$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/CE988D80FB7311EC97CD7F85C4F9AE02.roa File: CE988D80FB7311EC97CD7F85C4F9AE02.roa (raw, json) Hash identifier: loULOkxTyFtV5eU4JwAnNk7SaUEpMQGahUv+OEZBH2g= Subject key identifier: 36:1E:1E:45:69:0B:20:72:40:51:DE:47:96:7F:10:38:06:14:3F:17 Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 05E3 Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/CE988D80FB7311EC97CD7F85C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:22:38 +0000 ROA not before: Fri 02 Jan 2026 23:19:20 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 395092 IP address blocks: 43.230.160.0/22 maxlen: 24 103.20.234.0/23 maxlen: 24 103.27.132.0/23 maxlen: 23 103.27.134.0/23 maxlen: 23 103.159.64.0/23 maxlen: 24 117.55.192.0/23 maxlen: 24 117.55.194.0/23 maxlen: 24 203.96.176.0/22 maxlen: 24 210.16.64.0/22 maxlen: 24 2406:cb40::/48 maxlen: 48 2406:cb40:1::/48 maxlen: 48 2406:cb41::/48 maxlen: 48 2406:cb42::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Mar 2026 22:52:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1507 (0x5e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72, serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Jan 2 23:19:20 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a483ee-6037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ab:df:3b:dd:16:4e:ff:2e:2d:93:f6:fd:4b: 00:bd:ae:96:ed:09:15:97:1b:4b:9a:7c:c0:f5:f2: 53:91:db:2b:e3:ce:2f:19:16:74:74:ba:26:ef:e2: be:7a:5c:4a:f6:7f:7f:29:79:dc:c0:d0:25:8c:2b: c3:af:53:28:14:4b:2a:97:49:c6:f5:04:90:37:31: 45:6b:f1:eb:1a:e5:df:3d:06:ff:52:16:aa:2d:f0: ab:92:5a:82:31:77:eb:cb:57:a1:3f:67:cb:9b:59: d1:75:13:79:fb:d7:e3:ef:99:78:8d:ba:3a:47:af: c9:27:25:04:06:83:fa:a8:37:7a:a6:35:2c:f7:bf: 01:46:c5:d0:27:3c:b2:31:ab:b2:64:60:25:29:b2: 74:9e:c2:0d:b7:00:88:5a:2d:7a:d9:67:8e:fa:57: b0:4f:9b:5d:c4:53:eb:8d:ae:40:64:d1:42:84:40: 8e:cb:a3:b7:d0:76:e1:65:d6:5d:3c:bc:9e:89:15: d2:1f:70:15:0a:b5:99:e8:49:fc:90:25:c4:55:d1: 31:87:6a:41:4e:ee:9b:d3:99:0b:fe:4a:3f:15:4d: 62:84:41:9d:c8:f4:d8:2b:6e:bc:06:20:06:b3:44: 48:89:c5:03:7b:d2:72:72:2c:1b:ad:33:10:50:52: 82:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:1E:1E:45:69:0B:20:72:40:51:DE:47:96:7F:10:38:06:14:3F:17 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/CE988D80FB7311EC97CD7F85C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.160.0/22 103.20.234.0/23 103.27.132.0/22 103.159.64.0/23 117.55.192.0/22 203.96.176.0/22 210.16.64.0/22 IPv6: 2406:cb40::/47 2406:cb41::/48 2406:cb42::/48 Signature Algorithm: sha256WithRSAEncryption c4:16:50:f6:02:3f:35:94:8e:8d:2f:16:57:40:1e:54:7e:75: 8a:fd:f8:16:7a:ae:85:33:fc:8e:7f:c4:cf:6c:8c:f9:65:92: 80:cb:05:0c:51:ba:b8:bc:93:db:86:fa:60:85:a2:bd:53:81: cd:28:93:ee:4f:74:f8:93:25:53:a7:58:0b:f5:e7:26:1c:5f: 33:3c:91:11:c5:3d:dc:ec:63:ad:20:6c:91:a4:7a:f3:67:80: 4c:eb:31:18:ad:0b:6f:12:9a:7d:4c:49:db:d3:ea:54:ee:3d: e9:4e:0c:3b:3a:0b:5d:d8:07:b3:58:80:79:80:48:6c:4e:03: c5:2e:da:ff:3e:5c:35:db:d3:84:d2:d1:70:80:6f:a7:9a:de: d3:b7:2b:c5:ee:be:e5:06:2b:60:fa:ea:75:6d:92:b5:28:6b: bb:d7:57:bc:5a:70:b6:07:4e:21:11:a4:e5:80:25:0e:53:ec: 0c:df:76:8c:e7:27:5a:a8:b6:d0:9b:3b:f0:9b:ab:c6:4d:57: b1:2f:a3:4f:e1:12:97:1f:2c:7c:9a:f5:99:7f:fd:ad:5e:92: 04:5b:53:e8:2a:da:52:b2:53:20:4d:d6:fd:ec:37:cb:db:45: de:c2:6a:b1:1f:f0:98:84:46:92:19:68:07:b5:87:eb:6b:e3: 3b:84:9f:42 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjYwMTAyMjMxOTIwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODNlZS02MDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqvfO90WTv8uLZP2/UsAva6W7QkVlxtLmnzA9fJTkdsr484vGRZ0dLom7+K+ elxK9n9/KXncwNAljCvDr1MoFEsql0nG9QSQNzFFa/HrGuXfPQb/UhaqLfCrklqC MXfry1ehP2fLm1nRdRN5+9fj75l4jbo6R6/JJyUEBoP6qDd6pjUs978BRsXQJzyy MauyZGAlKbJ0nsINtwCIWi162WeO+lewT5tdxFPrja5AZNFChECOy6O30HbhZdZd PLyeiRXSH3AVCrWZ6En8kCXEVdExh2pBTu6b05kL/ko/FU1ihEGdyPTYK268BiAG s0RIicUDe9JyciwbrTMQUFKC+wIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFDYeHkVp CyByQFHeR5Z/EDgGFD8XMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENzIvNDU3NkE2NzIyNjEyMTFFQ0I5MzE5OTQyQzRGOUFFMDIvQ0U5ODhEODBG QjczMTFFQzk3Q0Q3Rjg1QzRGOUFFMDIucm9hMGYGCCsGAQUFBwEHAQH/BFcwVTAw BAIAATAqAwQCK+agAwQBZxTqAwQCZxuEAwQBZ59AAwQCdTfAAwQCy2CwAwQC0hBA MCEEAgACMBsDBwEkBstAAAADBwAkBstBAAADBwAkBstCAAAwDQYJKoZIhvcNAQEL BQADggEBAMQWUPYCPzWUjo0vFldAHlR+dYr9+BZ6roUz/I5/xM9sjPllkoDLBQxR uri8k9uG+mCFor1Tgc0ok+5PdPiTJVOnWAv15yYcXzM8kRHFPdzsY60gbJGkevNn gEzrMRitC28Smn1MSdvT6lTuPelODDs6C13YB7NYgHmASGxOA8Uu2v8+XDXb04TS 0XCAb6ea3tO3K8XuvuUGK2D66nVtkrUoa7vXV7xacLYHTiERpOWAJQ5T7Azfdozn J1qottCbO/Cbq8ZNV7Evo0/hEpcfLHya9Zl//a1ekgRbU+gq2lKyUyBN1v3sN8vb Rd7CarEf8JiERpIZaAe1h+tr4zuEn0I= -----END CERTIFICATE-----Generated at Tue Mar 10 06:26:58 2026 by rpki-client