$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/46D6261876A511EB82E04A2FC4F9AE02.roa File: 46D6261876A511EB82E04A2FC4F9AE02.roa (raw, json) Hash identifier: +cRs2PboXe8g3+V+AJzpQpdTweZR3TGc016yIhZSQMI= Subject key identifier: E6:F0:02:FE:8B:FD:38:E9:23:B3:BD:FE:AE:36:00:82:62:A4:DD:B5 Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 0886 Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/46D6261876A511EB82E04A2FC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:28:54 +0000 ROA not before: Tue 02 Sep 2025 21:42:12 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45843 IP address blocks: 103.86.38.0/24 maxlen: 24 117.20.16.0/24 maxlen: 24 117.20.19.0/24 maxlen: 24 119.63.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2182 (0x886) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B, serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Validity Not Before: Sep 2 21:42:12 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a47756-7db6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9e:9e:83:4b:60:c1:52:c9:98:e9:c0:53:31: f6:bf:21:d3:cd:8c:ac:92:52:8e:08:98:e5:c9:20: c3:d7:90:39:61:77:dc:2e:3a:7a:36:d5:ca:4c:b5: e9:85:4c:c7:fe:e0:e4:3c:35:6a:19:41:4a:43:46: 4b:44:9d:bf:05:49:a2:4e:53:39:56:e9:4f:52:f2: f1:52:74:c3:5c:e9:6f:c7:81:d2:b0:41:e8:57:39: e4:90:28:e3:83:16:a5:09:06:22:07:8d:8a:c9:4b: 13:a0:56:89:df:00:10:15:23:58:24:78:1b:01:42: 33:40:c2:5d:61:a8:af:33:b7:86:7a:6b:6a:67:70: 11:d2:2b:15:ee:d9:b9:8a:da:9d:e9:b3:af:28:25: 90:7e:04:01:82:47:71:39:36:92:87:62:e7:66:82: 83:12:77:bb:91:3f:56:9a:d3:bd:c4:ab:e2:38:81: 02:b8:fc:dd:fe:a7:f7:26:ba:bd:89:82:b6:35:91: a3:a7:68:c6:b0:3c:e2:3e:1f:4a:3c:3f:cc:6c:56: ce:24:a5:f9:fb:16:e8:4a:46:cc:2d:97:00:fa:62: 41:f3:93:2b:d2:f4:6f:cb:4a:87:93:d0:a7:63:b8: 1d:96:16:c7:7a:26:09:e5:ac:43:4b:44:ae:11:45: 96:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F0:02:FE:8B:FD:38:E9:23:B3:BD:FE:AE:36:00:82:62:A4:DD:B5 X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/46D6261876A511EB82E04A2FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.86.38.0/24 117.20.16.0/24 117.20.19.0/24 119.63.132.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:8b:0c:14:12:23:81:3b:69:63:e4:ba:64:48:63:5c:be:ad: a5:90:69:0a:aa:09:82:fb:68:25:f7:42:a3:32:4a:8a:44:9b: ea:d7:ea:b6:a2:2e:98:54:82:b8:78:7f:76:df:2c:6c:f9:0b: 23:96:44:2a:eb:43:62:83:d8:b0:0e:3f:2b:e8:68:cf:95:fc: 90:c0:23:2b:57:a1:6e:c1:83:1a:e4:78:97:3f:93:72:1b:47: f4:84:be:45:70:3c:ed:9b:f8:1e:72:78:6b:62:03:18:ea:70: d7:bc:7f:86:d5:06:a5:86:b2:a2:8e:48:62:59:2d:b1:4a:06: c9:ea:b5:96:36:ef:9c:c0:d1:ce:42:e7:4d:cf:2e:d3:cf:ab: 13:1b:a6:f6:ad:b2:cb:e4:75:23:b4:96:4a:42:cb:cd:b7:4f: 34:7e:e6:1e:d4:e2:ea:83:8c:7d:ba:28:c4:ed:f2:77:db:01: 97:1d:cc:85:44:0c:f2:4a:6f:d2:b5:0d:21:ed:a8:fa:4a:55: 49:c9:72:be:b4:c9:43:21:5d:ce:7c:a1:35:9c:b3:81:99:72: 10:fa:b3:32:45:17:4f:14:9a:16:f9:1c:45:5d:14:11:d0:b2: f2:9c:e2:7b:ce:86:be:f8:7c:7f:97:8e:21:67:3a:b2:04:18: 4d:00:44:d2 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICCIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjUwOTAyMjE0MjEyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Nzc1Ni03ZGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqp6eg0tgwVLJmOnAUzH2vyHTzYysklKOCJjlySDD15A5YXfcLjp6NtXKTLXp hUzH/uDkPDVqGUFKQ0ZLRJ2/BUmiTlM5VulPUvLxUnTDXOlvx4HSsEHoVznkkCjj gxalCQYiB42KyUsToFaJ3wAQFSNYJHgbAUIzQMJdYaivM7eGemtqZ3AR0isV7tm5 itqd6bOvKCWQfgQBgkdxOTaSh2LnZoKDEne7kT9WmtO9xKviOIECuPzd/qf3Jrq9 iYK2NZGjp2jGsDziPh9KPD/MbFbOJKX5+xboSkbMLZcA+mJB85Mr0vRvy0qHk9Cn Y7gdlhbHeiYJ5axDS0SuEUWW4wIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFObwAv6L /TjpI7O9/q42AIJipN21MB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIyMEIvQkE3MUI2NDgxMjAzMTFFQkJBQTE5NDE0QzRGOUFFMDIvNDZENjI2MTg3 NkE1MTFFQjgyRTA0QTJGQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAZ1YmAwQAdRQQAwQAdRQTAwQAdz+EMA0GCSqGSIb3DQEBCwUAA4IB AQBciwwUEiOBO2lj5LpkSGNcvq2lkGkKqgmC+2gl90KjMkqKRJvq1+q2oi6YVIK4 eH923yxs+QsjlkQq60Nig9iwDj8r6GjPlfyQwCMrV6FuwYMa5HiXP5NyG0f0hL5F cDztm/gecnhrYgMY6nDXvH+G1QalhrKijkhiWS2xSgbJ6rWWNu+cwNHOQudNzy7T z6sTG6b2rbLL5HUjtJZKQsvNt080fuYe1OLqg4x9uijE7fJ32wGXHcyFRAzySm/S tQ0h7aj6SlVJyXK+tMlDIV3OfKE1nLOBmXIQ+rMyRRdPFJoW+RxFXRQR0LLynOJ7 zoa++Hx/l44hZzqyBBhNAETS -----END CERTIFICATE-----Generated at Mon Mar 2 16:24:59 2026 by rpki-client