$ rpki-client -vvf rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/3785190EF0FE11EEA034D07EC4F9AE02.roa File: 3785190EF0FE11EEA034D07EC4F9AE02.roa (raw, json) Hash identifier: ViUN1ktDgOXxiF30cbqP6I4Vb/rzbxLloaN/i3nx4IY= Subject key identifier: E1:01:C6:87:42:0A:D9:C3:AE:21:C7:66:52:61:1D:3A:74:45:CE:E0 Certificate issuer: /CN=A91B01C7/serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Certificate serial: 2ACA Authority key identifier: E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/3785190EF0FE11EEA034D07EC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:27:46 +0000 ROA not before: Wed 16 Jul 2025 15:52:26 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24323 IP address blocks: 43.245.192.0/22 maxlen: 22 43.245.192.0/24 maxlen: 24 43.245.193.0/24 maxlen: 24 43.245.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10954 (0x2aca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B01C7, serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Validity Not Before: Jul 16 15:52:26 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a45af2-cd82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b1:27:96:ca:f8:63:27:bc:7d:6b:e3:b3:90: 3d:95:24:00:18:ec:bd:6c:ba:03:30:45:bc:02:b8: 4f:75:dc:97:f2:0b:2e:12:bc:5d:27:a7:0e:72:84: 09:38:28:e5:f6:50:cb:3e:a1:9e:cf:95:97:6d:1d: cf:37:9a:85:21:d9:09:48:5c:3c:a9:83:34:73:6c: 1d:b0:f9:2b:7c:7c:e7:54:86:e4:2a:d4:8f:79:fe: 0e:67:95:10:37:af:f7:7c:53:a1:95:36:c2:ae:3b: 04:38:57:0e:dc:ad:db:d5:60:3d:94:35:4a:1c:f0: 6d:b3:a3:88:44:67:ab:bd:0c:1a:c1:43:30:23:63: 49:7a:78:c2:01:0c:eb:1a:9f:22:82:1a:e1:cc:c3: 85:43:a2:3e:25:70:ae:1e:57:72:a7:9e:49:f5:41: 7c:34:c8:6c:6e:81:3f:65:b2:53:9c:89:05:35:a6: 54:99:fd:d7:73:c9:db:13:9a:f8:88:5b:f4:51:7a: 3e:cd:9b:eb:63:71:29:15:33:7c:1b:aa:b0:ca:1d: 17:08:a2:a8:46:1e:37:10:75:fb:94:d6:ba:94:b2: 25:73:8d:7a:c5:22:9d:58:6b:8a:22:85:fa:65:e8: 41:a7:34:5b:70:a7:5b:12:49:0a:aa:65:63:36:2d: bb:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:01:C6:87:42:0A:D9:C3:AE:21:C7:66:52:61:1D:3A:74:45:CE:E0 X509v3 Authority Key Identifier: keyid:E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/3785190EF0FE11EEA034D07EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.245.192.0/22 Signature Algorithm: sha256WithRSAEncryption a3:fa:58:a7:0d:e8:89:26:e1:20:04:7d:b4:b8:a7:4b:75:0d: d2:35:9e:65:e4:da:13:9f:f6:8d:14:af:5c:8d:30:db:13:1c: 97:60:3c:a3:9f:43:b8:06:10:d1:a5:f9:2c:3b:0d:3a:ef:23: 64:ba:01:aa:59:a7:e6:fa:a4:29:c7:1a:19:c3:e3:06:44:af: 31:83:29:0d:3e:cf:72:71:c5:ac:9b:04:24:7d:e0:97:8f:7c: 0b:f6:34:70:f8:c9:29:6d:03:bc:42:34:36:b2:55:07:e1:4d: 39:94:ff:2f:f9:6f:75:d2:06:4f:3e:d4:6f:21:68:3d:ae:a3: 17:c9:82:af:ac:fb:bf:80:4c:38:b5:69:44:00:a7:cc:16:92: ea:a1:ec:36:37:5f:aa:34:29:6a:54:e1:40:48:a6:99:b3:59: b7:db:0e:04:8a:b4:2d:67:38:ca:ee:a2:d9:d8:2f:08:a1:b4: 71:da:7e:e9:fc:93:56:01:11:85:a5:98:38:60:58:5f:d9:6b: 0a:ef:1d:f8:67:3f:40:74:d9:fb:81:c4:0c:47:c7:63:3f:03: 3d:37:8e:d3:a6:62:ae:5d:20:ea:b3:10:3d:ae:01:29:22:60: 3d:a0:6c:95:e2:91:a7:de:ef:da:b1:25:0a:b7:9d:c6:4a:c1: de:6b:cc:c3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICKsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAxQzcxMTAvBgNVBAUTKEU4REY4RDVFNEM4NERBODdENzI5QTczQzFDNEU4NjEx MzgxQUIyQzEwHhcNMjUwNzE2MTU1MjI2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWFmMi1jZDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27Enlsr4Yye8fWvjs5A9lSQAGOy9bLoDMEW8ArhPddyX8gsuErxdJ6cOcoQJ OCjl9lDLPqGez5WXbR3PN5qFIdkJSFw8qYM0c2wdsPkrfHznVIbkKtSPef4OZ5UQ N6/3fFOhlTbCrjsEOFcO3K3b1WA9lDVKHPBts6OIRGervQwawUMwI2NJenjCAQzr Gp8ighrhzMOFQ6I+JXCuHldyp55J9UF8NMhsboE/ZbJTnIkFNaZUmf3Xc8nbE5r4 iFv0UXo+zZvrY3EpFTN8G6qwyh0XCKKoRh43EHX7lNa6lLIlc416xSKdWGuKIoX6 ZehBpzRbcKdbEkkKqmVjNi27mwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOEBxodC CtnDriHHZlJhHTp0Rc7gMB8GA1UdIwQYMBaAFOjfjV5MhNqH1ymnPBxOhhE4GrLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDFDNy85N0NGMjBGQTMz MjMxMUU0QTZFNzQ5MTFDNEY5QUUwMi82Ti1OWGt5RTJvZlhLYWM4SEU2R0VUZ2Fz c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOLU5Ya3lFMm9mWEthYzhIRTZHRVRnYXNzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAxQzcvOTdDRjIwRkEzMzIzMTFFNEE2RTc0OTExQzRGOUFFMDIvMzc4NTE5MEVG MEZFMTFFRUEwMzREMDdFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/XAMA0GCSqGSIb3DQEBCwUAA4IBAQCj+linDeiJJuEgBH20uKdL dQ3SNZ5l5NoTn/aNFK9cjTDbExyXYDyjn0O4BhDRpfksOw067yNkugGqWafm+qQp xxoZw+MGRK8xgykNPs9yccWsmwQkfeCXj3wL9jRw+MkpbQO8QjQ2slUH4U05lP8v +W910gZPPtRvIWg9rqMXyYKvrPu/gEw4tWlEAKfMFpLqoew2N1+qNClqVOFASKaZ s1m32w4EirQtZzjK7qLZ2C8IobRx2n7p/JNWARGFpZg4YFhf2WsK7x34Zz9AdNn7 gcQMR8djPwM9N47TpmKuXSDqsxA9rgEpImA9oGyV4pGn3u/asSUKt53GSsHea8zD -----END CERTIFICATE-----Generated at Mon Mar 2 02:30:38 2026 by rpki-client