$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/49567968D07011F0A2852929C4F9AE02.roa File: 49567968D07011F0A2852929C4F9AE02.roa (raw, json) Hash identifier: 8PQXUEVhK3IEgEy9LdNTrlYJLQFMsbSKz5nwyZNxIbk= Subject key identifier: 9C:C9:C4:EE:7B:F0:41:56:B4:9D:9E:28:E3:8F:14:12:CF:11:51:30 Certificate issuer: /CN=A91D3794/serialNumber=30E589288EB65002510C877B466ABE19753BDBCE Certificate serial: 223D Authority key identifier: 30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/49567968D07011F0A2852929C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:16:31 +0000 ROA not before: Fri 30 Jan 2026 16:13:41 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 198949 IP address blocks: 43.245.52.0/22 maxlen: 24 203.17.36.0/24 maxlen: 24 203.170.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 15:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8765 (0x223d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3794, serialNumber=30E589288EB65002510C877B466ABE19753BDBCE Validity Not Before: Jan 30 16:13:41 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4827f-f09e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a7:31:81:54:a6:22:c1:5e:ea:3c:a1:be:55: 83:7e:d8:81:0b:6a:55:ea:bb:98:08:2c:85:49:43: 49:52:3e:9d:e8:c1:ac:6a:27:fa:24:77:3c:a6:82: 3c:3d:e3:26:09:e0:67:e9:91:56:03:2e:e9:65:5a: 5e:5c:ee:12:27:40:cb:ce:bc:bc:ca:2c:09:62:c5: e5:78:fb:cc:a3:93:21:be:3d:06:77:51:9f:f6:54: c7:84:3e:c4:eb:56:72:1b:c7:1f:8c:86:ae:9d:4e: b3:bc:f1:ca:1a:7c:cf:37:10:96:e2:d0:d5:ac:a8: 7e:0b:70:af:be:8d:bc:d9:65:cd:63:4b:43:4b:2b: 89:d7:04:7a:13:7f:67:ba:55:43:21:d1:5a:1b:4b: 59:bf:bf:ed:72:a1:6e:8e:7e:5f:e3:b9:92:9d:ef: 57:5a:69:51:2e:f7:b8:6c:83:b7:f1:8b:1f:5d:8f: 67:22:19:e5:15:39:51:09:10:45:c8:dd:67:09:21: 77:87:d7:7a:44:c7:15:c4:ba:99:7e:b8:d1:c4:af: 9a:77:79:f7:39:e4:bd:a9:e4:cf:ce:53:93:00:20: d9:ac:bf:29:b9:8f:5c:9d:e4:0d:72:4c:2c:95:e1: 00:29:be:db:6e:15:cf:86:f6:0c:54:a8:28:6f:c5: 6f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:C9:C4:EE:7B:F0:41:56:B4:9D:9E:28:E3:8F:14:12:CF:11:51:30 X509v3 Authority Key Identifier: keyid:30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/49567968D07011F0A2852929C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.245.52.0/22 203.17.36.0/24 203.170.80.0/21 Signature Algorithm: sha256WithRSAEncryption 74:1c:e3:94:ec:ca:e8:54:55:25:ab:69:cd:c7:00:63:47:b4: 82:55:b2:4c:55:28:65:14:c6:b8:e5:13:c4:56:a3:16:92:71: 44:3a:94:1e:ea:78:5e:32:a0:1b:6b:81:07:9a:c4:9e:c8:50: 9f:85:a6:2c:51:51:b2:18:8c:6f:1d:d3:37:5e:90:6e:c0:48: a8:79:42:ad:36:d7:55:bc:e4:0f:a6:d7:b6:fe:dc:bd:71:13: f8:57:87:14:a8:da:d4:de:50:95:1b:83:a7:f4:92:3e:4a:d4: 34:bb:75:dc:c3:9c:75:64:ad:c5:11:0c:ff:49:8f:62:cf:ee: 6a:19:2a:11:4f:f7:f9:c9:e6:45:9e:31:2b:ed:78:59:d7:dd: 25:22:92:89:8d:64:53:16:c8:2a:db:6c:68:91:cc:ce:6f:10: 85:b4:b0:d1:e8:db:3b:e8:7e:6d:5d:15:c4:3c:16:b0:67:30: b0:b5:d9:59:02:8a:b6:06:eb:9d:e1:b7:88:01:28:98:01:58: 44:31:6b:34:6f:bc:17:97:a1:1b:c9:9f:3e:b3:a8:b4:ac:81: 9c:db:d9:27:30:8c:b7:de:f0:05:a8:c0:cd:b0:46:c2:d6:31: 4a:cb:af:ad:22:ca:39:c6:24:f1:48:3f:32:2a:3a:c6:18:e4: 66:0e:a1:85 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICIj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3OTQxMTAvBgNVBAUTKDMwRTU4OTI4OEVCNjUwMDI1MTBDODc3QjQ2NkFCRTE5 NzUzQkRCQ0UwHhcNMjYwMTMwMTYxMzQxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODI3Zi1mMDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7KcxgVSmIsFe6jyhvlWDftiBC2pV6ruYCCyFSUNJUj6d6MGsaif6JHc8poI8 PeMmCeBn6ZFWAy7pZVpeXO4SJ0DLzry8yiwJYsXlePvMo5Mhvj0Gd1Gf9lTHhD7E 61ZyG8cfjIaunU6zvPHKGnzPNxCW4tDVrKh+C3Cvvo282WXNY0tDSyuJ1wR6E39n ulVDIdFaG0tZv7/tcqFujn5f47mSne9XWmlRLve4bIO38YsfXY9nIhnlFTlRCRBF yN1nCSF3h9d6RMcVxLqZfrjRxK+ad3n3OeS9qeTPzlOTACDZrL8puY9cneQNckws leEAKb7bbhXPhvYMVKgob8VvpwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFJzJxO57 8EFWtJ2eKOOPFBLPEVEwMB8GA1UdIwQYMBaAFDDliSiOtlACUQyHe0Zqvhl1O9vO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzc5NC8yMEZFNTYxNkU5 OEYxMUU1QTNERERDNjZDNEY5QUUwMi9NT1dKS0k2MlVBSlJESWQ3Um1xLUdYVTcy ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PV0pLSTYyVUFKUkRJZDdSbXEtR1hVNzI4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM3OTQvMjBGRTU2MTZFOThGMTFFNUEzREREQzY2QzRGOUFFMDIvNDk1Njc5NjhE MDcwMTFGMEEyODUyOTI5QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCK/U0AwQAyxEkAwQDy6pQMA0GCSqGSIb3DQEBCwUAA4IBAQB0HOOU 7MroVFUlq2nNxwBjR7SCVbJMVShlFMa45RPEVqMWknFEOpQe6nheMqAba4EHmsSe yFCfhaYsUVGyGIxvHdM3XpBuwEioeUKtNtdVvOQPpte2/ty9cRP4V4cUqNrU3lCV G4On9JI+StQ0u3Xcw5x1ZK3FEQz/SY9iz+5qGSoRT/f5yeZFnjEr7XhZ190lIpKJ jWRTFsgq22xokczObxCFtLDR6Ns76H5tXRXEPBawZzCwtdlZAoq2Buud4beIASiY AVhEMWs0b7wXl6EbyZ8+s6i0rIGc29knMIy33vAFqMDNsEbC1jFKy6+tIso5xiTx SD8yKjrGGORmDqGF -----END CERTIFICATE-----Generated at Sun Mar 22 14:55:38 2026 by rpki-client