$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A51E38149A11EDB9CF2F70C4F9AE02.roa File: 43A51E38149A11EDB9CF2F70C4F9AE02.roa (raw, json) Hash identifier: 7XW38XTZ/SKvAxCNwLQcQmpNkUvoAE2bKvzasqFGeMM= Subject key identifier: A0:BA:07:43:40:59:48:9D:49:3D:D7:AF:86:E5:D9:96:F4:D3:C5:E9 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5D9F Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A51E38149A11EDB9CF2F70C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:14:44 +0000 ROA not before: Thu 28 Aug 2025 14:52:14 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131342 IP address blocks: 103.4.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23967 (0x5d9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:14 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60bd4-dfff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:37:a0:79:68:eb:c7:a7:e1:b6:77:8d:34:b1: e8:eb:8a:84:52:6b:bb:d2:5a:da:11:7b:61:a6:0e: 74:f3:ac:63:58:14:34:ea:16:0b:12:e8:8b:fa:3e: d5:23:49:00:7f:50:d5:15:28:34:d3:96:ba:0f:93: f0:81:60:6f:87:82:eb:10:49:d5:65:8b:fa:4d:cb: f3:95:83:60:e6:bd:0e:f0:4d:fe:c0:9f:35:3c:af: 47:55:ba:1d:95:1d:b0:ed:3e:d6:c7:c6:be:66:dd: e3:0b:1e:dc:37:4c:af:a1:d3:df:ba:a6:d2:4d:4a: 25:01:86:f6:2b:01:8e:22:48:b4:f0:9e:74:67:9b: da:1a:ab:dd:95:7b:af:e5:30:43:3d:d9:91:71:28: 96:56:c1:5e:c9:d6:91:8f:ed:f9:0e:49:a0:fd:19: 2f:b0:b3:fd:95:c3:9e:bb:0f:6d:41:f9:4d:f7:da: 16:73:d1:04:34:83:15:f4:1b:83:39:ad:64:81:54: 28:5e:c1:72:d2:1d:ae:7e:d7:22:7e:3e:fa:53:49: e6:68:2a:aa:73:5e:87:28:9d:93:3e:a5:9b:51:85: dd:1f:64:c4:95:9a:bc:a3:94:e9:a6:46:bf:c9:55: 31:5e:56:d2:a8:cb:21:f0:7c:c5:e1:24:79:e7:a1: 9b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:BA:07:43:40:59:48:9D:49:3D:D7:AF:86:E5:D9:96:F4:D3:C5:E9 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A51E38149A11EDB9CF2F70C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.4.128.0/22 Signature Algorithm: sha256WithRSAEncryption bb:ae:f1:b6:fa:d9:1f:0e:25:56:63:ab:0f:0d:2d:47:6a:2b: 42:de:42:b9:0b:04:af:ea:88:04:c3:d5:8e:f5:bd:30:8b:6a: 4f:68:e7:8b:79:91:53:12:72:9c:be:1d:48:d8:97:87:ab:63: 78:6e:bd:b1:56:89:88:ef:0f:d6:be:b4:bb:1c:46:d3:2f:f8: 60:df:c0:15:20:14:ff:dd:28:ff:de:dc:5a:57:a8:93:da:d2: 03:21:17:a7:d6:f8:9a:19:9c:c5:07:5d:12:94:25:99:c6:2f: 5d:7b:e9:06:e9:64:84:8d:0b:dd:11:30:d4:ad:e2:e4:79:69: 24:2a:13:f5:41:eb:69:ab:3c:31:7b:6a:2a:c7:d4:19:e4:fd: 5a:e0:d6:a4:7e:59:90:9a:9b:26:b5:99:39:c2:c0:f9:cc:8a: 2c:4b:9d:59:68:41:22:ce:ff:eb:4f:ba:d8:5a:f3:35:31:51: d3:03:2f:fa:e0:eb:42:49:3c:cb:34:c0:a2:4e:bd:5b:be:ef: b9:4f:02:62:35:1a:14:4b:49:13:8f:f2:91:a7:14:cd:39:36: 20:f4:81:6b:44:16:5d:6e:6c:8b:4a:20:43:a8:4e:fb:9e:06: b4:d6:52:bd:59:b9:f2:bd:80:c9:f4:77:cf:1c:b9:c5:93:4f: 57:3d:0a:e8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICXZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjE0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGJkNC1kZmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6TegeWjrx6fhtneNNLHo64qEUmu70lraEXthpg5086xjWBQ06hYLEuiL+j7V I0kAf1DVFSg005a6D5PwgWBvh4LrEEnVZYv6TcvzlYNg5r0O8E3+wJ81PK9HVbod lR2w7T7Wx8a+Zt3jCx7cN0yvodPfuqbSTUolAYb2KwGOIki08J50Z5vaGqvdlXuv 5TBDPdmRcSiWVsFeydaRj+35Dkmg/RkvsLP9lcOeuw9tQflN99oWc9EENIMV9BuD Oa1kgVQoXsFy0h2uftcifj76U0nmaCqqc16HKJ2TPqWbUYXdH2TElZq8o5Tppka/ yVUxXlbSqMsh8HzF4SR556GbeQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKC6B0NA WUidST3Xr4bl2Zb008XpMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNDNBNTFFMzgx NDlBMTFFREI5Q0YyRjcwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZwSAMA0GCSqGSIb3DQEBCwUAA4IBAQC7rvG2+tkfDiVWY6sPDS1H aitC3kK5CwSv6ogEw9WO9b0wi2pPaOeLeZFTEnKcvh1I2JeHq2N4br2xVomI7w/W vrS7HEbTL/hg38AVIBT/3Sj/3txaV6iT2tIDIRen1viaGZzFB10SlCWZxi9de+kG 6WSEjQvdETDUreLkeWkkKhP1Qetpqzwxe2oqx9QZ5P1a4NakflmQmpsmtZk5wsD5 zIosS51ZaEEizv/rT7rYWvM1MVHTAy/64OtCSTzLNMCiTr1bvu+5TwJiNRoUS0kT j/KRpxTNOTYg9IFrRBZdbmyLSiBDqE77nga01lK9WbnyvYDJ9HfPHLnFk09XPQro -----END CERTIFICATE-----Generated at Sat Mar 7 22:45:25 2026 by rpki-client