$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/4114509A597511EFA2B79A84C4F9AE02.roa File: 4114509A597511EFA2B79A84C4F9AE02.roa (raw, json) Hash identifier: xky0bkAGJZiPmJrh1utEauZh7Xc1VAPTEfxwrtpScXM= Subject key identifier: 19:85:F1:5A:B9:12:C2:5C:90:14:A6:74:1E:86:DB:3B:F8:65:6D:48 Certificate issuer: /CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Certificate serial: 044D Authority key identifier: 91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/4114509A597511EFA2B79A84C4F9AE02.roa Signing time: Sat 23 May 2026 00:31:15 +0000 ROA not before: Sat 23 May 2026 00:31:15 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 140599 IP address blocks: 45.115.224.0/22 maxlen: 22 45.115.224.0/24 maxlen: 24 45.115.225.0/24 maxlen: 24 45.115.226.0/24 maxlen: 24 45.115.227.0/24 maxlen: 24 103.56.4.0/22 maxlen: 24 103.150.220.0/24 maxlen: 24 103.150.221.0/24 maxlen: 24 2001:df3:8e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1101 (0x44d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432, serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Validity Not Before: May 23 00:31:15 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10f553-787d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6a:ad:79:67:82:e0:e0:d2:ad:a3:a6:5b:72: 3c:34:12:cb:d8:dc:f3:f8:28:a9:88:88:a5:5a:46: 8e:0f:1b:cd:ad:65:f9:10:03:c2:ad:8e:45:55:16: 50:74:41:bc:f4:75:b5:fb:83:4c:07:af:05:3e:af: 13:5d:39:25:54:ee:2a:b8:b0:b0:ac:fb:40:30:88: 72:a1:ff:64:2e:9f:22:9d:bc:39:cc:64:97:47:bb: 49:3a:45:fb:01:ec:a6:db:d5:45:78:16:7b:53:7a: e2:18:11:51:93:c7:79:ca:b5:cb:0a:c1:df:f9:4e: 98:67:04:68:58:06:a2:78:53:93:58:7f:ea:c1:b0: 0e:a1:dd:f0:e3:a0:6b:12:ee:3b:99:de:8a:06:70: 22:34:ba:09:63:0f:74:4b:8f:0d:f0:b1:0a:ee:7c: 85:41:a3:11:06:fb:7f:91:ee:4f:cd:57:1e:6d:45: 17:e9:05:6a:09:3b:5e:bf:7b:3f:f5:ce:7e:cc:09: c6:e7:9d:6b:83:b9:6d:a5:dd:64:05:df:f7:30:13: b1:6f:b3:bb:c1:d6:7a:4d:b9:9a:90:1e:58:fb:cc: 82:00:ac:f8:59:60:67:9f:28:39:22:81:f8:41:29: f0:6b:2c:32:23:dd:9d:d7:7e:26:17:85:d8:a2:08: 72:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:85:F1:5A:B9:12:C2:5C:90:14:A6:74:1E:86:DB:3B:F8:65:6D:48 X509v3 Authority Key Identifier: keyid:91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/4114509A597511EFA2B79A84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.115.224.0/22 103.56.4.0/22 103.150.220.0/23 IPv6: 2001:df3:8e80::/48 Signature Algorithm: sha256WithRSAEncryption 