$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/E3903588DA3311F082FD85DA8AD3641D.roa File: E3903588DA3311F082FD85DA8AD3641D.roa (raw, json) Hash identifier: MfOj3lbGuO/G5TuCaMkDAViR5jscnY+4WI5jIiqpGsA= Subject key identifier: BC:F9:AA:67:2D:4C:DF:2A:EC:09:60:D5:7B:13:3B:A3:44:6B:69:00 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D26 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/E3903588DA3311F082FD85DA8AD3641D.roa Signing time: Mon 02 Mar 2026 19:23:28 +0000 ROA not before: Mon 02 Mar 2026 19:23:28 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 142622 IP address blocks: 43.249.241.0/24 maxlen: 24 43.251.187.0/24 maxlen: 24 45.124.60.0/24 maxlen: 24 45.124.62.0/24 maxlen: 24 103.7.116.0/24 maxlen: 24 103.12.53.0/24 maxlen: 24 103.12.54.0/24 maxlen: 24 103.13.18.0/24 maxlen: 24 103.24.160.0/24 maxlen: 24 103.24.161.0/24 maxlen: 24 103.24.162.0/24 maxlen: 24 103.244.209.0/24 maxlen: 24 103.244.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 18:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3366 (0xd26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Mar 2 19:23:28 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a5e3b0-f0aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8e:9f:f2:24:7e:d7:f4:1c:c4:bc:5a:62:db: e2:72:a1:e9:ec:c1:89:1e:c0:77:c0:2e:56:2c:23: e5:23:b3:5c:49:f8:14:c7:6e:0a:f8:9f:1f:4d:92: ed:f1:e1:b8:6e:3d:6c:f8:b4:b9:47:0a:46:cc:95: 11:ed:b3:af:80:0a:16:63:c7:9a:b4:6a:78:bf:1f: f0:ba:ec:32:c8:31:d8:7c:9d:95:2d:f7:d3:0a:ba: 5b:ed:63:e7:35:ab:98:42:34:71:5a:2d:94:64:13: 8b:0a:e7:b5:06:de:7a:4b:b3:e6:e1:02:98:a6:3e: f5:f7:b3:93:2d:64:73:39:3c:2f:32:e7:c1:cd:8a: 1d:c5:db:09:a4:7a:9b:5b:66:32:5f:eb:57:09:96: 14:fb:d9:b2:36:e9:35:b8:9f:53:dc:b4:0b:4e:e7: 6a:a4:c0:b4:54:f9:a1:00:e3:9f:7e:17:17:11:7f: 09:25:0a:15:6a:bf:ac:67:c8:39:d3:32:d6:c4:dd: 48:7c:73:20:7d:f6:fa:5e:4f:fc:47:a7:f6:f1:93: a9:7c:c0:4e:fa:ce:06:72:7e:d1:4b:13:a3:c1:58: 66:11:e7:fb:15:15:7c:62:38:1c:96:18:80:28:23: 42:f0:6d:54:a6:e4:0f:5f:be:99:0f:fc:85:74:01: 06:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F9:AA:67:2D:4C:DF:2A:EC:09:60:D5:7B:13:3B:A3:44:6B:69:00 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/E3903588DA3311F082FD85DA8AD3641D.roa sbgp-ipAddrBlock: critical IPv4: 43.249.241.0/24 43.251.187.0/24 45.124.60.0/24 45.124.62.0/24 103.7.116.0/24 103.12.53.0-103.12.54.255 103.13.18.0/24 103.24.160.0-103.24.162.255 103.244.209.0-103.244.210.255 Signature Algorithm: sha256WithRSAEncryption 54:ae:64:70:03:70:4f:3e:1e:ad:c1:1d:84:da:79:d6:5a:18: e1:c0:36:c4:e2:03:8f:ea:69:58:12:c8:19:45:71:86:58:d2: f7:93:ab:ec:ae:62:bc:43:06:8b:22:3a:35:24:79:26:7a:39: 7f:b7:a8:ce:59:4a:56:78:43:c6:63:c9:cb:69:d0:af:a3:eb: b5:fa:53:5f:ad:77:f1:ed:4b:ca:ca:96:3b:69:2d:fb:a6:4e: 2b:29:ee:d1:f2:fa:e2:12:43:5d:8c:9b:82:90:98:dd:cd:6d: de:5d:47:c4:3a:69:da:48:b5:3d:c7:6d:b2:a1:b3:1a:f2:b6: 68:dd:5c:cf:6d:80:1e:f6:9e:d7:a7:ea:4a:65:cc:30:d8:9c: b6:fa:f7:e0:9e:8c:4e:62:e4:a2:04:de:f5:cb:de:fa:83:5a: 23:16:20:76:00:92:77:ba:7f:5f:25:8e:9b:ba:ba:16:b8:6e: 75:59:e9:f8:0a:99:20:a2:59:61:30:b6:0b:cb:75:72:38:a0: 74:0c:92:e6:ab:ab:bc:ea:07:8e:be:24:87:3d:d8:cf:ad:34: bd:84:07:c7:69:3c:46:a8:1a:84:13:30:66:4e:a3:7d:09:e6: 7e:a2:8c:45:cb:6c:4c:ac:9c:f3:87:f7:4c:93:bb:f1:df:7d: 26:ba:fe:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjYwMzAyMTkyMzI4WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ZTNiMC1mMGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt46f8iR+1/QcxLxaYtvicqHp7MGJHsB3wC5WLCPlI7NcSfgUx24K+J8fTZLt 8eG4bj1s+LS5RwpGzJUR7bOvgAoWY8eatGp4vx/wuuwyyDHYfJ2VLffTCrpb7WPn NauYQjRxWi2UZBOLCue1Bt56S7Pm4QKYpj7197OTLWRzOTwvMufBzYodxdsJpHqb W2YyX+tXCZYU+9myNuk1uJ9T3LQLTudqpMC0VPmhAOOffhcXEX8JJQoVar+sZ8g5 0zLWxN1IfHMgffb6Xk/8R6f28ZOpfMBO+s4Gcn7RSxOjwVhmEef7FRV8YjgclhiA KCNC8G1UpuQPX76ZD/yFdAEGtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLz5qmct TN8q7Alg1XsTO6NEa2kAMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvRTM5MDM1ODhE QTMzMTFGMDgyRkQ4NURBOEFEMzY0MUQucm9hMGcGCCsGAQUFBwEHAQH/BFgwVjBU BAIAATBOAwQAK/nxAwQAK/u7AwQALXw8AwQALXw+AwQAZwd0MAwDBABnDDUDBABn DDYDBABnDRIwDAMEBWcYoAMEAGcYojAMAwQAZ/TRAwQAZ/TSMA0GCSqGSIb3DQEB CwUAA4IBAQBUrmRwA3BPPh6twR2E2nnWWhjhwDbE4gOP6mlYEsgZRXGGWNL3k6vs rmK8QwaLIjo1JHkmejl/t6jOWUpWeEPGY8nLadCvo+u1+lNfrXfx7UvKypY7aS37 pk4rKe7R8vriEkNdjJuCkJjdzW3eXUfEOmnaSLU9x22yobMa8rZo3VzPbYAe9p7X p+pKZcww2Jy2+vfgnoxOYuSiBN71y976g1ojFiB2AJJ3un9fJY6buroWuG51Wen4 CpkgollhMLYLy3VyOKB0DJLmq6u86geOviSHPdjPrTS9hAfHaTxGqBqEEzBmTqN9 CeZ+ooxFy2xMrJzzh/dMk7vx330muv5H -----END CERTIFICATE-----Generated at Sat Mar 7 19:32:09 2026 by rpki-client