$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/14D49D84671711ED91494347C4F9AE02.roa File: 14D49D84671711ED91494347C4F9AE02.roa (raw, json) Hash identifier: 3cqFlDBgyX9qQ8RENeEds5ITL1Y4wO6n7k+vhaAe6uM= Subject key identifier: 5D:08:88:22:F9:5F:CC:A5:8D:3E:C3:6A:46:79:F4:A5:00:5A:49:CD Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5EE5 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/14D49D84671711ED91494347C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:20:10 +0000 ROA not before: Thu 28 Aug 2025 14:57:02 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38726 IP address blocks: 43.239.188.0/22 maxlen: 24 103.227.112.0/22 maxlen: 24 118.107.64.0/18 maxlen: 24 119.18.184.0/21 maxlen: 24 2400:bc80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24293 (0x5ee5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:02 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60d1a-af76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:61:2f:34:b3:3a:e1:ec:1a:9e:b6:7c:99:25: aa:e8:27:1e:a1:c1:14:c9:b3:52:e5:94:e9:80:bc: 64:8d:4f:4a:fb:cb:8b:b8:35:ef:0e:97:34:dd:c3: a1:7d:af:12:9d:8a:6a:28:c5:45:04:90:56:0f:7a: 3e:5d:08:a0:d9:52:4e:29:38:49:4f:d8:bb:5a:b9: 0e:43:7a:58:15:b9:b4:fe:03:ed:5d:2a:e2:17:33: d4:0e:27:55:37:e2:c5:d9:96:66:55:95:ec:55:a4: ca:56:0d:fe:6d:41:8b:99:98:14:42:b7:cb:96:c5: 98:06:5a:da:f7:50:63:8a:cd:c2:f9:aa:b1:62:3f: fc:54:78:10:aa:ef:f9:0e:3f:eb:ab:e7:02:a0:22: b3:02:ac:06:f0:d7:47:6a:73:e1:1e:ef:78:82:56: 5f:c4:18:df:4e:86:1e:f1:25:93:d1:a8:8f:1e:15: fd:b2:05:af:e0:1d:6a:12:2a:55:94:5d:ca:ad:a4: e4:f5:98:4c:d1:fb:6c:fd:81:24:a3:ec:99:f2:d5: 2f:24:86:0d:e9:d2:25:1d:c7:91:f7:13:82:fb:e7: 01:28:44:fd:3e:34:42:13:14:71:54:0a:dd:fb:39: 6a:eb:7f:27:ec:fa:c2:79:85:83:0e:1d:67:06:d0: 32:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:08:88:22:F9:5F:CC:A5:8D:3E:C3:6A:46:79:F4:A5:00:5A:49:CD X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/14D49D84671711ED91494347C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.188.0/22 103.227.112.0/22 118.107.64.0/18 119.18.184.0/21 IPv6: 2400:bc80::/32 Signature Algorithm: sha256WithRSAEncryption 4a:b8:28:d9:5b:27:4f:6e:06:0d:a8:22:fd:8f:c4:86:e8:19: d2:58:ea:43:7f:9d:cd:c9:bf:52:d2:f1:69:66:95:d1:d8:1c: a8:1f:8d:51:41:97:8c:9d:ea:c3:6c:47:1a:a9:d1:46:07:23: 6f:13:50:ba:7e:a2:a1:cf:9e:d9:0b:57:e2:0a:b9:43:8c:aa: 2c:1d:45:cd:e1:a0:a1:5d:66:50:5e:3c:99:b4:ab:1b:d7:4b: 05:a5:88:0d:74:af:0e:c3:48:72:9e:3b:79:d2:c8:c0:81:95: 50:47:96:50:fb:60:e1:3c:78:17:3e:97:d7:91:73:6e:00:81: 2c:02:2d:4e:91:a5:ee:56:7d:6a:ed:6b:bf:ac:ec:aa:de:a4: 44:78:cb:a0:35:c6:92:c1:c5:a4:2f:11:bc:f6:93:d8:33:a3: 1c:64:e1:d8:76:bd:40:a1:5e:bf:6f:63:37:59:99:b5:06:cc: c0:71:56:70:bc:35:8d:f4:84:a1:e0:30:e1:92:9e:ed:39:9d: c1:ce:30:43:75:d8:ca:18:a7:38:78:f6:ce:49:e2:97:9f:30: f6:36:6d:a9:13:6f:a4:ef:87:66:7c:f4:9f:df:38:73:f6:d8: ce:1d:c1:c6:9d:fc:09:fb:71:f8:3b:a7:b9:66:42:73:d7:08: 99:1a:0c:71 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICXuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzAyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGQxYS1hZjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkmEvNLM64ewanrZ8mSWq6CceocEUybNS5ZTpgLxkjU9K+8uLuDXvDpc03cOh fa8SnYpqKMVFBJBWD3o+XQig2VJOKThJT9i7WrkOQ3pYFbm0/gPtXSriFzPUDidV N+LF2ZZmVZXsVaTKVg3+bUGLmZgUQrfLlsWYBlra91Bjis3C+aqxYj/8VHgQqu/5 Dj/rq+cCoCKzAqwG8NdHanPhHu94glZfxBjfToYe8SWT0aiPHhX9sgWv4B1qEipV lF3KraTk9ZhM0fts/YEko+yZ8tUvJIYN6dIlHceR9xOC++cBKET9PjRCExRxVArd +zlq638n7PrCeYWDDh1nBtAyTwIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFF0IiCL5 X8yljT7DakZ59KUAWknNMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMTRENDlEODQ2 NzE3MTFFRDkxNDk0MzQ3QzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQCK++8AwQCZ+NwAwQGdmtAAwQDdxK4MA0EAgACMAcDBQAkALyAMA0G CSqGSIb3DQEBCwUAA4IBAQBKuCjZWydPbgYNqCL9j8SG6BnSWOpDf53Nyb9S0vFp ZpXR2ByoH41RQZeMnerDbEcaqdFGByNvE1C6fqKhz57ZC1fiCrlDjKosHUXN4aCh XWZQXjyZtKsb10sFpYgNdK8Ow0hynjt50sjAgZVQR5ZQ+2DhPHgXPpfXkXNuAIEs Ai1OkaXuVn1q7Wu/rOyq3qREeMugNcaSwcWkLxG89pPYM6McZOHYdr1AoV6/b2M3 WZm1BszAcVZwvDWN9ISh4DDhkp7tOZ3BzjBDddjKGKc4ePbOSeKXnzD2Nm2pE2+k 74dmfPSf3zhz9tjOHcHGnfwJ+3H4O6e5ZkJz1wiZGgxx -----END CERTIFICATE-----Generated at Sat Mar 7 22:47:36 2026 by rpki-client