$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa File: 5DA849821C1211EA819EA46EC4F9AE02.roa (raw, json) Hash identifier: I+esccoiwzdgHNsyPoOxcDay6S6R3DAFla0i6sby9pU= Subject key identifier: A0:D2:80:33:E8:19:BB:40:D1:4F:22:F7:1F:8A:AB:0E:72:EC:D8:DB Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0CA0 Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa Signing time: Wed 28 Jan 2026 19:15:43 +0000 ROA not before: Wed 28 Jan 2026 19:15:43 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138546 IP address blocks: 43.243.96.0/22 maxlen: 24 103.38.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 18:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3232 (0xca0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966, serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: Jan 28 19:15:43 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=697a605f-494d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6b:9f:f3:a8:57:d9:54:6d:38:62:1d:48:54: 62:74:a7:4d:bc:30:f3:57:c8:41:16:ff:d5:85:28: 49:7b:84:91:c0:00:56:01:3d:94:5f:05:69:cb:80: 6a:53:bc:72:64:4a:78:a1:57:3c:4c:1b:36:60:27: 01:8b:78:e2:41:b4:7b:bf:2e:5b:54:a3:ed:6b:7e: 67:77:e2:5f:3c:66:3c:ab:99:e3:2e:4d:57:7d:0a: c2:8d:ba:d3:64:42:48:69:25:5d:f5:df:43:ca:91: 53:46:b6:2e:f9:c9:c7:e5:b7:d3:b6:b2:c7:05:51: c7:d9:35:1f:f1:d4:97:32:4e:51:94:5c:ce:97:7e: 9e:cf:b0:bb:63:c8:a2:10:a4:e6:d7:97:d2:59:eb: 0b:80:58:0b:fc:0f:8a:79:92:a2:72:5f:ec:db:6a: 96:83:a1:ee:78:2a:73:8e:68:ac:04:6e:3e:df:50: 05:63:53:cc:23:73:a9:80:77:a1:b7:7c:9e:68:ee: e4:ce:6e:bd:3d:7e:36:01:ac:f4:93:84:0e:dd:d2: 97:e3:82:57:7d:d7:f3:a2:c2:36:1d:16:ed:75:1c: ee:82:ba:fe:3c:74:9a:36:82:67:db:37:cf:0e:a1: 57:88:e6:ea:94:44:e4:63:64:b4:8a:11:2a:da:df: 25:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:D2:80:33:E8:19:BB:40:D1:4F:22:F7:1F:8A:AB:0E:72:EC:D8:DB X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.96.0/22 103.38.196.0/22 Signature Algorithm: sha256WithRSAEncryption 73:4e:3f:d7:f7:c2:64:08:b9:90:29:f1:18:e8:ac:2c:6b:66: d2:7a:ed:9e:01:f7:f8:4d:d8:7b:3b:31:3d:11:5f:ff:e0:41: bb:7a:38:e1:00:5c:a5:25:ed:57:06:9a:66:a7:58:d3:1b:e6: b0:be:87:14:55:c5:4a:60:a5:bd:db:5a:9b:60:43:80:f6:e4: bc:8e:7a:d6:79:90:ea:6e:36:53:f4:af:90:ba:e4:53:5d:9f: 6b:3a:b4:8f:1a:bf:f4:81:0b:9a:a4:2a:6d:17:ae:f2:8e:67: 9c:f1:33:8f:8e:a7:6e:0c:51:6a:26:35:4c:35:dd:10:5f:55: 8f:8c:20:41:50:eb:45:ed:ed:64:d3:41:4b:d1:00:3f:97:7d: df:51:0d:ef:07:78:27:0c:a2:44:f1:36:b2:da:36:32:84:a6: 3b:d9:c8:96:53:c5:e2:69:3b:56:e7:ec:26:f5:44:00:b7:7a: 31:05:22:18:69:1e:e9:84:f8:bd:f7:80:1b:8b:59:f5:fb:99: e5:91:86:e2:52:a2:bb:21:18:60:76:76:d5:a6:46:52:57:70: 39:5e:51:02:9c:2e:cc:b3:e8:9a:d2:a1:e8:28:69:b6:cf:91: 03:54:f1:e1:51:ee:68:f7:a2:dd:40:fa:01:be:94:59:98:a4: 5c:c9:13:b3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjYwMTI4MTkxNTQzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdhNjA1Zi00OTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGuf86hX2VRtOGIdSFRidKdNvDDzV8hBFv/VhShJe4SRwABWAT2UXwVpy4Bq U7xyZEp4oVc8TBs2YCcBi3jiQbR7vy5bVKPta35nd+JfPGY8q5njLk1XfQrCjbrT ZEJIaSVd9d9DypFTRrYu+cnH5bfTtrLHBVHH2TUf8dSXMk5RlFzOl36ez7C7Y8ii EKTm15fSWesLgFgL/A+KeZKicl/s22qWg6HueCpzjmisBG4+31AFY1PMI3OpgHeh t3yeaO7kzm69PX42Aaz0k4QO3dKX44JXfdfzosI2HRbtdRzugrr+PHSaNoJn2zfP DqFXiObqlETkY2S0ihEq2t8lBQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKDSgDPo GbtA0U8i9x+Kqw5y7NjbMB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM5NjYvQTE5NTJCQTIxQzExMTFFQUI2QzNDNzZEQzRGOUFFMDIvNURBODQ5ODIx QzEyMTFFQTgxOUVBNDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr82ADBAJnJsQwDQYJKoZIhvcNAQELBQADggEBAHNOP9f3 wmQIuZAp8RjorCxrZtJ67Z4B9/hN2Hs7MT0RX//gQbt6OOEAXKUl7VcGmmanWNMb 5rC+hxRVxUpgpb3bWptgQ4D25LyOetZ5kOpuNlP0r5C65FNdn2s6tI8av/SBC5qk Km0XrvKOZ5zxM4+Op24MUWomNUw13RBfVY+MIEFQ60Xt7WTTQUvRAD+Xfd9RDe8H eCcMokTxNrLaNjKEpjvZyJZTxeJpO1bn7Cb1RAC3ejEFIhhpHumE+L33gBuLWfX7 meWRhuJSorshGGB2dtWmRlJXcDleUQKcLsyz6JrSoegoabbPkQNU8eFR7mj3ot1A +gG+lFmYpFzJE7M= -----END CERTIFICATE-----Generated at Thu Feb 19 19:56:12 2026 by rpki-client