2d:2c:ba:fa:f3:0c:89:97:ac:ed:69:4f:3d:27:44:b9:6c:b9: 80:76:db:a0:4f:cb:3f:3b:3b:78:b6:85:10:08:fe:12:1c:34: 72:b4:65:ff:6d:35:c7:40:a9:7e:9a:1c:b9:4f:43:8d:9c:cf: 5d:4a:a4:46:99:b2:65:40:1e:e4:4c:dc:32:4f:29:41:b5:25: 47:d3:2f:8e:ad:15:d2:7b:28:3e:e6:8a:2b:fc:0d:e8:ff:1a: 19:21:0e:89:b4:c8:64:ca:d9:6e:f0:8d:cd:4c:17:3c:a9:e9: 52:51:34:39:f4:b4:71:c5:cb:f3:1e:c0:17:cd:bc:78:52:7b: b5:53:81:cd:b1:b9:bb:30:72:dc:90:a9:1d:1b:15:ba:5d:1c: 8e:c5:97:d7:8a:45:e5:60:4c:42:80:ac:37:88:67:b5:b2:af: 0e:77:0b:a8:aa:da:53:81:28:5d:24:75:23:24:1e:0b:f2:4a: 43:d2:1b:73:f6:55:49:b9:a0:49:9f:10:39:05:71:39:2e:bf: a3:6e:24:6a:a2:c6:21:5d:a0:44:ee:9a:b4:03:59:0b:52:e5: 4d:53:94:00:e2:3a:0c:63:1c:d3:b7:e0:37:98:b5:3f:df:25: cf:77:52:ed:7c:b7:93:cd:2e:64:50:f1:00:e2:dc:20:27:01: 3f:1a:20:53 -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgICBE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKDkxRjNEQzU5Q0QwRkExRDI0MUNCNzg3NTdEMURBQTky QzJBQzlGNjAwHhcNMjYwNTIzMDAzMTE1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwZjU1My03ODdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2qteWeC4ODSraOmW3I8NBLL2Nzz+CipiIilWkaODxvNrWX5EAPCrY5FVRZQ dEG89HW1+4NMB68FPq8TXTklVO4quLCwrPtAMIhyof9kLp8inbw5zGSXR7tJOkX7 Aeym29VFeBZ7U3riGBFRk8d5yrXLCsHf+U6YZwRoWAaieFOTWH/qwbAOod3w46Br Eu47md6KBnAiNLoJYw90S48N8LEK7nyFQaMRBvt/ke5PzVcebUUX6QVqCTtev3s/ 9c5+zAnG551rg7ltpd1kBd/3MBOxb7O7wdZ6TbmakB5Y+8yCAKz4WWBnnyg5IoH4 QSnwaywyI92d134mF4XYoghyWQIDAQABo4ICfTCCAnkwHQYDVR0OBBYEFBmF8Vq5 EsJckBSmdB6G2zv4ZW1IMB8GA1UdIwQYMBaAFJHz3FnND6HSQct4dX0dqpLCrJ9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9GNUJGNjk5Q0E0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9kSkJ5M2gxZlIycWtzS3Nu MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmUGNXYzBQb2RKQnkzaDFmUjJxa3NLc24yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA0MzIvRjVCRjY5OUNBNENBMTFFQ0FDNEU1NzQ0QzRGOUFFMDIvNDExNDUwOUE1 OTc1MTFFRkEyQjc5QTg0QzRGOUFFMDIucm9hMDwGCCsGAQUFBwEHAQH/BC0wKzAY BAIAATASAwQCLXPgAwQCZzgEAwQBZ5bcMA8EAgACMAkDBwAgAQ3zjoAwDQYJKoZI hvcNAQELBQADggEBAC0suvrzDImXrO1pTz0nRLlsuYB226BPyz87O3i2hRAI/hIc NHK0Zf9tNcdAqX6aHLlPQ42cz11KpEaZsmVAHuRM3DJPKUG1JUfTL46tFdJ7KD7m iiv8Dej/GhkhDom0yGTK2W7wjc1MFzyp6VJRNDn0tHHFy/MewBfNvHhSe7VTgc2x ubswctyQqR0bFbpdHI7Fl9eKReVgTEKArDeIZ7Wyrw53C6iq2lOBKF0kdSMkHgvy SkPSG3P2VUm5oEmfEDkFcTkuv6NuJGqixiFdoETumrQDWQtS5U1TlADiOgxjHNO3 4DeYtT/fJc93Uu18t5PNLmRQ8QDi3CAnAT8aIFM= -----END CERTIFICATE-----Generated at Sat Jun 6 15:51:47 2026 by rpki-client