$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/51FE6D48D27011ECB30F1F0DC4F9AE02.roa File: 51FE6D48D27011ECB30F1F0DC4F9AE02.roa (raw, json) Hash identifier: S6UO53MXAkAi+XLBiT9Ln1x4LjRW6kd51aANFG8YBFk= Subject key identifier: 09:2B:DB:EE:F5:52:F5:64:F5:7B:83:AB:53:C0:7F:BB:F3:C4:58:17 Certificate issuer: /CN=A916EB94/serialNumber=C4D4FB0FF027796E9DAA17B75551FD0B77F1982F Certificate serial: 04AC Authority key identifier: C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/51FE6D48D27011ECB30F1F0DC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:42:55 +0000 ROA not before: Thu 02 Oct 2025 07:22:46 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38067 IP address blocks: 43.231.20.0/22 maxlen: 24 45.112.72.0/23 maxlen: 24 103.14.128.0/22 maxlen: 23 103.14.128.0/24 maxlen: 24 103.14.129.0/24 maxlen: 24 103.14.130.0/24 maxlen: 24 103.14.131.0/24 maxlen: 24 103.29.124.0/22 maxlen: 24 103.240.44.0/22 maxlen: 24 116.12.32.0/21 maxlen: 22 116.12.32.0/22 maxlen: 24 116.12.36.0/23 maxlen: 24 116.12.38.0/24 maxlen: 24 116.12.39.0/24 maxlen: 24 120.50.176.0/21 maxlen: 24 122.102.32.0/21 maxlen: 24 210.1.240.0/20 maxlen: 24 210.1.255.128/26 maxlen: 26 2405:6900::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.crl rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1196 (0x4ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB94, serialNumber=C4D4FB0FF027796E9DAA17B75551FD0B77F1982F Validity Not Before: Oct 2 07:22:46 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47a9f-720c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9a:b9:f7:37:1b:c9:c3:f6:9e:68:3c:d9:9c: 5f:05:13:38:4b:da:91:ea:5d:35:03:51:1a:d5:93: 80:7e:85:c9:87:28:32:18:55:0a:93:a2:79:da:25: 07:f2:4c:a7:56:02:97:32:9a:09:30:bb:36:cd:d9: c2:5f:28:32:e7:9a:37:f9:3b:a3:d4:96:3a:1b:c9: 90:68:33:d4:67:44:8a:23:77:61:58:f9:2e:e7:d3: 41:6a:f3:8a:1e:7e:37:db:7a:ba:9a:61:81:78:50: 4f:72:56:09:53:59:87:07:d2:03:e3:fb:ee:1c:7d: 7a:04:cc:d0:5a:91:9f:dc:b2:24:69:e3:f8:7f:9e: 60:f7:d9:5b:eb:7b:13:dd:e2:db:32:3b:81:d4:1b: d9:41:45:12:57:f8:76:c1:43:90:77:21:db:20:0a: 60:e3:54:42:b6:5e:f8:60:e9:a0:45:ca:f7:08:1c: c2:83:09:1c:b0:77:bc:38:6a:b5:0c:30:ce:73:54: 71:72:d9:26:a5:de:bc:fc:73:c8:8d:d7:5f:ff:57: 21:cb:7b:30:bd:68:87:86:c1:14:bb:79:0e:48:0e: 32:d7:71:0e:9c:e5:1d:66:fd:c7:8e:6a:c9:00:5b: 3b:e7:ff:75:32:12:cb:e2:39:33:55:66:fa:33:65: d3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:2B:DB:EE:F5:52:F5:64:F5:7B:83:AB:53:C0:7F:BB:F3:C4:58:17 X509v3 Authority Key Identifier: keyid:C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/51FE6D48D27011ECB30F1F0DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.231.20.0/22 45.112.72.0/23 103.14.128.0/22 