$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa File: 3204348A383611E6B2282B5DC4F9AE02.roa (raw, json) Hash identifier: MSV3LxUccxEzwztjgTuOrU079DQ34EyY8pN67xZnvTc= Subject key identifier: 5B:46:FC:E2:3B:70:AD:A4:50:4C:FF:D4:2D:8B:3C:3D:D1:F9:5B:5D Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 37E5 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:20:52 +0000 ROA not before: Tue 30 Dec 2025 15:10:08 +0000 ROA not after: Thu 30 Apr 2026 00:00:00 +0000 asID: 135535 IP address blocks: 61.45.250.0/24 maxlen: 24 2401:4601:250::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 14:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14309 (0x37e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Dec 30 15:10:08 2025 GMT Not After : Apr 30 00:00:00 2026 GMT Subject: CN=69a49194-5432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:2d:39:0f:75:1d:66:89:41:3e:3f:0d:de:05: 81:5d:bc:51:86:45:89:12:ac:0c:c7:a1:12:96:2d: 67:a4:c4:a1:0f:b0:0d:89:07:03:1e:1b:c3:76:68: df:47:77:e9:9c:5a:fc:f8:bd:e6:0b:8f:cb:10:d6: 2c:d4:9d:f0:aa:48:fc:fc:e5:96:39:93:a2:dc:e7: 3e:0e:6c:d7:91:00:d6:f9:4b:c1:c9:3b:73:88:9f: e4:a1:e5:84:c6:ab:ac:9e:21:f5:a7:22:22:29:50: 1f:0d:55:e9:7f:28:d0:ae:c2:0a:cf:92:25:64:9c: b9:96:1a:c2:04:e8:93:19:b5:6f:42:12:b1:c8:f5: ec:f9:35:06:0b:59:51:df:5b:e6:da:6f:a3:75:66: 6a:d0:27:4f:c6:ee:ce:c2:22:d5:f3:47:59:52:e1: 1c:b1:2a:8e:d8:16:9d:14:cc:c6:07:2b:54:89:55: 10:d3:5b:7c:66:c3:db:d9:ca:c9:76:88:bc:6a:97: ae:c0:c0:2c:23:59:f1:d0:00:3e:88:12:51:ea:74: 27:6b:d2:2a:01:60:cb:c2:a7:da:42:a2:6a:c2:1b: e5:a1:67:e5:c1:a9:f7:c9:d2:a9:63:b8:a1:7f:b7: 8d:5c:f4:95:6c:f7:f9:d3:71:87:c0:99:d5:21:18: 78:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:46:FC:E2:3B:70:AD:A4:50:4C:FF:D4:2D:8B:3C:3D:D1:F9:5B:5D X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.45.250.0/24 IPv6: 2401:4601:250::/48 Signature Algorithm: sha256WithRSAEncryption 03:c6:b2:34:e6:61:9f:be:0c:1d:8f:d0:3e:57:79:30:7b:61: 6d:78:f5:32:8d:18:63:03:48:c6:57:5e:1f:27:85:8c:b3:ee: 6b:98:b0:38:90:86:f3:7e:0f:db:95:c6:b2:e4:da:c6:df:23: 34:18:9f:2b:3a:1b:56:3c:d9:ec:74:c2:cb:4e:84:3f:8f:ff: 84:13:4d:81:cb:ef:8e:16:d0:6b:10:2d:40:33:b2:6a:fa:0b: 12:2f:e0:fd:ef:62:20:38:40:91:e9:85:1c:ed:ec:d7:6c:0b: 64:4e:5c:fe:bd:c3:8c:09:af:b1:c3:c4:04:fd:44:62:0f:1a: 25:fb:e6:f7:ab:b4:31:3c:d6:22:d8:d2:20:11:8a:19:c1:48: e4:14:4e:7b:57:b5:20:ac:21:66:a3:30:c0:5c:34:46:bd:47: eb:89:fb:83:51:63:c0:96:39:a9:83:94:de:3e:4a:b4:22:de: 65:52:cc:06:ce:12:93:a0:4a:59:31:d3:93:1d:a3:7a:6f:f7: 29:7c:83:aa:22:0b:bf:92:81:98:1c:cb:47:f3:b9:09:75:de: 14:ef:cb:dc:6d:42:58:83:ba:63:0d:b0:92:70:ab:3c:3e:dd: 54:26:e6:0e:a4:4e:cc:ed:94:94:fc:50:8f:a6:28:b5:6b:f8: 6b:b0:da:8b -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICN+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUxMjMwMTUxMDA4WhcNMjYwNDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTE5NC01NDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhC05D3UdZolBPj8N3gWBXbxRhkWJEqwMx6ESli1npMShD7ANiQcDHhvDdmjf R3fpnFr8+L3mC4/LENYs1J3wqkj8/OWWOZOi3Oc+DmzXkQDW+UvByTtziJ/koeWE xqusniH1pyIiKVAfDVXpfyjQrsIKz5IlZJy5lhrCBOiTGbVvQhKxyPXs+TUGC1lR 31vm2m+jdWZq0CdPxu7OwiLV80dZUuEcsSqO2BadFMzGBytUiVUQ01t8ZsPb2crJ doi8apeuwMAsI1nx0AA+iBJR6nQna9IqAWDLwqfaQqJqwhvloWflwan3ydKpY7ih f7eNXPSVbPf503GHwJnVIRh4/wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFFtG/OI7 cK2kUEz/1C2LPD3R+VtdMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvMzIwNDM0OEEz ODM2MTFFNkIyMjgyQjVEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAPS36MA8EAgACMAkDBwAkAUYBAlAwDQYJKoZIhvcNAQELBQADggEB AAPGsjTmYZ++DB2P0D5XeTB7YW149TKNGGMDSMZXXh8nhYyz7muYsDiQhvN+D9uV xrLk2sbfIzQYnys6G1Y82ex0wstOhD+P/4QTTYHL744W0GsQLUAzsmr6CxIv4P3v YiA4QJHphRzt7NdsC2ROXP69w4wJr7HDxAT9RGIPGiX75vertDE81iLY0iARihnB SOQUTntXtSCsIWajMMBcNEa9R+uJ+4NRY8CWOamDlN4+SrQi3mVSzAbOEpOgSlkx 05Mdo3pv9yl8g6oiC7+SgZgcy0fzuQl13hTvy9xtQliDumMNsJJwqzw+3VQm5g6k TsztlJT8UI+mKLVr+Guw2os= -----END CERTIFICATE-----Generated at Thu Mar 19 17:20:36 2026 by rpki-client