$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06BB/9C63105CFCE011F09F33A4896F6F56BC/448E51A6FCE111F0BAFBF562706F56BC.roa File: 448E51A6FCE111F0BAFBF562706F56BC.roa (raw, json) Hash identifier: sZJIcdcshI3NjRf6+jKWuLIUwlHfkOePZoYxpMlXv5U= Subject key identifier: F3:26:88:3E:6F:13:80:45:C5:42:BE:0D:B2:37:2A:96:2B:C2:FA:BE Certificate issuer: /CN=A91A06BB/serialNumber=49B163BF44FA010CC21B287D14AE239CF9B9FB9D Certificate serial: 02 Authority key identifier: 49:B1:63:BF:44:FA:01:0C:C2:1B:28:7D:14:AE:23:9C:F9:B9:FB:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbFjv0T6AQzCGyh9FK4jnPm5-50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06BB/9C63105CFCE011F09F33A4896F6F56BC/448E51A6FCE111F0BAFBF562706F56BC.roa Signing time: Thu 29 Jan 2026 07:08:10 +0000 ROA not before: Thu 29 Jan 2026 07:08:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 24314 IP address blocks: 202.45.132.0/24 maxlen: 24 202.45.133.0/24 maxlen: 24 2407:2880:c001::/48 maxlen: 48 2407:2880:c002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06BB/9C63105CFCE011F09F33A4896F6F56BC/SbFjv0T6AQzCGyh9FK4jnPm5-50.crl rsync://rpki.apnic.net/member_repository/A91A06BB/9C63105CFCE011F09F33A4896F6F56BC/SbFjv0T6AQzCGyh9FK4jnPm5-50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbFjv0T6AQzCGyh9FK4jnPm5-50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Feb 2026 07:19:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06BB, serialNumber=49B163BF44FA010CC21B287D14AE239CF9B9FB9D Validity Not Before: Jan 29 07:08:10 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=697b0759-0182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:24:71:69:5f:fa:d3:9f:7a:a4:4a:89:28:40: 9a:5e:59:3e:d8:a6:ed:8c:aa:db:16:d7:98:3b:df: 6a:b1:b2:79:c6:fc:b8:fd:40:57:0d:53:b2:ea:5a: 22:ef:11:0b:06:86:cd:18:60:f3:95:a3:e3:59:df: ca:2e:7e:57:db:4c:8c:c9:c3:35:a0:e0:d5:78:62: 7a:8c:67:7c:b8:86:05:24:bd:47:d2:91:8f:1f:1e: 86:bc:bd:d1:a6:fd:af:f0:a7:cc:71:4f:57:a7:89: e6:d8:ab:6a:bf:29:55:06:6b:cb:60:10:cd:c1:b8: 9b:55:ca:2b:4e:19:0f:2e:80:9c:ba:7b:09:df:39: e9:ba:da:65:11:ff:ca:0d:e3:9c:a7:c4:9d:d2:91: 7b:61:a2:fa:63:21:5d:5b:86:d6:1d:6e:7f:88:11: 59:c6:98:7f:7f:8e:12:e7:ac:2d:9e:38:62:53:df: 58:ba:44:de:c8:24:34:84:47:02:d3:ba:a3:5e:79: 65:8c:6c:56:95:cf:c7:3c:20:1e:5d:76:51:9b:e6: 0b:49:20:4d:6c:2e:2a:1f:d4:08:1d:78:d5:ff:35: e0:da:13:97:9a:05:fd:a0:67:83:bf:f1:29:f5:e2: 84:b6:cc:09:2a:4b:7d:48:44:d3:e5:9a:6c:9e:c8: bb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:26:88:3E:6F:13:80:45:C5:42:BE:0D:B2:37:2A:96:2B:C2:FA:BE X509v3 Authority Key Identifier: