$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/7980C32AA71B11EFA8320136C4F9AE02.roa File: 7980C32AA71B11EFA8320136C4F9AE02.roa (raw, json) Hash identifier: fTwgf/z1JlaZSIUWhcpYQ8BO2OuYl7hP0D0SmMwZrI4= Subject key identifier: 97:76:F2:49:08:54:43:E8:F5:6C:C5:8D:61:F7:55:F8:A2:D1:42:2B Certificate issuer: /CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Certificate serial: 0180 Authority key identifier: 6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/7980C32AA71B11EFA8320136C4F9AE02.roa Signing time: Fri 03 Apr 2026 04:40:00 +0000 ROA not before: Fri 03 Apr 2026 04:40:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 38532 IP address blocks: 43.227.231.0/24 maxlen: 24 43.229.84.0/22 maxlen: 22 43.229.128.0/23 maxlen: 23 43.229.130.0/24 maxlen: 24 103.7.8.0/22 maxlen: 22 103.14.212.0/22 maxlen: 22 103.26.40.0/22 maxlen: 22 103.26.41.0/24 maxlen: 24 103.36.92.0/22 maxlen: 22 103.62.4.0/22 maxlen: 24 103.254.255.0/24 maxlen: 24 113.11.248.0/21 maxlen: 21 113.197.32.0/21 maxlen: 21 116.12.48.0/21 maxlen: 21 124.6.60.0/22 maxlen: 24 2400:1480::/48 maxlen: 48 2407:d200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDC3F, serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Validity Not Before: Apr 3 04:40:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69cf449f-9459 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:44:83:50:50:6a:fa:f6:5b:16:38:d4:01:b8: a5:05:b0:58:cd:f6:ed:67:f4:ec:be:9a:9d:10:92: 19:66:d9:ae:2c:f7:47:ab:58:c9:36:4e:30:4e:5e: 3a:16:72:5f:83:91:85:1c:14:02:ad:1b:2f:f9:6a: 98:f2:db:ee:22:a7:30:44:d4:1f:0e:d4:95:60:dd: 48:ae:69:ec:94:4f:af:d8:d5:d5:42:d4:3a:fd:07: 3e:ff:d7:41:18:dd:36:04:67:20:36:3f:b4:fd:4b: dd:f3:cc:26:e8:13:93:3f:45:27:f6:00:9c:04:f1: 81:67:f7:2f:d0:28:c0:9e:b7:f4:2c:2e:f4:41:d9: a3:0a:6e:1d:3b:fc:28:e4:c3:af:86:f3:49:54:00: cd:41:ba:07:4d:c5:d0:93:cc:58:3e:9d:59:7c:6a: e3:2c:c9:3e:87:34:e3:5a:8d:83:b7:9c:6d:c2:8a: 4b:be:84:93:9c:62:b2:0f:9d:9c:83:12:ec:35:a2: 9e:89:7f:91:55:98:72:91:90:a5:65:aa:b5:17:84: 10:cb:cb:41:4c:2e:67:a1:16:32:3c:fe:36:df:96: 6d:4d:d8:ed:6a:fc:96:b7:cd:8b:c7:98:83:b3:2d: 22:55:c4:ee:85:56:57:62:e1:4d:eb:5e:9d:ab:d9: a4:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:76:F2:49:08:54:43:E8:F5:6C:C5:8D:61:F7:55:F8:A2:D1:42:2B X509v3 Authority Key Identifier: keyid:6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/7980C32AA71B11EFA8320136C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.227.231.0/24 43.229.84.0/22 43.229.128.0-43.229.130.255 103.7.8.0/22 103.14.212.0/22 103.26.40.0/22 103.36.92.0/22 103.62.4.0/22 103.254.255.0/24 113.11.248.0/21 113.197.32.0/21 116.12.48.0/21 