$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F894F5B0E09411F0B3B2B389426F56BC.roa File: F894F5B0E09411F0B3B2B389426F56BC.roa (raw, json) Hash identifier: z9uQmxAplU6R3Ut9zsE253hEALJQfwoBwNgxaYjFwPo= Subject key identifier: 07:BA:71:20:1A:E5:23:EC:5E:50:56:7E:C9:EA:BC:92:C4:86:79:80 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D79 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F894F5B0E09411F0B3B2B389426F56BC.roa Signing time: Thu 21 May 2026 04:40:14 +0000 ROA not before: Thu 21 May 2026 04:40:14 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 2914 IP address blocks: 43.231.190.0/24 maxlen: 24 43.231.191.0/24 maxlen: 24 43.246.128.0/24 maxlen: 24 43.246.130.0/24 maxlen: 24 43.246.131.0/24 maxlen: 24 43.246.199.0/24 maxlen: 24 103.7.208.0/24 maxlen: 24 103.7.211.0/24 maxlen: 24 103.12.52.0/24 maxlen: 24 103.27.80.0/24 maxlen: 24 103.27.81.0/24 maxlen: 24 103.27.82.0/24 maxlen: 24 103.27.83.0/24 maxlen: 24 103.197.208.0/24 maxlen: 24 103.197.209.0/24 maxlen: 24 103.197.210.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 02:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3449 (0xd79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: May 21 04:40:14 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=6a0e8cae-5dec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:1e:d9:d3:d7:c1:c8:59:b8:28:91:6c:dc:f1: 97:da:ac:7c:f4:99:27:92:a4:a7:ac:ef:b0:a9:14: aa:58:53:63:35:49:f2:2d:76:3f:11:83:24:2d:f6: 83:e2:f1:fb:d1:55:a9:70:36:9b:2c:bf:51:b0:3a: 8d:2e:5e:62:c1:fb:82:22:ac:d9:5f:df:67:d5:bb: 06:ce:8f:86:0d:94:7c:7f:83:5f:2e:50:b8:29:39: a8:51:49:da:64:24:ca:7f:16:1b:4e:86:fc:6f:8a: 6a:90:c7:4e:bf:6b:4d:f2:24:12:4f:55:db:e0:c0: 62:21:d3:86:97:37:32:3c:68:68:b4:d0:c9:28:27: 35:a8:c8:8e:7c:0a:bc:3a:65:f9:e3:b1:c1:cd:34: c4:5c:81:58:e8:27:48:f2:63:ef:54:ed:11:65:da: 76:36:11:6e:82:e6:15:e0:70:e5:28:a5:19:9a:d1: a3:51:61:1e:ec:90:24:eb:2d:62:bf:77:ce:f9:bc: 52:54:36:1b:1f:1e:28:2a:a8:e6:53:a2:ee:e9:df: 8b:dd:35:6a:0a:62:ce:1a:95:cd:68:f8:4e:6e:a6: 6c:bd:f2:e2:ca:14:3b:2d:39:75:f0:a3:93:9a:6c: 2e:ff:a0:d4:4a:1b:d6:1a:8b:52:f7:9c:e3:7a:a5: b1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:BA:71:20:1A:E5:23:EC:5E:50:56:7E:C9:EA:BC:92:C4:86:79:80 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F894F5B0E09411F0B3B2B389426F56BC.roa