$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/56CBAF060CEE11EF80CB5642C4F9AE02.roa File: 56CBAF060CEE11EF80CB5642C4F9AE02.roa (raw, json) Hash identifier: 1WmqXCaGoy8d1Y/+sJTFSYYcOn86Qor6prAagLIyE6A= Subject key identifier: 07:01:80:4F:B0:81:9C:B9:64:B6:3B:04:25:C3:7E:57:17:5D:FA:C1 Certificate issuer: /CN=A91B4E2B/serialNumber=4B3B9D9305880FF66B7F1E4C90FF987528863811 Certificate serial: 0167 Authority key identifier: 4B:3B:9D:93:05:88:0F:F6:6B:7F:1E:4C:90:FF:98:75:28:86:38:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzudkwWID_Zrfx5MkP-YdSiGOBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/56CBAF060CEE11EF80CB5642C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:26:11 +0000 ROA not before: Thu 21 Aug 2025 05:43:41 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 55649 IP address blocks: 43.242.140.0/22 maxlen: 22 43.242.140.0/24 maxlen: 24 43.242.141.0/24 maxlen: 24 43.242.142.0/24 maxlen: 24 43.242.143.0/24 maxlen: 24 103.38.28.0/22 maxlen: 22 103.38.28.0/24 maxlen: 24 103.38.29.0/24 maxlen: 24 103.38.30.0/24 maxlen: 24 103.38.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/SzudkwWID_Zrfx5MkP-YdSiGOBE.crl rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/SzudkwWID_Zrfx5MkP-YdSiGOBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzudkwWID_Zrfx5MkP-YdSiGOBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4E2B, serialNumber=4B3B9D9305880FF66B7F1E4C90FF987528863811 Validity Not Before: Aug 21 05:43:41 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a59e03-09fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e7:1a:1d:f6:94:fe:cc:8d:aa:ad:5c:aa:c5: 75:fe:ae:a8:98:84:cd:b4:a3:27:c4:bc:bc:c4:c8: 28:17:48:cd:e1:c5:a2:83:ae:04:a6:fc:2c:a5:71: 56:b8:51:9a:d7:a9:2a:40:e4:6b:79:45:57:e2:1f: c0:a0:49:b8:02:ae:28:4f:2f:a3:fd:ef:b3:0a:16: 2a:0b:60:96:4f:1c:29:c8:62:79:e4:df:32:05:2a: 42:00:73:04:06:a6:6c:0f:53:01:45:79:3e:66:25: c6:9a:d5:45:05:81:1c:bb:ff:49:9a:a4:c7:42:03: 78:dc:44:e4:ec:02:a8:75:c0:27:75:c6:7a:36:36: 3e:0b:07:f6:5c:40:42:52:f8:ea:14:73:16:ec:03: 92:97:a3:a8:f1:96:76:87:19:89:d0:72:71:49:4d: 34:96:32:e9:68:38:bb:cc:64:8a:39:fd:f6:dd:de: 0a:d9:22:45:f3:98:ba:59:5a:04:4f:ef:9b:eb:b8: 66:28:af:8f:ff:81:de:16:16:8c:1e:03:70:a2:6e: bd:8b:31:6c:61:93:a4:31:db:2f:e8:90:df:44:87: 16:88:5c:ed:d7:12:b5:5e:ba:d1:b3:7e:73:b9:9c: fd:4a:e6:2e:b6:cd:8a:4c:fc:81:10:b0:07:2b:b7: 5a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:01:80:4F:B0:81:9C:B9:64:B6:3B:04:25:C3:7E:57:17:5D:FA:C1 X509v3 Authority Key Identifier: keyid:4B:3B:9D:93:05:88:0F:F6:6B:7F:1E:4C:90:FF:98:75:28:86:38:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/SzudkwWID_Zrfx5MkP-YdSiGOBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzudkwWID_Zrfx5MkP-YdSiGOBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/56CBAF060CEE11EF80CB5642C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.242.140.0/22 103.38.28.