$ rpki-client -vvf rpki.apnic.net/member_repository/A91400CC/B4A7CCE8C60211ECBEB9BF3AC4F9AE02/5A0EFF08D55011EF9880B254C4F9AE02.roa File: 5A0EFF08D55011EF9880B254C4F9AE02.roa (raw, json) Hash identifier: eJU27ZylxWRdH4yTS7w9NECP9sf6xkVZe7M8HJ4Q68w= Subject key identifier: 70:80:DB:C4:EA:D9:BF:42:2D:6A:1A:8C:BF:F9:65:38:C5:9B:72:A8 Certificate issuer: /CN=A91400CC/serialNumber=2758C6CF8B528966D43713BB1BCE8E03DCA61B1C Certificate serial: 03C8 Authority key identifier: 27:58:C6:CF:8B:52:89:66:D4:37:13:BB:1B:CE:8E:03:DC:A6:1B:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J1jGz4tSiWbUNxO7G86OA9ymGxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91400CC/B4A7CCE8C60211ECBEB9BF3AC4F9AE02/5A0EFF08D55011EF9880B254C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:25:06 +0000 ROA not before: Sat 11 Oct 2025 03:27:52 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153494 IP address blocks: 43.248.60.0/22 maxlen: 24 103.39.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91400CC/B4A7CCE8C60211ECBEB9BF3AC4F9AE02/J1jGz4tSiWbUNxO7G86OA9ymGxw.crl rsync://rpki.apnic.net/member_repository/A91400CC/B4A7CCE8C60211ECBEB9BF3AC4F9AE02/J1jGz4tSiWbUNxO7G86OA9ymGxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J1jGz4tSiWbUNxO7G86OA9ymGxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 00:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 968 (0x3c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91400CC, serialNumber=2758C6CF8B528966D43713BB1BCE8E03DCA61B1C Validity Not Before: Oct 11 03:27:52 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a44c42-cd93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fe:d8:16:9e:61:e2:c5:1f:93:df:07:17:e2: 5c:cc:8f:6b:f5:30:48:7a:7b:2a:ee:ae:cc:92:d0: dd:65:8b:e4:90:f4:8e:4f:94:59:de:79:5f:8c:42: 22:22:26:ca:a3:2e:04:87:cb:22:76:80:31:09:5d: a0:98:a8:c2:4b:2b:47:a0:1e:0b:6e:88:8f:78:ed: 3b:d5:f0:d2:d7:94:c2:42:36:ab:00:0f:ec:4b:52: 08:cd:20:5b:47:62:9e:8e:be:08:b3:dc:5e:6c:df: 11:93:41:ff:01:ee:b5:88:fa:f2:94:b6:7f:8b:b8: 4a:6a:05:fd:a2:ca:80:52:f6:56:2f:7b:ed:ea:09: aa:7a:9f:4c:11:ea:7f:da:dd:ce:94:6b:b4:03:d4: d2:fa:69:d6:cb:57:e3:24:3b:03:84:20:e2:b4:20: 8f:2c:fb:14:e3:b9:48:e8:79:76:7f:b7:31:a0:a0: 90:67:c3:9d:d4:5e:2c:ad:ab:59:55:00:e7:a2:2b: d1:15:45:d1:82:53:3e:19:dc:de:e1:fc:c0:90:55: 4a:79:1c:68:62:22:4d:9b:3c:e2:1e:8a:aa:4a:7a: e2:b1:1e:86:e2:c2:88:ce:30:33:7b:fd:6a:3e:a1: c6:36:44:fc:be:67:c8:21:f4:1d:16:05:9c:08:a7: 3e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:80:DB:C4:EA:D9:BF:42:2D:6A:1A:8C:BF:F9:65:38:C5:9B:72:A8 X509v3 Authority Key Identifier: