$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/457D2B5A28DC11ED839D6243C4F9AE02.roa File: 457D2B5A28DC11ED839D6243C4F9AE02.roa (raw, json) Hash identifier: +Csg2HOJepirMsB8Vzghrd3DehAyOhqy3cud4l2RxN8= Subject key identifier: 57:6D:41:68:8D:CC:33:FB:10:99:3F:7E:BB:3A:61:9F:8D:B5:28:44 Certificate issuer: /CN=A91E2A61/serialNumber=2B517C6B79E3CEB0389D41ABC5ECE2107FEC53FB Certificate serial: 044D Authority key identifier: 2B:51:7C:6B:79:E3:CE:B0:38:9D:41:AB:C5:EC:E2:10:7F:EC:53:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1F8a3njzrA4nUGrxeziEH_sU_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/457D2B5A28DC11ED839D6243C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:09:57 +0000 ROA not before: Wed 15 Oct 2025 02:56:13 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133861 IP address blocks: 43.255.28.0/24 maxlen: 24 43.255.29.0/24 maxlen: 24 43.255.30.0/24 maxlen: 24 43.255.31.0/24 maxlen: 24 103.74.192.0/24 maxlen: 24 103.74.193.0/24 maxlen: 24 103.74.194.0/24 maxlen: 24 103.74.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/K1F8a3njzrA4nUGrxeziEH_sU_s.crl rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/K1F8a3njzrA4nUGrxeziEH_sU_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1F8a3njzrA4nUGrxeziEH_sU_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 23:47:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1101 (0x44d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2A61, serialNumber=2B517C6B79E3CEB0389D41ABC5ECE2107FEC53FB Validity Not Before: Oct 15 02:56:13 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a464d5-5e24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ba:6e:1a:a3:72:87:a6:be:d0:69:32:f3:4f: 6a:73:8b:e5:87:0d:2d:d1:58:40:28:82:13:79:ef: 75:94:41:ad:1e:6e:3e:0a:28:35:97:c4:22:6d:9c: 11:3a:58:b6:f9:25:14:8d:2a:9d:23:59:c9:d2:ea: d5:fe:bd:1d:f2:3f:eb:42:ac:e5:b0:71:e5:5d:dc: 26:4a:b3:26:31:47:8a:fd:e0:c0:d2:e7:b4:af:59: 8d:3e:ec:0b:e9:bd:11:9d:e0:db:9e:5b:aa:eb:4f: 2a:03:05:10:fa:5b:2a:4b:28:aa:bb:00:a6:40:6b: e4:63:30:54:6b:c3:49:32:6d:02:68:c9:6f:20:3a: 0e:8b:52:63:c5:50:70:06:57:31:4f:d9:07:45:8d: a4:4e:fd:28:ba:00:4b:57:b8:65:26:d5:18:e5:2f: 18:be:10:0f:bf:40:f3:5e:42:f5:0e:b5:2b:50:3d: e2:ed:f6:a1:61:9f:b9:24:a0:d5:42:df:19:35:9c: 5d:ba:df:56:74:0b:12:57:da:49:71:ff:c6:ca:ce: 1c:d9:21:a9:35:99:6a:1c:4c:09:d7:db:f6:62:59: da:d8:fa:21:c6:55:cc:06:03:92:88:6f:d2:c9:ff: 15:7b:99:65:82:f0:d9:ac:72:4b:a7:8f:f3:cf:3a: be:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:6D:41:68:8D:CC:33:FB:10:99:3F:7E:BB:3A:61:9F:8D:B5:28:44 X509v3 Authority Key Identifier: keyid:2B:51:7C:6B:79:E3:CE:B0:38:9D:41:AB:C5:EC:E2:10:7F:EC:53:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/K1F8a3njzrA4nUGrxeziEH_sU_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1F8a3njzrA4nUGrxeziEH_sU_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/457D2B5A28DC11ED839D6243C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.255.28.0/22 103.74.192.0/22 Signature Algorithm: sha256WithRSAEncryption 31:68:4c:11:3f:1a:f3:4b:50:02:8c:e9:1b:fc:f5:ae:ad:39: d7:b3:c1:fb:8e:ec:34:80:70:f0:6f:db:3a:4e:e1:50:2f:97: 8a:62:e4:24:3d:5f:68:1b:8c:71:fb:3f:09:c0:23:e0:46:9f: ee:db:89:ac:16:b5:fc:62:5c:b1:db:60:8e:c6:7b:2b:80:d2: 2f:4b:d0:0f:24:6c:aa:07:68:86:6f:96:95:7c:62:3b:43:3a: 63:e7:5b:0e:e6:6b:4d:c6:67:79:27:c7:76:f6:c2:a9:52:27: 0e:d7:17:b3:fc:a9:42:f9:66:6e:c9:6e:a5:af:f2:12:4b:ce: 1b:58:5f:3d:bb:ba:7e:25:2e:51:fa:9e:85:2a:87:a1:76:a5: 8d:15:26:50:8a:98:26:62:2d:47:15:54:f7:fa:e9:c9:9e:19: 9f:30:62:48:e8:6e:67:c3:62:35:95:6a:fc:86:0b:36:25:b3: 99:7f:10:68:35:ec:45:7c:4f:48:46:a9:8d:57:e8:b9:5f:f4: df:a4:0b:6f:2f:82:52:e5:84:8f:8c:b8:be:82:83:6e:90:53: 36:99:f2:05:3f:c7:57:83:70:db:66:b7:1a:4a:f4:98:15:f8: 19:ea:90:d9:f3:b6:24:8b:64:4c:d3:89:69:80:3d:e3:49:c0: 39:7c:43:af -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBNjExMTAvBgNVBAUTKDJCNTE3QzZCNzlFM0NFQjAzODlENDFBQkM1RUNFMjEw N0ZFQzUzRkIwHhcNMjUxMDE1MDI1NjEzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjRkNS01ZTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl7puGqNyh6a+0Gky809qc4vlhw0t0VhAKIITee91lEGtHm4+Cig1l8QibZwR Oli2+SUUjSqdI1nJ0urV/r0d8j/rQqzlsHHlXdwmSrMmMUeK/eDA0ue0r1mNPuwL 6b0RneDbnluq608qAwUQ+lsqSyiquwCmQGvkYzBUa8NJMm0CaMlvIDoOi1JjxVBw BlcxT9kHRY2kTv0ougBLV7hlJtUY5S8YvhAPv0DzXkL1DrUrUD3i7fahYZ+5JKDV Qt8ZNZxdut9WdAsSV9pJcf/Gys4c2SGpNZlqHEwJ19v2Ylna2PohxlXMBgOSiG/S yf8Ve5llgvDZrHJLp4/zzzq+FwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFFdtQWiN zDP7EJk/frs6YZ+NtShEMB8GA1UdIwQYMBaAFCtRfGt5486wOJ1Bq8Xs4hB/7FP7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkE2MS9FREMwOEZFNjk2 MEIxMUVDQkJFNEJFNjRDNEY5QUUwMi9LMUY4YTNuanpyQTRuVUdyeGV6aUVIX3NV X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxRjhhM25qenJBNG5VR3J4ZXppRUhfc1Vfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJBNjEvRURDMDhGRTY5NjBCMTFFQ0JCRTRCRTY0QzRGOUFFMDIvNDU3RDJCNUEy OERDMTFFRDgzOUQ2MjQzQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/8cAwQCZ0rAMA0GCSqGSIb3DQEBCwUAA4IBAQAxaEwRPxrzS1AC jOkb/PWurTnXs8H7juw0gHDwb9s6TuFQL5eKYuQkPV9oG4xx+z8JwCPgRp/u24ms FrX8Ylyx22COxnsrgNIvS9APJGyqB2iGb5aVfGI7Qzpj51sO5mtNxmd5J8d29sKp UicO1xez/KlC+WZuyW6lr/ISS84bWF89u7p+JS5R+p6FKoehdqWNFSZQipgmYi1H FVT3+unJnhmfMGJI6G5nw2I1lWr8hgs2JbOZfxBoNexFfE9IRqmNV+i5X/TfpAtv L4JS5YSPjLi+goNukFM2mfIFP8dXg3DbZrcaSvSYFfgZ6pDZ87Yki2RM04lpgD3j ScA5fEOv -----END CERTIFICATE-----Generated at Tue Mar 24 08:15:07 2026 by rpki-client