$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/45FFCD9AD6E511EE9E963F62C4F9AE02.roa File: 45FFCD9AD6E511EE9E963F62C4F9AE02.roa (raw, json) Hash identifier: ybuWvdEWdjuOAqNasM2fgm64rCmsSqVZpd94nSUqRIM= Subject key identifier: DE:AC:27:D2:6E:E9:50:42:A6:CC:44:9F:70:06:E6:AF:76:E4:34:A5 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 211A Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/45FFCD9AD6E511EE9E963F62C4F9AE02.roa Signing time: Mon 02 Mar 2026 23:21:32 +0000 ROA not before: Thu 25 Dec 2025 09:50:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135905 IP address blocks: 144.79.110.0/23 maxlen: 24 157.20.88.0/23 maxlen: 24 160.22.102.0/23 maxlen: 24 160.191.100.0/23 maxlen: 23 160.250.126.0/23 maxlen: 24 160.250.188.0/23 maxlen: 24 165.101.16.0/23 maxlen: 23 165.101.114.0/23 maxlen: 24 165.101.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8474 (0x211a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Dec 25 09:50:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61b7c-2f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:13:80:92:7a:8e:05:1e:70:23:49:8f:c9:76: 38:1b:a6:27:e0:ad:de:a0:40:25:08:e2:65:0e:b8: 96:4f:2f:ee:5f:4d:84:c5:13:b2:de:17:6b:93:1d: c2:7f:a0:97:41:07:3f:ed:be:a4:45:7b:15:c0:d4: 8b:8b:7a:11:38:5e:94:59:9b:59:8d:72:7d:ff:de: 6b:18:f9:d2:68:62:8e:c4:f1:4d:ce:24:a1:1a:fe: 3d:c3:a5:7e:12:53:e8:80:4c:a8:f1:0e:c0:d4:9f: 3d:e0:48:a7:4b:11:1e:6f:43:20:6d:83:54:44:51: 0f:68:91:e9:cc:ce:e6:80:8f:4a:12:82:d0:b7:65: 55:ac:67:d9:72:6b:b0:a1:3f:80:0e:0d:b5:ba:d2: 9d:5e:e2:6f:fc:6b:5f:73:fd:c3:95:fa:3f:37:1d: d9:cc:ac:e1:a7:14:87:ad:9e:39:48:90:a7:1a:78: 01:17:fc:9d:2d:00:19:19:49:4a:44:fa:51:23:74: 65:70:fe:4d:ef:64:63:5e:a3:0e:cc:74:e8:6c:22: 4d:38:fb:6d:c9:57:0c:74:8e:b5:b8:5e:7f:e3:71: 63:72:56:db:c3:9b:a0:60:6e:2a:de:a1:3e:b7:1e: eb:91:a5:9f:74:fd:f3:5f:08:8b:9b:d0:c2:5c:26: a8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:AC:27:D2:6E:E9:50:42:A6:CC:44:9F:70:06:E6:AF:76:E4:34:A5 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/45FFCD9AD6E511EE9E963F62C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 144.79.110.0/23 157.20.88.0/23 160.22.102.0/23 160.191.100.0/23 160.250.126.0/23 160.250.188.0/23 165.101.16.0/23 165.101.114.0-165.101.117.255 Signature Algorithm: sha256WithRSAEncryption 0d:bc:2d:1e:19:76:78:ae:33:c4:47:8b:11:16:12:69:a8:6e: d7:43:24:00:4d:ab:78:c0:90:34:98:bd:f2:06:4e:2d:d4:3c: 5f:20:7e:55:36:a5:3b:5e:e9:21:36:61:77:b0:dc:bf:c9:b8: 54:f4:90:11:e1:46:22:1d:6c:6f:f8:89:a7:3d:fe:23:da:77: b3:84:26:9f:fc:97:93:3b:f5:12:96:88:f2:6b:01:c0:26:ca: ed:b5:50:20:5b:40:11:b3:06:a1:e5:d2:cf:4b:cc:1f:d5:cd: 98:25:7a:d5:de:66:b0:e2:2b:3d:4e:de:8a:46:8b:bd:3c:d1: d0:df:7c:90:5d:e2:81:6f:a6:42:a2:b7:07:47:cf:e3:73:92: ef:77:dc:3e:28:6f:e3:b3:a2:1c:cf:0d:50:4b:78:20:2e:19: 3a:a3:ef:fc:9b:eb:20:d2:e9:5e:f9:71:51:6f:ee:7b:d0:92: 79:db:7c:de:9c:75:d1:d2:b7:ee:65:f2:7f:d9:c0:2d:55:3f: 8f:7b:bf:37:8f:84:2c:39:a8:2a:74:14:d9:df:e1:a7:51:c3: c1:42:c0:98:06:05:2a:de:ce:ef:9d:44:10:c0:ba:a2:f5:e2: ca:0f:c8:ee:9a:b6:a2:47:8c:31:f1:33:be:18:ba:ac:5e:b2: 2e:3f:07:8d -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgICIRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUxMjI1MDk1MDMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWI3Yy0yZjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxOAknqOBR5wI0mPyXY4G6Yn4K3eoEAlCOJlDriWTy/uX02ExROy3hdrkx3C f6CXQQc/7b6kRXsVwNSLi3oROF6UWZtZjXJ9/95rGPnSaGKOxPFNziShGv49w6V+ ElPogEyo8Q7A1J894EinSxEeb0MgbYNURFEPaJHpzM7mgI9KEoLQt2VVrGfZcmuw oT+ADg21utKdXuJv/Gtfc/3Dlfo/Nx3ZzKzhpxSHrZ45SJCnGngBF/ydLQAZGUlK RPpRI3RlcP5N72RjXqMOzHTobCJNOPttyVcMdI61uF5/43Fjclbbw5ugYG4q3qE+ tx7rkaWfdP3zXwiLm9DCXCaoNQIDAQABo4ICkjCCAo4wHQYDVR0OBBYEFN6sJ9Ju 6VBCpsxEn3AG5q925DSlMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNDVGRkNEOUFE NkU1MTFFRTlFOTYzRjYyQzRGOUFFMDIucm9hMFEGCCsGAQUFBwEHAQH/BEIwQDA+ BAIAATA4AwQBkE9uAwQBnRRYAwQBoBZmAwQBoL9kAwQBoPp+AwQBoPq8AwQBpWUQ MAwDBAGlZXIDBAGlZXQwDQYJKoZIhvcNAQELBQADggEBAA28LR4ZdniuM8RHixEW EmmobtdDJABNq3jAkDSYvfIGTi3UPF8gflU2pTte6SE2YXew3L/JuFT0kBHhRiId bG/4iac9/iPad7OEJp/8l5M79RKWiPJrAcAmyu21UCBbQBGzBqHl0s9LzB/VzZgl etXeZrDiKz1O3opGi7080dDffJBd4oFvpkKitwdHz+Nzku933D4ob+OzohzPDVBL eCAuGTqj7/yb6yDS6V75cVFv7nvQknnbfN6cddHSt+5l8n/ZwC1VP497vzePhCw5 qCp0FNnf4adRw8FCwJgGBSrezu+dRBDAuqL14soPyO6atqJHjDHxM74Yuqxesi4/ B40= -----END CERTIFICATE-----Generated at Sat Mar 7 22:52:20 2026 by rpki-client