$ rpki-client -vvf rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/B6DE83747AE811EF94E01B38C4F9AE02.roa File: B6DE83747AE811EF94E01B38C4F9AE02.roa (raw, json) Hash identifier: /Mfb+/GCj01R9lifsGJinmVrLBP5+B8J3/UWQZMFbAU= Subject key identifier: 8A:B5:B2:C0:5E:9C:08:EF:5B:ED:A1:C8:3D:03:88:65:CF:D3:86:A5 Certificate issuer: /CN=A91A998A/serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65 Certificate serial: 0138 Authority key identifier: 9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/B6DE83747AE811EF94E01B38C4F9AE02.roa Signing time: Tue 03 Mar 2026 05:47:45 +0000 ROA not before: Tue 03 Mar 2026 05:47:45 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 1449 IP address blocks: 43.230.181.0/24 maxlen: 24 43.230.182.0/24 maxlen: 24 103.50.0.0/24 maxlen: 24 103.50.1.0/24 maxlen: 24 103.50.2.0/24 maxlen: 24 103.50.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A998A, serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65 Validity Not Before: Mar 3 05:47:45 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a67601-10d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:3a:f5:cf:78:f5:7a:c1:00:bf:0e:91:2e:02: 6e:c0:fa:68:86:78:18:4d:dc:ad:72:3a:c5:4a:1e: b1:e9:ef:05:31:11:18:28:62:64:6f:f2:f3:70:4b: da:fb:a6:58:38:4f:ba:b7:b6:13:6b:10:cd:8e:0e: 43:fc:b5:2b:88:24:90:e2:db:0f:9f:10:f5:95:7c: f2:52:13:24:13:2f:72:8b:d0:a9:6d:c0:e4:52:9b: dd:c4:80:a1:58:f9:c1:8f:82:4f:77:fb:25:4d:63: 12:ed:75:6f:f9:19:92:a6:38:83:93:ee:61:45:56: 08:cd:ff:83:ea:3f:41:38:40:de:af:69:32:66:d4: 15:18:41:26:db:73:ab:43:e1:e5:20:31:c8:97:81: bc:fa:8c:c8:91:02:7c:ba:83:d6:86:dc:41:dc:3c: 8f:6c:7f:03:09:9a:b1:66:90:17:74:95:d8:fa:2f: 0d:04:d2:f8:e5:b6:04:df:5d:b4:62:4e:f8:2b:63: b8:11:e6:5e:7e:9f:a2:f7:38:38:a0:bc:be:bc:e1: e4:00:bc:8b:d1:0e:61:f3:57:43:1c:2d:17:9f:84: 7a:d7:7d:1d:34:6e:89:a5:43:17:ed:2b:55:23:d2: 5d:08:aa:bd:f7:13:b1:9a:c9:3b:2e:d6:ea:32:99: 91:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B5:B2:C0:5E:9C:08:EF:5B:ED:A1:C8:3D:03:88:65:CF:D3:86:A5 X509v3 Authority Key Identifier: keyid:9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/B6DE83747AE811EF94E01B38C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.181.0-43.230.182.255 103.50.0.0/22 Signature Algorithm: sha256WithRSAEncryption 69:9e:0a:69:52:7d:d0:45:b5:3d:aa:f8:c4:11:41:7c:78:ef: 3a:62:da:26:92:ad:49:22:19:98:93:26:8f:84:5f:93:cd:37: a6:73:77:d9:33:6e:7f:13:0f:62:40:fa:92:08:55:77:1b:bd: 3d:83:5c:bb:86:13:fc:51:bd:0c:75:a4:78:80:fb:a0:47:55: 6e:97:6f:44:00:6b:c6:3b:f5:83:ea:9d:d1:69:b6:43:9c:65: e2:82:79:78:86:91:ae:26:45:22:dc:25:8d:7b:55:13:b3:eb: 6a:2a:a2:94:50:75:69:60:e1:9e:5f:ab:98:df:cf:a3:2e:34: 01:da:05:9c:05:3c:4c:72:ed:8a:0b:0c:e3:43:c7:a6:68:9d: 80:ed:4f:ef:b6:d3:ee:d2:36:6c:13:33:bc:45:e3:b9:5a:16: b4:89:7e:d0:16:8a:a7:8c:0c:40:c9:df:a8:05:22:08:d0:29: 57:9c:c0:94:7b:ea:69:36:fc:c9:d9:ba:52:71:e7:c0:31:28: 94:1d:49:ed:35:5f:4a:78:05:86:a2:1a:53:c2:96:dc:f8:24: dd:64:c7:d6:db:6e:2e:32:78:e7:6c:15:42:bd:cf:90:4b:9c: 9b:1c:aa:f0:a3:1e:86:91:9f:d5:86:a3:ff:29:0e:20:7e:99: 38:23:d1:37 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk5OEExMTAvBgNVBAUTKDlDMDcxRTgxNEQ4MEIxMEUyQ0ExRjcxRTlCMkU1MzVD MzkwNUNCNjUwHhcNMjYwMzAzMDU0NzQ1WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2NzYwMS0xMGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmjr1z3j1esEAvw6RLgJuwPpohngYTdytcjrFSh6x6e8FMREYKGJkb/LzcEva +6ZYOE+6t7YTaxDNjg5D/LUriCSQ4tsPnxD1lXzyUhMkEy9yi9CpbcDkUpvdxICh WPnBj4JPd/slTWMS7XVv+RmSpjiDk+5hRVYIzf+D6j9BOEDer2kyZtQVGEEm23Or Q+HlIDHIl4G8+ozIkQJ8uoPWhtxB3DyPbH8DCZqxZpAXdJXY+i8NBNL45bYE3120 Yk74K2O4EeZefp+i9zg4oLy+vOHkALyL0Q5h81dDHC0Xn4R6130dNG6JpUMX7StV I9JdCKq99xOxmsk7LtbqMpmRMQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFIq1ssBe nAjvW+2hyD0DiGXP04alMB8GA1UdIwQYMBaAFJwHHoFNgLEOLKH3HpsuU1w5Bctl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTk4QS81MjJDQjczNDdB RTgxMUVGOUE0QTQ3MzdDNEY5QUUwMi9uQWNlZ1UyQXNRNHNvZmNlbXk1VFhEa0Z5 MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25BY2VnVTJBc1E0c29mY2VteTVUWERrRnkyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTk5OEEvNTIyQ0I3MzQ3QUU4MTFFRjlBNEE0NzM3QzRGOUFFMDIvQjZERTgzNzQ3 QUU4MTFFRjk0RTAxQjM4QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBAAr5rUDBAAr5rYDBAJnMgAwDQYJKoZIhvcNAQELBQADggEBAGme CmlSfdBFtT2q+MQRQXx47zpi2iaSrUkiGZiTJo+EX5PNN6Zzd9kzbn8TD2JA+pII VXcbvT2DXLuGE/xRvQx1pHiA+6BHVW6Xb0QAa8Y79YPqndFptkOcZeKCeXiGka4m RSLcJY17VROz62oqopRQdWlg4Z5fq5jfz6MuNAHaBZwFPExy7YoLDONDx6ZonYDt T++20+7SNmwTM7xF47laFrSJftAWiqeMDEDJ36gFIgjQKVecwJR76mk2/MnZulJx 58AxKJQdSe01X0p4BYaiGlPCltz4JN1kx9bbbi4yeOdsFUK9z5BLnJscqvCjHoaR n9WGo/8pDiB+mTgj0Tc= -----END CERTIFICATE-----Generated at Fri Mar 27 02:14:07 2026 by rpki-client