$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2A10/F256CC16232C11F193A4D832A3833773/A1E11254233211F193BBD607A5833773.roa File: A1E11254233211F193BBD607A5833773.roa (raw, json) Hash identifier: rPfxNiEyt72l+zUUADrrIDao6HH3IxiY1LfJRw6lyTI= Subject key identifier: 7B:86:B0:FE:0D:7C:96:1D:6E:A3:2D:01:A6:3A:EB:C6:9C:15:28:9D Certificate issuer: /CN=A91D2A10/serialNumber=94D2CF44A369A422344F765783BF01E982A9C401 Certificate serial: 02 Authority key identifier: 94:D2:CF:44:A3:69:A4:22:34:4F:76:57:83:BF:01:E9:82:A9:C4:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNLPRKNppCI0T3ZXg78B6YKpxAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2A10/F256CC16232C11F193A4D832A3833773/A1E11254233211F193BBD607A5833773.roa Signing time: Thu 19 Mar 2026 01:26:20 +0000 ROA not before: Thu 19 Mar 2026 01:26:20 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 6364 IP address blocks: 43.228.212.0/22 maxlen: 24 103.47.224.0/22 maxlen: 24 2402:4180::/44 maxlen: 52 2402:4180:100::/44 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2A10/F256CC16232C11F193A4D832A3833773/lNLPRKNppCI0T3ZXg78B6YKpxAE.crl rsync://rpki.apnic.net/member_repository/A91D2A10/F256CC16232C11F193A4D832A3833773/lNLPRKNppCI0T3ZXg78B6YKpxAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNLPRKNppCI0T3ZXg78B6YKpxAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:22:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2A10, serialNumber=94D2CF44A369A422344F765783BF01E982A9C401 Validity Not Before: Mar 19 01:26:20 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69bb50bb-71f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5a:cc:f7:ed:cc:b0:fb:6a:3c:a6:8c:3f:59: d6:64:f6:f0:48:d4:85:0d:84:6c:49:03:bf:10:e6: 98:9b:70:67:47:04:07:e0:cb:d1:96:94:7a:93:8a: 0d:3a:24:21:66:0b:04:31:f9:be:e9:79:63:3a:73: 8a:fb:1d:9f:20:da:eb:be:9a:b0:7b:0c:60:80:8c: dc:1d:69:9d:c1:09:35:dd:82:a5:af:c6:59:1b:a8: ce:8a:5f:ef:5a:dc:00:b5:29:79:c0:6b:6e:68:db: d1:e7:26:82:5d:78:18:61:f0:c2:27:b8:9c:44:3c: 71:2c:85:85:23:3f:aa:69:17:b0:61:31:9f:25:61: 7c:b5:e7:1d:0b:54:ab:f4:ef:92:7c:cd:64:57:c1: 76:30:ea:da:42:0f:ea:bb:f2:88:70:db:62:51:3d: af:2b:0c:85:76:b7:14:1f:b8:44:4a:98:a1:dc:ed: cc:cf:d9:62:72:0f:47:d1:35:97:01:c6:10:d3:61: f4:a8:7a:09:1b:1a:d0:ab:a3:54:28:82:2e:45:f4: 7e:2f:75:b7:41:b0:fe:64:30:4b:0f:38:36:4b:dc: 61:de:21:7b:02:96:89:d5:79:db:04:dd:f3:bf:0f: 47:8b:09:81:f5:0f:ea:92:fc:21:39:1a:0f:cd:f4: d1:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:86:B0:FE:0D:7C:96:1D:6E:A3:2D:01:A6:3A:EB:C6:9C:15:28:9D X509v3 Authority Key Identifier: keyid:94:D2:CF:44:A3:69:A4:22:34:4F:76:57:83:BF:01:E9:82:A9:C4:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2A10/F256CC16232C11F193A4D832A3833773/lNLPRKNppCI0T3ZXg78B6YKpxAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNLPRKNppCI0T3ZXg78B6YKpxAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2A10/F256CC16232C11F193A4D832A3833773/A1E11254233211F193BBD607A5833773.roa