124.6.60.0/22 IPv6: 2400:1480::/48 2407:d200::/32 Signature Algorithm: sha256WithRSAEncryption 04:11:55:3b:8c:1d:22:a8:ff:0d:93:e5:35:b2:d6:6d:1e:3d: 81:d3:22:87:1e:76:12:88:40:2c:d7:5b:ba:53:08:d6:14:62: e0:89:13:b2:c6:3b:93:6d:95:c0:de:31:61:21:05:0d:7f:34: d2:7a:b7:8d:db:27:17:1a:8b:b7:c9:c0:93:0f:f6:1e:06:2f: 27:ad:ad:45:ec:85:90:9e:75:6f:c4:ae:1c:36:fb:08:9c:79: 06:20:34:be:c5:36:16:05:52:d7:6b:65:b1:46:53:e9:93:7f: c7:ae:5d:77:d5:b1:e4:6d:41:a6:b2:26:47:3c:6d:1b:03:73: c7:3e:c7:99:99:ff:79:7c:39:fa:22:ca:4f:38:77:ad:17:64: 22:ea:cc:62:85:1b:d2:cd:e9:29:bb:5c:cd:35:c4:a4:ba:42: 74:1d:a6:6c:40:21:96:84:f2:14:02:27:0c:7c:b1:1d:73:29: f9:72:8d:32:75:3b:3c:7e:a4:30:18:57:7f:a4:8d:ff:e3:ca: 98:da:54:52:c6:cf:fa:a1:c3:5c:39:93:f6:d3:75:08:55:b5: bb:1d:85:66:0b:48:76:55:91:3c:8f:3c:7a:e1:04:c1:fb:c7: 6f:f6:c2:58:d3:52:9a:0a:8f:34:e5:7b:98:c0:84:ea:6f:77: 85:a9:71:77 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDM0YxMTAvBgNVBAUTKDZDRTBFOTQ5NzExQjIwM0U0QUNCMjJCNjgwRjNGRkY0 N0VEMTZDNjEwHhcNMjYwNDAzMDQ0MDAwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmNDQ5Zi05NDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0SDUFBq+vZbFjjUAbilBbBYzfbtZ/TsvpqdEJIZZtmuLPdHq1jJNk4wTl46 FnJfg5GFHBQCrRsv+WqY8tvuIqcwRNQfDtSVYN1IrmnslE+v2NXVQtQ6/Qc+/9dB GN02BGcgNj+0/Uvd88wm6BOTP0Un9gCcBPGBZ/cv0CjAnrf0LC70QdmjCm4dO/wo 5MOvhvNJVADNQboHTcXQk8xYPp1ZfGrjLMk+hzTjWo2Dt5xtwopLvoSTnGKyD52c gxLsNaKeiX+RVZhykZClZaq1F4QQy8tBTC5noRYyPP4235ZtTdjtavyWt82Lx5iD sy0iVcTuhVZXYuFN616dq9mkbwIDAQABo4ICyTCCAsUwHQYDVR0OBBYEFJd28kkI VEPo9WzFjWH3Vfii0UIrMB8GA1UdIwQYMBaAFGzg6UlxGyA+SssitoDz//R+0Wxh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREMzRi81Q0U4MTA0NjBF QjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklENUt5eUsyZ1BQXzlIN1Ji R0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPRHBTWEViSUQ1S3l5SzJnUFBfOUg3UmJHRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRDM0YvNUNFODEwNDYwRUIwMTFFRjg3MkU4MTI3QzRGOUFFMDIvNzk4MEMzMkFB NzFCMTFFRkE4MzIwMTM2QzRGOUFFMDIucm9hMIGHBggrBgEFBQcBBwEB/wR4MHYw XAQCAAEwVgMEACvj5wMEAivlVDAMAwQHK+WAAwQAK+WCAwQCZwcIAwQCZw7UAwQC ZxooAwQCZyRcAwQCZz4EAwQAZ/7/AwQDcQv4AwQDccUgAwQDdAwwAwQCfAY8MBYE AgACMBADBwAkABSAAAADBQAkB9IAMA0GCSqGSIb3DQEBCwUAA4IBAQAEEVU7jB0i qP8Nk+U1stZtHj2B0yKHHnYSiEAs11u6UwjWFGLgiROyxjuTbZXA3jFhIQUNfzTS ereN2ycXGou3ycCTD/YeBi8nra1F7IWQnnVvxK4cNvsInHkGIDS+xTYWBVLXa2Wx RlPpk3/Hrl131bHkbUGmsiZHPG0bA3PHPseZmf95fDn6IspPOHetF2Qi6sxihRvS zekpu1zNNcSkukJ0HaZsQCGWhPIUAicMfLEdcyn5co0ydTs8fqQwGFd/pI3/48qY 2lRSxs/6ocNcOZP203UIVbW7HYVmC0h2VZE8jzx64QTB+8dv9sJY01KaCo805XuY wITqb3eFqXF3 -----END CERTIFICATE-----Generated at Mon Apr 6 09:55:01 2026 by rpki-client