$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa File: 0E43AECA3B5D11F0A26BC064C4F9AE02.roa (raw, json) Hash identifier: rx1Mf7ylLJlz5TrZQMaxu72qnNGJnnaZIoeFSJobN+E= Subject key identifier: 43:EB:B6:17:22:E9:EF:29:AE:AC:08:6F:85:25:C2:2B:89:C1:28:67 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D2F Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa Signing time: Mon 02 Mar 2026 19:23:44 +0000 ROA not before: Mon 02 Mar 2026 19:23:44 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 395793 IP address blocks: 43.230.54.0/24 maxlen: 24 43.230.55.0/24 maxlen: 24 43.231.188.0/24 maxlen: 24 43.231.190.0/24 maxlen: 24 43.231.191.0/24 maxlen: 24 43.246.128.0/24 maxlen: 24 43.246.130.0/24 maxlen: 24 43.246.131.0/24 maxlen: 24 43.246.196.0/24 maxlen: 24 43.246.197.0/24 maxlen: 24 45.115.32.0/24 maxlen: 24 45.115.34.0/24 maxlen: 24 103.12.52.0/24 maxlen: 24 103.24.163.0/24 maxlen: 24 103.248.148.0/24 maxlen: 24 103.248.149.0/24 maxlen: 24 160.20.46.0/24 maxlen: 24 160.20.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 19:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3375 (0xd2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Mar 2 19:23:44 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a5e3c0-c603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:00:22:e5:38:31:3d:53:83:78:a2:6a:9a:6b: 9b:4b:4b:c3:9d:cd:1b:ca:6d:b2:66:70:95:78:09: 10:af:d2:8b:f6:44:79:d3:c0:88:d4:84:c0:c2:c7: 4b:72:e7:59:9a:a5:35:90:9b:32:17:e4:0d:d1:1b: 89:78:38:29:ad:ab:55:46:1a:7b:4c:cb:5c:63:f7: a7:0e:0e:d5:8a:58:6b:f5:aa:df:70:70:cd:44:e1: e3:89:6f:1c:43:ec:95:04:6d:01:7d:1b:a7:91:c1: b9:a1:20:dc:4a:dc:51:64:2d:17:89:f7:b0:f7:d4: 1c:93:43:f8:66:b5:7d:d0:8a:3b:98:1f:55:2a:42: d2:55:57:03:d0:fd:2f:4e:8b:0c:c0:70:13:e6:a8: d5:5a:4f:0a:85:d6:f1:f2:05:57:5a:9f:c5:76:a5: ee:60:7f:dc:75:5b:27:f4:a9:b5:98:58:b7:8d:37: 6c:18:98:22:70:fd:97:b7:2e:35:eb:d5:cc:50:05: 4e:14:8f:ec:9a:7a:e3:3f:80:48:92:b8:23:de:0a: ee:72:08:1c:25:55:09:8c:86:ff:82:e9:c7:98:87: 0e:0d:b7:d1:49:99:2b:6a:1b:8e:97:f6:a1:fe:35: cd:5d:1d:82:54:33:ed:72:41:de:ce:99:ef:18:68: 58:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:EB:B6:17:22:E9:EF:29:AE:AC:08:6F:85:25:C2:2B:89:C1:28:67 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.54.0/23 43.231.188.0/24 43.231.190.0/23 43.246.128.0/24 43.246.130.0/23 43.246.196.0/23 45.115.32.0/24 45.115.34.0/24 103.12.52.0/24 103.24.163.0/24 103.248.148.0/23 160.20.46.0/23 Signature Algorithm: sha256WithRSAEncryption c0:bb:17:13:cc:28:1a:ac:c2:1e:3c:a1:8a:ba:83:9e:44:ea: 0a:a9:65:98:0d:0c:ad:5d:b5:2e:67:5a:f0:e4:c4:bd:57:49: d0:32:1f:69:d9:c3:3d:4b:d9:9d:49:ac:e2:6f:d9:d3:5e:19: aa:ca:1a:e1:c5:03:1b:12:0c:e4:6d:4d:0f:2d:8f:b7:0e:49: f2:b9:be:0a:5e:3e:45:8f:e5:89:ef:df:ac:f1:50:21:a2:ae: 1e:ec:3a:e8:f8:18:70:fe:5f:8d:55:9b:1f:14:9b:21:c0:16: cc:bf:52:26:a0:9a:ba:9a:5b:90:a5:5c:e3:32:50:1f:41:3a: 6f:6b:52:36:fb:ae:76:55:76:4f:f8:63:42:a7:9b:31:b8:87: b7:ae:07:6c:7d:36:24:44:ba:b8:84:8b:31:f5:66:fe:39:b9: 71:f6:76:a4:c5:1f:fc:f2:9a:e6:90:ca:4f:3c:34:e0:94:b0: 38:c1:97:b9:5c:be:b4:ff:1f:e4:de:fb:71:fd:a2:e0:80:44: 82:22:82:8f:20:07:18:41:71:5a:16:fb:39:d7:3f:e7:a9:57: 5f:0e:99:76:fa:bc:67:3e:9a:1b:8c:1c:2f:74:e0:14:ba:df: d1:88:57:1e:35:21:c0:38:d0:9d:0e:de:69:2b:b2:42:21:86: ed:fc:b1:97 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgICDS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjYwMzAyMTkyMzQ0WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ZTNjMC1jNjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2AAi5TgxPVODeKJqmmubS0vDnc0bym2yZnCVeAkQr9KL9kR508CI1ITAwsdL cudZmqU1kJsyF+QN0RuJeDgpratVRhp7TMtcY/enDg7Vilhr9arfcHDNROHjiW8c Q+yVBG0BfRunkcG5oSDcStxRZC0Xifew99Qck0P4ZrV90Io7mB9VKkLSVVcD0P0v TosMwHAT5qjVWk8Khdbx8gVXWp/FdqXuYH/cdVsn9Km1mFi3jTdsGJgicP2Xty41 69XMUAVOFI/smnrjP4BIkrgj3grucggcJVUJjIb/gunHmIcODbfRSZkrahuOl/ah /jXNXR2CVDPtckHezpnvGGhY8QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFEPrthci 6e8prqwIb4UlwiuJwShnMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvMEU0M0FFQ0Ez QjVEMTFGMEEyNkJDMDY0QzRGOUFFMDIucm9hMGEGCCsGAQUFBwEHAQH/BFIwUDBO BAIAATBIAwQBK+Y2AwQAK+e8AwQBK+e+AwQAK/aAAwQBK/aCAwQBK/bEAwQALXMg AwQALXMiAwQAZww0AwQAZxijAwQBZ/iUAwQBoBQuMA0GCSqGSIb3DQEBCwUAA4IB AQDAuxcTzCgarMIePKGKuoOeROoKqWWYDQytXbUuZ1rw5MS9V0nQMh9p2cM9S9md Sazib9nTXhmqyhrhxQMbEgzkbU0PLY+3Dknyub4KXj5Fj+WJ79+s8VAhoq4e7Dro +Bhw/l+NVZsfFJshwBbMv1ImoJq6mluQpVzjMlAfQTpva1I2+652VXZP+GNCp5sx uIe3rgdsfTYkRLq4hIsx9Wb+Oblx9nakxR/88prmkMpPPDTglLA4wZe5XL60/x/k 3vtx/aLggESCIoKPIAcYQXFaFvs51z/nqVdfDpl2+rxnPpobjBwvdOAUut/RiFce NSHAONCdDt5pK7JCIYbt/LGX -----END CERTIFICATE-----Generated at Wed Mar 4 14:34:54 2026 by rpki-client