$ rpki-client -vvf rpki.apnic.net/member_repository/A91852AB/2B99854EB8B011EDB4AFD35EC4F9AE02/E90A311AB8BE11ED83994B4AC4F9AE02.roa File: E90A311AB8BE11ED83994B4AC4F9AE02.roa (raw, json) Hash identifier: zE41WQieGtPZ6uprujzngfIRBwGKIWd50MUZOTimbRA= Subject key identifier: D5:67:3F:E3:68:89:1A:A8:76:79:55:83:73:ED:6F:0A:C8:BA:1F:33 Certificate issuer: /CN=A91852AB/serialNumber=3366179B2D7C97B8266F9B431804A8C6D2D090EB Certificate serial: 0240 Authority key identifier: 33:66:17:9B:2D:7C:97:B8:26:6F:9B:43:18:04:A8:C6:D2:D0:90:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2YXmy18l7gmb5tDGASoxtLQkOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91852AB/2B99854EB8B011EDB4AFD35EC4F9AE02/E90A311AB8BE11ED83994B4AC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:16:14 +0000 ROA not before: Wed 17 Dec 2025 02:22:07 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 0 IP address blocks: 43.243.21.0/24 maxlen: 24 103.94.93.0/24 maxlen: 24 103.94.95.0/24 maxlen: 24 2001:dee:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91852AB/2B99854EB8B011EDB4AFD35EC4F9AE02/M2YXmy18l7gmb5tDGASoxtLQkOs.crl rsync://rpki.apnic.net/member_repository/A91852AB/2B99854EB8B011EDB4AFD35EC4F9AE02/M2YXmy18l7gmb5tDGASoxtLQkOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2YXmy18l7gmb5tDGASoxtLQkOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91852AB, serialNumber=3366179B2D7C97B8266F9B431804A8C6D2D090EB Validity Not Before: Dec 17 02:22:07 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4664e-c54a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:30:11:79:75:12:b5:50:9e:25:21:23:2d:70: 2e:7a:b6:1f:18:de:6e:1b:fb:c4:39:d6:f7:e9:a0: a0:6a:a3:87:0b:39:9c:91:be:1a:b9:0e:e6:c8:a9: dd:3b:61:52:6a:11:3d:49:39:06:d1:23:df:a2:f4: 74:fa:e2:bc:b5:fe:ae:cb:ba:7f:19:ad:20:6f:5d: 5e:bd:1e:8d:b2:bf:f5:52:b2:83:b3:e5:ad:7f:01: 20:da:7d:fd:68:a7:b2:bb:6a:66:6e:a1:87:32:6f: 13:28:e5:02:d4:66:dd:6c:6a:77:71:f1:f6:a6:80: 14:68:2e:73:ff:77:fa:a2:c0:1c:98:6f:5c:b9:ea: 77:98:41:73:c0:f1:ac:e9:a4:a9:10:1c:01:8f:94: 58:6d:ca:76:90:f4:54:bf:33:e3:43:f8:e4:1a:71: ec:75:03:b4:61:dc:d8:f8:b5:06:d3:07:ce:08:f7: af:e7:23:74:51:39:dc:60:30:d3:f4:9e:c4:8d:88: 24:a5:c3:c0:94:ca:f5:ea:48:ff:1d:9d:df:75:c7: 1e:48:98:3e:68:2b:30:77:28:3f:6a:2c:c4:4a:22: 72:aa:25:cc:7c:08:d5:7c:a9:5f:08:8f:0e:03:91: 8e:97:76:8c:b2:76:25:20:e7:cc:e9:1e:40:26:7f: ba:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:67:3F:E3:68:89:1A:A8:76:79:55:83:73:ED:6F:0A:C8:BA:1F:33 X509v3 Authority Key Identifier: keyid:33:66:17:9B:2D:7C:97:B8:26:6F:9B:43:18:04:A8:C6:D2:D0:90:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91852AB/2B99854EB8B011EDB4AFD35EC4F9AE02/M2YXmy18l7gmb5tDGASoxtLQkOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2YXmy18l7gmb5tDGASoxtLQkOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91852AB/2B99854EB8B011EDB4AFD35EC4F9AE02/E90A311AB8BE11ED83994B4AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.21.0/24 