$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4378/F629148CD9A011F09A0FB01768D3641D/D106F48C1D1911F19643AB4F103D8C67.roa File: D106F48C1D1911F19643AB4F103D8C67.roa (raw, json) Hash identifier: Vnwa52V2rw4iQn/D3rDg54HehQEyfCOLvGurPGwR3Vs= Subject key identifier: CF:52:AE:47:C6:A3:C3:37:AC:46:72:BC:67:37:B8:E2:CC:F9:B7:AB Certificate issuer: /CN=A91B4378/serialNumber=6D1B1C5EC9A9CE20E8B85DA3F6C1E3CDD42EF839 Certificate serial: 30 Authority key identifier: 6D:1B:1C:5E:C9:A9:CE:20:E8:B8:5D:A3:F6:C1:E3:CD:D4:2E:F8:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRscXsmpziDouF2j9sHjzdQu-Dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4378/F629148CD9A011F09A0FB01768D3641D/D106F48C1D1911F19643AB4F103D8C67.roa Signing time: Wed 11 Mar 2026 07:13:34 +0000 ROA not before: Wed 11 Mar 2026 07:13:34 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 13335 IP address blocks: 43.249.204.0/22 maxlen: 24 103.41.64.0/22 maxlen: 24 2401:ab80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4378/F629148CD9A011F09A0FB01768D3641D/bRscXsmpziDouF2j9sHjzdQu-Dk.crl rsync://rpki.apnic.net/member_repository/A91B4378/F629148CD9A011F09A0FB01768D3641D/bRscXsmpziDouF2j9sHjzdQu-Dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRscXsmpziDouF2j9sHjzdQu-Dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:46:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4378, serialNumber=6D1B1C5EC9A9CE20E8B85DA3F6C1E3CDD42EF839 Validity Not Before: Mar 11 07:13:34 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69b1161e-df71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:23:93:d9:63:c7:67:5e:a5:a0:04:36:48:a2: 38:ca:ce:cd:b4:d1:1b:d7:ce:88:eb:b2:4a:a1:73: aa:10:c1:8f:5d:6b:9c:e3:f3:4e:17:64:0f:ac:85: c5:7f:e8:73:d2:3d:5f:79:13:dc:19:46:3a:d5:03: ab:43:31:cd:3a:25:66:ec:5b:78:e7:1f:c4:98:cb: ec:76:6e:5d:f4:c6:15:28:96:5b:36:9e:b9:87:59: 27:54:82:d9:13:95:44:ec:2f:04:ce:29:f5:8a:26: 18:e8:06:af:b0:d3:13:47:66:66:02:2f:5f:ab:21: 7f:12:97:b2:c1:b5:23:51:0b:d4:04:74:d0:5c:42: 2e:33:3b:33:21:46:dc:61:90:f0:3c:21:d5:61:4f: 99:10:4b:f8:ba:aa:b2:4c:70:5b:c0:28:2d:67:78: 99:f5:5b:35:e5:5f:e6:66:14:ae:4f:05:9d:ef:56: 84:d7:0d:7d:45:f5:90:f7:23:0d:bb:a9:ee:4a:08: d7:de:52:ee:0f:60:0c:14:f6:bc:5b:db:e8:4d:de: 2b:dd:61:71:84:d7:77:a3:2c:a5:bb:20:f6:04:f4: 53:97:20:58:9a:b2:d4:6c:5b:bc:ea:1d:6d:be:52: 0a:f3:e2:1c:e8:8d:ad:5d:38:8e:a5:a3:52:2b:ff: c9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:52:AE:47:C6:A3:C3:37:AC:46:72:BC:67:37:B8:E2:CC:F9:B7:AB X509v3 Authority Key Identifier: keyid:6D:1B:1C:5E:C9:A9:CE:20:E8:B8:5D:A3:F6:C1:E3:CD:D4:2E:F8:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4378/F629148CD9A011F09A0FB01768D3641D/bRscXsmpziDouF2j9sHjzdQu-Dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRscXsmpziDouF2j9sHjzdQu-Dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4378/F629148CD9A011F09A0FB01768D3641D/D106F48C1D1911F19643AB4F103D8C67.roa