5:94:1A:C8:72:C0:A3:A0:DB:1D:2F:59:CF:D9:8D:21:98:6F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F259/A501DEC4AEB211E994932140C4F9AE02/f8WUGshywKOg2x0vWc_ZjSGYb1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f8WUGshywKOg2x0vWc_ZjSGYb1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F259/A501DEC4AEB211E994932140C4F9AE02/22BEE7823E6511F1B20B4B5BCD833773.roa sbgp-ipAddrBlock: critical IPv4: 45.249.102.0/23 103.218.26.0/23 Signature Algorithm: sha256WithRSAEncryption 22:5b:c8:d7:43:6f:f8:83:1f:8b:ce:1e:a6:12:20:76:fd:4e: e4:ac:94:c0:f8:5b:10:fa:dc:fb:4a:e9:13:0c:50:83:9b:97: ef:ad:a7:89:4d:c7:43:26:80:b4:98:70:23:41:00:cd:fe:68: f5:fa:69:8c:fd:7f:9c:fe:17:1a:e0:90:08:d2:c6:a6:e6:c2: 6f:08:f0:17:fa:b7:02:f5:b6:c5:50:66:08:5b:32:f4:98:63: fc:7f:7e:8f:10:7d:fd:8e:6a:82:1c:71:cd:ab:43:21:1b:d3: 5c:d3:8a:c5:1c:9d:5f:bc:62:d9:09:87:66:58:43:17:38:0c: 9a:14:23:28:13:14:58:67:17:80:84:21:05:74:ce:b8:ab:38: 05:79:33:79:46:0a:71:f4:b2:69:3d:8f:fa:3a:ea:ae:05:0b: 41:b0:ac:50:37:cc:c1:8d:ea:d8:34:9e:83:66:d0:d3:12:eb: 00:7b:da:f4:d2:35:ef:33:cf:da:1e:c3:3b:aa:66:fb:dd:f3: 0f:e7:26:07:b3:bc:c2:67:9b:7a:bb:4a:97:ed:c8:c9:12:75: 4e:6c:07:cb:66:f0:a1:55:31:cd:fd:d1:22:4e:9b:22:11:d2: 76:34:fd:7b:6a:65:e7:fa:fa:d1:dd:88:6c:47:88:fe:7e:2c: 9f:e9:86:c4 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YyNTkxMTAvBgNVBAUTKDdGQzU5NDFBQzg3MkMwQTNBMERCMUQyRjU5Q0ZEOThE MjE5ODZGNTQwHhcNMjYwNDIyMTYwNTUyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU4ZjFlMC1kZWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4hWfjqE4xbablAiXIvGQHiO73ad4Es830gSXlBSgoFcOcNXyZSlrG2TLGR3 RUs9JKpnDIZygIqNbY0c7PaNxIRcxd6u2b8i9B8HD7S/VNSfSuC/KoPz45b8fh9Z b0xi6yt3CXT4S1vmFOwOGFrQafqqQ3FhWlmWG3tKY0qNqWEpcFewg7QZLb1KbE6n Z5R3muRv1kMg9fuq4csZ/pjcWJBM4XfRpNlfqcevyjV0GB2H69bze/B6uV+NpbJW ZJ+mHYmfrg29G6Y+lHCOyRCp+5s+jnEu7ImQIWtzTpWj82smBzunOTFngTYSWqFr rM0nl1TZ7Uv/wBD7PXtKzNqZ7wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNkGOPR2 6dzY+yIan9hvQXkuvmTiMB8GA1UdIwQYMBaAFH/FlBrIcsCjoNsdL1nP2Y0hmG9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjI1OS9BNTAxREVDNEFF QjIxMUU5OTQ5MzIxNDBDNEY5QUUwMi9mOFdVR3NoeXdLT2cyeDB2V2NfWmpTR1li MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y4V1VHc2h5d0tPZzJ4MHZXY19aalNHWWIxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0YyNTkvQTUwMURFQzRBRUIyMTFFOTk0OTMyMTQwQzRGOUFFMDIvMjJCRUU3ODIz RTY1MTFGMUIyMEI0QjVCQ0Q4MzM3NzMucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBLflmAwQBZ9oaMA0GCSqGSIb3DQEBCwUAA4IBAQAiW8jXQ2/4gx+L zh6mEiB2/U7krJTA+FsQ+tz7SukTDFCDm5fvraeJTcdDJoC0mHAjQQDN/mj1+mmM /X+c/hca4JAI0sam5sJvCPAX+rcC9bbFUGYIWzL0mGP8f36PEH39jmqCHHHNq0Mh G9Nc04rFHJ1fvGLZCYdmWEMXOAyaFCMoExRYZxeAhCEFdM64qzgFeTN5Rgpx9LJp PY/6OuquBQtBsKxQN8zBjerYNJ6DZtDTEusAe9r00jXvM8/aHsM7qmb73fMP5yYH s7zCZ5t6u0qX7cjJEnVObAfLZvChVTHN/dEiTpsiEdJ2NP17amXn+vrR3YhsR4j+ fiyf6YbE -----END CERTIFICATE-----Generated at Tue Apr 28 11:34:09 2026 by rpki-client