$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/4314DB4C8EAF11F091C0B421C4F9AE02.roa File: 4314DB4C8EAF11F091C0B421C4F9AE02.roa (raw, json) Hash identifier: v7v6WaMiJJgHGJFslronZNjFXcWnrbiRDd5BXO1kv5Q= Subject key identifier: EF:DE:0B:4F:93:22:09:83:59:50:90:94:8F:45:CC:CE:7D:1E:3A:0B Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 0878 Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/4314DB4C8EAF11F091C0B421C4F9AE02.roa Signing time: Thu 19 Mar 2026 05:05:23 +0000 ROA not before: Thu 19 Mar 2026 05:05:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132827 IP address blocks: 43.231.223.0/24 maxlen: 24 43.251.48.0/24 maxlen: 24 43.251.49.0/24 maxlen: 24 103.20.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:39:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9, serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Mar 19 05:05:23 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69bb8413-f0f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:66:dd:95:d5:80:0a:57:9f:ca:18:61:17:cc: a9:a7:28:33:fa:f1:38:e0:05:49:20:b3:99:90:af: 84:94:ee:44:9e:02:ff:1b:5c:fc:53:01:94:28:96: 6c:48:48:39:f2:e7:9a:24:81:fd:17:70:37:4a:fc: b5:f9:95:62:9f:55:a3:d2:d6:aa:6c:c6:16:65:de: 54:c2:5b:a4:50:f7:a3:8c:43:aa:37:1b:5a:c7:d7: f1:87:29:d2:46:1d:8a:d6:95:61:4f:10:29:63:67: 3c:63:9a:75:1b:be:37:c3:95:4e:c4:d7:eb:9a:97: c2:9b:0c:97:77:1d:2f:69:0f:3a:e3:2a:f8:e8:59: 26:1d:ac:1d:9a:b4:22:6e:c9:88:82:3a:9c:83:03: 2f:f6:cd:af:20:cd:df:5e:e5:cd:3d:75:61:1b:dd: a0:ad:71:bd:3c:9c:0b:26:88:03:b6:24:9b:40:33: 3b:99:3c:93:8c:d4:b6:be:50:bc:28:ce:b7:c8:8a: 9d:03:26:1c:d2:c0:14:ad:c8:dd:c2:ef:b5:27:be: fd:14:37:0d:6a:4b:16:e4:58:4d:1b:6f:29:a7:76: cd:e1:47:81:82:c3:28:5c:a6:e2:76:fe:16:23:c2: db:c1:b4:23:83:ea:62:7c:b7:20:d9:1b:4a:b7:61: b3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:DE:0B:4F:93:22:09:83:59:50:90:94:8F:45:CC:CE:7D:1E:3A:0B X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/4314DB4C8EAF11F091C0B421C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.231.223.0/24 43.251.48.0/23 103.20.158.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:0d:9f:21:c5:10:4d:94:f7:50:d2:1b:34:c1:6a:b6:2e:aa: 78:16:a3:4c:f0:ab:14:3a:4a:ee:a7:d4:09:98:08:6a:a4:a2: 7b:ed:bd:f3:e6:3d:04:38:bb:af:be:d8:64:5c:8c:11:aa:ef: 4f:57:35:c7:e0:fd:b8:d7:cf:b7:62:ae:07:ac:9b:8c:78:e7: ce:d3:84:8d:6c:91:15:71:e8:8a:d6:fb:46:49:b3:2e:41:f2: 8d:b9:b8:6f:df:25:71:a0:84:d8:b7:5b:4c:0d:99:25:50:26: 01:c8:8d:3f:40:3b:24:fa:f6:94:67:05:05:6c:ca:aa:22:4b: d1:18:66:6a:dd:01:60:2e:ed:2a:e7:be:76:a2:c7:b4:96:e9: 52:d6:67:0c:6c:d8:5d:74:cb:34:b7:4c:05:0f:df:51:68:74: df:60:f2:89:8c:f5:d4:db:a6:52:34:de:85:38:16:77:e9:7f: 10:2a:7f:a8:16:ba:ae:2f:20:d9:02:f0:5d:4d:1a:21:35:29: 1e:e2:8b:f2:c8:35:8c:bc:e1:6b:95:60:70:79:72:28:ce:90: 65:98:5e:e9:de:21:c1:fb:1a:aa:73:98:48:ad:58:68:2c:07: b8:2d:15:62:f3:f5:b4:83:db:5b:bf:da:b4:38:08:a0:9f:81: 5a:83:7c:53 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjYwMzE5MDUwNTIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWJiODQxMy1mMGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGbdldWAClefyhhhF8yppygz+vE44AVJILOZkK+ElO5EngL/G1z8UwGUKJZs SEg58ueaJIH9F3A3Svy1+ZVin1Wj0taqbMYWZd5UwlukUPejjEOqNxtax9fxhynS Rh2K1pVhTxApY2c8Y5p1G743w5VOxNfrmpfCmwyXdx0vaQ864yr46FkmHawdmrQi bsmIgjqcgwMv9s2vIM3fXuXNPXVhG92grXG9PJwLJogDtiSbQDM7mTyTjNS2vlC8 KM63yIqdAyYc0sAUrcjdwu+1J779FDcNaksW5FhNG28pp3bN4UeBgsMoXKbidv4W I8LbwbQjg+pifLcg2RtKt2Gz5wIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFO/eC0+T IgmDWVCQlI9FzM59HjoLMB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQxRTkvREFEOEZCODAwNzkwMTFFQkJCOThDMDc2QzRGOUFFMDIvNDMxNERCNEM4 RUFGMTFGMDkxQzBCNDIxQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAK+ffAwQBK/swAwQAZxSeMA0GCSqGSIb3DQEBCwUAA4IBAQCbDZ8h xRBNlPdQ0hs0wWq2Lqp4FqNM8KsUOkrup9QJmAhqpKJ77b3z5j0EOLuvvthkXIwR qu9PVzXH4P2418+3Yq4HrJuMeOfO04SNbJEVceiK1vtGSbMuQfKNubhv3yVxoITY t1tMDZklUCYByI0/QDsk+vaUZwUFbMqqIkvRGGZq3QFgLu0q5752ose0lulS1mcM bNhddMs0t0wFD99RaHTfYPKJjPXU26ZSNN6FOBZ36X8QKn+oFrquLyDZAvBdTRoh NSke4ovyyDWMvOFrlWBweXIozpBlmF7p3iHB+xqqc5hIrVhoLAe4LRVi8/W0g9tb v9q0OAign4Fag3xT -----END CERTIFICATE-----Generated at Thu Mar 26 08:55:01 2026 by rpki-client