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:8f:08:1a:d5:fb:bd:bf:9a:b1:7a:b1:7c:92:b9:19:b3:5a: 78:e0:37:0e:b2:00:c7:5e:88:9c:c3:50:b7:77:20:c1:61:67: 7e:bd:01:22:1d:cb:63:86:78:f0:3b:c7:c5:a3:35:9a:6b:61: b1:66:46:09:17:73:b7:24:3b:71:2a:ba:ae:5f:37:12:ae:a6: 88:9a:e0:d9:bf:d7:1b:0c:7a:1a:71:d2:bf:ca:d3:cc:4a:40: 3e:87:65:f8:14:65:a3:5c:ac:b6:10:71:8e:43:e6:49:8b:5e: 42:96:63:f7:fd:83:9f:4e:05:09:77:cc:76:54:c9:9f:47:fd: 4c:7e:32:27:e6:be:aa:f1:a5:5b:dc:61:fc:91:f1:29:7d:3e: 26:27:b2:a9:29:5f:48:bf:cb:34:4c:59:a6:01:13:60:5d:a5: f1:69:d7:97:a1:f6:e5:08:99:44:fa:76:da:1c:e2:99:b2:10: af:ff:21:1e:70:b0:c8:96:b0:6c:a4:f2:da:48:1f:ba:85:53: 21:1b:24:a9:07:1c:ed:6d:65:ab:de:ca:97:87:14:4f:cf:8f: 68:80:38:95:23:72:4c:13:5d:cc:fc:28:c8:cb:b7:91:a8:a7: 61:d1:b9:8d:df:96:57:4e:3f:56:a1:0d:6b:88:de:e4:9b:f3: bc:07:33:3a -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRFMkIxMTAvBgNVBAUTKDRCM0I5RDkzMDU4ODBGRjY2QjdGMUU0QzkwRkY5ODc1 Mjg4NjM4MTEwHhcNMjUwODIxMDU0MzQxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWUwMy0wOWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+caHfaU/syNqq1cqsV1/q6omITNtKMnxLy8xMgoF0jN4cWig64EpvwspXFW uFGa16kqQORreUVX4h/AoEm4Aq4oTy+j/e+zChYqC2CWTxwpyGJ55N8yBSpCAHME BqZsD1MBRXk+ZiXGmtVFBYEcu/9JmqTHQgN43ETk7AKodcAndcZ6NjY+Cwf2XEBC UvjqFHMW7AOSl6Oo8ZZ2hxmJ0HJxSU00ljLpaDi7zGSKOf323d4K2SJF85i6WVoE T++b67hmKK+P/4HeFhaMHgNwom69izFsYZOkMdsv6JDfRIcWiFzt1xK1XrrRs35z uZz9SuYuts2KTPyBELAHK7dajQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFAcBgE+w gZy5ZLY7BCXDflcXXfrBMB8GA1UdIwQYMBaAFEs7nZMFiA/2a38eTJD/mHUohjgR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEUyQi9GODM2QkRFQzBD RUMxMUVGOUY4MUY2M0ZDNEY5QUUwMi9TenVka3dXSURfWnJmeDVNa1AtWWRTaUdP QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N6dWRrd1dJRF9acmZ4NU1rUC1ZZFNpR09CRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjRFMkIvRjgzNkJERUMwQ0VDMTFFRjlGODFGNjNGQzRGOUFFMDIvNTZDQkFGMDYw Q0VFMTFFRjgwQ0I1NjQyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/KMAwQCZyYcMA0GCSqGSIb3DQEBCwUAA4IBAQBNjwga1fu9v5qx erF8krkZs1p44DcOsgDHXoicw1C3dyDBYWd+vQEiHctjhnjwO8fFozWaa2GxZkYJ F3O3JDtxKrquXzcSrqaImuDZv9cbDHoacdK/ytPMSkA+h2X4FGWjXKy2EHGOQ+ZJ i15ClmP3/YOfTgUJd8x2VMmfR/1MfjIn5r6q8aVb3GH8kfEpfT4mJ7KpKV9Iv8s0 TFmmARNgXaXxadeXofblCJlE+nbaHOKZshCv/yEecLDIlrBspPLaSB+6hVMhGySp BxztbWWr3sqXhxRPz49ogDiVI3JME13M/CjIy7eRqKdh0bmN35ZXTj9WoQ1riN7k m/O8BzM6 -----END CERTIFICATE-----Generated at Thu Mar 26 02:25:59 2026 by rpki-client