$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/543386248C5811E782F42951C4F9AE02.roa File: 543386248C5811E782F42951C4F9AE02.roa (raw, json) Hash identifier: VXbaNAWvoJ+rU4BxeUcqpfRS7xG8p7um2aWWgzOxJa0= Subject key identifier: AF:CD:6A:FE:8D:03:0E:3D:D8:6E:AB:83:83:98:37:6B:18:9A:CC:48 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2856 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/543386248C5811E782F42951C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:38:47 +0000 ROA not before: Tue 08 Apr 2025 15:53:24 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132206 IP address blocks: 112.206.224.0/20 maxlen: 20 112.206.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 15:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10326 (0x2856) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:24 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a487b6-2b7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:57:7c:c9:f9:df:aa:b9:0f:db:34:b0:eb:4b: e5:06:da:09:76:a4:54:3c:0d:10:16:1d:be:8b:15: 8c:a8:10:de:19:10:7b:dd:91:1f:7f:49:2b:45:1f: f7:91:a8:42:a8:7c:e9:c7:17:55:0a:e9:24:d5:54: b1:b5:af:20:76:fe:79:e4:23:f4:9a:bf:3f:1c:11: 55:58:47:05:67:27:c4:8d:6f:a5:13:52:d9:7b:53: 08:57:1d:5b:7c:4c:ca:35:e7:81:29:cc:04:7d:bc: a8:01:ee:ff:3f:88:05:35:86:8e:a8:83:d4:99:21: d9:46:e6:19:a4:2a:ce:c4:f9:df:c6:fe:df:4f:2a: 0d:0c:f4:2f:6e:50:ce:70:7b:f7:34:55:7d:1d:bf: b8:81:8f:2f:ee:9e:87:8a:10:f1:2e:bc:d2:13:a1: d1:be:1a:c6:99:dd:3d:d7:0a:fe:4d:62:8b:a4:65: 82:d2:7b:97:9b:10:e9:e8:bb:e4:fa:5f:eb:c4:98: 50:8b:47:a6:32:15:62:88:ca:d0:10:9e:1b:e4:2f: 2c:70:5e:0c:b7:a1:4f:15:ef:52:6f:1b:7d:ec:da: d6:ee:cd:04:94:97:5f:b1:33:ca:39:50:20:eb:1f: 37:01:71:55:4f:88:54:ac:89:c5:74:b2:3f:29:16: f2:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:CD:6A:FE:8D:03:0E:3D:D8:6E:AB:83:83:98:37:6B:18:9A:CC:48 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/543386248C5811E782F42951C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 112.206.224.0/20 Signature Algorithm: sha256WithRSAEncryption 13:c1:54:a9:03:62:ba:f2:bf:bd:42:e0:0c:4c:a1:47:d5:98: 10:34:89:8a:06:a2:83:0c:2d:c0:bb:60:77:a1:f5:27:d6:1d: 38:e5:59:98:d4:b8:f4:9f:cf:fb:3a:dd:85:9b:6a:58:f2:f0: 19:69:42:a8:94:eb:46:2e:d5:c4:a9:80:ee:79:91:7b:3e:a2: 86:b4:61:57:56:44:27:97:2b:7e:72:ac:4a:4a:00:10:86:8e: 01:44:5b:4f:06:b6:84:79:6b:a9:bc:ed:02:51:91:45:69:3c: 1a:ea:fd:d1:18:ff:df:4e:c0:59:07:c7:17:a0:dd:bc:c4:d1: 00:fc:af:0f:95:0b:bc:20:5f:52:a0:88:8b:2b:ee:58:b9:29: b4:74:7f:f7:6e:8c:c9:2e:b4:7c:94:91:e5:51:79:19:d4:c0: 4b:25:78:e5:e3:c5:c3:3e:87:28:a4:d7:b6:73:3c:ee:50:33: ad:d6:f9:77:01:4b:65:b3:69:ad:98:e2:d5:dd:c5:0f:23:b9: 1f:46:54:ba:63:76:2b:38:a3:d6:7e:31:34:30:5f:34:f3:a8: fb:98:1b:b0:1e:e5:d4:26:09:cf:8d:38:59:0c:39:cb:a5:6b: fd:82:71:e8:9c:19:a4:e3:70:a1:a4:d1:2d:cc:e3:ac:62:15: 67:68:ea:c0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICKFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzI0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODdiNi0yYjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1d8yfnfqrkP2zSw60vlBtoJdqRUPA0QFh2+ixWMqBDeGRB73ZEff0krRR/3 kahCqHzpxxdVCukk1VSxta8gdv555CP0mr8/HBFVWEcFZyfEjW+lE1LZe1MIVx1b fEzKNeeBKcwEfbyoAe7/P4gFNYaOqIPUmSHZRuYZpCrOxPnfxv7fTyoNDPQvblDO cHv3NFV9Hb+4gY8v7p6HihDxLrzSE6HRvhrGmd091wr+TWKLpGWC0nuXmxDp6Lvk +l/rxJhQi0emMhViiMrQEJ4b5C8scF4Mt6FPFe9Sbxt97NrW7s0ElJdfsTPKOVAg 6x83AXFVT4hUrInFdLI/KRbyyQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFK/Nav6N Aw492G6rg4OYN2sYmsxIMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNTQzMzg2MjQ4 QzU4MTFFNzgyRjQyOTUxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEcM7gMA0GCSqGSIb3DQEBCwUAA4IBAQATwVSpA2K68r+9QuAMTKFH 1ZgQNImKBqKDDC3Au2B3ofUn1h045VmY1Lj0n8/7Ot2Fm2pY8vAZaUKolOtGLtXE qYDueZF7PqKGtGFXVkQnlyt+cqxKSgAQho4BRFtPBraEeWupvO0CUZFFaTwa6v3R GP/fTsBZB8cXoN28xNEA/K8PlQu8IF9SoIiLK+5YuSm0dH/3bozJLrR8lJHlUXkZ 1MBLJXjl48XDPocopNe2czzuUDOt1vl3AUtls2mtmOLV3cUPI7kfRlS6Y3YrOKPW fjE0MF8086j7mBuwHuXUJgnPjThZDDnLpWv9gnHonBmk43ChpNEtzOOsYhVnaOrA -----END CERTIFICATE-----Generated at Sun Mar 8 03:25:41 2026 by rpki-client