$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/4314DB4C8EAF11F091C0B421C4F9AE02.roa File: 4314DB4C8EAF11F091C0B421C4F9AE02.roa (raw, json) Hash identifier: JNeHFpj9Z5R7ILSFiKsIuukG8Nmd5dm1nXgAwDTCDPs= Subject key identifier: 88:7B:6F:A9:66:58:BF:EA:6F:DB:B7:11:D1:15:79:35:21:8F:1D:FA Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 0869 Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/4314DB4C8EAF11F091C0B421C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:51:58 +0000 ROA not before: Thu 11 Sep 2025 01:33:05 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132827 IP address blocks: 43.231.223.0/24 maxlen: 24 103.20.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:42:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9, serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Sep 11 01:33:05 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4528e-7419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ba:80:d6:aa:cb:7f:94:a0:4a:30:30:0f:53: f8:aa:98:ca:42:45:4d:28:fa:af:8c:5b:36:8c:c7: 8e:4b:7f:ef:03:7f:b9:3f:fe:d6:d5:74:60:29:3d: 09:94:d6:7a:58:4c:c2:f0:d2:ee:2f:67:7d:a0:d8: 0d:b2:9c:c4:ea:89:c6:a3:4c:25:ef:8a:27:6b:a2: ef:65:77:66:e8:56:52:9c:49:ac:2d:54:d5:37:85: e4:cf:10:34:27:c8:8a:a9:b2:2e:06:52:be:46:06: b6:f5:9c:f6:36:28:ff:a8:7a:fa:ce:aa:20:e7:4d: bc:64:2a:e6:82:57:25:b7:b5:bb:13:61:1e:95:00: 71:aa:be:78:06:24:94:63:e2:55:37:1e:8c:61:c2: c3:61:58:d6:bf:e8:c2:36:0d:76:89:d6:dc:4e:95: 5c:7b:c9:58:3f:d8:7e:c7:51:97:09:56:23:89:6c: 14:0f:9c:44:ed:b8:40:e1:86:bc:f8:b3:20:00:6a: 93:04:bc:d4:dc:d1:c2:90:a6:83:b1:11:ea:df:47: 66:5a:0e:83:dd:a7:f1:77:bc:57:66:36:ec:0b:1c: 73:77:49:89:44:36:8d:5a:51:5b:69:73:9d:bb:98: 55:fa:14:a0:8a:23:ac:78:ae:cb:09:80:1d:25:b9: 45:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:7B:6F:A9:66:58:BF:EA:6F:DB:B7:11:D1:15:79:35:21:8F:1D:FA X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/4314DB4C8EAF11F091C0B421C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.231.223.0/24 103.20.158.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:f1:88:e3:f6:ab:d1:9a:8d:d9:91:3a:d9:54:e6:07:cf:0e: 30:17:1a:16:16:c7:02:a5:3d:0d:b7:41:0a:7a:3b:3c:9f:ad: fe:a0:7c:f1:22:48:14:de:8f:eb:bb:11:77:73:09:62:06:82: 79:b1:ea:cd:cb:e9:8b:5e:d3:07:46:94:8f:e7:6c:26:1d:1d: e8:d9:21:67:af:c2:1a:c6:46:8e:c6:7a:6d:63:b4:6e:69:8c: f6:fb:71:da:ff:f9:50:7c:4e:cf:84:65:87:8b:8d:6c:11:39: 95:a3:c6:d8:ed:74:3a:6c:04:63:53:c6:01:15:35:ed:02:cf: 5e:e2:80:f6:5d:78:59:06:ca:8f:68:c9:bc:32:a0:2e:19:17: 3a:66:a5:0b:19:e2:75:fc:e9:26:ef:b1:a3:1e:bd:d1:8e:e8: de:d3:4c:ee:09:af:77:86:1a:0e:c9:00:5b:fa:ac:bc:2f:aa: 0d:52:ed:8c:58:6c:73:2e:8a:a0:96:4b:b2:2f:82:04:98:cb: 89:31:80:85:6e:4c:89:a7:93:ad:7d:83:d8:66:20:40:d9:6d: 9b:2c:21:04:b2:d2:26:2f:f7:be:84:4d:61:ca:c2:db:40:fe: 6e:7f:01:0e:9e:fb:0a:13:0d:ad:79:95:1f:18:25:78:ae:fc: 79:97:3e:60 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjUwOTExMDEzMzA1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTI4ZS03NDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7qA1qrLf5SgSjAwD1P4qpjKQkVNKPqvjFs2jMeOS3/vA3+5P/7W1XRgKT0J lNZ6WEzC8NLuL2d9oNgNspzE6onGo0wl74ona6LvZXdm6FZSnEmsLVTVN4XkzxA0 J8iKqbIuBlK+Rga29Zz2Nij/qHr6zqog5028ZCrmglclt7W7E2EelQBxqr54BiSU Y+JVNx6MYcLDYVjWv+jCNg12idbcTpVce8lYP9h+x1GXCVYjiWwUD5xE7bhA4Ya8 +LMgAGqTBLzU3NHCkKaDsRHq30dmWg6D3afxd7xXZjbsCxxzd0mJRDaNWlFbaXOd u5hV+hSgiiOseK7LCYAdJblFrQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIh7b6lm WL/qb9u3EdEVeTUhjx36MB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQxRTkvREFEOEZCODAwNzkwMTFFQkJCOThDMDc2QzRGOUFFMDIvNDMxNERCNEM4 RUFGMTFGMDkxQzBCNDIxQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK+ffAwQAZxSeMA0GCSqGSIb3DQEBCwUAA4IBAQCd8Yjj9qvRmo3Z kTrZVOYHzw4wFxoWFscCpT0Nt0EKejs8n63+oHzxIkgU3o/ruxF3cwliBoJ5serN y+mLXtMHRpSP52wmHR3o2SFnr8IaxkaOxnptY7RuaYz2+3Ha//lQfE7PhGWHi41s ETmVo8bY7XQ6bARjU8YBFTXtAs9e4oD2XXhZBsqPaMm8MqAuGRc6ZqULGeJ1/Okm 77GjHr3Rjuje00zuCa93hhoOyQBb+qy8L6oNUu2MWGxzLoqglkuyL4IEmMuJMYCF bkyJp5OtfYPYZiBA2W2bLCEEstImL/e+hE1hysLbQP5ufwEOnvsKEw2teZUfGCV4 rvx5lz5g -----END CERTIFICATE-----Generated at Mon Mar 2 11:00:23 2026 by rpki-client