sbgp-ipAddrBlock: critical IPv4: 43.231.190.0/23 43.246.128.0/24 43.246.130.0/23 43.246.199.0/24 103.7.208.0/24 103.7.211.0/24 103.12.52.0/24 103.27.80.0/22 103.197.208.0/22 Signature Algorithm: sha256WithRSAEncryption c8:ad:db:96:c0:5a:3b:d2:8e:ec:45:07:43:57:73:c5:c2:c8: cc:d6:5a:e0:2d:4a:26:c0:3c:b4:3e:d0:b5:70:8c:5e:33:2d: 6d:0e:5c:cb:38:99:fc:9f:3e:24:23:6a:8e:8a:1a:ab:e9:52: b9:c0:f7:7d:11:85:7a:ae:48:9c:35:84:f9:d0:5b:b5:ed:0d: 1c:f2:94:ee:6a:e8:ef:a6:0d:33:aa:cd:56:be:3e:69:20:7d: 31:90:2b:1d:42:f0:0c:64:4e:fa:44:c5:b0:0c:d9:45:ab:38: 59:10:24:d9:11:ea:7c:57:59:b5:ef:44:08:37:69:85:a9:3d: 49:d6:30:15:51:82:28:26:fb:a4:01:47:7b:e5:3b:b5:ca:01: 6c:ec:83:f9:4b:17:a6:5d:38:91:1a:9e:af:f1:6c:45:93:be: 8a:c2:11:93:48:86:1d:f8:c3:dd:7f:ee:52:4e:4c:48:ed:33: b8:28:88:f3:25:0c:e7:5b:8c:62:35:57:32:94:86:d7:e2:66: 92:2b:91:f4:25:dc:dc:24:d9:97:fb:2b:67:53:dc:39:4f:ed: 60:04:f8:12:6a:5a:f0:43:c1:3f:54:38:80:02:d4:e8:b6:be: d4:16:9b:73:45:7d:f8:cc:b3:f5:5d:07:47:c0:55:16:d5:15: 3c:26:3d:75 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgICDXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjYwNTIxMDQ0MDE0WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02YTBlOGNhZS01ZGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkB7Z09fByFm4KJFs3PGX2qx89JknkqSnrO+wqRSqWFNjNUnyLXY/EYMkLfaD 4vH70VWpcDabLL9RsDqNLl5iwfuCIqzZX99n1bsGzo+GDZR8f4NfLlC4KTmoUUna ZCTKfxYbTob8b4pqkMdOv2tN8iQST1Xb4MBiIdOGlzcyPGhotNDJKCc1qMiOfAq8 OmX547HBzTTEXIFY6CdI8mPvVO0RZdp2NhFuguYV4HDlKKUZmtGjUWEe7JAk6y1i v3fO+bxSVDYbHx4oKqjmU6Lu6d+L3TVqCmLOGpXNaPhObqZsvfLiyhQ7LTl18KOT mmwu/6DUShvWGotS95zjeqWxiwIDAQABo4ICkDCCAowwHQYDVR0OBBYEFAe6cSAa 5SPsXlBWfsnqvJLEhnmAMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvRjg5NEY1QjBF MDk0MTFGMEIzQjJCMzg5NDI2RjU2QkMucm9hME8GCCsGAQUFBwEHAQH/BEAwPjA8 BAIAATA2AwQBK+e+AwQAK/aAAwQBK/aCAwQAK/bHAwQAZwfQAwQAZwfTAwQAZww0 AwQCZxtQAwQCZ8XQMA0GCSqGSIb3DQEBCwUAA4IBAQDIrduWwFo70o7sRQdDV3PF wsjM1lrgLUomwDy0PtC1cIxeMy1tDlzLOJn8nz4kI2qOihqr6VK5wPd9EYV6rkic NYT50Fu17Q0c8pTuaujvpg0zqs1Wvj5pIH0xkCsdQvAMZE76RMWwDNlFqzhZECTZ Eep8V1m170QIN2mFqT1J1jAVUYIoJvukAUd75Tu1ygFs7IP5SxemXTiRGp6v8WxF k76KwhGTSIYd+MPdf+5STkxI7TO4KIjzJQznW4xiNVcylIbX4maSK5H0JdzcJNmX +ytnU9w5T+1gBPgSalrwQ8E/VDiAAtTotr7UFptzRX34zLP1XQdHwFUW1RU8Jj11 -----END CERTIFICATE-----Generated at Sat Jun 6 14:43:59 2026 by rpki-client