$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/41D824664A0F11F1A50A7F9BC6833773.roa File: 41D824664A0F11F1A50A7F9BC6833773.roa (raw, json) Hash identifier: JE90nL4uklO2ljFdXRRYK1Z4K+dIWdNTDTE6E92zcXc= Subject key identifier: D1:A1:44:0B:0C:E7:FC:2C:C5:15:99:F9:46:00:2B:E3:7C:58:2E:BA Certificate issuer: /CN=A91F3C87/serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Certificate serial: 02AB Authority key identifier: EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/41D824664A0F11F1A50A7F9BC6833773.roa Signing time: Thu 07 May 2026 12:21:21 +0000 ROA not before: Thu 07 May 2026 12:21:21 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 20473 IP address blocks: 43.224.151.0/24 maxlen: 24 103.43.174.0/24 maxlen: 24 103.43.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 02:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 683 (0x2ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3C87, serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Validity Not Before: May 7 12:21:21 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69fc83c1-2cdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:90:09:6c:41:ea:7b:9f:76:68:ff:1e:4d:95: d3:e4:94:3f:7b:b0:d6:9b:aa:16:cd:d9:8a:06:5c: 57:f3:79:b0:f2:04:cb:4a:39:cb:23:d2:6f:c9:73: d5:b2:85:9b:26:42:d2:bb:a5:74:93:44:85:be:b8: 01:0b:44:e2:8c:7c:16:61:db:c7:ec:1f:35:b9:62: 67:a8:7d:e2:eb:8a:1d:e6:80:32:17:0c:d6:56:26: 9f:a0:1e:9d:40:1d:8f:e7:68:07:f1:ac:09:cf:97: 05:b0:d3:8e:f2:b0:58:e1:31:b4:4f:c3:49:19:59: 4f:5d:ba:2a:f3:c2:f8:90:94:39:57:1c:c0:e0:05: a0:eb:b6:c8:fc:30:25:54:7a:61:5a:7b:9c:87:96: 9c:81:29:95:75:83:10:0f:4e:ac:5a:e7:3e:40:66: 67:63:61:eb:de:78:63:93:1a:03:1b:92:3a:58:d6: 5b:1f:94:fe:7d:31:d1:1f:3d:e4:33:7b:87:e8:e3: 20:76:ae:e2:69:e3:64:e3:e5:44:ab:ad:01:56:ff: c0:17:a1:68:2a:e7:0c:d7:87:31:7f:ee:6b:79:45: ec:d8:9f:e5:39:c0:29:05:67:f2:61:57:0f:14:3f: 4c:96:9b:d7:68:c6:82:6c:b7:9d:27:2b:74:67:85: 59:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:A1:44:0B:0C:E7:FC:2C:C5:15:99:F9:46:00:2B:E3:7C:58:2E:BA X509v3 Authority Key Identifier: keyid:EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/41D824664A0F11F1A50A7F9BC6833773.roa sbgp-ipAddrBlock: critical IPv4: 43.224.151.0/24 103.43.174.0/23 Signature Algorithm: sha256WithRSAEncryption 46:e3:e8:d9:6a:2b:6c:a2:04:7c:e6:9e:db:f4:b2:4b:1e:18: 0c:fc:b3:23:de:a7:cd:35:0a:e6:9f:a4:f4:b3:60:8f:3e:a3: ae:45:9f:85:82:a8:66:bb:54:14:c8:aa:1a:c5:dd:d7:7e:88: 1c:82:bf:65:aa:fa:4d:a9:5d:1e:ea:9f:62:14:63:d6:48:7b: 6c:61:78:9f:96:84:99:5e:83:f4:6c:74:96:52:c2:06:99:90: 63:77:85:41:3e:61:6f:93:05:d2:4b:86:07:a1:50:29:37:27: 70:9c:09:07:28:50:72:4f:15:84:2c:53:63:b7:2f:72:58:0c: e1:3c:18:d3:f5:f3:87:b9:f9:7a:fd:bc:b3:67:d7:c9:4a:83: 1f:d3:fe:30:2d:93:8f:f7:fb:4c:ea:39:72:c5:2b:c3:37:ee: fc:b4:eb:10:7b:3a:43:6e:cc:db:83:2b:a4:2b:71:3f:15:45: 1d:58:32:52:4d:01:75:e3:0d:20:19:61:b8:ac:9c:08:0a:8e: 8a:3f:49:de:e5:a3:82:55:7a:5c:70:c6:0b:96:ff:4d:d8:1c: b0:74:28:8a:bf:b5:67:17:d3:b2:cc:8d:10:46:d2:32:02:83: 6a:18:d7:f5:12:7d:e4:f9:fc:04:26:6d:81:e9:67:61:b0:f7: bb:9e:cc:57 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDODcxMTAvBgNVBAUTKEVGOUZFMzgxREEzRDQyRUI3QzRFMEQwNDlDQ0FFNzIy OEUyOEZCNEIwHhcNMjYwNTA3MTIyMTIxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZjODNjMS0yY2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpAJbEHqe592aP8eTZXT5JQ/e7DWm6oWzdmKBlxX83mw8gTLSjnLI9JvyXPV soWbJkLSu6V0k0SFvrgBC0TijHwWYdvH7B81uWJnqH3i64od5oAyFwzWViafoB6d QB2P52gH8awJz5cFsNOO8rBY4TG0T8NJGVlPXboq88L4kJQ5VxzA4AWg67bI/DAl VHphWnuch5acgSmVdYMQD06sWuc+QGZnY2Hr3nhjkxoDG5I6WNZbH5T+fTHRHz3k M3uH6OMgdq7iaeNk4+VEq60BVv/AF6FoKucM14cxf+5reUXs2J/lOcApBWfyYVcP FD9MlpvXaMaCbLedJyt0Z4VZWQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNGhRAsM 5/wsxRWZ+UYAK+N8WC66MB8GA1UdIwQYMBaAFO+f44HaPULrfE4NBJzK5yKOKPtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0M4Ny9FNzgyODU0RUVG MEIxMUVEODFERDJENzJDNEY5QUUwMi83NV9qZ2RvOVF1dDhUZzBFbk1ybklvNG8t MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc1X2pnZG85UXV0OFRnMEVuTXJuSW80by0wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNDODcvRTc4Mjg1NEVFRjBCMTFFRDgxREQyRDcyQzRGOUFFMDIvNDFEODI0NjY0 QTBGMTFGMUE1MEE3RjlCQzY4MzM3NzMucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK+CXAwQBZyuuMA0GCSqGSIb3DQEBCwUAA4IBAQBG4+jZaitsogR8 5p7b9LJLHhgM/LMj3qfNNQrmn6T0s2CPPqOuRZ+Fgqhmu1QUyKoaxd3Xfogcgr9l qvpNqV0e6p9iFGPWSHtsYXifloSZXoP0bHSWUsIGmZBjd4VBPmFvkwXSS4YHoVAp NydwnAkHKFByTxWELFNjty9yWAzhPBjT9fOHufl6/byzZ9fJSoMf0/4wLZOP9/tM 6jlyxSvDN+78tOsQezpDbszbgyukK3E/FUUdWDJSTQF14w0gGWG4rJwICo6KP0ne 5aOCVXpccMYLlv9N2BywdCiKv7VnF9OyzI0QRtIyAoNqGNf1En3k+fwEJm2B6Wdh sPe7nsxX -----END CERTIFICATE-----Generated at Tue May 12 21:45:14 2026 by rpki-client