$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F894F5B0E09411F0B3B2B389426F56BC.roa File: F894F5B0E09411F0B3B2B389426F56BC.roa (raw, json) Hash identifier: nu+mFZ9ymR0HVXSsVwuPPrVYbneUu3zo5gmJP5Qb5xc= Subject key identifier: 71:59:F6:DC:93:2A:E8:F9:DE:A6:5D:5A:2B:9D:70:3C:3C:DE:9A:C7 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D62 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F894F5B0E09411F0B3B2B389426F56BC.roa Signing time: Tue 21 Apr 2026 07:57:22 +0000 ROA not before: Tue 21 Apr 2026 07:57:22 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 2914 IP address blocks: 43.231.190.0/24 maxlen: 24 43.231.191.0/24 maxlen: 24 43.246.131.0/24 maxlen: 24 43.246.199.0/24 maxlen: 24 103.7.208.0/24 maxlen: 24 103.7.211.0/24 maxlen: 24 103.12.52.0/24 maxlen: 24 103.197.208.0/24 maxlen: 24 103.197.209.0/24 maxlen: 24 103.197.210.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 07:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3426 (0xd62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Apr 21 07:57:22 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69e72de2-14da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8c:5c:1f:66:d2:3b:1d:9f:26:c0:31:c8:41: 5f:15:89:d6:ab:12:c7:fe:8c:61:f5:8a:a3:5f:66: 8e:49:c4:dc:95:8f:22:7b:16:f1:6a:f0:9c:36:57: c0:04:51:be:c1:3b:03:1e:2d:4e:91:94:15:f8:15: 12:06:05:a7:c9:7a:6b:ee:59:1f:78:3b:17:b9:0d: c6:d8:54:7f:a2:3f:84:3f:3b:0c:d0:c3:3f:e2:1f: 11:bd:b6:56:4c:45:5a:48:0b:d8:88:53:fb:02:13: 21:4f:10:5c:ac:21:db:f3:e5:ef:dc:73:a9:34:1a: 37:80:82:7a:f3:cd:f0:bb:c9:35:09:ab:80:5a:ed: 45:84:63:f9:e3:6d:da:a8:37:5d:ec:da:cc:00:8e: ba:f6:f3:4d:71:b7:ee:39:ef:a2:43:a9:44:e0:be: 45:ce:46:d2:50:38:e8:9b:09:4e:68:12:88:5e:e3: e1:97:31:50:77:14:af:3c:34:b2:23:87:5d:3d:e8: 48:91:8c:b1:47:87:5d:3b:b6:5a:da:c3:e7:d4:91: ef:8b:c4:e2:46:38:91:89:b8:41:27:cc:c8:b2:21: 33:01:bb:1e:9d:fd:18:ba:52:0b:36:d6:c1:f6:a2: 0d:a8:0a:2d:e1:0e:c4:6e:0a:77:cb:ef:0d:18:03: 2e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:59:F6:DC:93:2A:E8:F9:DE:A6:5D:5A:2B:9D:70:3C:3C:DE:9A:C7 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F894F5B0E09411F0B3B2B389426F56BC.roa sbgp-ipAddrBlock: critical IPv4: 43.231.190.0/23 43.246.131.0/24 43.246.199.0/24 103.7.208.0/24 103.7.211.0/24 103.12.52.0/24 103.197.208.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:49:ee:83:a1:7a:81:26:17:32:fa:d4:0c:99:e9:e0:e6:07: 8b:49:20:1c:83:9d:a3:45:c8:25:09:35:d2:99:95:71:e5:67: ec:5d:99:de:55:3f:93:87:b8:71:cd:4e:40:3b:cc:97:0c:8e: bb:b1:0c:7e:f4:e8:ba:3c:ca:06:34:1e:c5:51:54:94:6d:1f: 72:06:83:29:06:aa:18:7b:7d:d1:79:1b:fb:0f:42:ef:8a:7c: af:37:5b:19:b4:87:c4:7c:67:b8:7d:ec:bd:2c:ef:6e:8c:64: a2:11:52:b3:87:a9:92:db:08:3b:7a:05:e6:cd:58:f7:26:0e: 95:de:a2:38:b2:61:dd:ef:ba:41:08:31:f9:a7:ba:59:69:b0: ee:26:be:c4:e4:b2:14:60:52:f5:34:52:80:0b:ef:0c:84:b8: 7a:13:9d:cc:02:3b:3e:3d:eb:d7:6f:73:12:c9:0a:24:ec:6d: 5b:8e:ea:28:2e:2d:14:81:d5:b2:64:06:60:8b:32:91:6a:03: bc:b4:f4:22:cb:06:17:8d:2d:f6:ec:ea:05:82:01:c0:23:8f: 00:24:7e:e9:47:1a:7f:f7:c1:38:2d:21:5b:0b:ed:ee:fc:ff: f9:9d:82:45:18:73:aa:95:ab:b2:18:83:00:af:9c:d6:68:88: 68:2a:5a:ba -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICDWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjYwNDIxMDc1NzIyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWU3MmRlMi0xNGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIxcH2bSOx2fJsAxyEFfFYnWqxLH/oxh9YqjX2aOScTclY8iexbxavCcNlfA BFG+wTsDHi1OkZQV+BUSBgWnyXpr7lkfeDsXuQ3G2FR/oj+EPzsM0MM/4h8RvbZW TEVaSAvYiFP7AhMhTxBcrCHb8+Xv3HOpNBo3gIJ6883wu8k1CauAWu1FhGP5423a qDdd7NrMAI669vNNcbfuOe+iQ6lE4L5FzkbSUDjomwlOaBKIXuPhlzFQdxSvPDSy I4ddPehIkYyxR4ddO7Za2sPn1JHvi8TiRjiRibhBJ8zIsiEzAbsenf0YulILNtbB 9qINqAot4Q7Ebgp3y+8NGAMuQQIDAQABo4IChDCCAoAwHQYDVR0OBBYEFHFZ9tyT Kuj53qZdWiudcDw83prHMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvRjg5NEY1QjBF MDk0MTFGMEIzQjJCMzg5NDI2RjU2QkMucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAw BAIAATAqAwQBK+e+AwQAK/aDAwQAK/bHAwQAZwfQAwQAZwfTAwQAZww0AwQCZ8XQ MA0GCSqGSIb3DQEBCwUAA4IBAQAMSe6DoXqBJhcy+tQMmeng5geLSSAcg52jRcgl CTXSmZVx5WfsXZneVT+Th7hxzU5AO8yXDI67sQx+9Oi6PMoGNB7FUVSUbR9yBoMp BqoYe33ReRv7D0LvinyvN1sZtIfEfGe4fey9LO9ujGSiEVKzh6mS2wg7egXmzVj3 Jg6V3qI4smHd77pBCDH5p7pZabDuJr7E5LIUYFL1NFKAC+8MhLh6E53MAjs+PevX b3MSyQok7G1bjuooLi0UgdWyZAZgizKRagO8tPQiywYXjS327OoFggHAI48AJH7p Rxp/98E4LSFbC+3u/P/5nYJFGHOqlauyGIMAr5zWaIhoKlq6 -----END CERTIFICATE-----Generated at Tue Apr 21 21:33:40 2026 by rpki-client