$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E802366A199911ED906C1345C4F9AE02.roa File: E802366A199911ED906C1345C4F9AE02.roa (raw, json) Hash identifier: KyXcFHfg9zQhwp+Mh/P/CIntSXW0MU/w1tGdieTdrgU= Subject key identifier: 28:A6:02:E3:38:19:2A:81:F3:39:A5:1C:E0:BD:41:41:AD:8E:F3:F3 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5DEE Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E802366A199911ED906C1345C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:16:02 +0000 ROA not before: Thu 28 Aug 2025 14:53:26 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135942 IP address blocks: 43.239.222.0/24 maxlen: 24 43.239.223.0/24 maxlen: 24 103.53.170.0/24 maxlen: 24 103.53.171.0/24 maxlen: 24 103.109.36.0/22 maxlen: 24 103.138.112.0/23 maxlen: 24 103.138.114.0/23 maxlen: 24 2001:df0:3980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24046 (0x5dee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:53:26 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60c22-6dc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a0:80:26:d1:96:56:c9:e9:1d:de:60:28:e3: e7:9b:3c:c8:01:76:7c:47:d4:ef:f1:01:b1:6c:20: f6:02:7b:33:e3:6b:2c:9c:52:c5:90:8b:ea:05:8c: 71:a5:c2:d7:e0:3e:e2:d8:2a:23:92:d4:cf:cd:e1: ac:78:68:26:5e:80:9e:70:e7:55:13:bd:07:3d:81: cd:a6:3c:c8:d2:84:a8:4b:d0:7a:88:2e:4a:09:62: a2:ce:a8:4b:c8:01:0d:c2:eb:2b:be:ca:85:76:97: 10:d6:bd:8c:98:6d:e3:3e:91:e8:af:1d:78:48:93: 38:1d:3c:57:06:0b:67:1c:fc:69:f0:93:83:99:76: 04:af:5f:39:bb:7f:25:c6:a0:09:37:b9:98:ec:72: 29:bb:ea:cc:40:e9:31:64:b4:1b:be:0a:b9:9a:60: 79:c0:eb:1f:94:30:ad:e1:5d:56:8a:43:d1:77:1a: 4b:c0:36:3e:c2:5c:be:97:16:cf:8c:ac:2b:95:28: b4:9e:29:14:49:4a:6c:fb:0f:e0:a7:da:ad:a8:c0: ca:cc:0b:cf:38:7f:01:99:ba:f2:d5:45:22:8f:d4: 73:5f:f8:da:5f:83:03:a2:c2:ec:8a:c2:de:a1:dc: 97:e5:c7:a1:fe:bd:68:96:64:fc:60:a3:6c:70:43: f0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A6:02:E3:38:19:2A:81:F3:39:A5:1C:E0:BD:41:41:AD:8E:F3:F3 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E802366A199911ED906C1345C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.222.0/23 103.53.170.0/23 103.109.36.0/22 103.138.112.0/22 IPv6: 2001:df0:3980::/48 Signature Algorithm: sha256WithRSAEncryption 0e:1a:36:af:04:59:a8:7f:30:4c:c9:00:0b:5f:8e:81:ad:32: 6d:54:ad:2b:a9:85:d5:c9:d6:95:2a:15:2d:44:ab:e7:3d:46: a7:9a:45:0b:3f:99:aa:03:74:53:2c:03:b1:3d:47:09:d5:9b: 55:13:0e:90:50:ca:ef:fe:05:d4:3d:c6:ce:18:f2:36:f1:e0: d8:f4:ae:75:22:fa:92:22:ad:a3:ce:91:2e:ed:9b:02:36:32: ea:57:e6:e4:f8:aa:c8:fd:c3:ff:0b:6b:f0:bd:53:97:28:da: 69:08:4e:33:63:6c:20:6f:a0:aa:65:70:40:19:7c:14:c0:14: 01:13:59:8f:a5:6e:d3:d1:3c:d0:ca:0e:7a:21:e8:d3:40:46: 8c:78:17:82:47:86:e0:59:35:40:fa:b4:f7:7e:bc:de:1f:5f: 60:8e:8b:d1:b8:bb:53:10:15:0c:a6:68:87:7c:67:5b:50:93: f6:a9:8c:7e:e2:92:ea:84:7a:0e:1f:c2:5f:a2:6e:51:10:90: 80:c6:2f:4c:8d:db:71:6c:6f:7d:64:f2:8f:ff:4c:c3:f7:eb: 10:ea:08:88:bb:ad:48:7c:74:e3:1b:3b:b6:af:da:7a:df:e0: 6c:f7:a2:ae:3f:68:52:10:4a:f3:d9:5d:65:b6:3d:6b:6e:65: c2:52:c2:aa -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICXe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MzI2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGMyMi02ZGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaCAJtGWVsnpHd5gKOPnmzzIAXZ8R9Tv8QGxbCD2Ansz42ssnFLFkIvqBYxx pcLX4D7i2CojktTPzeGseGgmXoCecOdVE70HPYHNpjzI0oSoS9B6iC5KCWKizqhL yAENwusrvsqFdpcQ1r2MmG3jPpHorx14SJM4HTxXBgtnHPxp8JODmXYEr185u38l xqAJN7mY7HIpu+rMQOkxZLQbvgq5mmB5wOsflDCt4V1WikPRdxpLwDY+wly+lxbP jKwrlSi0nikUSUps+w/gp9qtqMDKzAvPOH8Bmbry1UUij9RzX/jaX4MDosLsisLe odyX5ceh/r1olmT8YKNscEPwwwIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFCimAuM4 GSqB8zmlHOC9QUGtjvPzMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRTgwMjM2NkEx OTk5MTFFRDkwNkMxMzQ1QzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAe BAIAATAYAwQBK+/eAwQBZzWqAwQCZ20kAwQCZ4pwMA8EAgACMAkDBwAgAQ3wOYAw DQYJKoZIhvcNAQELBQADggEBAA4aNq8EWah/MEzJAAtfjoGtMm1UrSuphdXJ1pUq FS1Eq+c9RqeaRQs/maoDdFMsA7E9RwnVm1UTDpBQyu/+BdQ9xs4Y8jbx4Nj0rnUi +pIiraPOkS7tmwI2MupX5uT4qsj9w/8La/C9U5co2mkITjNjbCBvoKplcEAZfBTA FAETWY+lbtPRPNDKDnoh6NNARox4F4JHhuBZNUD6tPd+vN4fX2COi9G4u1MQFQym aId8Z1tQk/apjH7ikuqEeg4fwl+iblEQkIDGL0yN23Fsb31k8o//TMP36xDqCIi7 rUh8dOMbO7av2nrf4Gz3oq4/aFIQSvPZXWW2PWtuZcJSwqo= -----END CERTIFICATE-----Generated at Sat Mar 7 22:47:36 2026 by rpki-client