$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/BED8B2621D1B11F1B6F055AB103D8C67.roa File: BED8B2621D1B11F1B6F055AB103D8C67.roa (raw, json) Hash identifier: EjJ1CDCwau1fKrzrYHxK/Qrh8GUA8jF4SY+Z2pjXM+w= Subject key identifier: 4E:85:5E:47:20:2B:A0:68:B9:F6:39:5F:BB:E6:9A:2C:29:C6:5B:51 Certificate issuer: /CN=A91F3256/serialNumber=37CD9BB086EF0AF5A32BD885474686806D9096FB Certificate serial: 33 Authority key identifier: 37:CD:9B:B0:86:EF:0A:F5:A3:2B:D8:85:47:46:86:80:6D:90:96:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N82bsIbvCvWjK9iFR0aGgG2Qlvs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/BED8B2621D1B11F1B6F055AB103D8C67.roa Signing time: Wed 11 Mar 2026 07:27:23 +0000 ROA not before: Wed 11 Mar 2026 07:27:23 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 13335 IP address blocks: 43.243.28.0/22 maxlen: 24 103.230.240.0/22 maxlen: 24 2401:8b80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/N82bsIbvCvWjK9iFR0aGgG2Qlvs.crl rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/N82bsIbvCvWjK9iFR0aGgG2Qlvs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N82bsIbvCvWjK9iFR0aGgG2Qlvs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:46:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3256, serialNumber=37CD9BB086EF0AF5A32BD885474686806D9096FB Validity Not Before: Mar 11 07:27:23 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69b1195b-3794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:8f:ca:9b:0f:22:9c:63:32:52:82:df:66:94: 08:bd:4b:67:5a:21:25:82:57:7c:06:9f:a0:67:06: f3:50:3e:aa:56:0f:3a:8e:4c:fa:7a:d3:83:de:99: e9:58:76:0d:df:00:ac:e8:44:d4:27:1d:46:82:b5: c3:0b:00:69:59:20:98:e1:c2:fd:51:e8:a1:e3:3d: 9f:98:97:23:ba:a0:1d:8d:3b:00:71:6b:78:9d:81: 30:b0:ea:56:70:fe:97:fa:cb:ff:e7:d2:19:9a:63: 72:e0:16:40:3b:a1:92:ca:9c:9a:a0:0d:c1:41:c2: 9e:de:67:66:36:b8:73:67:86:29:45:3e:39:35:ba: b8:6c:ce:7a:e1:4a:67:ac:fd:90:f2:97:bf:0a:ee: 41:40:68:0b:c0:23:7d:4f:a3:f5:f3:87:8c:f8:85: 10:01:6c:23:45:1f:fc:36:7b:66:8e:3d:9f:df:73: f9:1d:df:63:23:00:9e:00:95:6a:a8:3a:f0:4e:2b: b0:e8:50:71:be:37:d0:7b:2a:23:77:44:c8:ff:d1: 76:60:eb:02:66:c8:aa:9b:c6:18:c4:7a:dc:c1:e0: e3:b4:ee:e0:c4:d6:cd:ff:16:1e:f6:9e:d0:b2:d4: 54:97:1c:c7:b6:9c:3e:d0:c7:db:7e:a6:3c:9f:68: e5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:85:5E:47:20:2B:A0:68:B9:F6:39:5F:BB:E6:9A:2C:29:C6:5B:51 X509v3 Authority Key Identifier: keyid:37:CD:9B:B0:86:EF:0A:F5:A3:2B:D8:85:47:46:86:80:6D:90:96:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/N82bsIbvCvWjK9iFR0aGgG2Qlvs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N82bsIbvCvWjK9iFR0aGgG2Qlvs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/BED8B2621D1B11F1B6F055AB103D8C67.roa