$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/F2CD19D6E96011EF8940367DC4F9AE02.roa File: F2CD19D6E96011EF8940367DC4F9AE02.roa (raw, json) Hash identifier: 4HWZbcPZUA8WiVy43wnbqA4Bw7At1NVN+cWP6/tArME= Subject key identifier: 09:30:E2:D1:DC:B1:C0:80:F9:28:01:13:C0:0E:E2:FC:62:45:09:C1 Certificate issuer: /CN=A91A6F68/serialNumber=620D39B3A1837973BD13269F2B06AC9B2738820D Certificate serial: 010C Authority key identifier: 62:0D:39:B3:A1:83:79:73:BD:13:26:9F:2B:06:AC:9B:27:38:82:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yg05s6GDeXO9EyafKwasmyc4gg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/F2CD19D6E96011EF8940367DC4F9AE02.roa Signing time: Tue 05 May 2026 09:19:44 +0000 ROA not before: Tue 05 May 2026 09:19:44 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 50049 IP address blocks: 43.250.52.0/22 maxlen: 22 43.250.52.0/24 maxlen: 24 43.250.53.0/24 maxlen: 24 43.250.54.0/24 maxlen: 24 43.250.55.0/24 maxlen: 24 103.41.176.0/22 maxlen: 22 103.41.176.0/24 maxlen: 24 103.41.177.0/24 maxlen: 24 103.41.178.0/24 maxlen: 24 103.41.179.0/24 maxlen: 24 103.147.152.0/24 maxlen: 24 2406:4fc0::/32 maxlen: 32 2406:4fc0::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/Yg05s6GDeXO9EyafKwasmyc4gg0.crl rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/Yg05s6GDeXO9EyafKwasmyc4gg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yg05s6GDeXO9EyafKwasmyc4gg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=620D39B3A1837973BD13269F2B06AC9B2738820D Validity Not Before: May 5 09:19:44 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69f9b630-94e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:36:e0:82:5e:23:e7:30:f1:5c:09:9c:80:ff: c0:28:e7:6d:d0:80:29:77:1f:cf:44:c8:fc:7b:2e: a3:14:9b:21:d1:e1:8d:0c:4e:22:3f:26:0b:fe:50: 23:42:ae:f8:5c:0d:76:12:b5:ef:08:bd:46:33:b6: fe:e2:f4:da:9b:15:fd:df:3e:f9:81:e3:6d:07:7f: 3a:fa:3a:06:bb:9c:3e:4d:92:cb:0a:9d:0c:32:a5: 09:37:fd:0c:fc:b5:94:ff:d6:8c:98:e2:ea:41:45: a9:76:94:8c:92:25:22:3e:09:8c:66:ba:e4:66:50: 3c:75:1b:f8:1e:ef:b3:ee:7a:ee:68:36:eb:06:2e: ec:57:2b:26:2d:37:26:e8:e6:18:ea:9c:e6:0e:7d: ef:0d:04:73:ad:dd:b8:92:ab:70:fe:bf:2f:77:eb: 08:4a:ba:ed:11:a0:91:5b:4c:cf:de:42:19:cf:16: 83:97:ee:73:95:65:08:65:0c:b1:4b:24:03:c7:b5: e4:f9:f5:6e:fa:66:fd:56:d4:65:29:40:d8:d9:8f: d5:2c:64:de:08:4e:d3:9d:f9:21:a2:98:37:84:32: 57:a0:5e:84:2b:dd:c6:5a:2b:3a:46:84:e2:f0:92: 28:8a:13:6a:6d:e6:f9:e6:c4:2a:92:36:ea:6b:13: 06:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:30:E2:D1:DC:B1:C0:80:F9:28:01:13:C0:0E:E2:FC:62:45:09:C1 X509v3 Authority Key Identifier: keyid:62:0D:39:B3:A1:83:79:73:BD:13:26:9F:2B:06:AC:9B:27:38:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/Yg05s6GDeXO9EyafKwasmyc4gg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yg05s6GDeXO9EyafKwasmyc4gg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/F2CD19D6E96011EF8940367DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.250.52.0/22 103.41.176.0/22 103.147.152.0/24 IPv6: 2406:4fc0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:18:a0:09:9e:d6:dc:b5:a4:c6:b3:d5:57:d5:c7:37:fe:21: 14:9c:aa:41:67:f5:98:c8:b0:2d:c4:69:a1:6e:96:fe:9a:70: dd:c0:39:ac:de:88:43:77:62:2e:91:34:53:e8:f4:ac:f1:57: c5:3a:85:2a:7f:5a:f8:95:50:dc:f3:29:ae:a7:b6:e6:a6:f2: 86:36:18:e1:21:80:06:cd:7c:6e:3a:3c:04:8b:dd:8c:c4:7b: dc:3b:d8:5c:41:b7:5e:b2:93:03:e5:6d:cb:d2:33:5f:8a:ce: c4:55:98:f4:e2:fc:a4:4e:d6:c4:7f:13:7f:3f:6a:a6:f5:8d: e3:9e:84:d1:a0:67:df:74:2d:38:9a:77:fa:1a:af:0c:02:5f: c2:68:26:06:d0:90:7b:67:9a:24:8b:41:ab:44:2c:55:47:64: 67:41:a9:df:7e:b6:69:81:d0:6f:0c:f9:25:ad:68:a6:22:6a: 30:67:f3:44:11:f8:19:4b:b6:2b:61:3e:94:0c:b5:b7:50:b1: e6:b1:c6:7e:9c:ed:b8:59:85:1c:85:39:da:1b:7e:81:2b:29: c5:41:76:12:b8:eb:47:a2:02:6c:1c:d8:13:74:2a:03:65:a0: 7b:f0:0a:c6:6e:86:7c:93:82:80:ae:1e:f9:db:2d:16:db:55: 19:a5:e8:ac -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGNjgxMTAvBgNVBAUTKDYyMEQzOUIzQTE4Mzc5NzNCRDEzMjY5RjJCMDZBQzlC MjczODgyMEQwHhcNMjYwNTA1MDkxOTQ0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY5YjYzMC05NGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDbggl4j5zDxXAmcgP/AKOdt0IApdx/PRMj8ey6jFJsh0eGNDE4iPyYL/lAj Qq74XA12ErXvCL1GM7b+4vTamxX93z75geNtB386+joGu5w+TZLLCp0MMqUJN/0M /LWU/9aMmOLqQUWpdpSMkiUiPgmMZrrkZlA8dRv4Hu+z7nruaDbrBi7sVysmLTcm 6OYY6pzmDn3vDQRzrd24kqtw/r8vd+sISrrtEaCRW0zP3kIZzxaDl+5zlWUIZQyx SyQDx7Xk+fVu+mb9VtRlKUDY2Y/VLGTeCE7Tnfkhopg3hDJXoF6EK93GWis6RoTi 8JIoihNqbeb55sQqkjbqaxMG7wIDAQABo4ICezCCAncwHQYDVR0OBBYEFAkw4tHc scCA+SgBE8AO4vxiRQnBMB8GA1UdIwQYMBaAFGINObOhg3lzvRMmnysGrJsnOIIN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkY2OC85MkUyNTk2MkRG MjExMUVGODMzRjRGMkNDNEY5QUUwMi9ZZzA1czZHRGVYTzlFeWFmS3dhc215YzRn ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnMDVzNkdEZVhPOUV5YWZLd2FzbXljNGdnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZGNjgvOTJFMjU5NjJERjIxMTFFRjgzM0Y0RjJDQzRGOUFFMDIvRjJDRDE5RDZF OTYwMTFFRjg5NDAzNjdEQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCK/o0AwQCZymwAwQAZ5OYMA0EAgACMAcDBQAkBk/AMA0GCSqGSIb3 DQEBCwUAA4IBAQBtGKAJntbctaTGs9VX1cc3/iEUnKpBZ/WYyLAtxGmhbpb+mnDd wDms3ohDd2IukTRT6PSs8VfFOoUqf1r4lVDc8ymup7bmpvKGNhjhIYAGzXxuOjwE i92MxHvcO9hcQbdespMD5W3L0jNfis7EVZj04vykTtbEfxN/P2qm9Y3jnoTRoGff dC04mnf6Gq8MAl/CaCYG0JB7Z5oki0GrRCxVR2RnQanffrZpgdBvDPklrWimImow Z/NEEfgZS7YrYT6UDLW3ULHmscZ+nO24WYUchTnaG36BKynFQXYSuOtHogJsHNgT dCoDZaB78ArGboZ8k4KArh752y0W21UZpeis -----END CERTIFICATE-----Generated at Wed May 13 03:47:08 2026 by rpki-client