$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/43DCAEE0BBE811F092C97714C4F9AE02.roa File: 43DCAEE0BBE811F092C97714C4F9AE02.roa (raw, json) Hash identifier: vSxZd8qgD7aRMhxYUIOaamwohGOx6bJE7cvVNCtvBU0= Subject key identifier: 13:90:E1:F3:83:2B:A1:DB:B3:F7:06:CF:7F:E4:F6:1F:C6:95:98:EB Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D1F Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/43DCAEE0BBE811F092C97714C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:07:01 +0000 ROA not before: Thu 22 Jan 2026 11:05:05 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 202736 IP address blocks: 43.231.189.0/24 maxlen: 24 43.246.129.0/24 maxlen: 24 43.251.185.0/24 maxlen: 24 45.124.61.0/24 maxlen: 24 103.7.209.0/24 maxlen: 24 103.7.210.0/24 maxlen: 24 103.26.164.0/24 maxlen: 24 103.26.165.0/24 maxlen: 24 103.244.211.0/24 maxlen: 24 160.20.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3359 (0xd1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Jan 22 11:05:05 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48e55-8f27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e5:60:bd:06:a6:9d:81:b5:d6:ed:2c:16:a7: 24:d3:53:24:70:bd:a7:19:94:cf:68:28:8a:24:13: e1:8e:47:ca:c0:0d:6c:bd:76:88:77:87:97:3b:d2: 8a:47:1a:dd:8a:2e:4e:6e:7a:dc:c9:f1:8d:9b:87: ba:73:f1:a1:5e:13:48:c9:c9:ae:1d:59:90:2e:67: 1f:7f:38:f5:23:e4:b4:e4:03:2f:4b:dc:91:04:51: 94:5b:92:41:a4:e3:0c:51:8f:ff:ec:f1:f9:bd:2e: 72:94:04:a4:1d:03:8f:9b:f2:66:8e:b2:21:8f:42: c7:87:92:fc:46:57:d1:1f:e3:0e:54:f4:5c:c0:65: 53:99:95:35:88:40:5d:25:f2:f9:3d:28:be:77:c3: 75:cf:dd:bc:2b:ae:4c:a8:3a:bd:ec:e6:dd:e5:bc: b9:9c:73:8a:aa:59:99:84:3f:92:90:66:db:4a:3e: 59:fd:d9:e0:33:f7:9a:0d:bd:e4:f5:96:22:8b:82: 68:d4:c5:da:dc:80:4a:d8:e2:79:29:41:c0:93:83: e5:a7:e3:dc:d5:01:ba:50:66:f4:98:7e:65:b9:bf: 86:38:7a:bd:5e:9c:28:57:dd:a3:23:42:31:f0:54: 77:51:4a:85:8d:8b:23:ec:51:dd:22:79:94:81:ee: 8b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:90:E1:F3:83:2B:A1:DB:B3:F7:06:CF:7F:E4:F6:1F:C6:95:98:EB X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/43DCAEE0BBE811F092C97714C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.231.189.0/24 43.246.129.0/24 43.251.185.0/24 45.124.61.0/24 103.7.209.0-103.7.210.255 103.26.164.0/23 103.244.211.0/24 160.20.45.0/24 Signature Algorithm: sha256WithRSAEncryption cf:c7:87:8d:c5:fe:3e:02:46:47:85:52:9b:4e:01:64:f7:21: 53:29:c6:16:07:92:51:d7:60:2a:67:3a:86:a1:6e:ca:81:07: 13:62:4e:ff:54:36:60:69:2f:93:f7:d4:a1:f5:7d:d8:bb:58: 40:3a:db:83:71:25:67:ac:6c:77:ff:9b:59:c7:42:81:98:b0: 52:a2:c3:e5:37:5f:1e:00:26:37:35:52:04:d3:ae:84:c4:a8: ce:1a:ad:73:0f:64:e1:9e:f2:bb:40:31:ea:c7:aa:66:d8:13: a1:a5:95:44:8b:89:40:8d:86:6a:b3:df:04:c7:19:37:2f:d2: ee:c1:95:4b:1d:07:21:cf:af:5a:70:93:41:6a:f5:0b:69:8c: d4:bb:24:21:47:c1:6a:b6:e7:e8:10:c2:3e:f0:ee:da:83:07: 34:d2:d7:8d:ef:ef:5d:a6:e6:1b:55:0c:e8:1f:27:8d:18:f9: fd:59:b4:ff:98:1d:d4:76:73:1c:59:7d:a4:39:a8:73:1a:2a: ae:a8:c4:69:08:f6:13:f5:99:65:89:03:9a:8a:12:44:80:6d: ef:8b:ec:7a:aa:4a:e0:d5:59:c2:6a:51:e9:c1:cd:f5:86:46: c9:9f:26:4d:c8:49:f6:08:e4:47:1f:8a:ec:e5:6b:d9:1c:2e: db:ec:fb:2e -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgICDR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjYwMTIyMTEwNTA1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGU1NS04ZjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuVgvQamnYG11u0sFqck01MkcL2nGZTPaCiKJBPhjkfKwA1svXaId4eXO9KK Rxrdii5ObnrcyfGNm4e6c/GhXhNIycmuHVmQLmcffzj1I+S05AMvS9yRBFGUW5JB pOMMUY//7PH5vS5ylASkHQOPm/JmjrIhj0LHh5L8RlfRH+MOVPRcwGVTmZU1iEBd JfL5PSi+d8N1z928K65MqDq97Obd5by5nHOKqlmZhD+SkGbbSj5Z/dngM/eaDb3k 9ZYii4Jo1MXa3IBK2OJ5KUHAk4Plp+Pc1QG6UGb0mH5lub+GOHq9XpwoV92jI0Ix 8FR3UUqFjYsj7FHdInmUge6LLwIDAQABo4ICkjCCAo4wHQYDVR0OBBYEFBOQ4fOD K6Hbs/cGz3/k9h/GlZjrMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvNDNEQ0FFRTBC QkU4MTFGMDkyQzk3NzE0QzRGOUFFMDIucm9hMFEGCCsGAQUFBwEHAQH/BEIwQDA+ BAIAATA4AwQAK+e9AwQAK/aBAwQAK/u5AwQALXw9MAwDBABnB9EDBABnB9IDBAFn GqQDBABn9NMDBACgFC0wDQYJKoZIhvcNAQELBQADggEBAM/Hh43F/j4CRkeFUptO AWT3IVMpxhYHklHXYCpnOoahbsqBBxNiTv9UNmBpL5P31KH1fdi7WEA624NxJWes bHf/m1nHQoGYsFKiw+U3Xx4AJjc1UgTTroTEqM4arXMPZOGe8rtAMerHqmbYE6Gl lUSLiUCNhmqz3wTHGTcv0u7BlUsdByHPr1pwk0Fq9QtpjNS7JCFHwWq25+gQwj7w 7tqDBzTS143v712m5htVDOgfJ40Y+f1ZtP+YHdR2cxxZfaQ5qHMaKq6oxGkI9hP1 mWWJA5qKEkSAbe+L7HqqSuDVWcJqUenBzfWGRsmfJk3ISfYI5Ecfiuzla9kcLtvs +y4= -----END CERTIFICATE-----Generated at Mon Mar 2 02:00:10 2026 by rpki-client