sbgp-ipAddrBlock: critical IPv4: 43.243.28.0/22 103.230.240.0/22 IPv6: 2401:8b80::/32 Signature Algorithm: sha256WithRSAEncryption 4e:b5:2c:c8:c3:d8:e9:dc:4e:3e:37:e9:ea:a9:0b:a6:e2:02: ea:0b:9f:0a:75:c9:c2:0f:cd:14:cc:65:9f:1b:14:f6:cf:a6: 97:f4:7c:7b:a4:9d:86:d0:2d:f2:c2:bb:90:79:af:7a:7a:5a: 06:8a:2a:66:0a:cb:f8:12:36:0b:5f:f3:33:7b:d3:d5:ce:31: 4e:fd:06:dd:02:91:da:a0:2b:4d:df:8e:72:47:2f:8f:f3:50: b6:30:33:57:96:fc:a6:68:c0:c4:14:aa:19:2a:c1:72:44:79: 77:70:c3:03:e7:5b:ff:1e:46:26:42:b7:49:20:84:4c:8b:46: 12:3f:26:35:2f:9a:3b:89:8f:7c:7a:a9:7c:53:2c:ea:ee:5c: e2:e4:ec:46:5f:29:0b:39:fe:74:c6:74:6d:cc:28:79:e5:8c: 54:6d:d3:43:cd:c7:43:e4:3f:e8:21:8d:aa:83:48:82:81:34: 53:6f:d1:6d:d9:97:2f:09:51:6a:f9:81:6a:9b:c1:55:fa:35: ce:48:f8:01:44:b5:8d:78:8e:4c:fc:88:d6:3e:a7:c0:14:f5: 6a:4e:55:92:55:cd:0f:1e:0d:40:df:06:0a:a2:ae:89:25:e2: 58:0b:f1:ed:d8:b3:ac:5f:43:12:73:a3:6b:26:97:ac:6e:1b: f9:fd:1b:2c -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MzI1NjExMC8GA1UEBRMoMzdDRDlCQjA4NkVGMEFGNUEzMkJEODg1NDc0Njg2ODA2 RDkwOTZGQjAeFw0yNjAzMTEwNzI3MjNaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YjExOTViLTM3OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDpj8qbDyKcYzJSgt9mlAi9S2daISWCV3wGn6BnBvNQPqpWDzqOTPp604PemelY dg3fAKzoRNQnHUaCtcMLAGlZIJjhwv1R6KHjPZ+YlyO6oB2NOwBxa3idgTCw6lZw /pf6y//n0hmaY3LgFkA7oZLKnJqgDcFBwp7eZ2Y2uHNnhilFPjk1urhsznrhSmes /ZDyl78K7kFAaAvAI31Po/Xzh4z4hRABbCNFH/w2e2aOPZ/fc/kd32MjAJ4AlWqo OvBOK7DoUHG+N9B7KiN3RMj/0XZg6wJmyKqbxhjEetzB4OO07uDE1s3/Fh72ntCy 1FSXHMe2nD7Qx9t+pjyfaOW5AgMBAAGjggJ1MIICcTAdBgNVHQ4EFgQUToVeRyAr oGi59jlfu+aaLCnGW1EwHwYDVR0jBBgwFoAUN82bsIbvCvWjK9iFR0aGgG2Qlvsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzMjU2LzFCNTVENzM4RDk5 RjExRjA5N0VGQkVGOTY2RDM2NDFEL044MmJzSWJ2Q3ZXaks5aUZSMGFHZ0cyUWx2 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjgyYnNJYnZDdldqSzlpRlIwYUdnRzJRbHZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzI1Ni8xQjU1RDczOEQ5OUYxMUYwOTdFRkJFRjk2NkQzNjQxRC9CRUQ4QjI2MjFE MUIxMUYxQjZGMDU1QUIxMDNEOEM2Ny5yb2EwNAYIKwYBBQUHAQcBAf8EJTAjMBIE AgABMAwDBAIr8xwDBAJn5vAwDQQCAAIwBwMFACQBi4AwDQYJKoZIhvcNAQELBQAD ggEBAE61LMjD2OncTj436eqpC6biAuoLnwp1ycIPzRTMZZ8bFPbPppf0fHuknYbQ LfLCu5B5r3p6WgaKKmYKy/gSNgtf8zN709XOMU79Bt0CkdqgK03fjnJHL4/zULYw M1eW/KZowMQUqhkqwXJEeXdwwwPnW/8eRiZCt0kghEyLRhI/JjUvmjuJj3x6qXxT LOruXOLk7EZfKQs5/nTGdG3MKHnljFRt00PNx0PkP+ghjaqDSIKBNFNv0W3Zly8J UWr5gWqbwVX6Nc5I+AFEtY14jkz8iNY+p8AU9WpOVZJVzQ8eDUDfBgqirokl4lgL 8e3Ys6xfQxJzo2sml6xuG/n9Gyw= -----END CERTIFICATE-----Generated at Thu Mar 26 04:12:58 2026 by rpki-client