$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/43E9842C185A11EF9D0C4338C4F9AE02.roa File: 43E9842C185A11EF9D0C4338C4F9AE02.roa (raw, json) Hash identifier: toEz6erU7+D4rMae1mPWIdqI8DueTUnpGy4FNYrk4Rw= Subject key identifier: 90:D3:DE:38:A1:4B:8B:CC:ED:C3:60:F1:21:8E:59:89:D6:FC:5D:39 Certificate issuer: /CN=A91EFBA1/serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Certificate serial: 198B Authority key identifier: 41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/43E9842C185A11EF9D0C4338C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:14:59 +0000 ROA not before: Fri 04 Apr 2025 16:45:35 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136435 IP address blocks: 103.87.248.0/23 maxlen: 23 103.87.248.0/24 maxlen: 24 103.87.249.0/24 maxlen: 24 203.96.225.0/24 maxlen: 24 203.96.226.0/23 maxlen: 23 203.96.226.0/24 maxlen: 24 203.96.227.0/24 maxlen: 24 2400:dac0::/48 maxlen: 48 2400:dac0:1::/48 maxlen: 48 2400:dac0:2::/48 maxlen: 48 2400:dac0:3::/48 maxlen: 48 2400:dac0:4::/48 maxlen: 48 2400:dac0:5::/48 maxlen: 48 2400:dac0:6::/48 maxlen: 48 2400:dac0:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:19:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6539 (0x198b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFBA1, serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Validity Not Before: Apr 4 16:45:35 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a51cd3-b810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3e:58:ca:c6:3f:ac:e7:ef:d1:c8:4a:7a:ef: 09:17:8a:77:47:65:27:9a:6b:c8:39:d0:fe:d3:9a: 99:c8:42:df:2d:fe:ed:70:7a:02:b8:46:8d:1a:c1: 0e:b5:fe:bc:bc:fd:ad:88:86:de:b0:79:3c:55:cf: 85:74:fb:94:f7:0c:e2:8d:ee:b3:3f:7c:cf:b2:f8: e2:19:c8:49:9c:fc:28:e6:43:39:72:19:32:77:73: 76:90:32:f7:7c:25:de:e4:b7:a4:9f:de:b0:3d:1e: d0:f4:06:56:ac:e2:12:d3:bc:bd:ac:c8:90:47:d4: c3:31:11:9d:33:74:0a:a8:c4:15:c8:ac:f2:0e:e2: 84:e5:d2:ed:48:77:ac:b9:cd:85:0c:88:c3:81:ed: 97:17:dc:a1:a8:82:cc:3b:cd:85:8b:06:e1:18:c8: 71:4e:a2:33:39:1d:2e:1c:a9:45:e8:1a:3a:6f:a6: 24:26:32:e4:68:1d:26:57:cb:97:cd:70:9f:39:31: 6f:75:33:87:7a:29:1d:97:16:5b:7d:ef:6b:b2:f6: 63:5a:d6:d1:08:dc:83:e2:de:f0:96:aa:6a:83:cc: 1c:67:b3:fd:8a:92:e4:a4:91:4c:c2:f6:96:80:a1: 4c:f1:4b:64:65:2c:20:c6:2f:89:ba:43:0f:8d:29: 3f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:D3:DE:38:A1:4B:8B:CC:ED:C3:60:F1:21:8E:59:89:D6:FC:5D:39 X509v3 Authority Key Identifier: keyid:41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/43E9842C185A11EF9D0C4338C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.87.248.0/23 