$ rpki-client -vvf rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/A4A022041D1B11F188B066AA103D8C67.roa File: A4A022041D1B11F188B066AA103D8C67.roa (raw, json) Hash identifier: 0UiK+7UG4gazEA6M9ztbhs59f2RFRj/xH1mxg/FNT2U= Subject key identifier: 8A:00:18:44:7E:2E:40:58:34:CF:F3:95:68:25:EC:F3:31:45:3E:4C Certificate issuer: /CN=A91471A0/serialNumber=DE8C116551042BE8E7264BEDB582F0A377BB24BD Certificate serial: 3D Authority key identifier: DE:8C:11:65:51:04:2B:E8:E7:26:4B:ED:B5:82:F0:A3:77:BB:24:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3owRZVEEK-jnJkvttYLwo3e7JL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/A4A022041D1B11F188B066AA103D8C67.roa Signing time: Wed 11 Mar 2026 07:26:39 +0000 ROA not before: Wed 11 Mar 2026 07:26:39 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 64050 IP address blocks: 43.226.20.0/22 maxlen: 24 103.45.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/3owRZVEEK-jnJkvttYLwo3e7JL0.crl rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/3owRZVEEK-jnJkvttYLwo3e7JL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3owRZVEEK-jnJkvttYLwo3e7JL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:47:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91471A0, serialNumber=DE8C116551042BE8E7264BEDB582F0A377BB24BD Validity Not Before: Mar 11 07:26:39 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69b1192f-7298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d2:33:38:3a:39:7d:22:4f:8a:9d:e1:19:ae: e4:92:56:7e:2b:b5:ea:80:78:2c:6f:74:96:e2:87: d7:35:6c:90:1c:14:45:c6:a9:bc:5c:7a:dd:1c:00: 61:7e:4e:aa:75:96:db:cf:e7:88:dd:a4:36:32:8b: 8a:38:ca:75:38:a2:e2:9a:9d:f7:ac:5b:0e:d8:4a: c3:fc:71:cf:98:91:94:1a:54:81:db:3c:87:a2:4d: 95:90:e9:8a:eb:04:86:58:e7:99:e6:cc:2d:32:bb: c0:25:7d:da:72:20:d1:6f:8d:5d:0f:5a:d4:4a:ad: aa:2c:4e:06:01:7a:2b:2a:80:b5:d6:db:a8:ea:5d: 5f:21:c5:77:93:9b:87:99:d9:aa:06:01:0a:cd:9f: 77:4d:48:34:a3:c8:a6:ec:aa:dd:15:44:30:91:20: 78:95:83:60:58:69:ff:82:46:aa:04:33:b1:a2:f4: 14:a6:b4:72:16:0e:7b:dd:88:b4:22:19:50:56:13: e2:1d:a9:86:40:2d:3e:8d:80:23:e7:e8:47:dc:ac: 31:82:72:59:2d:bf:ee:30:04:5e:0e:74:b7:d5:72: 37:fd:1f:08:a2:83:95:a9:c9:04:a4:f9:c6:2f:b6: e9:03:0e:ec:74:01:7f:65:72:ff:b5:e1:12:94:21: 79:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:00:18:44:7E:2E:40:58:34:CF:F3:95:68:25:EC:F3:31:45:3E:4C X509v3 Authority Key Identifier: keyid:DE:8C:11:65:51:04:2B:E8:E7:26:4B:ED:B5:82:F0:A3:77:BB:24:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/3owRZVEEK-jnJkvttYLwo3e7JL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3owRZVEEK-jnJkvttYLwo3e7JL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/A4A022041D1B11F188B066AA103D8C67.roa sbgp-ipAddrBlock: critical IPv4: 43.226.20.0/22 103.45.68.