$ rpki-client -vvf rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/5409C188C6CB11ECB185E43EC4F9AE02.roa File: 5409C188C6CB11ECB185E43EC4F9AE02.roa (raw, json) Hash identifier: 0a9pPFK9l1fog9k4rdhxyffTfCfNNylKzOV1up6yd0U= Subject key identifier: 6F:22:B2:78:0E:3D:EE:07:36:3A:F2:18:2D:35:E4:05:3D:02:2C:4D Certificate issuer: /CN=A91D873B/serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Certificate serial: 03C9 Authority key identifier: 03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/5409C188C6CB11ECB185E43EC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:25:20 +0000 ROA not before: Wed 26 Nov 2025 23:16:34 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 132742 IP address blocks: 43.249.220.0/22 maxlen: 24 103.41.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 00:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 969 (0x3c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D873B, serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Validity Not Before: Nov 26 23:16:34 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a44c50-e6a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c2:6c:b7:91:62:ac:e0:93:3c:87:d2:c1:74: 70:03:f2:c8:a2:77:82:73:6f:1a:08:a6:fe:b8:a1: 70:0b:56:b8:a1:9d:48:22:ab:3b:46:25:a6:44:3b: f3:24:79:ae:03:8c:13:9d:1a:63:5b:e9:f3:6e:d3: 91:a5:ea:e4:89:62:f7:aa:30:0f:7c:02:db:e1:f4: b4:b4:b8:4a:28:2e:db:d4:24:34:e5:c6:68:8c:28: 1b:ea:8f:ba:04:49:75:04:78:c9:85:35:1f:b5:da: 2b:6a:b9:c6:51:3f:26:54:67:72:42:11:c2:86:b7: 49:72:e4:8a:ae:60:93:ed:ed:48:d0:34:39:82:27: 48:dd:29:19:f4:aa:4d:a6:69:e6:b4:ac:db:36:5a: 50:a3:08:bd:65:81:1b:70:0b:c1:36:14:8f:32:d6: b4:85:a5:4c:72:10:7d:ad:1e:a3:de:77:14:a1:c8: 81:12:53:6d:b8:02:eb:c1:6c:4f:85:86:ab:b4:f1: 8a:b0:2a:e1:d9:8a:7a:2b:d8:8c:a2:58:37:ee:08: de:0c:eb:c7:47:67:a0:be:f5:90:56:82:d8:96:bd: 81:dd:f3:62:60:e1:83:11:68:5a:8c:01:c5:43:32: 33:bd:b0:e0:41:29:a9:69:63:83:3e:aa:f9:16:a6: bd:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:22:B2:78:0E:3D:EE:07:36:3A:F2:18:2D:35:E4:05:3D:02:2C:4D X509v3 Authority Key Identifier: keyid:03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/5409C188C6CB11ECB185E43EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.249.220.0/22 103.41.80.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:b6:87:ab:ac:7f:cb:9d:61:d8:86:ec:13:1b:c7:57:0c:f5: 86:4c:17:12:45:06:ab:3a:b3:a1:4e:00:83:97:c6:ad:fd:49: af:0b:37:44:e6:16:96:37:c9:81:e8:9a:5a:ed:c2:63:61:aa: be:5e:d9:88:37:40:9d:b0:4c:c5:b6:0f:9e:d7:75:e4:d5:0b: cc:a9:4b:0f:af:1f:31:9c:da:41:55:60:ad:a4:38:d0:a3:18: 68:cb:24:3b:2d:2f:be:53:6c:41:0e:7a:59:c3:98:12:ff:4f: 13:8d:5a:25:0b:ac:93:69:d9:24:04:98:aa:bf:4c:9c:3b:63: e3:af:be:e8:dd:f2:03:09:c2:7d:77:9e:ab:a4:f6:33:c9:3f: cc:c9:23:cb:d4:81:cd:49:8c:24:76:44:b6:e2:38:95:12:b0: 18:15:d8:74:a3:ac:87:92:06:f3:e9:98:75:d9:d9:b5:7b:f4: b8:10:12:c7:83:77:41:6d:c9:73:cb:d1:2f:cd:6f:0f:a4:1b: ed:42:79:fc:58:17:29:d5:cf:57:91:9e:c9:ed:02:26:cb:ff: 91:87:ee:1a:75:4a:f6:e1:f1:92:e8:e2:db:98:a7:c2:68:7e: 4e:4a:80:a6:a4:80:04:a3:3e:52:8c:0c:26:0b:21:7b:b1:00: d9:f6:43:88 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICA8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3M0IxMTAvBgNVBAUTKDAzQkQ5MDlBMUExNUE0NTAzREZBRDU5NEMzQzZERTlC OTQ2MDRFNjYwHhcNMjUxMTI2MjMxNjM0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGM1MC1lNmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8Jst5FirOCTPIfSwXRwA/LIoneCc28aCKb+uKFwC1a4oZ1IIqs7RiWmRDvz JHmuA4wTnRpjW+nzbtORperkiWL3qjAPfALb4fS0tLhKKC7b1CQ05cZojCgb6o+6 BEl1BHjJhTUftdorarnGUT8mVGdyQhHChrdJcuSKrmCT7e1I0DQ5gidI3SkZ9KpN pmnmtKzbNlpQowi9ZYEbcAvBNhSPMta0haVMchB9rR6j3ncUociBElNtuALrwWxP hYartPGKsCrh2Yp6K9iMolg37gjeDOvHR2egvvWQVoLYlr2B3fNiYOGDEWhajAHF QzIzvbDgQSmpaWODPqr5Fqa98wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFG8isngO Pe4HNjryGC015AU9AixNMB8GA1UdIwQYMBaAFAO9kJoaFaRQPfrVlMPG3puUYE5m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODczQi80QTE2QkJEQUM2 MDQxMUVDQUE5NDU5NEJDNEY5QUUwMi9BNzJRbWhvVnBGQTktdFdVdzhiZW01UmdU bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E3MlFtaG9WcEZBOS10V1V3OGJlbTVSZ1RtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg3M0IvNEExNkJCREFDNjA0MTFFQ0FBOTQ1OTRCQzRGOUFFMDIvNTQwOUMxODhD NkNCMTFFQ0IxODVFNDNFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/ncAwQCZylQMA0GCSqGSIb3DQEBCwUAA4IBAQCctoerrH/LnWHY huwTG8dXDPWGTBcSRQarOrOhTgCDl8at/UmvCzdE5haWN8mB6Jpa7cJjYaq+XtmI N0CdsEzFtg+e13Xk1QvMqUsPrx8xnNpBVWCtpDjQoxhoyyQ7LS++U2xBDnpZw5gS /08TjVolC6yTadkkBJiqv0ycO2Pjr77o3fIDCcJ9d56rpPYzyT/MySPL1IHNSYwk dkS24jiVErAYFdh0o6yHkgbz6Zh12dm1e/S4EBLHg3dBbclzy9EvzW8PpBvtQnn8 WBcp1c9XkZ7J7QImy/+Rh+4adUr24fGS6OLbmKfCaH5OSoCmpIAEoz5SjAwmCyF7 sQDZ9kOI -----END CERTIFICATE-----Generated at Sat Mar 21 22:49:08 2026 by rpki-client