$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/76BF01E88EF511F0BA815369C4F9AE02.roa File: 76BF01E88EF511F0BA815369C4F9AE02.roa (raw, json) Hash identifier: uPw0jGuZ1R9feVCLnmkywsIlFntIUjvKn4V9YADDSZw= Subject key identifier: 5F:3C:D8:93:CE:18:89:ED:BF:AD:9C:C9:19:21:64:F0:9A:8A:F2:45 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D1B Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/76BF01E88EF511F0BA815369C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:06:58 +0000 ROA not before: Mon 22 Dec 2025 07:53:17 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 40605 IP address blocks: 43.249.242.0/24 maxlen: 24 43.250.88.0/24 maxlen: 24 103.7.117.0/24 maxlen: 24 103.12.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3355 (0xd1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Dec 22 07:53:17 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48e51-2ebb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6f:15:00:bb:5b:26:20:3d:04:b7:87:41:ed: a3:fb:7a:db:d5:6e:4d:da:64:2e:0e:ae:fa:3d:00: 22:4c:8e:28:34:88:66:3d:82:ce:6e:eb:7b:cb:13: df:d0:88:f4:bb:90:09:af:eb:9d:a3:dd:ef:ee:21: 7d:06:ef:56:01:0b:f4:41:a9:71:a9:f9:bc:bd:a8: 0d:57:70:c4:46:fa:48:ea:12:2d:37:2b:8c:71:90: b8:c5:59:65:35:0b:d0:92:80:b5:c7:fe:48:2f:db: 8a:27:d5:7a:dd:4f:aa:4b:a8:43:88:6f:c7:43:2a: e5:b9:34:64:6f:81:21:9c:68:6a:fd:ba:f5:6c:b7: 54:4c:2c:4d:14:cb:5a:fb:9e:cd:e7:75:38:61:3c: 83:f1:6f:f2:d7:6a:1c:69:1b:f6:7f:ee:13:15:cb: b9:17:96:c9:5d:01:d2:8b:4f:7f:e9:05:f7:9f:17: 88:46:5d:b4:b6:92:cc:f9:21:ea:de:38:1c:9f:1f: 9f:2e:4c:0a:80:b5:53:de:97:c9:54:b2:ad:8d:4e: 71:1c:36:0f:50:2b:7e:c4:ce:f0:37:c5:48:24:8a: ee:56:98:b9:99:36:4c:03:2a:20:d0:0a:2f:ae:db: 07:cc:63:6d:d5:e5:e8:01:c4:bc:5b:ff:bc:ce:b7: 45:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:3C:D8:93:CE:18:89:ED:BF:AD:9C:C9:19:21:64:F0:9A:8A:F2:45 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/76BF01E88EF511F0BA815369C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.249.242.0/24 43.250.88.0/24 103.7.117.0/24 103.12.55.0/24 Signature Algorithm: sha256WithRSAEncryption 24:24:72:50:ce:80:65:3c:a8:5e:cb:e3:a1:31:5b:f9:2c:94: 41:ac:2e:1a:b0:2d:db:55:df:e1:cd:d5:d2:9f:b3:7b:97:54: 76:01:5e:02:51:94:ab:95:05:78:13:eb:17:96:71:cb:8d:ed: 5c:0f:12:9c:8f:76:ec:34:7c:db:e8:05:7c:84:97:7c:6b:e8: c4:d1:5c:1a:45:50:c0:ef:b4:18:8f:30:4e:5f:c4:6d:8d:c1: 37:f8:f4:6e:4b:f2:64:91:d7:40:0e:68:29:d4:2d:e3:02:7f: 3d:a8:bb:e3:9b:2a:22:f3:eb:c3:6b:6d:88:64:5f:18:84:3d: 42:00:61:d3:a8:3b:83:46:47:f3:26:ab:cc:97:74:b9:eb:f1: 95:3c:65:c7:e1:cd:c6:ad:51:ea:b6:32:dd:29:f1:8e:c3:7b: b6:73:de:35:17:a6:92:fd:ea:74:57:17:98:2f:f8:e3:ce:3f: 55:31:2c:21:ad:83:8b:07:88:c3:8f:91:d5:98:00:4e:1d:04: e6:52:1c:ef:51:b9:b2:4f:ec:63:ea:d7:e1:a4:51:b6:b4:b3: 88:ff:9d:50:b0:f0:9c:5a:80:f1:b9:6f:a6:27:18:44:29:c4: 69:1b:08:84:ce:43:6b:79:45:ea:c4:9b:ba:2f:08:9c:7c:12: 8e:a0:1d:2c -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICDRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUxMjIyMDc1MzE3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGU1MS0yZWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtG8VALtbJiA9BLeHQe2j+3rb1W5N2mQuDq76PQAiTI4oNIhmPYLObut7yxPf 0Ij0u5AJr+udo93v7iF9Bu9WAQv0Qalxqfm8vagNV3DERvpI6hItNyuMcZC4xVll NQvQkoC1x/5IL9uKJ9V63U+qS6hDiG/HQyrluTRkb4EhnGhq/br1bLdUTCxNFMta +57N53U4YTyD8W/y12ocaRv2f+4TFcu5F5bJXQHSi09/6QX3nxeIRl20tpLM+SHq 3jgcnx+fLkwKgLVT3pfJVLKtjU5xHDYPUCt+xM7wN8VIJIruVpi5mTZMAyog0Aov rtsHzGNt1eXoAcS8W/+8zrdFUwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFF882JPO GIntv62cyRkhZPCaivJFMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvNzZCRjAxRTg4 RUY1MTFGMEJBODE1MzY5QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAK/nyAwQAK/pYAwQAZwd1AwQAZww3MA0GCSqGSIb3DQEBCwUAA4IB AQAkJHJQzoBlPKhey+OhMVv5LJRBrC4asC3bVd/hzdXSn7N7l1R2AV4CUZSrlQV4 E+sXlnHLje1cDxKcj3bsNHzb6AV8hJd8a+jE0VwaRVDA77QYjzBOX8RtjcE3+PRu S/JkkddADmgp1C3jAn89qLvjmyoi8+vDa22IZF8YhD1CAGHTqDuDRkfzJqvMl3S5 6/GVPGXH4c3GrVHqtjLdKfGOw3u2c941F6aS/ep0VxeYL/jjzj9VMSwhrYOLB4jD j5HVmABOHQTmUhzvUbmyT+xj6tfhpFG2tLOI/51QsPCcWoDxuW+mJxhEKcRpGwiE zkNreUXqxJu6LwicfBKOoB0s -----END CERTIFICATE-----Generated at Mon Mar 2 02:11:25 2026 by rpki-client