sbgp-ipAddrBlock: critical IPv4: 43.249.204.0/22 103.41.64.0/22 IPv6: 2401:ab80::/32 Signature Algorithm: sha256WithRSAEncryption 53:07:85:bd:fe:49:75:58:ef:1f:95:10:6b:61:00:ef:fd:76: dd:1f:4e:25:4f:20:81:14:76:f9:80:b1:4f:6a:4e:3e:81:af: 61:fa:41:c2:cb:ca:a7:a3:a8:cb:71:0d:a0:be:96:64:38:e8: 1d:48:2e:69:64:3e:13:da:2b:57:aa:c8:68:e8:19:53:38:e1: b1:a8:74:fe:86:87:c9:16:6f:eb:37:c4:e7:b7:0b:8e:c1:fb: 39:3e:cd:7f:c0:0e:b2:84:04:65:75:8b:6d:db:a4:af:01:ef: e5:5b:13:33:a1:fb:63:f4:1a:43:52:46:8d:16:fd:e3:e1:14: 53:db:ae:a9:fc:1c:ae:d5:d2:38:f3:5c:74:eb:02:a8:73:a5: 7b:e4:40:71:ba:06:85:8b:33:e9:bb:cd:8c:3e:f8:95:4a:5d: 79:00:85:69:1c:14:d4:02:d1:b6:e6:bd:b5:98:35:98:1a:24: 65:21:1c:51:ef:70:99:13:5c:11:f4:f0:54:64:78:f4:1e:0f: 56:e4:c8:c3:03:b4:6d:0a:6a:8a:f8:0a:99:18:35:89:52:6d: 69:60:26:53:0b:82:de:a3:dd:3b:ae:1c:78:fc:c0:ec:f6:2b: 80:89:43:44:25:7d:f2:7a:bd:d1:92:ad:4d:4b:7e:38:34:3e: a6:46:18:42 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDM3ODExMC8GA1UEBRMoNkQxQjFDNUVDOUE5Q0UyMEU4Qjg1REEzRjZDMUUzQ0RE NDJFRjgzOTAeFw0yNjAzMTEwNzEzMzRaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YjExNjFlLWRmNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDI5PZY8dnXqWgBDZIojjKzs200RvXzojrskqhc6oQwY9da5zj804XZA+shcV/ 6HPSPV95E9wZRjrVA6tDMc06JWbsW3jnH8SYy+x2bl30xhUolls2nrmHWSdUgtkT lUTsLwTOKfWKJhjoBq+w0xNHZmYCL1+rIX8Sl7LBtSNRC9QEdNBcQi4zOzMhRtxh kPA8IdVhT5kQS/i6qrJMcFvAKC1neJn1WzXlX+ZmFK5PBZ3vVoTXDX1F9ZD3Iw27 qe5KCNfeUu4PYAwU9rxb2+hN3ivdYXGE13ejLKW7IPYE9FOXIFiastRsW7zqHW2+ Ugrz4hzoja1dOI6lo1Ir/8nZAgMBAAGjggJ1MIICcTAdBgNVHQ4EFgQUz1KuR8aj wzesRnK8Zze44sz5t6swHwYDVR0jBBgwFoAUbRscXsmpziDouF2j9sHjzdQu+Dkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0Mzc4L0Y2MjkxNDhDRDlB MDExRjA5QTBGQjAxNzY4RDM2NDFEL2JSc2NYc21wemlEb3VGMmo5c0hqemRRdS1E ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYlJzY1hzbXB6aURvdUYyajlzSGp6ZFF1LURrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM3OC9GNjI5MTQ4Q0Q5QTAxMUYwOUEwRkIwMTc2OEQzNjQxRC9EMTA2RjQ4QzFE MTkxMUYxOTY0M0FCNEYxMDNEOEM2Ny5yb2EwNAYIKwYBBQUHAQcBAf8EJTAjMBIE AgABMAwDBAIr+cwDBAJnKUAwDQQCAAIwBwMFACQBq4AwDQYJKoZIhvcNAQELBQAD ggEBAFMHhb3+SXVY7x+VEGthAO/9dt0fTiVPIIEUdvmAsU9qTj6Br2H6QcLLyqej qMtxDaC+lmQ46B1ILmlkPhPaK1eqyGjoGVM44bGodP6Gh8kWb+s3xOe3C47B+zk+ zX/ADrKEBGV1i23bpK8B7+VbEzOh+2P0GkNSRo0W/ePhFFPbrqn8HK7V0jjzXHTr AqhzpXvkQHG6BoWLM+m7zYw++JVKXXkAhWkcFNQC0bbmvbWYNZgaJGUhHFHvcJkT XBH08FRkePQeD1bkyMMDtG0Kaor4CpkYNYlSbWlgJlMLgt6j3TuuHHj8wOz2K4CJ Q0QlffJ6vdGSrU1Lfjg0PqZGGEI= -----END CERTIFICATE-----Generated at Thu Mar 26 11:20:32 2026 by rpki-client