$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/5164F13EDBD811F0A0A88CE756641951.roa File: 5164F13EDBD811F0A0A88CE756641951.roa (raw, json) Hash identifier: K8PdVrwgPP6SYE7hwXotb2w7ResYjU2AhKRg1rXlVvE= Subject key identifier: A1:51:49:41:10:15:BE:D5:A3:62:E1:B0:6F:8F:2A:FC:5C:A7:EA:59 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D1A Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/5164F13EDBD811F0A0A88CE756641951.roa Signing time: Sun 01 Mar 2026 19:06:57 +0000 ROA not before: Thu 18 Dec 2025 06:10:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 5065 IP address blocks: 43.230.52.0/24 maxlen: 24 43.230.53.0/24 maxlen: 24 43.246.198.0/24 maxlen: 24 43.249.240.0/24 maxlen: 24 43.249.243.0/24 maxlen: 24 43.250.89.0/24 maxlen: 24 43.250.90.0/24 maxlen: 24 43.250.91.0/24 maxlen: 24 43.251.184.0/24 maxlen: 24 43.251.186.0/24 maxlen: 24 45.115.33.0/24 maxlen: 24 45.115.35.0/24 maxlen: 24 45.124.63.0/24 maxlen: 24 103.7.118.0/24 maxlen: 24 103.7.119.0/24 maxlen: 24 103.13.19.0/24 maxlen: 24 103.15.32.0/24 maxlen: 24 103.15.34.0/24 maxlen: 24 103.15.35.0/24 maxlen: 24 103.248.150.0/24 maxlen: 24 103.248.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3354 (0xd1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Dec 18 06:10:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48e51-afe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c1:ed:e4:ac:77:14:fc:24:66:6c:89:b6:4e: 78:09:bf:bf:f5:da:18:9c:e2:e0:3a:0c:28:42:19: 18:74:26:26:9b:3c:7b:40:91:98:c9:48:fd:eb:84: 18:bf:a6:a7:32:af:a4:f5:c2:27:42:9e:e2:4b:d7: 9b:97:dc:ff:70:1a:b3:e4:79:b9:f1:82:d9:bc:0a: fe:1f:e3:88:53:a1:a4:74:8c:11:1b:f2:58:ae:45: 1c:ae:78:e0:f3:66:38:f4:4a:82:5d:22:09:ce:17: 8b:b1:3a:b8:14:64:8e:11:5f:46:60:a8:b0:ea:51: af:77:0c:4d:57:89:43:19:ed:dc:5f:5f:26:37:9c: 1f:d1:fc:ea:06:bc:5b:a3:ea:9e:7a:b8:af:4a:ec: 83:9f:e9:47:8c:67:c0:ba:f0:ad:bf:2b:9f:1f:e2: cc:a2:c4:da:2d:64:5d:29:61:b8:63:98:bd:17:87: cb:7a:2c:45:08:8a:57:5b:45:9a:78:18:2d:55:52: 77:c2:bc:56:5d:b3:46:8d:39:aa:6e:d7:6d:34:0a: 87:18:b9:b0:9e:8b:36:af:f8:c1:46:37:8d:f6:4b: 07:b7:99:2a:c6:b8:67:63:0c:d9:bd:86:97:69:22: 35:1c:7e:9b:66:e6:81:c6:cd:38:13:76:35:30:6e: f1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:51:49:41:10:15:BE:D5:A3:62:E1:B0:6F:8F:2A:FC:5C:A7:EA:59 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/5164F13EDBD811F0A0A88CE756641951.roa sbgp-ipAddrBlock: critical IPv4: 43.230.52.0/23 43.246.198.0/24 43.249.240.0/24 43.249.243.0/24 43.250.89.0-43.250.91.255 43.251.184.0/24 43.251.186.0/24 45.115.33.0/24 45.115.35.0/24 45.124.63.0/24 103.7.118.0/23 103.13.19.0/24 103.15.32.0/24 103.15.34.0/23 103.248.150.