$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/1A6C2ADE173F11F08E4D594DC4F9AE02.roa File: 1A6C2ADE173F11F08E4D594DC4F9AE02.roa (raw, json) Hash identifier: TvXLjRjBuh/jeViBgDmt60uFgh6iIY+NQDyFO9oRISI= Subject key identifier: 03:83:44:48:1A:9A:73:F5:26:17:04:1C:87:CC:5F:0E:D5:51:02:A0 Certificate issuer: /CN=A91F3C87/serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Certificate serial: 027C Authority key identifier: EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/1A6C2ADE173F11F08E4D594DC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:36:47 +0000 ROA not before: Fri 05 Dec 2025 01:11:04 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 23532 IP address blocks: 43.224.149.0/24 maxlen: 24 103.43.172.0/24 maxlen: 24 103.43.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:10:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 636 (0x27c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3C87, serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Validity Not Before: Dec 5 01:11:04 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a5926f-e310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f7:ca:16:cd:95:da:58:2d:b3:6c:85:99:3d: 20:b8:5f:d5:15:ee:7b:6e:d3:75:86:ff:47:a2:ff: bc:6b:ac:b3:82:03:e1:ce:b8:03:29:6d:54:54:da: 98:6b:3e:1d:45:7f:3f:66:9c:68:78:58:aa:0c:b1: 0e:67:7a:da:e2:cf:a4:d9:b1:b9:5f:87:ff:d1:39: 6e:ae:06:8a:bd:ba:81:7a:ee:5a:f0:4c:90:be:61: 9e:29:f5:57:71:f3:df:48:80:d2:d2:ee:46:e9:8d: 38:b8:2c:92:09:42:ff:fe:0a:19:81:70:c7:33:70: b5:d6:27:ce:c9:e9:35:62:36:bc:a7:f7:94:77:1c: 82:01:fe:6d:ec:39:b4:76:10:40:e6:51:af:8b:78: 94:b1:f0:52:d5:36:16:15:c9:19:d5:9c:24:92:40: 1c:61:6a:30:56:c6:26:69:02:57:15:64:e0:24:1c: 18:1e:f5:a6:f8:4b:d3:59:b6:20:b3:3d:94:0b:d2: b5:96:0b:d0:47:7b:7a:7f:c3:72:d0:64:20:f2:a5: 37:5c:be:e7:12:63:18:df:42:95:b6:4c:76:ad:c5: c3:49:a0:b0:00:5f:0e:39:e7:a8:25:2f:e1:ae:6a: 3b:38:5b:e0:2f:b7:a3:8e:61:72:56:8a:df:5b:17: 80:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:83:44:48:1A:9A:73:F5:26:17:04:1C:87:CC:5F:0E:D5:51:02:A0 X509v3 Authority Key Identifier: keyid:EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/1A6C2ADE173F11F08E4D594DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.224.149.0/24 103.43.172.0/23 Signature Algorithm: sha256WithRSAEncryption 53:d2:10:79:5f:82:26:4b:36:83:2c:47:14:40:34:4c:34:9c: 80:41:eb:ee:ff:09:64:82:46:d2:8d:4a:5d:51:0f:da:b2:d5: e2:e7:80:c3:dd:c8:a3:54:30:14:7c:02:69:10:62:e7:6a:cd: 61:ba:fa:18:c0:3a:ba:c9:d9:0d:cf:2a:ab:61:33:a5:9a:f7: 4a:11:5c:22:5f:74:d6:83:38:8f:c6:10:08:e8:54:61:d4:e8: ef:de:ee:7e:2e:78:79:aa:0f:7b:10:03:ee:e5:cb:63:74:1f: 29:8b:87:c7:a3:03:2b:de:a1:9c:4d:4d:d7:c9:fc:29:3b:ae: 9a:c2:33:93:ca:2e:28:b2:7c:dc:19:5b:38:73:49:26:8b:d3: cb:48:45:6d:38:2c:a9:43:de:41:c2:54:37:fa:82:71:2b:37: a9:d6:ce:71:5f:10:43:28:56:7f:b9:08:36:c2:04:4a:6a:e5: 42:45:d2:8a:1a:b9:b7:63:f7:69:0e:32:1c:3f:25:0b:eb:7a: 0b:c2:98:71:49:3b:b8:33:8b:32:84:d9:0a:59:c4:b8:64:bb: 24:7c:7b:46:81:08:19:71:64:18:b7:ad:07:8b:6f:b9:73:0d: 57:13:0f:6c:c8:f1:13:cd:76:6c:37:6c:50:15:13:2b:a1:6f: 3b:63:b5:69 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDODcxMTAvBgNVBAUTKEVGOUZFMzgxREEzRDQyRUI3QzRFMEQwNDlDQ0FFNzIy OEUyOEZCNEIwHhcNMjUxMjA1MDExMTA0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTI2Zi1lMzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnffKFs2V2lgts2yFmT0guF/VFe57btN1hv9Hov+8a6yzggPhzrgDKW1UVNqY az4dRX8/ZpxoeFiqDLEOZ3ra4s+k2bG5X4f/0TlurgaKvbqBeu5a8EyQvmGeKfVX cfPfSIDS0u5G6Y04uCySCUL//goZgXDHM3C11ifOyek1Yja8p/eUdxyCAf5t7Dm0 dhBA5lGvi3iUsfBS1TYWFckZ1ZwkkkAcYWowVsYmaQJXFWTgJBwYHvWm+EvTWbYg sz2UC9K1lgvQR3t6f8Ny0GQg8qU3XL7nEmMY30KVtkx2rcXDSaCwAF8OOeeoJS/h rmo7OFvgL7ejjmFyVorfWxeA1QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFAODREga mnP1JhcEHIfMXw7VUQKgMB8GA1UdIwQYMBaAFO+f44HaPULrfE4NBJzK5yKOKPtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0M4Ny9FNzgyODU0RUVG MEIxMUVEODFERDJENzJDNEY5QUUwMi83NV9qZ2RvOVF1dDhUZzBFbk1ybklvNG8t MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc1X2pnZG85UXV0OFRnMEVuTXJuSW80by0wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNDODcvRTc4Mjg1NEVFRjBCMTFFRDgxREQyRDcyQzRGOUFFMDIvMUE2QzJBREUx NzNGMTFGMDhFNEQ1OTREQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK+CVAwQBZyusMA0GCSqGSIb3DQEBCwUAA4IBAQBT0hB5X4ImSzaD LEcUQDRMNJyAQevu/wlkgkbSjUpdUQ/astXi54DD3cijVDAUfAJpEGLnas1huvoY wDq6ydkNzyqrYTOlmvdKEVwiX3TWgziPxhAI6FRh1Ojv3u5+Lnh5qg97EAPu5ctj dB8pi4fHowMr3qGcTU3XyfwpO66awjOTyi4osnzcGVs4c0kmi9PLSEVtOCypQ95B wlQ3+oJxKzep1s5xXxBDKFZ/uQg2wgRKauVCRdKKGrm3Y/dpDjIcPyUL63oLwphx STu4M4syhNkKWcS4ZLskfHtGgQgZcWQYt60Hi2+5cw1XEw9syPETzXZsN2xQFRMr oW87Y7Vp -----END CERTIFICATE-----Generated at Thu Mar 26 08:49:39 2026 by rpki-client