keyid:49:B1:63:BF:44:FA:01:0C:C2:1B:28:7D:14:AE:23:9C:F9:B9:FB:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06BB/9C63105CFCE011F09F33A4896F6F56BC/SbFjv0T6AQzCGyh9FK4jnPm5-50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbFjv0T6AQzCGyh9FK4jnPm5-50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06BB/9C63105CFCE011F09F33A4896F6F56BC/448E51A6FCE111F0BAFBF562706F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.45.132.0/23 IPv6: 2407:2880:c001::-2407:2880:c002:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 56:6d:35:87:6c:89:f1:e6:54:02:36:77:d0:7b:f9:71:67:30: e2:4f:89:e2:25:22:85:1c:10:d3:e9:3f:02:44:ac:7c:78:1f: 25:be:4e:98:bf:16:2c:e6:b6:65:f1:78:94:25:ab:b7:e1:74: 00:de:45:cc:70:72:18:d9:7f:c8:74:51:74:d2:e8:b6:9e:4c: 38:f6:ba:3b:a9:30:7c:98:f9:21:e5:a8:8f:65:35:7b:eb:76: 05:db:29:4e:c6:60:89:97:e1:10:85:fe:44:48:5c:10:1c:22: 99:e4:83:df:ec:18:a1:aa:b6:a7:ef:03:fa:b7:81:cc:ad:f9: d7:ef:43:75:b1:c8:af:60:68:fd:42:98:55:df:15:e6:d6:b5: 54:ba:3e:6a:3a:8b:e4:c8:33:21:ae:15:44:ef:a4:48:31:d6: 2e:ad:09:65:c2:e9:3c:3d:51:b2:f9:00:1b:3f:13:f9:36:c2: 7f:1d:ab:d6:e8:d1:bf:41:cd:e3:90:34:10:25:b2:70:9e:bc: 2d:fd:3a:ed:d5:1d:53:88:2b:da:03:f8:e0:e7:5d:83:eb:14: 14:e0:2e:e6:6f:ad:b1:2b:a5:50:78:aa:fb:e0:29:79:c2:00: 66:5b:d0:eb:c1:c2:33:e4:7b:cc:fb:18:b8:b7:95:49:d2:2f: fa:7f:c3:4f -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFB MDZCQjExMC8GA1UEBRMoNDlCMTYzQkY0NEZBMDEwQ0MyMUIyODdEMTRBRTIzOUNG OUI5RkI5RDAeFw0yNjAxMjkwNzA4MTBaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5N2IwNzU5LTAxODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeJHFpX/rTn3qkSokoQJpeWT7Ypu2MqtsW15g732qxsnnG/Lj9QFcNU7LqWiLv EQsGhs0YYPOVo+NZ38ouflfbTIzJwzWg4NV4YnqMZ3y4hgUkvUfSkY8fHoa8vdGm /a/wp8xxT1eniebYq2q/KVUGa8tgEM3BuJtVyitOGQ8ugJy6ewnfOem62mUR/8oN 45ynxJ3SkXthovpjIV1bhtYdbn+IEVnGmH9/jhLnrC2eOGJT31i6RN7IJDSERwLT uqNeeWWMbFaVz8c8IB5ddlGb5gtJIE1sLiof1AgdeNX/NeDaE5eaBf2gZ4O/8Sn1 4oS2zAkqS31IRNPlmmyeyLvzAgMBAAGjggKxMIICrTAdBgNVHQ4EFgQU8yaIPm8T gEXFQr4NsjcqlivC+r4wHwYDVR0jBBgwFoAUSbFjv0T6AQzCGyh9FK4jnPm5+50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwNkJCLzlDNjMxMDVDRkNF MDExRjA5RjMzQTQ4OTZGNkY1NkJDL1NiRmp2MFQ2QVF6Q0d5aDlGSzRqblBtNS01 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2JGanYwVDZBUXpDR3loOUZLNGpuUG01LTUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZCQi85QzYzMTA1Q0ZDRTAxMUYwOUYzM0E0ODk2RjZGNTZCQy80NDhFNTFBNkZD RTExMUYwQkFGQkY1NjI3MDZGNTZCQy5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA7BggrBgEFBQcBBwEB/wQs MCowDAQCAAEwBgMEAcothDAaBAIAAjAUMBIDBwAkByiAwAEDBwAkByiAwAIwDQYJ KoZIhvcNAQELBQADggEBAFZtNYdsifHmVAI2d9B7+XFnMOJPieIlIoUcENPpPwJE rHx4HyW+Tpi/FizmtmXxeJQlq7fhdADeRcxwchjZf8h0UXTS6LaeTDj2ujupMHyY +SHlqI9lNXvrdgXbKU7GYImX4RCF/kRIXBAcIpnkg9/sGKGqtqfvA/q3gcyt+dfv Q3WxyK9gaP1CmFXfFebWtVS6Pmo6i+TIMyGuFUTvpEgx1i6tCWXC6Tw9UbL5ABs/ E/k2wn8dq9bo0b9BzeOQNBAlsnCevC39Ou3VHVOIK9oD+ODnXYPrFBTgLuZvrbEr pVB4qvvgKXnCAGZb0OvBwjPke8z7GLi3lUnSL/p/w08= -----END CERTIFICATE-----Generated at Thu Feb 19 16:37:36 2026 by rpki-client