$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/1600DBF659C311E9A04B846FC4F9AE02.roa File: 1600DBF659C311E9A04B846FC4F9AE02.roa (raw, json) Hash identifier: bGRZ0FpspSCf0cAveUKjR/NLCR8lXup6exlYiK4KDOA= Subject key identifier: FE:51:89:F0:33:FD:C9:8D:C2:E1:B2:1A:1F:61:35:C3:9E:A4:CC:7E Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 3609 Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/1600DBF659C311E9A04B846FC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:21:41 +0000 ROA not before: Thu 02 Oct 2025 15:10:57 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38740 IP address blocks: 43.241.139.0/24 maxlen: 24 2405:ec00:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13833 (0x3609) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Oct 2 15:10:57 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a46795-2b31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f4:86:8f:1b:06:fd:21:c5:ab:ee:37:11:f7: e2:c3:83:b6:cc:8d:46:cc:ce:fd:3d:c4:83:37:bd: 30:8e:9b:b5:e4:a6:db:b7:cf:93:14:da:3b:e4:18: 60:c0:db:a7:4b:5b:46:8f:c3:7b:0c:25:8e:90:c4: e5:8d:85:7c:99:85:1d:3f:f9:ce:0c:93:c9:03:3f: 78:ab:e1:5c:ff:db:a6:29:f7:70:12:f1:75:d1:45: 3a:43:be:c2:e5:cb:8f:57:f0:64:6f:90:64:92:20: b4:12:7f:fd:eb:b8:79:31:fe:61:de:f2:37:e2:87: dd:cc:82:cb:3e:49:60:be:e9:a2:5f:e8:cf:72:71: 72:ae:52:6a:fd:05:70:bb:63:9c:c6:5d:f3:93:69: f1:cb:03:32:90:da:d3:c9:ff:1f:e2:b6:a6:4a:40: 22:8d:bf:1e:db:bb:3a:df:8e:20:50:87:d3:4a:fb: b3:3d:e1:41:f7:44:88:cb:1f:41:a8:ad:a7:78:c1: a0:82:23:05:45:bb:5e:b0:62:bc:24:25:df:00:8b: 65:5b:c2:83:59:7d:42:52:b7:8e:f4:a4:0b:37:f8: 9d:8a:03:1e:7c:90:fb:f7:3f:a0:74:75:89:31:db: 14:9a:6c:dd:7f:d2:07:62:74:cb:5b:0a:32:44:6b: 4e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:51:89:F0:33:FD:C9:8D:C2:E1:B2:1A:1F:61:35:C3:9E:A4:CC:7E X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/1600DBF659C311E9A04B846FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.241.139.0/24 IPv6: 2405:ec00:8000::/48 Signature Algorithm: sha256WithRSAEncryption 80:98:94:cd:e6:31:84:ce:d8:16:21:00:ce:1d:e5:b3:00:2c: da:6e:d5:24:99:08:be:fb:b3:d0:cc:16:43:d9:b4:9f:15:c3: fd:ea:4e:41:01:0c:78:9f:1b:72:4e:59:5a:1e:aa:71:54:36: 18:78:65:ba:4e:b8:45:b1:07:d6:9c:b7:eb:f6:e2:27:88:8b: a2:14:88:4c:e5:03:1f:c2:34:85:08:4e:e0:51:be:b7:a7:b3: 11:28:bd:00:fc:08:2e:b0:98:7e:0f:3c:45:ea:ca:c8:e7:c0: 0f:12:09:dd:ab:07:99:93:f1:7e:1f:bc:a4:0f:2b:3e:64:76: b0:bf:b4:a7:55:04:a0:33:7d:b0:5a:c0:7c:7d:a2:7a:9e:84: ad:6b:0e:c0:b0:b6:dc:04:90:21:23:dd:9d:e2:38:74:58:53: 7a:3b:61:d8:f5:e6:1d:92:7f:05:d5:c2:fb:23:91:bd:e1:67: 24:de:69:4a:40:0d:01:7d:15:5e:de:6c:4a:86:78:a3:b1:cc: 8a:1b:77:1b:d6:ca:9c:cb:ab:4c:9d:76:d7:93:2b:87:21:a0: db:fb:48:74:f5:94:81:8f:27:f3:29:d3:80:6c:b5:54:88:b1: e9:ef:52:93:e7:78:e3:e6:17:b0:43:3e:57:20:20:e3:04:2d: f8:4b:b9:e1 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICNgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjUxMDAyMTUxMDU3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Njc5NS0yYjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/SGjxsG/SHFq+43Effiw4O2zI1GzM79PcSDN70wjpu15Kbbt8+TFNo75Bhg wNunS1tGj8N7DCWOkMTljYV8mYUdP/nODJPJAz94q+Fc/9umKfdwEvF10UU6Q77C 5cuPV/Bkb5BkkiC0En/967h5Mf5h3vI34ofdzILLPklgvumiX+jPcnFyrlJq/QVw u2Ocxl3zk2nxywMykNrTyf8f4ramSkAijb8e27s6344gUIfTSvuzPeFB90SIyx9B qK2neMGggiMFRbtesGK8JCXfAItlW8KDWX1CUreO9KQLN/idigMefJD79z+gdHWJ MdsUmmzdf9IHYnTLWwoyRGtOEQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFP5RifAz /cmNwuGyGh9hNcOepMx+MB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzRGMDYvNzZFMUM0N0UxRDk1MTFFMkJFNTk1RTdEMDhCMDJDRDIvMTYwMERCRjY1 OUMzMTFFOUEwNEI4NDZGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAK/GLMA8EAgACMAkDBwAkBewAgAAwDQYJKoZIhvcNAQELBQADggEB AICYlM3mMYTO2BYhAM4d5bMALNpu1SSZCL77s9DMFkPZtJ8Vw/3qTkEBDHifG3JO WVoeqnFUNhh4ZbpOuEWxB9act+v24ieIi6IUiEzlAx/CNIUITuBRvrensxEovQD8 CC6wmH4PPEXqysjnwA8SCd2rB5mT8X4fvKQPKz5kdrC/tKdVBKAzfbBawHx9onqe hK1rDsCwttwEkCEj3Z3iOHRYU3o7Ydj15h2SfwXVwvsjkb3hZyTeaUpADQF9FV7e bEqGeKOxzIobdxvWypzLq0yddteTK4choNv7SHT1lIGPJ/Mp04BstVSIsenvUpPn eOPmF7BDPlcgIOMELfhLueE= -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:54 2026 by rpki-client