$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/1DB49770BDD511F0BF83ED5AC4F9AE02.roa File: 1DB49770BDD511F0BF83ED5AC4F9AE02.roa (raw, json) Hash identifier: 6JLMteJnja7+tiZnKdI5bf0UkqKb/Uh5AX2ANHa//84= Subject key identifier: BD:7A:CD:07:96:FD:95:91:F2:28:7D:3A:E2:50:20:83:DA:EE:BF:A0 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D30 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/1DB49770BDD511F0BF83ED5AC4F9AE02.roa Signing time: Mon 02 Mar 2026 19:23:46 +0000 ROA not before: Mon 02 Mar 2026 19:23:46 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 400342 IP address blocks: 43.246.129.0/24 maxlen: 24 103.244.211.0/24 maxlen: 24 160.20.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 18:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3376 (0xd30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Mar 2 19:23:46 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a5e3c2-cf4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f2:73:f0:ae:94:ea:4c:0c:5d:eb:bb:08:45: 3d:87:f0:61:86:08:28:71:5d:8b:a6:d5:d8:74:89: 60:69:ad:ea:6c:74:d5:e5:8e:db:cb:d9:58:da:35: 53:bd:b7:00:03:d2:06:c0:18:c0:ce:b4:12:72:9a: 07:32:c2:23:6a:aa:68:51:ee:0d:b2:9e:c4:fa:1b: 44:ca:a7:cf:72:32:d2:2d:25:11:26:5f:39:b4:a1: 6d:97:18:33:9e:eb:9c:7d:42:b2:0e:de:cf:d9:4e: 66:80:69:af:06:25:1d:46:f0:73:a8:71:d9:c0:6e: ee:70:0e:38:b6:d5:7c:4c:7c:dc:68:dc:c3:31:3b: 14:07:e0:af:50:16:52:d3:d5:7a:b6:64:05:12:7c: 8f:a4:93:ce:27:a0:88:2d:a2:09:2e:78:42:4a:dc: 6a:99:bd:ac:75:0f:a2:96:81:ca:2d:90:0f:11:04: 5d:cd:d5:8c:98:99:d9:66:69:89:ba:01:51:e3:ce: 47:3e:f9:fa:15:be:86:e5:92:77:ad:9c:23:ee:05: 0c:4b:6d:4e:b9:33:28:18:1d:26:79:c6:35:c5:77: c1:e0:1f:41:9b:e3:57:ed:22:45:c0:94:d0:41:70: 85:85:0a:f6:64:f8:17:3d:14:af:13:d0:7c:74:72: 35:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:7A:CD:07:96:FD:95:91:F2:28:7D:3A:E2:50:20:83:DA:EE:BF:A0 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/1DB49770BDD511F0BF83ED5AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.246.129.0/24 103.244.211.0/24 160.20.45.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:d1:58:86:0d:77:16:87:e0:98:65:b4:fc:2d:fc:a2:c4:50: 23:ce:26:ef:1e:88:30:d9:08:8b:c3:d2:96:fc:49:1d:bf:68: e0:e5:55:e4:ba:63:26:9f:a5:8e:50:0a:4e:66:2b:ff:c2:0f: da:4d:31:7f:c6:99:79:9e:4f:a4:38:59:48:96:bf:ed:9c:4a: 56:fc:92:cb:b3:30:98:87:48:3c:05:ed:41:07:65:3b:7f:43: 0f:26:22:8c:79:66:c6:a8:8b:05:28:96:44:f1:02:50:8a:07: ea:cf:3a:05:cc:0c:b2:e8:c3:06:7c:0e:e9:cf:2f:5e:fa:cd: b7:3b:6e:c5:24:56:6b:27:ac:10:75:27:51:ac:18:8b:36:db: 06:c4:5a:7f:33:41:4b:51:f6:9c:23:9e:c0:53:95:36:0c:61: 95:65:84:77:17:c2:fa:27:db:cf:39:64:02:ee:08:19:78:24: 6f:ef:ce:93:2d:1e:8b:73:45:6a:43:9a:16:d3:b5:2e:b6:4a: 45:df:5d:4a:a4:2f:c9:d5:24:8e:79:29:bb:8a:ad:93:38:03: 19:63:a2:07:13:7a:a8:9b:7d:96:db:eb:2b:80:5b:f1:96:51: 25:af:e2:8b:bb:ae:b6:e0:6b:7e:b8:8d:c3:c8:e8:6a:53:a3: 2e:41:da:bd -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICDTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjYwMzAyMTkyMzQ2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ZTNjMi1jZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/Jz8K6U6kwMXeu7CEU9h/BhhggocV2LptXYdIlgaa3qbHTV5Y7by9lY2jVT vbcAA9IGwBjAzrQScpoHMsIjaqpoUe4Nsp7E+htEyqfPcjLSLSURJl85tKFtlxgz nuucfUKyDt7P2U5mgGmvBiUdRvBzqHHZwG7ucA44ttV8THzcaNzDMTsUB+CvUBZS 09V6tmQFEnyPpJPOJ6CILaIJLnhCStxqmb2sdQ+iloHKLZAPEQRdzdWMmJnZZmmJ ugFR485HPvn6Fb6G5ZJ3rZwj7gUMS21OuTMoGB0mecY1xXfB4B9Bm+NX7SJFwJTQ QXCFhQr2ZPgXPRSvE9B8dHI1kwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFL16zQeW /ZWR8ih9OuJQIIPa7r+gMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvMURCNDk3NzBC REQ1MTFGMEJGODNFRDVBQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAK/aBAwQAZ/TTAwQAoBQtMA0GCSqGSIb3DQEBCwUAA4IBAQB+0ViG DXcWh+CYZbT8LfyixFAjzibvHogw2QiLw9KW/Ekdv2jg5VXkumMmn6WOUApOZiv/ wg/aTTF/xpl5nk+kOFlIlr/tnEpW/JLLszCYh0g8Be1BB2U7f0MPJiKMeWbGqIsF KJZE8QJQigfqzzoFzAyy6MMGfA7pzy9e+s23O27FJFZrJ6wQdSdRrBiLNtsGxFp/ M0FLUfacI57AU5U2DGGVZYR3F8L6J9vPOWQC7ggZeCRv786TLR6Lc0VqQ5oW07Uu tkpF311KpC/J1SSOeSm7iq2TOAMZY6IHE3qom32W2+srgFvxllElr+KLu6624Gt+ uI3DyOhqU6MuQdq9 -----END CERTIFICATE-----Generated at Sat Mar 7 16:12:08 2026 by rpki-client