$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/EC56413A5B4B11EE9A031C81C4F9AE02.roa File: EC56413A5B4B11EE9A031C81C4F9AE02.roa (raw, json) Hash identifier: P1sFlrq62FMoLO7wf4E9r66SOU438vWKBPyMEzzBEHQ= Subject key identifier: AB:75:46:45:3A:1F:FE:E7:C9:C2:67:DD:0B:BE:BB:97:76:09:B5:1F Certificate issuer: /CN=A91CE5A6/serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Certificate serial: 01D8 Authority key identifier: 00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/EC56413A5B4B11EE9A031C81C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:38:31 +0000 ROA not before: Tue 15 Apr 2025 03:39:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1851 IP address blocks: 43.241.200.0/22 maxlen: 22 45.121.132.0/22 maxlen: 22 103.37.128.0/22 maxlen: 22 2403:7900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Validity Not Before: Apr 15 03:39:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3ecf7-ab35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a8:f5:fc:ce:4c:a1:af:a4:98:da:14:79:62: 03:02:04:52:59:9a:6a:f4:3c:d6:56:c7:a0:63:e0: 8c:20:c9:92:2a:9d:71:27:fd:36:b2:77:ae:74:90: 99:93:4f:ba:01:b2:16:6d:eb:2c:b2:a7:b4:e8:80: 62:3b:f9:5e:dd:3f:83:79:cd:98:0c:63:db:65:41: 57:31:5b:27:77:34:3c:5f:75:d5:1f:4b:22:df:75: 18:e5:19:89:27:84:c2:e7:cc:6a:ff:9e:dc:41:06: 51:14:bb:9d:5a:18:51:f9:e5:a3:99:cb:59:4b:43: 0d:2d:be:52:52:5e:e6:16:e4:a5:e9:5e:cb:24:f8: 77:6b:27:25:78:38:b5:1e:92:ed:b0:44:f6:6b:87: 99:26:a3:07:fb:c1:a4:f9:b7:2b:17:02:6a:37:d4: 6e:87:60:f5:de:bd:11:dd:61:d9:09:71:6d:2c:90: 13:a3:bc:a0:34:72:09:40:1b:17:ea:1d:33:9e:0d: b2:c6:8e:33:3d:c4:a1:34:85:c2:65:cf:d3:c8:ba: 8e:55:1e:d3:53:be:a4:87:6f:5f:af:ff:bf:f6:c3: 9a:94:ce:e9:83:d1:f7:ce:90:b4:f3:43:a7:f1:4d: e7:cf:4d:5f:6b:8d:df:97:a1:db:ff:fa:62:20:ec: 50:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:75:46:45:3A:1F:FE:E7:C9:C2:67:DD:0B:BE:BB:97:76:09:B5:1F X509v3 Authority Key Identifier: keyid:00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/EC56413A5B4B11EE9A031C81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.241.200.0/22 45.121.132.0/22 103.37.128.0/22 IPv6: 2403:7900::/32 Signature Algorithm: sha256WithRSAEncryption 77:99:f1:38:8b:f7:a1:25:fc:d4:4d:a3:ed:83:3d:db:50:2e: 85:84:cd:18:ec:cc:14:e2:2a:e0:16:57:c3:6f:38:8a:d6:8c: e6:e7:5e:f7:a3:c2:bb:03:04:05:e8:54:05:fe:49:14:10:59: 64:b9:82:0b:08:39:db:d2:0f:aa:9e:53:65:4a:56:93:22:f0: 53:82:d2:27:b7:6d:28:3d:e9:bf:34:79:a4:9f:44:86:1f:f5: b2:58:50:69:c4:07:3e:10:21:f4:0c:ea:20:a0:9a:57:17:09: a3:21:e5:b5:5a:6d:03:96:99:76:00:93:29:52:d1:1b:1a:ac: 64:7c:9c:10:41:8c:80:b9:c3:30:f9:55:e5:28:58:8e:b4:0e: 7b:40:a4:80:18:69:45:f0:d5:8f:6a:92:5f:48:f7:a1:e0:46: c1:0e:89:70:9c:85:be:cc:be:28:64:da:cd:02:1e:22:8f:ef: d0:70:8f:97:31:a3:ce:f0:ee:5c:c3:3b:a4:5a:bf:50:d9:eb: 29:b0:f7:d1:dc:ba:de:60:a2:e9:1b:bc:45:31:7a:10:b7:f9: 5c:1d:0d:5b:48:ee:e9:45:b6:89:50:3a:88:f5:7b:eb:44:29: 95:a1:ea:93:d2:31:28:93:85:fc:a9:12:ef:ab:6a:b0:b1:72: 3a:86:b7:80 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDAwOTkyOEYwQjhDRDMwRURBMDU2MzBBOEJBNjc0RTc2 MkE5RDI4MzMwHhcNMjUwNDE1MDMzOTM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWNmNy1hYjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aj1/M5Moa+kmNoUeWIDAgRSWZpq9DzWVsegY+CMIMmSKp1xJ/02sneudJCZ k0+6AbIWbesssqe06IBiO/le3T+Dec2YDGPbZUFXMVsndzQ8X3XVH0si33UY5RmJ J4TC58xq/57cQQZRFLudWhhR+eWjmctZS0MNLb5SUl7mFuSl6V7LJPh3aycleDi1 HpLtsET2a4eZJqMH+8Gk+bcrFwJqN9Ruh2D13r0R3WHZCXFtLJATo7ygNHIJQBsX 6h0zng2yxo4zPcShNIXCZc/TyLqOVR7TU76kh29fr/+/9sOalM7pg9H3zpC080On 8U3nz01fa43fl6Hb//piIOxQKwIDAQABo4ICezCCAncwHQYDVR0OBBYEFKt1RkU6 H/7nycJn3Qu+u5d2CbUfMB8GA1UdIwQYMBaAFACZKPC4zTDtoFYwqLpnTnYqnSgz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9CMzc0OTcxMDVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9BSmtvOExqTk1PMmdWakNvdW1kT2RpcWRL RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FKa284TGpOTU8yZ1ZqQ291bWRPZGlxZEtETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U1QTYvQjM3NDk3MTA1QjNGMTFFRThGMUQzRDZFQzRGOUFFMDIvRUM1NjQxM0E1 QjRCMTFFRTlBMDMxQzgxQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCK/HIAwQCLXmEAwQCZyWAMA0EAgACMAcDBQAkA3kAMA0GCSqGSIb3 DQEBCwUAA4IBAQB3mfE4i/ehJfzUTaPtgz3bUC6FhM0Y7MwU4irgFlfDbziK1ozm 5173o8K7AwQF6FQF/kkUEFlkuYILCDnb0g+qnlNlSlaTIvBTgtInt20oPem/NHmk n0SGH/WyWFBpxAc+ECH0DOogoJpXFwmjIeW1Wm0Dlpl2AJMpUtEbGqxkfJwQQYyA ucMw+VXlKFiOtA57QKSAGGlF8NWPapJfSPeh4EbBDolwnIW+zL4oZNrNAh4ij+/Q cI+XMaPO8O5cwzukWr9Q2espsPfR3LreYKLpG7xFMXoQt/lcHQ1bSO7pRbaJUDqI 9XvrRCmVoeqT0jEok4X8qRLvq2qwsXI6hreA -----END CERTIFICATE-----Generated at Fri Mar 27 03:29:03 2026 by rpki-client