sbgp-ipAddrBlock: critical IPv4: 43.228.212.0/22 103.47.224.0/22 IPv6: 2402:4180::/44 2402:4180:100::/44 Signature Algorithm: sha256WithRSAEncryption 77:7d:1e:2b:2b:94:93:23:72:1b:8f:0d:79:7a:54:5e:da:22: bf:47:74:d5:7a:d5:a0:47:39:0b:81:ee:2d:b7:87:1f:c0:74: 10:9c:22:f3:3a:a7:4a:74:0f:ad:58:9c:2c:0a:07:c9:14:37: 46:f9:83:b6:6e:78:db:3e:76:a6:b1:6a:bd:a3:8c:34:6f:92: a7:ca:e5:5d:9f:0c:8d:4b:bc:50:b9:be:ff:5f:48:9e:bd:5b: 46:79:73:8c:ff:b2:df:c3:78:67:1a:49:b3:d0:f4:1a:51:a3: af:a5:09:08:85:24:e5:49:a4:d0:f1:6f:b7:6d:95:40:73:81: 9b:c3:a3:0a:4d:59:38:41:48:10:3d:41:bc:2a:aa:1d:7d:42: c7:33:1f:84:8d:3b:bb:b6:89:38:5b:31:47:0f:48:90:b8:9d: b9:b5:ff:2a:cf:f0:0e:76:32:56:39:78:f4:62:ea:18:97:fa: 83:91:40:35:ed:91:47:ed:cd:a6:7c:93:0e:74:97:ec:95:67: ac:83:fd:17:4c:9a:e6:a4:e6:a3:a3:15:00:ef:3c:e5:dc:39: 3d:aa:80:23:4f:c1:b4:e5:03:d7:02:9f:8f:a8:56:24:51:0d: 95:da:66:b0:77:d6:52:19:ec:79:b5:55:a6:0b:1f:a2:f6:1c: 28:48:c7:38 -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkExMDExMC8GA1UEBRMoOTREMkNGNDRBMzY5QTQyMjM0NEY3NjU3ODNCRjAxRTk4 MkE5QzQwMTAeFw0yNjAzMTkwMTI2MjBaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YmI1MGJiLTcxZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7Wsz37cyw+2o8pow/WdZk9vBI1IUNhGxJA78Q5pibcGdHBAfgy9GWlHqTig06 JCFmCwQx+b7peWM6c4r7HZ8g2uu+mrB7DGCAjNwdaZ3BCTXdgqWvxlkbqM6KX+9a 3AC1KXnAa25o29HnJoJdeBhh8MInuJxEPHEshYUjP6ppF7BhMZ8lYXy15x0LVKv0 75J8zWRXwXYw6tpCD+q78ohw22JRPa8rDIV2txQfuERKmKHc7czP2WJyD0fRNZcB xhDTYfSoegkbGtCro1Qogi5F9H4vdbdBsP5kMEsPODZL3GHeIXsClonVedsE3fO/ D0eLCYH1D+qS/CE5Gg/N9NExAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQUe4aw/g18 lh1uoy0BpjrrxpwVKJ0wHwYDVR0jBBgwFoAUlNLPRKNppCI0T3ZXg78B6YKpxAEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQTEwL0YyNTZDQzE2MjMy QzExRjE5M0E0RDgzMkEzODMzNzczL2xOTFBSS05wcENJMFQzWlhnNzhCNllLcHhB RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbE5MUFJLTnBwQ0kwVDNaWGc3OEI2WUtweEFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkExMC9GMjU2Q0MxNjIzMkMxMUYxOTNBNEQ4MzJBMzgzMzc3My9BMUUxMTI1NDIz MzIxMUYxOTNCQkQ2MDdBNTgzMzc3My5yb2EwPwYIKwYBBQUHAQcBAf8EMDAuMBIE AgABMAwDBAIr5NQDBAJnL+AwGAQCAAIwEgMHBCQCQYAAAAMHBCQCQYABADANBgkq hkiG9w0BAQsFAAOCAQEAd30eKyuUkyNyG48NeXpUXtoiv0d01XrVoEc5C4HuLbeH H8B0EJwi8zqnSnQPrVicLAoHyRQ3RvmDtm542z52prFqvaOMNG+Sp8rlXZ8MjUu8 ULm+/19Inr1bRnlzjP+y38N4ZxpJs9D0GlGjr6UJCIUk5Umk0PFvt22VQHOBm8Oj Ck1ZOEFIED1BvCqqHX1CxzMfhI07u7aJOFsxRw9IkLidubX/Ks/wDnYyVjl49GLq GJf6g5FANe2RR+3NpnyTDnSX7JVnrIP9F0ya5qTmo6MVAO885dw5PaqAI0/BtOUD 1wKfj6hWJFENldpmsHfWUhnsebVVpgsfovYcKEjHOA== -----END CERTIFICATE-----Generated at Thu Mar 26 05:02:48 2026 by rpki-client