$ rpki-client -vvf rpki.apnic.net/member_repository/A91843C3/7928DCDCD90B11F0A47591C87CD3641D/DDC2893A1D1811F18BA409790F3D8C67.roa File: DDC2893A1D1811F18BA409790F3D8C67.roa (raw, json) Hash identifier: cNWum38O0jmMHjPTuqs5cl7A4tEwjtytih/Wkkc4KLo= Subject key identifier: 4A:61:B0:47:E2:9D:E8:8E:48:A7:41:87:54:00:32:5D:6B:30:42:55 Certificate issuer: /CN=A91843C3/serialNumber=BAFA22FFB8E9B22592955C299A9B19CB4EACFA6E Certificate serial: 31 Authority key identifier: BA:FA:22:FF:B8:E9:B2:25:92:95:5C:29:9A:9B:19:CB:4E:AC:FA:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvoi_7jpsiWSlVwpmpsZy06s-m4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91843C3/7928DCDCD90B11F0A47591C87CD3641D/DDC2893A1D1811F18BA409790F3D8C67.roa Signing time: Wed 11 Mar 2026 07:06:46 +0000 ROA not before: Wed 11 Mar 2026 07:06:46 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 13335 IP address blocks: 43.226.124.0/22 maxlen: 24 103.254.108.0/22 maxlen: 24 2400:6c80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91843C3/7928DCDCD90B11F0A47591C87CD3641D/uvoi_7jpsiWSlVwpmpsZy06s-m4.crl rsync://rpki.apnic.net/member_repository/A91843C3/7928DCDCD90B11F0A47591C87CD3641D/uvoi_7jpsiWSlVwpmpsZy06s-m4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvoi_7jpsiWSlVwpmpsZy06s-m4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:45:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91843C3, serialNumber=BAFA22FFB8E9B22592955C299A9B19CB4EACFA6E Validity Not Before: Mar 11 07:06:46 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69b11486-29f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f8:22:fb:29:88:12:07:c7:32:f7:e1:de:70: 7f:e8:c5:7a:c0:83:92:87:c8:96:2e:2d:d3:ef:73: b8:d9:1d:46:50:d3:47:69:7b:89:79:d9:e8:5d:42: 90:f6:07:73:34:e7:12:be:74:ae:47:9b:73:b1:5a: 87:d6:6d:9c:05:db:a9:45:37:11:52:13:a1:ee:1e: 0c:e5:f9:20:fa:13:d8:03:18:48:2d:ac:bb:98:9b: 84:86:14:56:e0:6f:f1:b9:3a:20:e3:67:d0:a8:44: fd:ec:0f:c0:be:d5:a2:c7:47:c2:f9:dc:6b:d8:54: fb:e0:c1:7b:d9:f9:67:15:7d:da:5c:f8:ec:33:14: 73:82:58:8f:36:ce:95:8d:da:d1:52:28:4c:ed:3c: a4:b6:1e:ee:99:8c:22:59:7c:ce:38:43:37:6a:79: 2a:69:07:35:8f:f0:af:19:d3:37:e2:51:d6:cb:9c: d9:eb:4c:5d:e7:bd:5a:68:3a:05:a6:fd:50:eb:a2: 09:91:87:76:52:1a:76:60:f1:aa:32:3a:60:73:d5: a9:c2:fe:65:61:ef:0e:20:46:72:26:66:5c:a1:7a: d7:38:8c:43:f9:43:ab:d8:c3:ee:83:55:66:9a:09: fd:aa:56:a2:79:5a:2d:1c:5e:0b:97:ce:87:cd:32: e2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:61:B0:47:E2:9D:E8:8E:48:A7:41:87:54:00:32:5D:6B:30:42:55 X509v3 Authority Key Identifier: keyid:BA:FA:22:FF:B8:E9:B2:25:92:95:5C:29:9A:9B:19:CB:4E:AC:FA:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91843C3/7928DCDCD90B11F0A47591C87CD3641D/uvoi_7jpsiWSlVwpmpsZy06s-m4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvoi_7jpsiWSlVwpmpsZy06s-m4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91843C3/7928DCDCD90B11F0A47591C87CD3641D/DDC2893A1D1811F18BA409790F3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 43.226.124.0/22 103.254.108.0/22 IPv6: 2400:6c80::/32 Signature Algorithm: sha256WithRSAEncryption 63:b9:20:fc:43:86:cc:42:e6:33:51:ed:4a:45:79:b9:8f:69: 60:2e:9d:e8:19:40:8a:c1:64:02:73:d1:62:69:0d:c3:91:2f: 29:fd:e8:31:44:97:72:d7:76:dd:96:c2:e0:a4:3b:07:68:f1: 8b:7c:37:28:10:8a:ad:fa:bd:3e:ed:c3:56:81:98:66:2c:36: fb:f9:87:69:61:7f:22:b7:81:00:15:89:d9:25:b0:82:37:b9: ed:12:dd:52:4d:7c:59:01:eb:67:ca:2b:5f:f7:2b:ca:0f:e6: a8:69:09:ef:4b:c0:f5:9f:ec:ee:e8:4d:8c:15:19:38:8c:75: 03:05:a9:97:69:15:ea:7c:ae:a2:56:23:d9:a4:3a:c3:30:c7: 1b:81:2b:d6:8b:63:d9:f3:9b:58:b1:9f:a3:2a:95:b3:ac:b2: 3e:d6:50:d6:c7:0d:0c:0a:de:78:26:31:2e:da:5d:4a:ea:19: e1:34:03:9c:32:35:16:44:2b:f3:f6:20:d2:d8:60:bf:3c:44: 86:f5:96:cc:92:ce:4d:06:0d:4d:da:0c:e4:a4:0c:b6:4d:fe: 61:e9:32:b2:7b:38:7e:76:d5:67:46:37:1d:77:e4:7f:e2:1a: 62:3e:0c:ea:78:35:e3:2c:23:5a:63:ee:4e:a4:a1:78:d3:47: e2:1d:7a:71 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDNDMzExMC8GA1UEBRMoQkFGQTIyRkZCOEU5QjIyNTkyOTU1QzI5OUE5QjE5Q0I0 RUFDRkE2RTAeFw0yNjAzMTEwNzA2NDZaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YjExNDg2LTI5ZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1+CL7KYgSB8cy9+HecH/oxXrAg5KHyJYuLdPvc7jZHUZQ00dpe4l52ehdQpD2 B3M05xK+dK5Hm3OxWofWbZwF26lFNxFSE6HuHgzl+SD6E9gDGEgtrLuYm4SGFFbg b/G5OiDjZ9CoRP3sD8C+1aLHR8L53GvYVPvgwXvZ+WcVfdpc+OwzFHOCWI82zpWN 2tFSKEztPKS2Hu6ZjCJZfM44QzdqeSppBzWP8K8Z0zfiUdbLnNnrTF3nvVpoOgWm /VDrogmRh3ZSGnZg8aoyOmBz1anC/mVh7w4gRnImZlyhetc4jEP5Q6vYw+6DVWaa Cf2qVqJ5Wi0cXguXzofNMuL/AgMBAAGjggJ1MIICcTAdBgNVHQ4EFgQUSmGwR+Kd 6I5Ip0GHVAAyXWswQlUwHwYDVR0jBBgwFoAUuvoi/7jpsiWSlVwpmpsZy06s+m4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0M0MzLzc5MjhEQ0RDRDkw QjExRjBBNDc1OTFDODdDRDM2NDFEL3V2b2lfN2pwc2lXU2xWd3BtcHNaeTA2cy1t NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdXZvaV83anBzaVdTbFZ3cG1wc1p5MDZzLW00LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDNDMy83OTI4RENEQ0Q5MEIxMUYwQTQ3NTkxQzg3Q0QzNjQxRC9EREMyODkzQTFE MTgxMUYxOEJBNDA5NzkwRjNEOEM2Ny5yb2EwNAYIKwYBBQUHAQcBAf8EJTAjMBIE AgABMAwDBAIr4nwDBAJn/mwwDQQCAAIwBwMFACQAbIAwDQYJKoZIhvcNAQELBQAD ggEBAGO5IPxDhsxC5jNR7UpFebmPaWAunegZQIrBZAJz0WJpDcORLyn96DFEl3LX dt2WwuCkOwdo8Yt8NygQiq36vT7tw1aBmGYsNvv5h2lhfyK3gQAVidklsII3ue0S 3VJNfFkB62fKK1/3K8oP5qhpCe9LwPWf7O7oTYwVGTiMdQMFqZdpFep8rqJWI9mk OsMwxxuBK9aLY9nzm1ixn6MqlbOssj7WUNbHDQwK3ngmMS7aXUrqGeE0A5wyNRZE K/P2INLYYL88RIb1lsySzk0GDU3aDOSkDLZN/mHpMrJ7OH521WdGNx135H/iGmI+ DOp4NeMsI1pj7k6koXjTR+IdenE= -----END CERTIFICATE-----Generated at Thu Mar 26 16:01:10 2026 by rpki-client