$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/F2CD19D6E96011EF8940367DC4F9AE02.roa File: F2CD19D6E96011EF8940367DC4F9AE02.roa (raw, json) Hash identifier: 6TYjtHVL9DKFc3Ur8BGHJfba6s7mYrWrb13/0ukiay0= Subject key identifier: 6C:BC:6A:36:2C:41:34:C2:13:0E:20:15:BE:7C:F5:66:3E:12:F8:87 Certificate issuer: /CN=A91A6F68/serialNumber=620D39B3A1837973BD13269F2B06AC9B2738820D Certificate serial: E2 Authority key identifier: 62:0D:39:B3:A1:83:79:73:BD:13:26:9F:2B:06:AC:9B:27:38:82:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yg05s6GDeXO9EyafKwasmyc4gg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/F2CD19D6E96011EF8940367DC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:33:57 +0000 ROA not before: Wed 05 Nov 2025 06:51:02 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 50049 IP address blocks: 43.250.52.0/22 maxlen: 22 43.250.52.0/24 maxlen: 24 43.250.53.0/24 maxlen: 24 43.250.54.0/24 maxlen: 24 43.250.55.0/24 maxlen: 24 103.41.176.0/22 maxlen: 22 103.41.176.0/24 maxlen: 24 103.41.177.0/24 maxlen: 24 103.41.178.0/24 maxlen: 24 103.41.179.0/24 maxlen: 24 103.147.152.0/24 maxlen: 24 2406:4fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/Yg05s6GDeXO9EyafKwasmyc4gg0.crl rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/Yg05s6GDeXO9EyafKwasmyc4gg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yg05s6GDeXO9EyafKwasmyc4gg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=620D39B3A1837973BD13269F2B06AC9B2738820D Validity Not Before: Nov 5 06:51:02 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a59fd5-3cff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:70:68:1b:a0:1c:dd:40:6e:b7:71:08:f9:24: 43:4a:3a:39:f2:a8:dd:46:ed:c5:cb:f3:68:2d:c4: ce:11:a9:85:b6:0d:3e:3f:c1:76:02:bf:4e:c2:91: 8d:d6:81:f8:75:ef:bd:b4:17:41:08:56:f1:fc:af: 84:bf:e6:b9:86:21:01:fd:0e:10:a8:52:f3:40:b7: e1:8b:44:8b:2b:af:23:be:da:ef:75:c0:46:e4:84: 0d:c1:90:23:bc:65:d4:c1:19:df:ef:be:73:d3:e9: 5f:3c:59:74:be:27:42:bd:4e:73:99:c9:31:01:50: 29:72:69:98:b4:ec:e4:f6:cd:04:42:5d:c4:a9:88: c5:8a:22:90:ea:38:a1:21:43:01:d0:b3:80:a4:b2: 1d:29:e1:0d:3f:5f:ed:3a:c2:24:45:b5:64:32:a8: 5e:45:97:54:e4:71:35:cf:ec:33:19:15:22:0c:95: e7:4e:78:a2:57:17:26:49:df:b3:05:43:6c:06:fb: 21:67:f8:1e:bd:ba:db:9c:32:80:e7:62:26:7f:b5: ce:8c:df:c7:06:5a:ed:3e:d6:fb:f1:73:84:53:6a: 3c:10:36:50:4c:d9:25:0d:4a:e3:8d:71:68:89:f3: 49:4c:a1:0c:f9:e0:98:6e:5b:b0:d8:b8:37:2d:2f: b7:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:BC:6A:36:2C:41:34:C2:13:0E:20:15:BE:7C:F5:66:3E:12:F8:87 X509v3 Authority Key Identifier: keyid:62:0D:39:B3:A1:83:79:73:BD:13:26:9F:2B:06:AC:9B:27:38:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/Yg05s6GDeXO9EyafKwasmyc4gg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yg05s6GDeXO9EyafKwasmyc4gg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/F2CD19D6E96011EF8940367DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.250.52.0/22 103.41.176.0/22 103.147.152.0/24 IPv6: 2406:4fc0::/32 Signature Algorithm: sha256WithRSAEncryption 25:22:92:2f:3b:7c:bb:ef:77:07:a0:58:fd:e2:49:86:5b:3a: ee:4c:c6:52:a5:79:9a:0c:59:e5:1a:32:a4:f4:63:a3:3d:d9: c4:04:b3:f4:1d:57:a7:ea:97:b9:42:e6:c9:15:2e:d8:5f:25: 67:2f:c1:71:83:5b:4a:d4:ac:b9:73:4e:00:0f:f1:12:b0:b3: a1:4a:74:68:d2:73:3a:f8:a7:85:9d:5d:64:08:9c:44:8b:3a: 4d:33:19:3b:62:e2:1e:1f:b1:e7:9b:3e:a1:6a:9c:07:2a:2a: 75:eb:43:93:70:22:e9:1d:6e:b3:bf:34:9d:27:82:1d:5b:ba: 14:9d:a4:33:26:63:ce:af:ff:49:76:fe:54:e2:b9:71:a3:12: 7a:77:80:9f:36:a9:c6:4c:19:7a:a8:65:59:b8:8c:39:e3:ac: f0:39:65:dd:80:1c:6a:4a:8f:07:26:d5:4c:22:4b:b1:9a:53: f0:d9:e0:f1:a5:c1:36:5e:f7:c7:58:ca:6c:39:a6:93:23:ab: 39:34:1c:03:c1:b9:d4:35:8c:71:b8:98:e3:a1:d8:53:0c:48: f6:6d:7f:f9:24:dd:e8:d9:86:73:b7:5f:68:ef:01:cf:5a:f1: 81:92:c6:b0:85:d5:5f:44:61:e2:81:43:7d:46:20:68:0f:00: 19:4d:13:a3 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGNjgxMTAvBgNVBAUTKDYyMEQzOUIzQTE4Mzc5NzNCRDEzMjY5RjJCMDZBQzlC MjczODgyMEQwHhcNMjUxMTA1MDY1MTAyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWZkNS0zY2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XBoG6Ac3UBut3EI+SRDSjo58qjdRu3Fy/NoLcTOEamFtg0+P8F2Ar9OwpGN 1oH4de+9tBdBCFbx/K+Ev+a5hiEB/Q4QqFLzQLfhi0SLK68jvtrvdcBG5IQNwZAj vGXUwRnf775z0+lfPFl0vidCvU5zmckxAVApcmmYtOzk9s0EQl3EqYjFiiKQ6jih IUMB0LOApLIdKeENP1/tOsIkRbVkMqheRZdU5HE1z+wzGRUiDJXnTniiVxcmSd+z BUNsBvshZ/gevbrbnDKA52Imf7XOjN/HBlrtPtb78XOEU2o8EDZQTNklDUrjjXFo ifNJTKEM+eCYbluw2Lg3LS+3uQIDAQABo4ICezCCAncwHQYDVR0OBBYEFGy8ajYs QTTCEw4gFb589WY+EviHMB8GA1UdIwQYMBaAFGINObOhg3lzvRMmnysGrJsnOIIN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkY2OC85MkUyNTk2MkRG MjExMUVGODMzRjRGMkNDNEY5QUUwMi9ZZzA1czZHRGVYTzlFeWFmS3dhc215YzRn ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnMDVzNkdEZVhPOUV5YWZLd2FzbXljNGdnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZGNjgvOTJFMjU5NjJERjIxMTFFRjgzM0Y0RjJDQzRGOUFFMDIvRjJDRDE5RDZF OTYwMTFFRjg5NDAzNjdEQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCK/o0AwQCZymwAwQAZ5OYMA0EAgACMAcDBQAkBk/AMA0GCSqGSIb3 DQEBCwUAA4IBAQAlIpIvO3y773cHoFj94kmGWzruTMZSpXmaDFnlGjKk9GOjPdnE BLP0HVen6pe5QubJFS7YXyVnL8Fxg1tK1Ky5c04AD/ESsLOhSnRo0nM6+KeFnV1k CJxEizpNMxk7YuIeH7Hnmz6hapwHKip160OTcCLpHW6zvzSdJ4IdW7oUnaQzJmPO r/9Jdv5U4rlxoxJ6d4CfNqnGTBl6qGVZuIw546zwOWXdgBxqSo8HJtVMIkuxmlPw 2eDxpcE2XvfHWMpsOaaTI6s5NBwDwbnUNYxxuJjjodhTDEj2bX/5JN3o2YZzt19o 7wHPWvGBksawhdVfRGHigUN9RiBoDwAZTROj -----END CERTIFICATE-----Generated at Thu Mar 26 04:34:56 2026 by rpki-client