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:7d:2b:cd:2c:42:b2:3f:ce:ed:0f:f4:75:fe:18:c7:36:b4: fc:8d:b7:82:d8:bc:4e:25:70:28:34:6f:ec:67:3a:51:20:ff: 54:45:31:4c:26:cc:66:90:23:53:4e:d6:20:66:ba:cb:63:d6: 57:c6:b2:ff:ef:8e:18:91:ac:b4:3a:50:35:40:73:f7:08:fd: 47:b6:39:0a:43:9a:6c:f5:4d:70:48:26:32:d6:da:48:29:19: a2:7d:40:f9:eb:b2:7b:1e:79:0e:62:c8:3d:28:df:7f:71:2b: 6b:f8:7e:83:06:d5:0f:84:08:69:44:d9:62:14:fe:44:57:60: 6b:f8:90:c5:b2:37:34:6b:fe:90:6d:93:1c:35:60:8c:b4:6e: 73:8c:1e:34:95:8a:91:6c:06:a4:dc:84:7d:2e:d4:18:27:0b: 9a:25:27:1c:3e:7b:ab:78:be:a5:29:10:73:a9:89:e3:59:28: fe:b6:fd:a9:a1:70:30:5e:8f:10:c1:b8:e4:70:af:fc:58:05: 0b:92:ad:9f:d0:6b:e2:d1:c4:ab:1e:c3:6c:e1:85:65:47:fa: 5c:ec:51:55:75:00:78:47:80:e1:a9:aa:a0:4a:6e:fc:13:f4: c7:49:3b:00:1c:9e:71:5b:e1:5c:de:ce:51:09:37:0b:7b:c6: c9:a6:73:c1 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICDRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUxMjE4MDYxMDU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGU1MS1hZmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsHt5Kx3FPwkZmyJtk54Cb+/9doYnOLgOgwoQhkYdCYmmzx7QJGYyUj964QY v6anMq+k9cInQp7iS9ebl9z/cBqz5Hm58YLZvAr+H+OIU6GkdIwRG/JYrkUcrnjg 82Y49EqCXSIJzheLsTq4FGSOEV9GYKiw6lGvdwxNV4lDGe3cX18mN5wf0fzqBrxb o+qeerivSuyDn+lHjGfAuvCtvyufH+LMosTaLWRdKWG4Y5i9F4fLeixFCIpXW0Wa eBgtVVJ3wrxWXbNGjTmqbtdtNAqHGLmwnos2r/jBRjeN9ksHt5kqxrhnYwzZvYaX aSI1HH6bZuaBxs04E3Y1MG7xPQIDAQABo4ICvDCCArgwHQYDVR0OBBYEFKFRSUEQ Fb7Vo2LhsG+PKvxcp+pZMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvNTE2NEYxM0VE QkQ4MTFGMEEwQTg4Q0U3NTY2NDE5NTEucm9hMHsGCCsGAQUFBwEHAQH/BGwwajBo BAIAATBiAwQBK+Y0AwQAK/bGAwQAK/nwAwQAK/nzMAwDBAAr+lkDBAIr+lgDBAAr +7gDBAAr+7oDBAAtcyEDBAAtcyMDBAAtfD8DBAFnB3YDBABnDRMDBABnDyADBAFn DyIDBAFn+JYwDQYJKoZIhvcNAQELBQADggEBAHt9K80sQrI/zu0P9HX+GMc2tPyN t4LYvE4lcCg0b+xnOlEg/1RFMUwmzGaQI1NO1iBmustj1lfGsv/vjhiRrLQ6UDVA c/cI/Ue2OQpDmmz1TXBIJjLW2kgpGaJ9QPnrsnseeQ5iyD0o339xK2v4foMG1Q+E CGlE2WIU/kRXYGv4kMWyNzRr/pBtkxw1YIy0bnOMHjSVipFsBqTchH0u1BgnC5ol Jxw+e6t4vqUpEHOpieNZKP62/amhcDBejxDBuORwr/xYBQuSrZ/Qa+LRxKsew2zh hWVH+lzsUVV1AHhHgOGpqqBKbvwT9MdJOwAcnnFb4VzezlEJNwt7xsmmc8E= -----END CERTIFICATE-----Generated at Mon Mar 2 02:51:06 2026 by rpki-client