$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/E0125116A69711ED9DFF0870C4F9AE02.roa File: E0125116A69711ED9DFF0870C4F9AE02.roa (raw, json) Hash identifier: tSdYLFZCk792fEMZCExwfRV5SYB5CkGoXiLRUQRZEtU= Subject key identifier: 4B:AA:31:98:2C:B8:EC:70:DB:0F:9A:05:B6:D4:30:FA:32:E3:79:E5 Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 087B Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/E0125116A69711ED9DFF0870C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:44:30 +0000 ROA not before: Wed 08 Oct 2025 22:24:37 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 55561 IP address blocks: 43.243.60.0/22 maxlen: 24 103.38.164.0/22 maxlen: 24 202.180.99.0/24 maxlen: 24 202.180.101.0/24 maxlen: 24 202.180.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2171 (0x87b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Oct 8 22:24:37 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4890e-f123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:bf:fb:e5:41:d1:7b:77:33:43:b5:a7:24:08: a5:b6:f2:6d:cf:22:ee:e5:92:c6:99:3f:90:b8:8c: d8:7f:78:28:c2:b2:c7:e9:16:97:ee:81:17:98:1c: 71:31:f2:a8:45:cc:7e:31:72:31:1c:df:1a:8b:1f: e5:7d:05:74:49:69:a2:6e:40:80:e7:d1:18:fb:dc: 26:a0:68:8b:7f:26:7d:33:06:69:4a:13:37:69:83: 56:a2:d9:cb:93:d7:53:76:0a:a4:4b:aa:15:6f:05: 35:8f:94:89:88:86:9b:64:01:85:7d:56:6c:93:fb: b0:2c:6b:0e:94:f0:d9:33:12:78:6a:5d:81:e8:f0: 63:5c:80:7e:cc:e9:2d:ab:6c:c4:22:4a:c3:08:15: 53:64:13:36:6f:54:d6:5a:0f:3c:02:41:a7:80:a8: e9:95:e6:01:da:3b:46:b2:37:04:8d:bb:a5:97:4b: 04:b6:d2:cd:a3:b2:79:2e:06:6d:f4:a4:35:bd:4c: 69:4d:3d:56:94:5e:e6:6d:94:9f:58:45:e3:9d:69: 92:b7:54:57:85:57:e5:56:a4:19:15:5d:c9:97:f0: b3:64:0c:bb:e4:bb:c8:dd:98:c6:26:70:52:75:1a: 24:69:b5:25:71:85:87:28:c7:2b:12:40:b7:10:f9: 74:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:AA:31:98:2C:B8:EC:70:DB:0F:9A:05:B6:D4:30:FA:32:E3:79:E5 X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/E0125116A69711ED9DFF0870C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.60.0/22 103.38.164.0/22 202.180.99.0/24 202.180.101.0-202.180.102.255 Signature Algorithm: sha256WithRSAEncryption 75:16:08:83:1a:35:a9:0c:91:39:c1:18:82:62:27:1c:ec:f2: 69:42:32:ca:25:0a:45:2a:9b:1d:a4:cc:9c:af:7e:d3:53:f3: c4:5e:4e:e9:bd:43:25:f2:2b:e4:0e:40:17:2c:0d:21:c9:f9: 01:20:79:4b:c6:bb:cc:9f:11:f2:75:78:dc:9e:36:f7:a4:d2: 92:56:fb:ad:1b:fd:6e:bb:67:7e:eb:4a:ff:1b:5e:98:b7:33: 41:69:74:b5:cd:aa:e1:d9:41:2f:0e:78:14:3f:86:96:84:0b: 9a:1b:9b:18:3b:58:75:19:c0:eb:e0:7f:2c:a3:f0:12:d5:e9: f1:90:54:23:bb:fc:92:47:92:a2:e7:d4:e1:69:f9:2c:c9:ea: a4:a0:d8:99:f9:50:b9:76:ec:ee:0c:e8:3d:0b:e6:bb:34:ec: 6b:f3:17:ce:37:19:e7:0c:ec:be:ea:b5:33:49:92:5d:c5:b4: b6:59:a9:54:20:e4:ab:b1:2b:02:52:95:e5:ad:21:09:16:ba: 1a:5f:b0:68:01:30:c3:3b:d1:6c:4b:f6:a9:25:09:2a:76:ed: 65:d8:9a:7e:da:a6:c6:ad:c4:0e:a6:d4:6f:e1:7b:ae:04:33: 68:09:53:cd:8e:8f:e8:ad:cc:35:e0:4a:63:3e:1b:79:dd:0d: fb:e0:1c:2a -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICCHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjUxMDA4MjIyNDM3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODkwZS1mMTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqL/75UHRe3czQ7WnJAiltvJtzyLu5ZLGmT+QuIzYf3gowrLH6RaX7oEXmBxx MfKoRcx+MXIxHN8aix/lfQV0SWmibkCA59EY+9wmoGiLfyZ9MwZpShM3aYNWotnL k9dTdgqkS6oVbwU1j5SJiIabZAGFfVZsk/uwLGsOlPDZMxJ4al2B6PBjXIB+zOkt q2zEIkrDCBVTZBM2b1TWWg88AkGngKjpleYB2jtGsjcEjbull0sEttLNo7J5LgZt 9KQ1vUxpTT1WlF7mbZSfWEXjnWmSt1RXhVflVqQZFV3Jl/CzZAy75LvI3ZjGJnBS dRokabUlcYWHKMcrEkC3EPl0XwIDAQABo4ICejCCAnYwHQYDVR0OBBYEFEuqMZgs uOxw2w+aBbbUMPoy43nlMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvRTAxMjUxMTZB Njk3MTFFRDlERkYwODcwQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAm BAIAATAgAwQCK/M8AwQCZyakAwQAyrRjMAwDBADKtGUDBADKtGYwDQYJKoZIhvcN AQELBQADggEBAHUWCIMaNakMkTnBGIJiJxzs8mlCMsolCkUqmx2kzJyvftNT88Re Tum9QyXyK+QOQBcsDSHJ+QEgeUvGu8yfEfJ1eNyeNvek0pJW+60b/W67Z37rSv8b Xpi3M0FpdLXNquHZQS8OeBQ/hpaEC5obmxg7WHUZwOvgfyyj8BLV6fGQVCO7/JJH kqLn1OFp+SzJ6qSg2Jn5ULl27O4M6D0L5rs07GvzF843GecM7L7qtTNJkl3FtLZZ qVQg5KuxKwJSleWtIQkWuhpfsGgBMMM70WxL9qklCSp27WXYmn7apsatxA6m1G/h e64EM2gJU82Oj+itzDXgSmM+G3ndDfvgHCo= -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:26 2026 by rpki-client