$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa File: E26173CE050611EAA0470B49C4F9AE02.roa (raw, json) Hash identifier: s5eR5QINZPJhTT5u1X1fuPVrkTVr8VN8bTQoYd1Recs= Subject key identifier: 7F:F8:B3:40:48:9A:56:8C:55:42:38:2A:CC:1D:55:4A:9F:58:BF:33 Certificate issuer: /CN=A91B3CB5/serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Certificate serial: 0D09 Authority key identifier: 13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:43:47 +0000 ROA not before: Wed 22 Oct 2025 19:07:19 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 56132 IP address blocks: 43.246.232.0/22 maxlen: 22 49.127.0.0/16 maxlen: 16 59.191.208.0/20 maxlen: 20 59.191.220.0/22 maxlen: 22 103.35.228.0/22 maxlen: 22 118.138.0.0/16 maxlen: 16 118.138.232.0/21 maxlen: 21 118.138.240.0/20 maxlen: 20 118.138.240.0/21 maxlen: 21 118.139.0.0/17 maxlen: 17 203.6.141.0/24 maxlen: 24 2404:2400::/32 maxlen: 32 2404:2400::/40 maxlen: 40 2404:2400::/44 maxlen: 44 2404:2400::/48 maxlen: 48 2404:2400:100::/40 maxlen: 40 2404:2400:100::/44 maxlen: 44 2404:2400:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3337 (0xd09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CB5, serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Validity Not Before: Oct 22 19:07:19 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a46cc3-42e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5a:a5:60:5d:9d:5b:94:1f:af:04:54:bc:87: 75:29:5a:64:07:62:20:b0:ff:f6:17:73:59:ea:59: b4:8b:0d:6a:74:66:94:30:f9:55:4a:16:04:b5:f6: 50:d1:99:01:8e:4a:13:77:35:43:dc:21:9f:64:ab: bb:73:d0:eb:93:46:c0:f4:bc:d4:c6:54:18:76:d9: 2d:23:4d:ac:ad:5a:1e:10:12:f0:a0:f2:5e:52:93: c2:ab:b0:43:8c:63:22:d3:79:03:af:dc:37:14:fd: e2:7a:2d:d5:3d:bf:82:f7:78:95:c9:b0:99:b1:2d: 57:2c:00:c6:d5:36:52:0c:ef:ae:b2:79:34:34:68: b6:28:22:86:89:b5:ee:01:c3:89:4a:71:4e:e9:15: 0e:85:bd:7b:e8:6c:66:3a:61:5a:76:35:78:f4:69: e2:b4:58:e5:9c:f1:bb:7f:84:dd:e9:87:1b:a6:d1: 56:5a:bf:1c:64:f7:06:1f:d0:07:c1:fa:db:56:fd: 35:69:24:b6:9c:6d:f7:3a:df:f0:b0:89:38:5b:bf: ec:e9:0c:7b:34:10:e7:a6:19:5a:db:f8:ef:6b:cc: 9b:9b:2d:8b:a1:9e:db:ec:a3:64:c8:ab:08:9c:15: d1:14:af:c2:1d:34:97:58:0c:ae:8e:4f:23:71:70: dd:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:F8:B3:40:48:9A:56:8C:55:42:38:2A:CC:1D:55:4A:9F:58:BF:33 X509v3 Authority Key Identifier: keyid:13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.246.232.0/22 49.127.0.0/16 59.191.208.0/20 103.35.228.0/22 118.138.0.0-118.139.127.255 203.6.141.0/24 IPv6: 2404:2400::/32 Signature Algorithm: sha256WithRSAEncryption 