$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/7147D9D69D9811F09B4CDC3EC4F9AE02.roa File: 7147D9D69D9811F09B4CDC3EC4F9AE02.roa (raw, json) Hash identifier: xUDY8fa7BGcrzHTy/hrdZE1BbzUbC3rseR2XxjoP1gs= Subject key identifier: 6A:E4:32:4F:49:E1:BC:A8:39:A2:9C:6A:86:A3:C7:BA:8C:0E:06:6A Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0C25 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/7147D9D69D9811F09B4CDC3EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:48:35 +0000 ROA not before: Wed 07 Jan 2026 07:58:51 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 23532 IP address blocks: 43.239.104.0/24 maxlen: 24 43.239.105.0/24 maxlen: 24 45.124.204.0/24 maxlen: 24 45.124.205.0/24 maxlen: 24 45.124.206.0/24 maxlen: 24 45.124.207.0/24 maxlen: 24 103.25.100.0/24 maxlen: 24 103.25.101.0/24 maxlen: 24 103.25.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 18:45:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3109 (0xc25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Jan 7 07:58:51 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a48a03-ee9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1c:97:5d:c3:2a:32:00:9f:7d:c2:35:8e:c0: ea:2d:2a:54:44:71:69:61:8c:73:be:7f:94:40:7b: 47:85:54:f7:c1:2e:ad:ca:9a:f6:62:48:65:74:b1: fb:83:79:e9:19:46:0a:36:4c:e8:00:8f:fd:71:d5: 1a:36:1d:96:6e:c6:f9:1c:5c:bc:d8:83:b4:ef:0d: a0:a7:57:7f:2d:a8:99:ff:a0:55:cc:75:55:c7:97: 0b:8b:88:e7:82:f4:d6:2b:9b:5c:91:84:f6:00:bf: c6:58:04:04:81:a6:72:be:db:89:0b:43:d0:0f:e0: 5b:97:01:ca:47:80:7e:c5:3c:c0:13:c5:4a:02:5c: 10:42:3f:42:69:05:19:97:73:46:3d:77:c0:b0:e8: 32:89:a3:d1:e5:7d:91:ce:b7:f6:20:54:b6:bb:9f: b7:29:d1:cc:56:57:60:23:99:dd:9a:6e:92:a7:92: 43:5f:4f:62:a8:92:92:71:b5:28:1b:69:13:80:80: f0:a2:d3:5f:00:0d:a2:be:d9:f4:fd:cb:a7:8b:60: 93:84:4c:2b:a0:e5:24:bc:ac:e5:39:cb:e6:51:85: 2b:87:cd:cc:1a:46:b1:a4:36:66:65:e8:a1:4b:65: 5f:02:00:ab:58:39:7a:6a:73:73:b3:1c:5d:88:a4: f5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:E4:32:4F:49:E1:BC:A8:39:A2:9C:6A:86:A3:C7:BA:8C:0E:06:6A X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/7147D9D69D9811F09B4CDC3EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.104.0/23 45.124.204.0/22 103.25.100.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:e3:5a:6f:bd:77:03:f4:d1:4a:66:ac:b7:d2:16:1b:90:c3: 68:d8:f8:d1:5e:2d:cd:d1:39:1a:3e:27:f9:e6:4b:7f:74:f6: 21:5f:91:ea:02:61:6a:9f:39:85:7c:6d:4e:fa:5e:7e:be:b9: 5e:86:67:ba:89:92:00:43:d6:27:1b:73:bc:67:3b:cc:9b:97: 3e:99:7b:14:b8:76:b8:89:fe:93:6f:c7:48:21:8b:93:c8:12: 92:25:8a:0e:d8:20:67:d5:24:a5:75:53:f5:28:5a:dc:94:a1: 63:e9:c6:d0:ba:59:c0:39:5e:18:cc:30:db:ce:f7:d9:26:5f: 46:f2:6a:37:35:56:38:e5:8e:54:96:02:6f:19:ea:4d:cd:b4: 5f:81:1a:d5:0d:cf:72:a7:5a:0d:12:de:42:9c:83:f2:5b:0d: db:3b:9e:49:6c:ee:0a:6b:e1:9d:b1:65:f8:fb:96:19:22:ad: 68:be:74:e8:25:9a:c8:1e:00:52:01:a7:64:81:de:25:a9:c0: 27:81:b4:b3:1c:e8:5b:cc:ae:94:1c:df:b1:d8:08:93:c2:d9: c5:21:17:d8:00:94:8b:1e:8c:01:91:83:98:f7:fd:17:e4:b7: ee:f2:db:4d:05:dd:f2:86:c2:c3:50:b9:cb:5b:e6:5a:68:1f: 28:87:01:cc -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICDCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjYwMTA3MDc1ODUxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGEwMy1lZTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxyXXcMqMgCffcI1jsDqLSpURHFpYYxzvn+UQHtHhVT3wS6typr2YkhldLH7 g3npGUYKNkzoAI/9cdUaNh2Wbsb5HFy82IO07w2gp1d/LaiZ/6BVzHVVx5cLi4jn gvTWK5tckYT2AL/GWAQEgaZyvtuJC0PQD+BblwHKR4B+xTzAE8VKAlwQQj9CaQUZ l3NGPXfAsOgyiaPR5X2Rzrf2IFS2u5+3KdHMVldgI5ndmm6Sp5JDX09iqJKScbUo G2kTgIDwotNfAA2ivtn0/cuni2CThEwroOUkvKzlOcvmUYUrh83MGkaxpDZmZeih S2VfAgCrWDl6anNzsxxdiKT1KwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFGrkMk9J 4byoOaKcaoajx7qMDgZqMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvNzE0N0Q5RDY5 RDk4MTFGMDlCNENEQzNFQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQBK+9oAwQCLXzMAwQCZxlkMA0GCSqGSIb3DQEBCwUAA4IBAQA641pv vXcD9NFKZqy30hYbkMNo2PjRXi3N0TkaPif55kt/dPYhX5HqAmFqnzmFfG1O+l5+ vrlehme6iZIAQ9YnG3O8ZzvMm5c+mXsUuHa4if6Tb8dIIYuTyBKSJYoO2CBn1SSl dVP1KFrclKFj6cbQulnAOV4YzDDbzvfZJl9G8mo3NVY45Y5UlgJvGepNzbRfgRrV Dc9yp1oNEt5CnIPyWw3bO55JbO4Ka+GdsWX4+5YZIq1ovnToJZrIHgBSAadkgd4l qcAngbSzHOhbzK6UHN+x2AiTwtnFIRfYAJSLHowBkYOY9/0X5Lfu8ttNBd3yhsLD ULnLW+ZaaB8ohwHM -----END CERTIFICATE-----Generated at Sat Mar 7 19:32:02 2026 by rpki-client