$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/192418F6AA1811EA97BC574CC4F9AE02.roa File: 192418F6AA1811EA97BC574CC4F9AE02.roa (raw, json) Hash identifier: 9gHnkQpVuVjgh/19/P0O5xQq1RyKtz9sAjQNdfQWEbU= Subject key identifier: B5:75:0E:E2:81:02:FD:00:08:58:1D:FD:37:6E:A6:7D:CF:17:86:C9 Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Certificate serial: 1FCB Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/192418F6AA1811EA97BC574CC4F9AE02.roa Signing time: Thu 28 May 2026 08:24:26 +0000 ROA not before: Thu 28 May 2026 08:24:26 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 24429 IP address blocks: 43.91.0.0/16 maxlen: 24 43.102.128.0/20 maxlen: 24 43.102.144.0/20 maxlen: 24 43.109.0.0/16 maxlen: 24 2404:2280:100::/40 maxlen: 48 2404:2280:200::/40 maxlen: 48 2404:2280:300::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 16:04:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8139 (0x1fcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Validity Not Before: May 28 08:24:26 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6a17fbba-3562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0d:4f:48:48:a4:9e:05:79:0b:61:9b:67:f5: d7:96:c8:63:20:32:00:39:81:47:19:36:d1:3b:c0: 6b:84:3f:87:bf:9f:25:27:37:32:85:d6:b6:b2:1f: e2:2c:7d:ac:d7:ba:7e:35:1d:7b:c1:d9:48:e6:20: 97:b2:4b:de:92:80:fc:40:aa:91:d0:82:98:64:62: 1c:eb:94:7f:8e:22:d7:57:95:d6:6a:52:ea:55:44: a7:60:87:13:49:4e:ec:b3:21:02:cd:da:bc:54:ff: 7e:90:fb:5d:f0:3d:ba:ca:db:7b:03:8a:96:c8:bb: f0:b2:21:f4:80:09:2a:8c:a9:4b:18:87:39:34:35: 12:b0:ff:f3:24:13:29:1c:da:75:11:a3:df:4c:25: a5:23:86:1c:3a:f2:9f:d0:1b:00:b8:e2:33:b3:c1: a7:76:26:f6:e5:c8:c8:86:17:22:9f:14:c2:f4:2a: 97:19:82:75:9f:ca:9b:4b:ca:87:73:54:12:a3:b2: 43:20:26:b1:84:81:b8:71:a2:6e:7c:5d:83:56:7b: bc:80:92:9d:df:33:d7:1f:23:88:28:f0:ef:d6:8c: 45:1b:fb:04:f3:7d:ed:b1:1a:9a:2a:0b:88:91:6d: 31:86:cf:af:a9:81:b3:27:c4:3c:59:0c:a4:ef:a9: 3b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:75:0E:E2:81:02:FD:00:08:58:1D:FD:37:6E:A6:7D:CF:17:86:C9 X509v3 Authority Key Identifier: keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/192418F6AA1811EA97BC574CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.91.0.0/16 43.102.128.0/19 43.109.0.0/16 IPv6: 2404:2280:100::-2404:2280:3ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 7c:f4:da:cd:c7:fd:1c:b5:6e:e2:71:4f:8b:05:45:6f:3f:68: 2e:fc:03:98:f7:73:50:3f:b0:10:37:c7:e7:17:3d:7f:f8:9a: 71:f4:dc:2d:8e:bc:90:d4:ca:0e:18:f1:1e:1a:40:a9:b4:0d: 7c:ed:65:09:21:96:2b:8e:47:a8:10:81:9b:37:54:0f:df:a3: b1:8f:57:4c:47:6b:aa:d5:df:e9:27:28:1e:d3:14:e1:3f:99: 63:a3:15:95:ca:be:1d:d8:04:5a:10:5f:66:c7:b9:e3:c8:45: 0c:18:30:6a:ae:fc:57:40:d3:31:37:47:a0:07:db:e1:91:9d: 0b:1d:70:8c:c2:c9:a2:b8:53:07:1a:80:86:d2:a7:98:82:ca: a5:48:3b:fc:aa:39:c3:8a:27:a9:6b:ef:ab:86:d1:96:4b:cc: dd:2d:33:20:ab:83:82:ec:9f:c0:1c:39:14:8f:96:94:f0:77: f0:c3:fb:08:4e:42:12:06:0e:1f:60:27:f2:dc:e5:e7:5b:ab: 4d:0f:87:68:5c:8f:f3:25:3d:34:45:f2:e3:d2:0a:b2:46:a6: be:73:36:5d:1e:dc:c5:67:ec:f8:00:38:49:eb:2e:47:a9:47: a4:f8:09:17:5e:c5:c6:43:cb:52:b1:62:2c:dd:5b:a8:01:e4: 94:2e:80:30 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICH8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDlFMUMzNTMxRDAwNDVFQTM4OUI2OENGRjkyODZBMDhG QkNCQkQ4QkQwHhcNMjYwNTI4MDgyNDI2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE3ZmJiYS0zNTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuw1PSEikngV5C2GbZ/XXlshjIDIAOYFHGTbRO8BrhD+Hv58lJzcyhda2sh/i LH2s17p+NR17wdlI5iCXskvekoD8QKqR0IKYZGIc65R/jiLXV5XWalLqVUSnYIcT SU7ssyECzdq8VP9+kPtd8D26ytt7A4qWyLvwsiH0gAkqjKlLGIc5NDUSsP/zJBMp HNp1EaPfTCWlI4YcOvKf0BsAuOIzs8Gndib25cjIhhcinxTC9CqXGYJ1n8qbS8qH c1QSo7JDICaxhIG4caJufF2DVnu8gJKd3zPXHyOIKPDv1oxFG/sE833tsRqaKguI kW0xhs+vqYGzJ8Q8WQyk76k7tQIDAQABo4IChDCCAoAwHQYDVR0OBBYEFLV1DuKB Av0ACFgd/Tdupn3PF4bJMB8GA1UdIwQYMBaAFJ4cNTHQBF6jibaM/5KGoI+8u9i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC85OTNGMjA5MEFC QzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhxT0p0b3pfa29hZ2o3eTcy TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odzFNZEFFWHFPSnRvel9rb2Fnajd5NzJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvOTkzRjIwOTBBQkM0MTFFNkJENkJFRDE0QzRGOUFFMDIvMTkyNDE4RjZB QTE4MTFFQTk3QkM1NzRDQzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAW BAIAATAQAwMAK1sDBAUrZoADAwArbTAYBAIAAjASMBADBgAkBCKAAQMGAiQEIoAA MA0GCSqGSIb3DQEBCwUAA4IBAQB89NrNx/0ctW7icU+LBUVvP2gu/AOY93NQP7AQ N8fnFz1/+Jpx9NwtjryQ1MoOGPEeGkCptA187WUJIZYrjkeoEIGbN1QP36Oxj1dM R2uq1d/pJyge0xThP5ljoxWVyr4d2ARaEF9mx7njyEUMGDBqrvxXQNMxN0egB9vh kZ0LHXCMwsmiuFMHGoCG0qeYgsqlSDv8qjnDiiepa++rhtGWS8zdLTMgq4OC7J/A HDkUj5aU8Hfww/sITkISBg4fYCfy3OXnW6tND4doXI/zJT00RfLj0gqyRqa+czZd HtzFZ+z4ADhJ6y5HqUek+AkXXsXGQ8tSsWIs3VuoAeSULoAw -----END CERTIFICATE-----Generated at Fri Jun 12 09:55:33 2026 by rpki-client