$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F3B9AEC4740A11F09DAF2A29C4F9AE02.roa File: F3B9AEC4740A11F09DAF2A29C4F9AE02.roa (raw, json) Hash identifier: ln76EemE+KVmwBMqhmjPor3eYO1TZU0iOPXChm5E5gM= Subject key identifier: 94:87:24:0D:68:36:6C:7F:FF:EA:FD:06:3B:45:70:5B:23:C8:13:FC Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D15 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F3B9AEC4740A11F09DAF2A29C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:06:52 +0000 ROA not before: Fri 24 Oct 2025 00:51:37 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 139076 IP address blocks: 43.246.199.0/24 maxlen: 24 103.244.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:54:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3349 (0xd15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Oct 24 00:51:37 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48e4c-8aad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:39:96:9e:a7:48:86:fc:3a:af:69:10:a3:79: 4e:66:d1:db:c6:da:6b:c4:3d:6a:d6:0f:1d:be:4a: 4d:67:11:a9:80:16:0f:45:ce:5d:d3:54:c0:a7:1a: 00:9b:a5:cd:e3:a3:ab:6f:29:6e:93:ad:28:50:56: b4:9b:a8:2b:27:21:15:7c:81:fe:58:fe:a5:08:da: 30:dc:6e:de:67:95:db:63:41:71:6e:b3:1d:69:a4: d6:81:53:6f:5c:44:b8:32:09:7e:10:7c:4b:1b:9d: d5:fc:e7:af:37:af:2c:16:8b:61:5f:ae:e0:56:eb: 4f:87:65:a0:21:66:06:55:54:49:4a:d5:ef:3c:39: 6a:d9:d9:70:13:49:55:fe:06:4b:f5:17:fd:68:90: 31:40:f9:b4:c0:cd:2e:97:75:69:35:1b:57:7c:95: 27:8d:35:9d:a1:41:36:d4:4c:8b:8e:cb:fc:31:1b: e5:cf:b9:a9:b1:9e:12:db:c1:bb:84:15:6a:9e:a9: da:34:d0:ba:39:24:2f:ae:00:df:c7:a1:9c:23:d8: d1:5a:e5:1e:1c:16:67:08:2a:e1:94:9d:2f:00:17: 58:ec:5a:9c:87:52:d6:be:7e:cb:a7:47:ae:4a:4f: c2:a7:66:fa:3b:f5:36:bb:a4:89:4c:dd:3f:e2:b8: 2b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:87:24:0D:68:36:6C:7F:FF:EA:FD:06:3B:45:70:5B:23:C8:13:FC X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F3B9AEC4740A11F09DAF2A29C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.246.199.0/24 103.244.208.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:ce:82:dd:fe:04:78:c5:71:ca:c8:b5:cb:55:94:1e:58:cf: 88:78:3c:89:f5:33:36:4e:f0:36:a8:8b:35:d0:5f:c9:c0:67: 71:01:4b:47:4f:e0:75:45:c8:c8:a1:b9:17:d5:37:fa:6f:fd: b9:e9:ea:95:79:0c:6e:d9:48:62:b8:93:a6:08:65:26:44:48: 95:06:cf:1d:d2:4e:0c:17:fa:7d:da:82:99:be:72:a2:68:c8: 9e:29:0b:91:b8:5d:09:d1:c3:78:74:c0:ab:e2:29:8a:f8:14: b6:ca:1d:42:69:cc:71:cb:ca:94:b4:11:93:37:8f:9c:9f:7e: a2:57:81:f0:6a:8c:ea:e9:a4:cc:07:04:7a:b5:6a:f5:45:13: a3:b2:0c:ad:b6:bd:c9:ef:ea:cb:3f:cf:91:df:49:8f:f6:72: 13:12:e8:b1:a1:b7:67:03:0a:75:63:c2:c7:03:51:aa:65:0b: 30:c5:ee:fa:8f:d8:83:78:5b:64:19:52:78:b9:b9:95:df:2d: 43:16:c7:a2:9f:0d:f3:1d:b7:ea:36:03:3f:b4:b4:46:1e:90: ce:cc:4b:a7:ee:76:ea:fa:34:63:56:25:bc:f4:18:08:9b:2d: 11:1a:7b:a9:9a:1e:3e:81:a4:2c:fc:52:79:2b:16:a6:0c:51: fa:a2:3d:3e -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUxMDI0MDA1MTM3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGU0Yy04YWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzmWnqdIhvw6r2kQo3lOZtHbxtprxD1q1g8dvkpNZxGpgBYPRc5d01TApxoA m6XN46Orbyluk60oUFa0m6grJyEVfIH+WP6lCNow3G7eZ5XbY0FxbrMdaaTWgVNv XES4Mgl+EHxLG53V/OevN68sFothX67gVutPh2WgIWYGVVRJStXvPDlq2dlwE0lV /gZL9Rf9aJAxQPm0wM0ul3VpNRtXfJUnjTWdoUE21EyLjsv8MRvlz7mpsZ4S28G7 hBVqnqnaNNC6OSQvrgDfx6GcI9jRWuUeHBZnCCrhlJ0vABdY7Fqch1LWvn7Lp0eu Sk/Cp2b6O/U2u6SJTN0/4rgrCQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFJSHJA1o Nmx//+r9BjtFcFsjyBP8MB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvRjNCOUFFQzQ3 NDBBMTFGMDlEQUYyQTI5QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK/bHAwQAZ/TQMA0GCSqGSIb3DQEBCwUAA4IBAQAPzoLd/gR4xXHK yLXLVZQeWM+IeDyJ9TM2TvA2qIs10F/JwGdxAUtHT+B1RcjIobkX1Tf6b/256eqV eQxu2UhiuJOmCGUmREiVBs8d0k4MF/p92oKZvnKiaMieKQuRuF0J0cN4dMCr4imK +BS2yh1Cacxxy8qUtBGTN4+cn36iV4Hwaozq6aTMBwR6tWr1RROjsgyttr3J7+rL P8+R30mP9nITEuixobdnAwp1Y8LHA1GqZQswxe76j9iDeFtkGVJ4ubmV3y1DFsei nw3zHbfqNgM/tLRGHpDOzEun7nbq+jRjViW89BgImy0RGnupmh4+gaQs/FJ5Kxam DFH6oj0+ -----END CERTIFICATE-----Generated at Mon Mar 2 09:13:24 2026 by rpki-client