$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/5164F13EDBD811F0A0A88CE756641951.roa File: 5164F13EDBD811F0A0A88CE756641951.roa (raw, json) Hash identifier: eLZKuHsW1ycAr9Iq4696bBhI1gKyx3N1WwU1Y5PnRJ8= Subject key identifier: E4:01:80:0D:3C:03:0A:78:53:8D:12:B0:29:71:BA:2D:D4:2B:7D:AA Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D33 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/5164F13EDBD811F0A0A88CE756641951.roa Signing time: Mon 02 Mar 2026 19:23:51 +0000 ROA not before: Mon 02 Mar 2026 19:23:51 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 5065 IP address blocks: 43.230.52.0/24 maxlen: 24 43.230.53.0/24 maxlen: 24 43.246.198.0/24 maxlen: 24 43.249.240.0/24 maxlen: 24 43.249.243.0/24 maxlen: 24 43.250.89.0/24 maxlen: 24 43.250.90.0/24 maxlen: 24 43.250.91.0/24 maxlen: 24 43.251.184.0/24 maxlen: 24 43.251.186.0/24 maxlen: 24 45.115.33.0/24 maxlen: 24 45.115.35.0/24 maxlen: 24 45.124.63.0/24 maxlen: 24 103.7.118.0/24 maxlen: 24 103.7.119.0/24 maxlen: 24 103.13.19.0/24 maxlen: 24 103.15.32.0/24 maxlen: 24 103.15.34.0/24 maxlen: 24 103.15.35.0/24 maxlen: 24 103.248.150.0/24 maxlen: 24 103.248.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 18:43:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3379 (0xd33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Mar 2 19:23:51 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a5e3c7-8b35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:9c:17:ec:1e:27:ef:62:fe:aa:e8:10:bb:9d: a5:56:c8:6e:0e:f9:42:d4:4a:74:e2:35:5d:bb:7e: ee:ee:4c:54:40:54:61:43:cc:3d:ca:f7:69:78:39: 5f:2b:9e:df:63:0b:0f:69:35:ee:15:9d:03:20:cb: 8b:d4:b4:c3:9e:13:0a:69:20:3e:5a:ce:66:15:5e: 9f:7f:eb:0f:e4:9d:34:ef:0a:ee:8f:11:95:17:97: ca:e8:00:cb:45:5d:20:5f:1b:36:e5:a5:4b:5a:8a: dc:3e:44:c3:02:f2:43:b3:ef:ec:db:ce:4e:61:97: 8c:49:bd:47:61:a3:85:2d:f3:25:11:00:44:68:c8: ff:e0:23:92:5f:fc:1d:e1:62:b5:bf:7c:c2:21:67: d5:47:d7:55:36:06:72:37:cf:13:40:95:1b:19:75: a1:48:11:5b:39:a5:d9:9b:42:39:d7:b0:de:c8:c2: fe:3c:b7:8a:82:fb:05:a3:00:e4:7a:c5:de:be:17: aa:dc:6e:e6:40:16:bd:ab:fd:d0:53:64:38:23:2b: 94:2f:07:99:6c:d0:6e:bb:e5:e2:6e:e1:8a:d7:84: 51:6e:62:5a:b2:a5:ce:e9:29:c9:b5:ae:26:e7:06: ad:d6:fa:c2:29:74:81:e3:ca:ad:1b:43:33:28:8c: da:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:01:80:0D:3C:03:0A:78:53:8D:12:B0:29:71:BA:2D:D4:2B:7D:AA X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/5164F13EDBD811F0A0A88CE756641951.roa sbgp-ipAddrBlock: