$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/29BC840E002711EB8FA6A142C4F9AE02.roa File: 29BC840E002711EB8FA6A142C4F9AE02.roa (raw, json) Hash identifier: 1hK6aCJ+7Fb1oUPOZ4u6IyJKzDYRKvTsmB4Y2o3Noe8= Subject key identifier: D6:F4:A7:5B:BA:A6:94:98:DA:10:7F:3D:8F:EE:F7:BF:3D:8A:99:C1 Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 08A2 Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/29BC840E002711EB8FA6A142C4F9AE02.roa Signing time: Mon 16 Mar 2026 20:27:40 +0000 ROA not before: Mon 16 Mar 2026 20:27:40 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 134176 IP address blocks: 43.240.14.0/24 maxlen: 24 103.51.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2210 (0x8a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Mar 16 20:27:40 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b867bc-4e76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8d:43:c2:f9:d9:44:f0:c7:6e:e3:53:8c:28: 5c:bf:9a:ff:83:2c:f4:f6:c5:2f:b3:6c:94:9a:d9: b0:bf:f6:10:d8:c8:74:0d:5f:07:89:44:f8:c4:56: b5:b0:ae:f6:2b:cd:62:17:8f:9e:e2:7a:ee:81:2a: 8d:3e:c8:2c:ae:56:33:b2:7c:ff:08:64:8c:f8:b0: a6:4c:74:a5:cd:0a:9c:22:b1:eb:7b:b7:4a:cc:6e: ec:fa:b2:3f:a5:71:fa:1b:61:16:0b:78:6b:c1:ba: 80:da:27:3a:69:b3:76:40:0d:52:81:b5:74:89:07: 94:3f:75:66:ac:96:af:94:47:f4:af:cc:37:fe:9c: 5b:cf:bc:7d:3a:61:ba:16:6f:73:0f:76:f6:02:d7: 82:bb:85:29:66:21:c1:75:5b:1d:73:6d:d2:f4:b7: 5d:c2:b8:bd:4f:db:ae:20:bd:f2:ea:dc:2a:c5:6e: 00:44:97:78:03:d9:77:39:11:e9:0a:57:a2:1c:88: d1:5d:6d:b1:35:d9:33:1b:67:06:01:df:4f:8c:19: 86:c4:88:d0:76:f7:92:07:65:6f:5a:76:c0:6e:1f: a7:7f:8e:2c:4a:3d:4f:85:9b:78:c7:02:a1:74:b0: b2:fa:c4:18:72:de:37:fa:bf:5f:bc:9a:15:26:ed: b0:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:F4:A7:5B:BA:A6:94:98:DA:10:7F:3D:8F:EE:F7:BF:3D:8A:99:C1 X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/29BC840E002711EB8FA6A142C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.240.14.0/24 103.51.146.0/24 Signature Algorithm: sha256WithRSAEncryption 38:97:95:ce:17:1e:31:7a:87:ed:aa:46:a7:15:53:72:a2:d8: 51:c0:24:ff:94:22:25:c5:cf:6c:2c:a4:f1:4c:4c:bb:33:c3: ed:18:ed:af:93:af:f9:9f:c5:7e:81:28:d1:18:eb:21:3d:23: 38:04:59:5a:bf:77:70:e8:6b:4f:14:d9:36:57:bc:27:ac:c0: 6c:13:63:ac:67:c3:6a:7d:df:a0:19:b8:41:4b:87:c3:28:d6: 7a:94:b1:73:1c:a4:09:c4:5f:5c:8f:82:11:94:50:7c:53:44: 2b:59:93:a5:24:ec:b9:7b:6a:da:6b:df:fb:7f:fe:46:48:43: b1:38:4c:6d:25:53:e1:25:f0:a0:b9:5c:72:86:99:c8:62:88: 11:26:e1:3a:b4:a0:35:e6:8d:9d:fd:94:49:39:7d:50:0c:28: e8:6c:3e:bc:11:ad:0d:4b:23:54:72:3a:9a:77:e1:13:f0:5e: 88:05:8a:57:45:b8:c8:29:20:46:8c:e4:da:99:0f:52:6d:9c: bc:99:05:ef:bc:bb:8a:fd:2e:4d:16:b1:50:82:ff:4d:f5:a0: b6:5f:ca:ac:05:f1:6f:80:f8:fd:f2:ee:7d:b2:71:ac:6a:5b: b7:e9:f5:a4:d8:ac:6b:cb:ef:da:b2:49:42:31:bf:22:94:52: 6a:2e:1a:94 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjYwMzE2MjAyNzQwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI4NjdiYy00ZTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo41DwvnZRPDHbuNTjChcv5r/gyz09sUvs2yUmtmwv/YQ2Mh0DV8HiUT4xFa1 sK72K81iF4+e4nrugSqNPsgsrlYzsnz/CGSM+LCmTHSlzQqcIrHre7dKzG7s+rI/ pXH6G2EWC3hrwbqA2ic6abN2QA1SgbV0iQeUP3VmrJavlEf0r8w3/pxbz7x9OmG6 Fm9zD3b2AteCu4UpZiHBdVsdc23S9Lddwri9T9uuIL3y6twqxW4ARJd4A9l3ORHp CleiHIjRXW2xNdkzG2cGAd9PjBmGxIjQdveSB2VvWnbAbh+nf44sSj1PhZt4xwKh dLCy+sQYct43+r9fvJoVJu2wOwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNb0p1u6 ppSY2hB/PY/u9789ipnBMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk3QzIvNEU0MjZERThGQkVBMTFFQTk0MEExRDE5QzRGOUFFMDIvMjlCQzg0MEUw MDI3MTFFQjhGQTZBMTQyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK/AOAwQAZzOSMA0GCSqGSIb3DQEBCwUAA4IBAQA4l5XOFx4xeoft qkanFVNyothRwCT/lCIlxc9sLKTxTEy7M8PtGO2vk6/5n8V+gSjRGOshPSM4BFla v3dw6GtPFNk2V7wnrMBsE2OsZ8Nqfd+gGbhBS4fDKNZ6lLFzHKQJxF9cj4IRlFB8 U0QrWZOlJOy5e2raa9/7f/5GSEOxOExtJVPhJfCguVxyhpnIYogRJuE6tKA15o2d /ZRJOX1QDCjobD68Ea0NSyNUcjqad+ET8F6IBYpXRbjIKSBGjOTamQ9SbZy8mQXv vLuK/S5NFrFQgv9N9aC2X8qsBfFvgPj98u59snGsalu36fWk2Kxry+/asklCMb8i lFJqLhqU -----END CERTIFICATE-----Generated at Thu Mar 26 22:33:11 2026 by rpki-client