103.29.124.0/22 103.240.44.0/22 116.12.32.0/21 120.50.176.0/21 122.102.32.0/21 210.1.240.0/20 IPv6: 2405:6900::/36 Signature Algorithm: sha256WithRSAEncryption a2:4d:b3:ef:60:b5:2d:f3:15:ac:6d:a8:90:6d:16:50:f5:3e: bf:e9:bc:64:f7:83:d7:e4:f5:46:13:39:25:a8:8a:c1:2a:77: d5:33:9c:ec:7d:8d:35:08:53:04:0b:94:32:4f:64:28:0f:26: c0:02:e6:67:f5:aa:55:06:15:95:8f:03:28:90:1c:1c:a4:59: 6f:da:85:28:a1:c4:c3:b7:b8:18:d3:67:48:00:ad:56:ad:9a: c5:30:fc:2a:5b:78:f7:29:4f:40:26:ea:14:01:68:48:c8:c6: d2:84:85:11:53:11:15:80:4a:3d:6c:18:81:5e:06:4b:71:9c: b5:82:e2:03:30:17:2f:b7:45:bb:08:c1:3a:ce:19:66:97:e8: 53:b6:7b:34:19:9c:b0:f9:a3:a0:d6:4e:34:83:17:33:03:54: 66:73:8f:44:0f:cd:9f:8a:43:f0:1c:78:7e:d3:83:ff:23:56: e3:60:0f:da:13:2c:3c:ab:ec:c7:02:69:a0:f7:b3:2e:0b:cb: 52:dd:a9:10:c4:85:1a:1f:8b:24:9d:dd:a8:e6:db:85:86:06: cc:5d:af:35:36:b3:c6:2c:9e:ed:62:f1:69:02:90:68:c6:a7: 71:c7:9c:81:73:60:5f:4d:61:b8:37:f0:1f:aa:99:86:2e:14: 66:30:a9:6e -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICBKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTQxMTAvBgNVBAUTKEM0RDRGQjBGRjAyNzc5NkU5REFBMTdCNzU1NTFGRDBC NzdGMTk4MkYwHhcNMjUxMDAyMDcyMjQ2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2E5Zi03MjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpq59zcbycP2nmg82ZxfBRM4S9qR6l01A1Ea1ZOAfoXJhygyGFUKk6J52iUH 8kynVgKXMpoJMLs2zdnCXygy55o3+Tuj1JY6G8mQaDPUZ0SKI3dhWPku59NBavOK Hn4323q6mmGBeFBPclYJU1mHB9ID4/vuHH16BMzQWpGf3LIkaeP4f55g99lb63sT 3eLbMjuB1BvZQUUSV/h2wUOQdyHbIApg41RCtl74YOmgRcr3CBzCgwkcsHe8OGq1 DDDOc1Rxctkmpd68/HPIjddf/1chy3swvWiHhsEUu3kOSA4y13EOnOUdZv3HjmrJ AFs75/91MhLL4jkzVWb6M2XTVwIDAQABo4ICoDCCApwwHQYDVR0OBBYEFAkr2+71 UvVk9XuDq1PAf7vzxFgXMB8GA1UdIwQYMBaAFMTU+w/wJ3lunaoXt1VR/Qt38Zgv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5NC9FM0NDMjVEODgx MUUxMUVDOTIwMjU1NTFDNEY5QUUwMi94TlQ3RF9BbmVXNmRxaGUzVlZIOUMzZnht QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOVDdEX0FuZVc2ZHFoZTNWVkg5QzNmeG1DOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVCOTQvRTNDQzI1RDg4MTFFMTFFQzkyMDI1NTUxQzRGOUFFMDIvNTFGRTZENDhE MjcwMTFFQ0IzMEYxRjBEQzRGOUFFMDIucm9hMF8GCCsGAQUFBwEHAQH/BFAwTjA8 BAIAATA2AwQCK+cUAwQBLXBIAwQCZw6AAwQCZx18AwQCZ/AsAwQDdAwgAwQDeDKw AwQDemYgAwQE0gHwMA4EAgACMAgDBgQkBWkAADANBgkqhkiG9w0BAQsFAAOCAQEA ok2z72C1LfMVrG2okG0WUPU+v+m8ZPeD1+T1RhM5JaiKwSp31TOc7H2NNQhTBAuU Mk9kKA8mwALmZ/WqVQYVlY8DKJAcHKRZb9qFKKHEw7e4GNNnSACtVq2axTD8Klt4 9ylPQCbqFAFoSMjG0oSFEVMRFYBKPWwYgV4GS3GctYLiAzAXL7dFuwjBOs4ZZpfo U7Z7NBmcsPmjoNZONIMXMwNUZnOPRA/Nn4pD8Bx4ftOD/yNW42AP2hMsPKvsxwJp oPezLgvLUt2pEMSFGh+LJJ3dqObbhYYGzF2vNTazxiye7WLxaQKQaManccecgXNg X01huDfwH6qZhi4UZjCpbg== -----END CERTIFICATE-----Generated at Thu Mar 26 22:49:47 2026 by rpki-client