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:61:4e:f7:0c:2a:ed:9a:2a:78:16:39:6c:74:b1:4b:6b:a4: 27:89:23:25:b5:85:2c:f3:56:48:4d:d6:f4:1c:df:63:82:13: f7:61:38:09:8f:69:10:c7:d0:7a:fd:bb:ce:47:2c:8a:b5:21: 34:ef:d1:87:fa:86:61:8a:e4:58:ca:50:ad:3f:78:16:e6:88: ca:02:ff:49:38:56:9f:5a:6c:b0:07:19:c0:d9:bc:d8:be:6f: d9:8a:ef:ed:4d:30:d7:69:7f:6c:33:3a:b9:22:20:3d:fc:d9: fb:a0:91:7a:26:9f:fc:d0:99:cd:33:3e:f6:5d:9a:04:5b:ea: 7c:11:bc:a9:e9:b0:e8:49:31:30:91:1f:b0:1d:80:ff:1b:c3: 83:90:23:05:06:20:a1:91:c5:48:e3:e6:8e:0c:c7:63:8b:81: 40:70:09:46:2b:30:61:8e:e0:89:29:8a:5a:97:c2:d7:9e:08: 61:9c:ff:ac:aa:e8:9f:b2:f8:19:fb:83:53:19:0b:45:d2:d8: cc:13:6a:81:75:a6:ec:3d:ed:85:51:ab:53:24:4e:d8:70:30: 87:65:b1:2d:ff:c6:6b:fd:20:cf:6b:3d:3f:2f:6a:76:58:9f: bf:5d:df:32:d3:e0:67:6f:04:55:9c:08:09:68:1e:8c:ae:1a: 4d:4c:27:15 -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NzFBMDExMC8GA1UEBRMoREU4QzExNjU1MTA0MkJFOEU3MjY0QkVEQjU4MkYwQTM3 N0JCMjRCRDAeFw0yNjAzMTEwNzI2MzlaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YjExOTJmLTcyOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCh0jM4Ojl9Ik+KneEZruSSVn4rteqAeCxvdJbih9c1bJAcFEXGqbxcet0cAGF+ Tqp1ltvP54jdpDYyi4o4ynU4ouKanfesWw7YSsP8cc+YkZQaVIHbPIeiTZWQ6Yrr BIZY55nmzC0yu8AlfdpyINFvjV0PWtRKraosTgYBeisqgLXW26jqXV8hxXeTm4eZ 2aoGAQrNn3dNSDSjyKbsqt0VRDCRIHiVg2BYaf+CRqoEM7Gi9BSmtHIWDnvdiLQi GVBWE+IdqYZALT6NgCPn6EfcrDGCclktv+4wBF4OdLfVcjf9Hwiig5WpyQSk+cYv tukDDux0AX9lcv+14RKUIXlFAgMBAAGjggJmMIICYjAdBgNVHQ4EFgQUigAYRH4u QFg0z/OVaCXs8zFFPkwwHwYDVR0jBBgwFoAU3owRZVEEK+jnJkvttYLwo3e7JL0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3MUEwL0Q2OTk0REU2REEz RTExRjA4MUY1QTQ1NzhFRDM2NDFELzNvd1JaVkVFSy1qbkprdnR0WUx3bzNlN0pM MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM293UlpWRUVLLWpuSmt2dHRZTHdvM2U3SkwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzFBMC9ENjk5NERFNkRBM0UxMUYwODFGNUE0NTc4RUQzNjQxRC9BNEEwMjIwNDFE MUIxMUYxODhCMDY2QUExMDNEOEM2Ny5yb2EwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAIr4hQDBAJnLUQwDQYJKoZIhvcNAQELBQADggEBAEphTvcMKu2aKngW OWx0sUtrpCeJIyW1hSzzVkhN1vQc32OCE/dhOAmPaRDH0Hr9u85HLIq1ITTv0Yf6 hmGK5FjKUK0/eBbmiMoC/0k4Vp9abLAHGcDZvNi+b9mK7+1NMNdpf2wzOrkiID38 2fugkXomn/zQmc0zPvZdmgRb6nwRvKnpsOhJMTCRH7AdgP8bw4OQIwUGIKGRxUjj 5o4Mx2OLgUBwCUYrMGGO4IkpilqXwteeCGGc/6yq6J+y+Bn7g1MZC0XS2MwTaoF1 puw97YVRq1MkTthwMIdlsS3/xmv9IM9rPT8vanZYn79d3zLT4GdvBFWcCAloHoyu Gk1MJxU= -----END CERTIFICATE-----Generated at Thu Mar 26 18:42:26 2026 by rpki-client