$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/1D231FDEBDD511F0BAEEED5AC4F9AE02.roa File: 1D231FDEBDD511F0BAEEED5AC4F9AE02.roa (raw, json) Hash identifier: ioDFZr1S0Gi+Il1WgI19wNxl6LHLAhLqU/gL5q0wRQ4= Subject key identifier: F8:54:BC:AA:5F:B6:08:D4:A5:B6:10:E3:D5:8E:A9:25:01:40:B8:D4 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D20 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/1D231FDEBDD511F0BAEEED5AC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:07:02 +0000 ROA not before: Thu 22 Jan 2026 11:05:07 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 23532 IP address blocks: 43.231.189.0/24 maxlen: 24 43.246.129.0/24 maxlen: 24 43.251.185.0/24 maxlen: 24 45.124.61.0/24 maxlen: 24 103.7.209.0/24 maxlen: 24 103.7.210.0/24 maxlen: 24 103.26.164.0/24 maxlen: 24 103.26.165.0/24 maxlen: 24 103.244.211.0/24 maxlen: 24 160.20.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3360 (0xd20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Jan 22 11:05:07 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48e56-2617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:20:5c:76:a4:15:21:d3:04:5c:54:a8:a6:1b: bc:24:8e:e1:2f:20:16:31:2a:0b:66:cf:f5:ee:0c: df:95:05:3a:c0:9e:16:2f:18:87:b8:a4:a1:4e:af: 68:ab:07:63:2e:6c:9b:f9:20:f4:46:1c:ea:a1:dc: 76:e3:a8:e7:30:d9:07:b4:01:7b:68:38:54:c4:50: de:93:e4:a7:36:6e:90:8f:f5:b3:41:29:5b:0b:1c: b4:bf:e9:4a:a6:c5:d9:a4:c1:21:6b:59:3c:f1:a3: e8:b2:6f:34:49:fd:2a:44:ec:fa:94:bd:45:c6:85: ba:5b:15:81:c8:92:ef:75:56:3c:6b:1e:23:0f:5d: 8c:bb:85:9c:e5:44:07:81:4c:53:1b:90:86:e4:11: fd:7a:01:d2:98:47:7c:e2:ca:34:2a:97:67:28:ff: b6:be:1c:8f:1d:dc:3e:4f:2d:f6:8d:1e:68:aa:33: 07:d3:27:a6:2d:15:ae:8d:92:c6:9e:6f:c1:94:7c: 51:b0:51:74:ea:97:eb:b7:3d:ff:64:0f:22:ed:8e: 75:1a:8b:21:91:4a:94:9a:ab:a0:06:4d:33:36:e2: 82:13:c6:0d:99:5f:72:1e:2c:c0:3c:0b:bd:99:fc: 15:1f:b6:1f:f8:6f:9d:55:0d:20:7e:50:f7:58:47: 08:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:54:BC:AA:5F:B6:08:D4:A5:B6:10:E3:D5:8E:A9:25:01:40:B8:D4 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/1D231FDEBDD511F0BAEEED5AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.231.189.0/24 43.246.129.0/24 43.251.185.0/24 45.124.61.0/24 103.7.209.0-103.7.210.255 103.26.164.0/23 103.244.211.0/24 160.20.45.0/24 Signature Algorithm: sha256WithRSAEncryption 18:3c:7c:2c:f1:bb:ae:0f:10:d2:4f:37:fc:99:12:fe:93:51: b5:6b:09:f6:b2:c7:52:20:18:c7:2c:e0:57:f5:a3:6b:97:dc: 24:b8:e0:18:ac:c2:a6:da:30:6e:6e:46:4b:87:04:25:72:bd: a9:1d:0b:fa:02:36:d2:25:41:c0:e9:b5:62:86:ac:54:ef:3f: 18:50:2b:a3:91:e4:43:41:01:33:8b:63:f8:6a:8a:47:0d:b0: 19:7f:37:d9:03:2b:a6:41:92:74:df:35:0d:b2:07:79:3d:58: 1b:e3:77:b0:4f:79:eb:8b:9a:87:03:54:2c:13:47:19:a8:7b: 1c:14:be:66:df:bb:7e:50:03:11:4a:27:a4:e7:d4:d7:f1:a3: ae:79:28:bc:8b:54:19:11:00:17:d6:a6:63:48:c1:9d:b3:6c: d0:ba:39:9a:b3:a5:ef:41:b9:ce:e1:24:05:4d:64:2a:0e:ff: 89:0a:ab:f7:88:3e:a6:0e:b8:58:8d:ba:69:40:35:c4:f0:7b: 4a:ad:3d:cd:ae:15:2e:cc:da:55:0f:54:dc:ca:10:d0:ae:a8: 47:1a:65:61:7d:d7:83:59:13:37:01:37:0d:4a:11:46:42:f3: 93:f9:89:be:2f:e4:64:80:27:38:ba:32:5d:83:cd:49:36:c0: 37:b8:d8:85 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgICDSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjYwMTIyMTEwNTA3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGU1Ni0yNjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6CBcdqQVIdMEXFSophu8JI7hLyAWMSoLZs/17gzflQU6wJ4WLxiHuKShTq9o qwdjLmyb+SD0Rhzqodx246jnMNkHtAF7aDhUxFDek+SnNm6Qj/WzQSlbCxy0v+lK psXZpMEha1k88aPosm80Sf0qROz6lL1FxoW6WxWByJLvdVY8ax4jD12Mu4Wc5UQH gUxTG5CG5BH9egHSmEd84so0KpdnKP+2vhyPHdw+Ty32jR5oqjMH0yemLRWujZLG nm/BlHxRsFF06pfrtz3/ZA8i7Y51GoshkUqUmqugBk0zNuKCE8YNmV9yHizAPAu9 mfwVH7Yf+G+dVQ0gflD3WEcI2wIDAQABo4ICkjCCAo4wHQYDVR0OBBYEFPhUvKpf tgjUpbYQ49WOqSUBQLjUMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvMUQyMzFGREVC REQ1MTFGMEJBRUVFRDVBQzRGOUFFMDIucm9hMFEGCCsGAQUFBwEHAQH/BEIwQDA+ BAIAATA4AwQAK+e9AwQAK/aBAwQAK/u5AwQALXw9MAwDBABnB9EDBABnB9IDBAFn GqQDBABn9NMDBACgFC0wDQYJKoZIhvcNAQELBQADggEBABg8fCzxu64PENJPN/yZ Ev6TUbVrCfayx1IgGMcs4Ff1o2uX3CS44BiswqbaMG5uRkuHBCVyvakdC/oCNtIl QcDptWKGrFTvPxhQK6OR5ENBATOLY/hqikcNsBl/N9kDK6ZBknTfNQ2yB3k9WBvj d7BPeeuLmocDVCwTRxmoexwUvmbfu35QAxFKJ6Tn1Nfxo655KLyLVBkRABfWpmNI wZ2zbNC6OZqzpe9Buc7hJAVNZCoO/4kKq/eIPqYOuFiNumlANcTwe0qtPc2uFS7M 2lUPVNzKENCuqEcaZWF914NZEzcBNw1KEUZC85P5ib4v5GSAJzi6Ml2DzUk2wDe4 2IU= -----END CERTIFICATE-----Generated at Mon Mar 2 01:50:19 2026 by rpki-client