critical IPv4: 43.230.52.0/23 43.246.198.0/24 43.249.240.0/24 43.249.243.0/24 43.250.89.0-43.250.91.255 43.251.184.0/24 43.251.186.0/24 45.115.33.0/24 45.115.35.0/24 45.124.63.0/24 103.7.118.0/23 103.13.19.0/24 103.15.32.0/24 103.15.34.0/23 103.248.150.0/23 Signature Algorithm: sha256WithRSAEncryption c1:af:78:3c:8d:30:34:a1:c5:2a:98:15:43:79:c8:ec:44:ce: 1d:8c:b4:08:6d:d8:cf:04:0b:a3:4d:11:fc:2e:a2:eb:7d:ed: 42:a5:30:d5:84:c0:66:87:72:6f:5f:d7:1f:5b:ca:b4:5b:45: 61:a4:5f:3c:ee:96:40:ed:62:db:16:e5:c3:4b:19:95:e1:ad: 7a:f5:d4:42:81:25:14:c0:15:19:0d:43:60:a0:23:a2:83:af: 49:9f:6c:00:a9:df:38:8c:b0:dd:39:13:4f:43:39:9f:4a:b4: fd:9c:2b:69:70:44:52:ed:72:47:67:0e:36:a2:f1:c1:5d:c6: c2:d1:8a:8c:78:e0:fa:39:d3:57:1d:a6:9d:7e:63:49:40:cb: 63:94:38:c7:8f:1a:22:1e:b6:02:5f:60:5b:ec:1e:a4:7f:49: ac:75:39:68:31:11:36:0b:48:80:45:53:1c:bf:01:95:d4:32: b4:0f:fe:b2:d0:e5:42:89:47:77:16:c6:3c:37:f8:7b:f1:e2: f8:7d:b6:bf:fc:32:12:87:ed:52:ba:b7:dc:6d:69:25:76:f9: 91:08:53:86:6f:a8:78:a0:23:0c:63:dd:23:a2:f4:11:fd:1c: 8d:eb:c6:90:5a:eb:1e:fa:87:a0:29:9a:da:89:f0:59:44:4c: 44:71:db:f4 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICDTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjYwMzAyMTkyMzUxWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ZTNjNy04YjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJwX7B4n72L+qugQu52lVshuDvlC1Ep04jVdu37u7kxUQFRhQ8w9yvdpeDlf K57fYwsPaTXuFZ0DIMuL1LTDnhMKaSA+Ws5mFV6ff+sP5J007wrujxGVF5fK6ADL RV0gXxs25aVLWorcPkTDAvJDs+/s285OYZeMSb1HYaOFLfMlEQBEaMj/4COSX/wd 4WK1v3zCIWfVR9dVNgZyN88TQJUbGXWhSBFbOaXZm0I517DeyML+PLeKgvsFowDk esXevheq3G7mQBa9q/3QU2Q4IyuULweZbNBuu+XibuGK14RRbmJasqXO6SnJta4m 5wat1vrCKXSB48qtG0MzKIzaqQIDAQABo4ICvDCCArgwHQYDVR0OBBYEFOQBgA08 Awp4U40SsClxui3UK32qMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvNTE2NEYxM0VE QkQ4MTFGMEEwQTg4Q0U3NTY2NDE5NTEucm9hMHsGCCsGAQUFBwEHAQH/BGwwajBo BAIAATBiAwQBK+Y0AwQAK/bGAwQAK/nwAwQAK/nzMAwDBAAr+lkDBAIr+lgDBAAr +7gDBAAr+7oDBAAtcyEDBAAtcyMDBAAtfD8DBAFnB3YDBABnDRMDBABnDyADBAFn DyIDBAFn+JYwDQYJKoZIhvcNAQELBQADggEBAMGveDyNMDShxSqYFUN5yOxEzh2M tAht2M8EC6NNEfwuout97UKlMNWEwGaHcm9f1x9byrRbRWGkXzzulkDtYtsW5cNL GZXhrXr11EKBJRTAFRkNQ2CgI6KDr0mfbACp3ziMsN05E09DOZ9KtP2cK2lwRFLt ckdnDjai8cFdxsLRiox44Po501cdpp1+Y0lAy2OUOMePGiIetgJfYFvsHqR/Sax1 OWgxETYLSIBFUxy/AZXUMrQP/rLQ5UKJR3cWxjw3+Hvx4vh9tr/8MhKH7VK6t9xt aSV2+ZEIU4ZvqHigIwxj3SOi9BH9HI3rxpBa6x76h6ApmtqJ8FlETERx2/Q= -----END CERTIFICATE-----Generated at Thu Mar 5 14:07:12 2026 by rpki-client