$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/E2D5171C2F3211ED958A415DC4F9AE02.roa File: E2D5171C2F3211ED958A415DC4F9AE02.roa (raw, json) Hash identifier: EKgPE59Um2mB3Cb/fDjzGAqBUuX41HjcK3tgwN7mb6g= Subject key identifier: 43:DC:62:D3:04:DC:3F:20:2A:B1:8C:16:3E:5E:97:2A:21:11:FC:6F Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0CDD Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/E2D5171C2F3211ED958A415DC4F9AE02.roa Signing time: Mon 18 May 2026 19:22:56 +0000 ROA not before: Mon 18 May 2026 19:22:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 141711 IP address blocks: 43.246.224.0/24 maxlen: 24 43.246.225.0/24 maxlen: 24 43.246.226.0/24 maxlen: 24 43.246.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 18:43:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3293 (0xcdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: May 18 19:22:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a0b6710-de35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:60:96:9e:3c:07:f1:0f:ca:89:af:8c:5f:2d: 7f:93:d4:e7:9a:2e:ab:b5:f4:d7:9b:d9:90:57:37: 10:9d:f7:13:2b:dc:de:9c:2c:26:f9:d6:61:be:92: e8:93:97:ef:24:6f:66:a4:25:7d:a9:f7:74:3e:d8: 6c:9d:b6:61:f8:92:2d:67:68:23:5d:f6:4d:a0:a1: 63:74:67:c9:4c:49:68:0f:ec:f1:04:0a:06:a6:02: 03:d3:c9:bd:68:b6:e5:bb:fa:4a:34:4f:1a:9f:54: 33:b6:28:44:26:10:fe:aa:16:84:fa:2b:2c:15:79: ad:0c:2e:a7:44:ab:da:48:80:0c:86:1e:67:97:44: 30:85:0c:c6:9a:15:e9:a2:3d:80:17:30:b6:41:f0: 39:86:4f:cb:c4:d6:ee:a2:df:28:25:9a:b5:0a:66: 87:9a:44:a2:76:a6:2b:b6:33:c3:1b:db:c7:8d:2b: 98:44:f1:bd:3e:e9:e5:fb:6e:d5:1b:59:6c:c9:33: d7:6f:75:a9:07:4a:a8:cd:be:4d:ad:0d:24:e4:7b: a8:41:b9:5f:b7:ac:eb:37:e4:81:8a:eb:19:49:0c: b2:ee:30:28:64:77:f9:21:78:d1:17:c1:d8:ae:90: cb:f8:1a:5b:4a:55:3b:73:33:5d:87:f9:6a:6c:73: fd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:DC:62:D3:04:DC:3F:20:2A:B1:8C:16:3E:5E:97:2A:21:11:FC:6F X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/E2D5171C2F3211ED958A415DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.246.224.0/22 Signature Algorithm: sha256WithRSAEncryption 40:bf:7e:86:30:a3:ec:d6:e3:90:0f:08:6e:2a:fe:d9:f6:38: 51:cc:dd:3a:c0:5c:73:11:11:cd:9f:ed:93:6b:cc:6c:71:61: 66:49:41:3a:9c:19:d1:4a:71:7d:3f:76:2a:07:61:c6:8b:23: 53:49:3a:0d:ef:40:45:22:a9:ec:a9:87:d4:2c:6b:0b:66:da: 49:3e:59:7d:34:20:a4:e0:a6:03:e8:01:a7:c2:87:92:a4:30: a9:ef:28:b2:46:8d:ac:5f:92:26:d8:3f:ac:04:e1:48:ac:cf: cd:58:ca:c4:99:26:47:0c:97:70:fa:c1:39:7e:47:38:7d:77: 43:de:57:ee:40:d9:97:7c:a4:2e:6b:a1:0f:b7:73:1a:9c:f4: f8:15:ce:2c:74:5d:51:d3:80:a3:93:eb:df:83:94:7c:cb:cf: 1c:36:2e:9c:4b:e6:ad:64:f2:71:df:fb:97:98:f8:1a:ba:00: 1c:01:d1:e7:42:6f:b3:89:dc:a9:47:5b:5a:fa:91:96:8f:17: 39:dd:ff:68:c1:56:7e:f3:02:1f:1e:5b:bd:9d:e9:4a:6e:96: 2e:b7:f3:57:ae:87:f9:94:33:c4:64:8a:99:8b:84:c7:f2:82: e5:72:bf:f1:c4:93:4a:48:13:69:16:a3:02:79:fe:ae:b9:c7: 2a:ba:cc:1a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjYwNTE4MTkyMjU2WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBiNjcxMC1kZTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9WCWnjwH8Q/Kia+MXy1/k9Tnmi6rtfTXm9mQVzcQnfcTK9zenCwm+dZhvpLo k5fvJG9mpCV9qfd0PthsnbZh+JItZ2gjXfZNoKFjdGfJTEloD+zxBAoGpgID08m9 aLblu/pKNE8an1QztihEJhD+qhaE+issFXmtDC6nRKvaSIAMhh5nl0QwhQzGmhXp oj2AFzC2QfA5hk/LxNbuot8oJZq1CmaHmkSidqYrtjPDG9vHjSuYRPG9Punl+27V G1lsyTPXb3WpB0qozb5NrQ0k5HuoQblft6zrN+SBiusZSQyy7jAoZHf5IXjRF8HY rpDL+BpbSlU7czNdh/lqbHP92wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEPcYtME 3D8gKrGMFj5elyohEfxvMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk4REEvMzRGMzYxMkUyNjgxMTFFQTkwM0Q3MDU4QzRGOUFFMDIvRTJENTE3MUMy RjMyMTFFRDk1OEE0MTVEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/bgMA0GCSqGSIb3DQEBCwUAA4IBAQBAv36GMKPs1uOQDwhuKv7Z 9jhRzN06wFxzERHNn+2Ta8xscWFmSUE6nBnRSnF9P3YqB2HGiyNTSToN70BFIqns qYfULGsLZtpJPll9NCCk4KYD6AGnwoeSpDCp7yiyRo2sX5Im2D+sBOFIrM/NWMrE mSZHDJdw+sE5fkc4fXdD3lfuQNmXfKQua6EPt3ManPT4Fc4sdF1R04Cjk+vfg5R8 y88cNi6cS+atZPJx3/uXmPgaugAcAdHnQm+zidypR1ta+pGWjxc53f9owVZ+8wIf Hlu9nelKbpYut/NXrof5lDPEZIqZi4TH8oLlcr/xxJNKSBNpFqMCef6uuccquswa -----END CERTIFICATE-----Generated at Fri Jun 12 16:35:31 2026 by rpki-client