60:e7:77:1e:3e:79:00:8c:bb:d3:a2:82:67:74:6c:e7:49:28: 22:43:00:4c:88:ee:f9:82:32:32:9a:91:db:28:a5:22:c9:cc: ed:ec:55:2f:6c:cc:cd:e7:7c:25:95:ab:92:ff:3c:25:c7:6f: cc:e2:fb:72:c1:14:34:a6:9e:d0:f9:17:7e:4b:7a:d3:84:80: 60:1e:78:ec:f4:c8:e3:8b:53:02:83:06:a8:c0:a6:32:aa:9f: 1b:8a:34:8f:25:ab:55:4a:76:32:4d:78:bf:78:28:3d:03:56: 97:e0:9d:03:fb:57:f7:a7:38:17:7e:ed:a1:83:42:14:50:02: 33:38:41:05:b4:c9:ea:e3:50:7e:6a:32:0f:9a:b3:8e:de:33: d9:9c:11:25:0b:aa:e9:35:e8:07:4f:e0:28:1a:25:99:08:0b: 86:e9:7f:81:7e:cd:82:e3:2d:ab:d4:67:6f:0f:7d:62:62:ea: 3c:09:91:bc:40:ce:0c:d8:57:3d:bf:e0:71:68:ad:ae:1e:47: 7c:ae:c2:c3:08:8a:a7:e3:be:01:d7:0f:9f:83:1d:0f:31:a1: 0c:50:31:6e:07:31:7d:64:d0:0b:d3:7e:88:2b:0c:bb:51:4a: ab:f5:10:7d:be:c0:b9:dd:73:7c:d5:d2:8b:5d:48:ab:fa:d7: ce:a0:05:1c -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICDQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQjUxMTAvBgNVBAUTKDEzNTVENTE4N0QyRTYzRDdFNkQ0OTA3OEQ4RTcxRkEw NTFDNDU2RTMwHhcNMjUxMDIyMTkwNzE5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmNjMy00MmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1qlYF2dW5QfrwRUvId1KVpkB2IgsP/2F3NZ6lm0iw1qdGaUMPlVShYEtfZQ 0ZkBjkoTdzVD3CGfZKu7c9Drk0bA9LzUxlQYdtktI02srVoeEBLwoPJeUpPCq7BD jGMi03kDr9w3FP3iei3VPb+C93iVybCZsS1XLADG1TZSDO+usnk0NGi2KCKGibXu AcOJSnFO6RUOhb176GxmOmFadjV49GnitFjlnPG7f4Td6YcbptFWWr8cZPcGH9AH wfrbVv01aSS2nG33Ot/wsIk4W7/s6Qx7NBDnphla2/jva8ybmy2LoZ7b7KNkyKsI nBXRFK/CHTSXWAyujk8jcXDdlwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFH/4s0BI mlaMVUI4KswdVUqfWL8zMB8GA1UdIwQYMBaAFBNV1Rh9LmPX5tSQeNjnH6BRxFbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NCNS82MzI2NTBGODA1 MDUxMUVBQUE5MzRDNDNDNEY5QUUwMi9FMVhWR0gwdVk5Zm0xSkI0Mk9jZm9GSEVW dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UxWFZHSDB1WTlmbTFKQjQyT2Nmb0ZIRVZ1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQjUvNjMyNjUwRjgwNTA1MTFFQUFBOTM0QzQzQzRGOUFFMDIvRTI2MTczQ0Uw NTA2MTFFQUEwNDcwQjQ5QzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAw BAIAATAqAwQCK/boAwMAMX8DBAQ7v9ADBAJnI+QwCwMDAXaKAwQHdosAAwQAywaN MA0EAgACMAcDBQAkBCQAMA0GCSqGSIb3DQEBCwUAA4IBAQBg53cePnkAjLvTooJn dGznSSgiQwBMiO75gjIympHbKKUiyczt7FUvbMzN53wllauS/zwlx2/M4vtywRQ0 pp7Q+Rd+S3rThIBgHnjs9Mjji1MCgwaowKYyqp8bijSPJatVSnYyTXi/eCg9A1aX 4J0D+1f3pzgXfu2hg0IUUAIzOEEFtMnq41B+ajIPmrOO3jPZnBElC6rpNegHT+Ao GiWZCAuG6X+Bfs2C4y2r1GdvD31iYuo8CZG8QM4M2Fc9v+BxaK2uHkd8rsLDCIqn 474B1w+fgx0PMaEMUDFuBzF9ZNAL036IKwy7UUqr9RB9vsC53XN81dKLXUir+tfO oAUc -----END CERTIFICATE-----Generated at Mon Mar 2 12:42:25 2026 by rpki-client