keyid:27:58:C6:CF:8B:52:89:66:D4:37:13:BB:1B:CE:8E:03:DC:A6:1B:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91400CC/B4A7CCE8C60211ECBEB9BF3AC4F9AE02/J1jGz4tSiWbUNxO7G86OA9ymGxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J1jGz4tSiWbUNxO7G86OA9ymGxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91400CC/B4A7CCE8C60211ECBEB9BF3AC4F9AE02/5A0EFF08D55011EF9880B254C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.248.60.0/22 103.39.148.0/22 Signature Algorithm: sha256WithRSAEncryption 11:7b:a2:f5:cb:a4:0a:02:13:2b:00:60:ff:90:09:f2:36:58: 93:29:0c:48:10:f1:b2:f7:38:71:b4:49:95:ec:00:39:99:08: af:40:e5:24:4d:52:47:4b:d7:a0:e5:65:46:93:e0:68:67:2b: e2:3a:c5:d1:a4:61:8b:95:a2:30:66:06:a4:b5:8c:1f:b1:1b: a2:72:51:2d:77:8f:4b:42:d4:44:4a:a0:e9:66:8b:3d:bc:63: 38:4e:11:d3:6f:24:9b:ca:37:89:81:45:dd:91:08:26:32:96: bb:fe:78:2e:cc:10:d5:c2:14:45:64:8f:4e:d5:c2:97:d4:c5: 33:09:27:3b:54:42:4f:b4:91:6a:ce:f2:6f:b6:e3:ba:c3:d6: c7:5d:a5:b3:e1:72:6e:9e:29:45:a7:11:ba:0a:2e:12:2c:15: f5:16:74:a0:4f:4c:c6:ac:6b:af:ed:2a:f3:0f:9a:02:1e:08: 60:68:2a:71:91:39:64:d4:7b:95:fc:c8:6d:8e:2e:54:31:8b: 98:c9:46:0c:4a:6a:dc:52:b5:db:f5:75:0c:72:88:aa:54:01: c7:8b:64:72:08:68:66:a9:76:c1:00:6d:d8:b2:4e:12:c8:7b: 06:82:a6:5d:67:a4:b3:c9:7a:7e:e9:56:ae:86:bf:b0:91:16: 8d:52:8f:eb -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICA8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAwQ0MxMTAvBgNVBAUTKDI3NThDNkNGOEI1Mjg5NjZENDM3MTNCQjFCQ0U4RTAz RENBNjFCMUMwHhcNMjUxMDExMDMyNzUyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGM0Mi1jZDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/7YFp5h4sUfk98HF+JczI9r9TBIensq7q7MktDdZYvkkPSOT5RZ3nlfjEIi IibKoy4Eh8sidoAxCV2gmKjCSytHoB4LboiPeO071fDS15TCQjarAA/sS1IIzSBb R2Kejr4Is9xebN8Rk0H/Ae61iPrylLZ/i7hKagX9osqAUvZWL3vt6gmqep9MEep/ 2t3OlGu0A9TS+mnWy1fjJDsDhCDitCCPLPsU47lI6Hl2f7cxoKCQZ8Od1F4sratZ VQDnoivRFUXRglM+Gdze4fzAkFVKeRxoYiJNmzziHoqqSnrisR6G4sKIzjAze/1q PqHGNkT8vmfIIfQdFgWcCKc+PwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFHCA28Tq 2b9CLWoajL/5ZTjFm3KoMB8GA1UdIwQYMBaAFCdYxs+LUolm1DcTuxvOjgPcphsc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDBDQy9CNEE3Q0NFOEM2 MDIxMUVDQkVCOUJGM0FDNEY5QUUwMi9KMWpHejR0U2lXYlVOeE83Rzg2T0E5eW1H eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0oxakd6NHRTaVdiVU54TzdHODZPQTl5bUd4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDAwQ0MvQjRBN0NDRThDNjAyMTFFQ0JFQjlCRjNBQzRGOUFFMDIvNUEwRUZGMDhE NTUwMTFFRjk4ODBCMjU0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/g8AwQCZyeUMA0GCSqGSIb3DQEBCwUAA4IBAQARe6L1y6QKAhMr AGD/kAnyNliTKQxIEPGy9zhxtEmV7AA5mQivQOUkTVJHS9eg5WVGk+BoZyviOsXR pGGLlaIwZgaktYwfsRuiclEtd49LQtRESqDpZos9vGM4ThHTbySbyjeJgUXdkQgm Mpa7/nguzBDVwhRFZI9O1cKX1MUzCSc7VEJPtJFqzvJvtuO6w9bHXaWz4XJunilF pxG6Ci4SLBX1FnSgT0zGrGuv7SrzD5oCHghgaCpxkTlk1HuV/Mhtji5UMYuYyUYM SmrcUrXb9XUMcoiqVAHHi2RyCGhmqXbBAG3Ysk4SyHsGgqZdZ6SzyXp+6Vauhr+w kRaNUo/r -----END CERTIFICATE-----Generated at Sat Mar 21 22:37:37 2026 by rpki-client