$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/F0405FAA173E11F0886E164DC4F9AE02.roa File: F0405FAA173E11F0886E164DC4F9AE02.roa (raw, json) Hash identifier: cgsc4sIZExv14thjIH07PFnsNLwQGZYHkNw/Y8rvesM= Subject key identifier: D5:5D:59:3B:D6:E5:84:0E:92:C1:AE:83:E4:F3:55:7F:39:3E:2C:14 Certificate issuer: /CN=A91F3C87/serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Certificate serial: 027E Authority key identifier: EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/F0405FAA173E11F0886E164DC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:36:49 +0000 ROA not before: Fri 05 Dec 2025 01:11:06 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 9304 IP address blocks: 43.224.149.0/24 maxlen: 24 103.43.172.0/24 maxlen: 24 103.43.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 02:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3C87, serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Validity Not Before: Dec 5 01:11:06 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a59271-e59b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e3:2f:e1:f3:25:6c:89:33:3f:b3:13:99:33: b7:4e:85:52:38:96:30:90:50:2f:44:37:be:dd:0b: 04:a3:ed:30:38:ca:48:83:08:80:5a:4e:41:89:01: 97:c9:1d:a9:ca:92:10:1a:05:a3:7b:1f:0b:81:a7: 4b:b8:21:ed:65:e4:8d:dc:59:de:ec:e0:00:bb:cc: 7a:ad:7d:88:45:36:99:45:0e:0a:93:52:59:f9:06: 86:85:97:85:f1:7e:4f:40:cf:52:e1:3b:02:72:e0: af:8d:25:3d:04:97:77:ed:f5:3c:72:e4:bf:6b:3a: 3e:06:5d:99:50:ab:cf:18:e6:37:47:79:10:eb:5f: d0:32:87:1e:bf:34:e4:4c:94:05:70:88:ba:43:63: 9d:1f:5a:a6:57:bb:93:95:3d:22:33:e9:db:f0:e6: 03:71:81:1e:20:b3:9d:b3:44:b4:a9:e6:b1:8d:8e: 8a:c7:6f:c2:5f:d9:d7:3c:2f:45:23:6e:22:d7:ca: db:8f:3f:07:a5:c5:4d:2a:0f:59:11:c7:55:75:25: 75:c6:a9:3e:21:1e:5c:95:e9:63:25:bc:15:cc:7a: 87:4e:c9:d4:1d:2a:2f:94:5d:0a:14:e4:2c:e1:20: 8f:e0:1e:83:6f:a8:0c:ac:fa:d5:81:db:c0:9b:bd: 11:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:5D:59:3B:D6:E5:84:0E:92:C1:AE:83:E4:F3:55:7F:39:3E:2C:14 X509v3 Authority Key Identifier: keyid:EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/F0405FAA173E11F0886E164DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.224.149.0/24 103.43.172.0/23 Signature Algorithm: sha256WithRSAEncryption 49:26:61:45:c6:d2:20:f3:d6:c8:5d:20:a6:5b:01:94:6c:e7: 86:88:98:4d:00:93:0c:5d:54:6e:97:b2:61:43:06:c7:5a:2a: bb:e8:5e:f9:fb:1d:a3:ad:1b:e8:be:1c:41:3b:e6:ee:53:66: 9e:3c:f8:61:49:f8:9d:6a:3e:d7:f6:77:03:d0:52:1e:b8:a2: 97:51:52:3e:03:1f:ea:eb:33:bd:08:c9:ee:0e:50:f1:c8:fd: 4c:e1:ee:a2:a1:a0:86:6f:17:bc:5b:89:12:ec:f8:9d:fd:70: 44:aa:8e:5e:be:fa:cc:1e:82:3f:14:30:ad:5f:80:f0:fe:7b: 52:98:c5:f7:ba:9d:3c:60:8f:c2:86:06:2a:1f:4c:ee:8f:88: c9:ee:83:9d:5b:80:fd:bd:8c:77:2c:e3:a8:a0:b1:93:76:78: 93:51:39:6d:11:13:48:22:9e:33:22:c4:be:2c:fe:49:99:e1: d6:48:ff:c5:57:5f:8b:e9:e9:cd:91:f4:4b:cb:6e:4f:62:d6: c0:96:ba:65:83:67:31:f7:05:7e:d2:68:2f:ec:fb:1e:74:22: b2:59:7a:e2:0f:65:8b:26:f1:09:b7:31:18:06:b1:e6:77:ff: 07:07:3e:b5:e5:c0:d5:77:8b:30:d0:6e:47:0e:b3:7f:51:7d: b9:d7:3d:12 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDODcxMTAvBgNVBAUTKEVGOUZFMzgxREEzRDQyRUI3QzRFMEQwNDlDQ0FFNzIy OEUyOEZCNEIwHhcNMjUxMjA1MDExMTA2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTI3MS1lNTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOMv4fMlbIkzP7MTmTO3ToVSOJYwkFAvRDe+3QsEo+0wOMpIgwiAWk5BiQGX yR2pypIQGgWjex8LgadLuCHtZeSN3Fne7OAAu8x6rX2IRTaZRQ4Kk1JZ+QaGhZeF 8X5PQM9S4TsCcuCvjSU9BJd37fU8cuS/azo+Bl2ZUKvPGOY3R3kQ61/QMocevzTk TJQFcIi6Q2OdH1qmV7uTlT0iM+nb8OYDcYEeILOds0S0qeaxjY6Kx2/CX9nXPC9F I24i18rbjz8HpcVNKg9ZEcdVdSV1xqk+IR5cleljJbwVzHqHTsnUHSovlF0KFOQs 4SCP4B6Db6gMrPrVgdvAm70RzwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNVdWTvW 5YQOksGug+TzVX85PiwUMB8GA1UdIwQYMBaAFO+f44HaPULrfE4NBJzK5yKOKPtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0M4Ny9FNzgyODU0RUVG MEIxMUVEODFERDJENzJDNEY5QUUwMi83NV9qZ2RvOVF1dDhUZzBFbk1ybklvNG8t MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc1X2pnZG85UXV0OFRnMEVuTXJuSW80by0wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNDODcvRTc4Mjg1NEVFRjBCMTFFRDgxREQyRDcyQzRGOUFFMDIvRjA0MDVGQUEx NzNFMTFGMDg4NkUxNjREQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK+CVAwQBZyusMA0GCSqGSIb3DQEBCwUAA4IBAQBJJmFFxtIg89bI XSCmWwGUbOeGiJhNAJMMXVRul7JhQwbHWiq76F75+x2jrRvovhxBO+buU2aePPhh Sfidaj7X9ncD0FIeuKKXUVI+Ax/q6zO9CMnuDlDxyP1M4e6ioaCGbxe8W4kS7Pid /XBEqo5evvrMHoI/FDCtX4Dw/ntSmMX3up08YI/ChgYqH0zuj4jJ7oOdW4D9vYx3 LOOooLGTdniTUTltERNIIp4zIsS+LP5JmeHWSP/FV1+L6enNkfRLy25PYtbAlrpl g2cx9wV+0mgv7PsedCKyWXriD2WLJvEJtzEYBrHmd/8HBz615cDVd4sw0G5HDrN/ UX251z0S -----END CERTIFICATE-----Generated at Wed Mar 4 14:22:27 2026 by rpki-client