203.96.225.0-203.96.227.255 IPv6: 2400:dac0::/45 Signature Algorithm: sha256WithRSAEncryption 8a:ea:da:10:d6:46:1a:5a:f4:a5:69:a2:42:db:2d:04:97:14: 56:8b:95:75:d5:f1:c5:f1:5a:b3:fb:5b:f2:68:26:2b:31:20: dd:66:e6:96:d3:05:49:83:9a:b1:76:74:42:58:af:1f:db:c4: 7b:fb:77:89:2b:95:92:14:44:5e:73:9a:e5:be:70:a0:93:70: 23:0d:dd:99:f5:d8:5c:26:15:ee:d6:18:03:a2:42:13:c7:ba: 9d:f2:65:13:c5:ec:9f:b1:cc:ac:53:62:41:d1:be:1d:e8:d6: b1:de:52:53:6d:95:59:11:81:6b:28:f6:19:b4:57:cb:31:e7: 5e:fe:b9:fb:3d:30:f1:ac:31:c1:40:bb:f9:62:95:86:19:39: c4:91:0e:14:7a:4d:5b:df:d0:de:55:4e:8a:83:87:16:ca:71: d1:b4:71:e5:79:b2:30:e6:34:9b:80:fc:f8:79:a5:9f:dc:be: 21:44:ff:c4:4a:30:f8:0f:cf:60:f0:85:9e:2a:a1:18:14:6f: fb:de:1d:73:a5:2e:84:cb:9f:b8:89:c1:eb:33:29:0e:64:19: 2c:02:e2:b0:0b:1e:9e:fa:b7:43:f3:ec:a7:4e:b2:e1:c6:2d: 6c:31:24:59:e8:13:d0:b8:8a:11:33:47:9d:5d:70:46:8d:65: df:f7:7c:a5 -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgICGYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZCQTExMTAvBgNVBAUTKDQxNTQwNkVEODBCNEQ5MjdBNDc5QThCQTA0MjExNkFF MkQxMUExQTYwHhcNMjUwNDA0MTY0NTM1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWNkMy1iODEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApT5YysY/rOfv0chKeu8JF4p3R2UnmmvIOdD+05qZyELfLf7tcHoCuEaNGsEO tf68vP2tiIbesHk8Vc+FdPuU9wzije6zP3zPsvjiGchJnPwo5kM5chkyd3N2kDL3 fCXe5Lekn96wPR7Q9AZWrOIS07y9rMiQR9TDMRGdM3QKqMQVyKzyDuKE5dLtSHes uc2FDIjDge2XF9yhqILMO82FiwbhGMhxTqIzOR0uHKlF6Bo6b6YkJjLkaB0mV8uX zXCfOTFvdTOHeikdlxZbfe9rsvZjWtbRCNyD4t7wlqpqg8wcZ7P9ipLkpJFMwvaW gKFM8UtkZSwgxi+JukMPjSk/lwIDAQABo4ICfzCCAnswHQYDVR0OBBYEFJDT3jih S4vM7cNg8SGOWYnW/F05MB8GA1UdIwQYMBaAFEFUBu2AtNknpHmougQhFq4tEaGm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkJBMS8yQUQ1MUY0Qzk5 MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJTZWtlYWk2QkNFV3JpMFJv YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWUUc3WUMwMlNla2VhaTZCQ0VXcmkwUm9hWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUZCQTEvMkFENTFGNEM5OTAzMTFFN0E1RTk1QzZGQzRGOUFFMDIvNDNFOTg0MkMx ODVBMTFFRjlEMEM0MzM4QzRGOUFFMDIucm9hMD4GCCsGAQUFBwEHAQH/BC8wLTAa BAIAATAUAwQBZ1f4MAwDBADLYOEDBALLYOAwDwQCAAIwCQMHAyQA2sAAADANBgkq hkiG9w0BAQsFAAOCAQEAiuraENZGGlr0pWmiQtstBJcUVouVddXxxfFas/tb8mgm KzEg3WbmltMFSYOasXZ0QlivH9vEe/t3iSuVkhREXnOa5b5woJNwIw3dmfXYXCYV 7tYYA6JCE8e6nfJlE8Xsn7HMrFNiQdG+HejWsd5SU22VWRGBayj2GbRXyzHnXv65 +z0w8awxwUC7+WKVhhk5xJEOFHpNW9/Q3lVOioOHFspx0bRx5XmyMOY0m4D8+Hml n9y+IUT/xEow+A/PYPCFniqhGBRv+94dc6UuhMufuInB6zMpDmQZLALisAsenvq3 Q/Psp06y4cYtbDEkWegT0LiKETNHnV1wRo1l3/d8pQ== -----END CERTIFICATE-----Generated at Fri Mar 13 16:27:03 2026 by rpki-client