103.94.93.0/24 103.94.95.0/24 IPv6: 2001:dee:8000::/48 Signature Algorithm: sha256WithRSAEncryption 74:d5:e3:35:64:ff:1f:3a:f5:f5:2c:e4:5a:20:02:32:37:85: 33:43:70:29:77:85:5f:c0:5d:84:f4:b0:e0:b8:ac:63:5d:79: 5b:d2:2b:eb:8e:61:be:71:e6:62:11:58:ae:d1:70:9e:01:72: c4:69:c6:ea:5f:00:18:bd:ac:47:bb:51:57:25:69:52:74:ef: 5a:43:99:d0:95:c1:5d:18:4d:2e:c9:85:5b:79:d1:5a:bb:d7: f5:33:d6:5a:84:0d:63:39:ca:57:e2:f8:77:0a:f7:e9:d2:ec: bb:b6:10:c9:d8:8c:df:9d:a3:43:05:1c:42:c5:2e:43:32:e6: e1:84:3b:69:85:02:3d:7d:d3:b9:66:4e:28:dc:4e:ce:03:af: 7a:fe:90:18:30:96:cc:52:cb:a1:9d:18:3a:0b:ff:56:55:95: 1a:5a:67:f5:88:42:d1:dc:4c:92:6b:90:f2:35:9d:0c:c1:12: 31:bb:cf:85:86:2c:ec:fa:17:13:38:df:f6:de:87:ca:f1:8c: e3:e7:55:3e:8b:d6:79:37:14:13:ea:22:27:11:57:c5:a6:1e: 74:81:0a:2d:df:b3:07:79:ed:38:6b:d2:76:35:15:83:0e:1b: 97:cd:f8:57:19:ef:19:85:87:ff:70:f6:a8:2d:a3:5e:c1:3f: ff:2a:11:49 -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUyQUIxMTAvBgNVBAUTKDMzNjYxNzlCMkQ3Qzk3QjgyNjZGOUI0MzE4MDRBOEM2 RDJEMDkwRUIwHhcNMjUxMjE3MDIyMjA3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjY0ZS1jNTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TAReXUStVCeJSEjLXAuerYfGN5uG/vEOdb36aCgaqOHCzmckb4auQ7myKnd O2FSahE9STkG0SPfovR0+uK8tf6uy7p/Ga0gb11evR6Nsr/1UrKDs+WtfwEg2n39 aKeyu2pmbqGHMm8TKOUC1GbdbGp3cfH2poAUaC5z/3f6osAcmG9cuep3mEFzwPGs 6aSpEBwBj5RYbcp2kPRUvzPjQ/jkGnHsdQO0YdzY+LUG0wfOCPev5yN0UTncYDDT 9J7EjYgkpcPAlMr16kj/HZ3fdcceSJg+aCswdyg/aizESiJyqiXMfAjVfKlfCI8O A5GOl3aMsnYlIOfM6R5AJn+6bQIDAQABo4ICfTCCAnkwHQYDVR0OBBYEFNVnP+No iRqodnlVg3PtbwrIuh8zMB8GA1UdIwQYMBaAFDNmF5stfJe4Jm+bQxgEqMbS0JDr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTJBQi8yQjk5ODU0RUI4 QjAxMUVEQjRBRkQzNUVDNEY5QUUwMi9NMllYbXkxOGw3Z21iNXRER0FTb3h0TFFr T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00yWVhteTE4bDdnbWI1dERHQVNveHRMUWtPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODUyQUIvMkI5OTg1NEVCOEIwMTFFREI0QUZEMzVFQzRGOUFFMDIvRTkwQTMxMUFC OEJFMTFFRDgzOTk0QjRBQzRGOUFFMDIucm9hMDwGCCsGAQUFBwEHAQH/BC0wKzAY BAIAATASAwQAK/MVAwQAZ15dAwQAZ15fMA8EAgACMAkDBwAgAQ3ugAAwDQYJKoZI hvcNAQELBQADggEBAHTV4zVk/x869fUs5FogAjI3hTNDcCl3hV/AXYT0sOC4rGNd eVvSK+uOYb5x5mIRWK7RcJ4BcsRpxupfABi9rEe7UVclaVJ071pDmdCVwV0YTS7J hVt50Vq71/Uz1lqEDWM5ylfi+HcK9+nS7Lu2EMnYjN+do0MFHELFLkMy5uGEO2mF Aj1907lmTijcTs4Dr3r+kBgwlsxSy6GdGDoL/1ZVlRpaZ/WIQtHcTJJrkPI1nQzB EjG7z4WGLOz6FxM43/beh8rxjOPnVT6L1nk3FBPqIicRV8WmHnSBCi3fswd57Thr 0nY1FYMOG5fN+FcZ7xmFh/9w9qgto17BP/8qEUk= -----END CERTIFICATE-----Generated at Mon Mar 2 06:17:56 2026 by rpki-client