$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4378/F629148CD9A011F09A0FB01768D3641D/21656302D9A211F09604B56168D3641D.roa File: 21656302D9A211F09604B56168D3641D.roa (raw, json) Hash identifier: J7YgpNqOcaYjOCo1OiB0WdtVs6cboNKClgYeNKdHnYI= Subject key identifier: F9:AC:FB:E5:F0:68:63:B1:F3:36:EB:4A:69:B0:CE:03:C7:09:FB:08 Certificate issuer: /CN=A91B4378/serialNumber=6D1B1C5EC9A9CE20E8B85DA3F6C1E3CDD42EF839 Certificate serial: 29 Authority key identifier: 6D:1B:1C:5E:C9:A9:CE:20:E8:B8:5D:A3:F6:C1:E3:CD:D4:2E:F8:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRscXsmpziDouF2j9sHjzdQu-Dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4378/F629148CD9A011F09A0FB01768D3641D/21656302D9A211F09604B56168D3641D.roa Signing time: Sun 01 Mar 2026 05:50:59 +0000 ROA not before: Mon 15 Dec 2025 10:38:02 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 152194 IP address blocks: 43.249.204.0/22 maxlen: 24 103.41.64.0/22 maxlen: 24 2401:ab80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4378/F629148CD9A011F09A0FB01768D3641D/bRscXsmpziDouF2j9sHjzdQu-Dk.crl rsync://rpki.apnic.net/member_repository/A91B4378/F629148CD9A011F09A0FB01768D3641D/bRscXsmpziDouF2j9sHjzdQu-Dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRscXsmpziDouF2j9sHjzdQu-Dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:11:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4378, serialNumber=6D1B1C5EC9A9CE20E8B85DA3F6C1E3CDD42EF839 Validity Not Before: Dec 15 10:38:02 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d3c3-14e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:ce:67:6b:b6:7f:3f:c2:cd:c9:8a:41:2e:61: f4:f6:60:81:bc:74:f4:54:1c:7c:de:8a:ef:0c:49: 87:cb:8e:54:33:ed:d9:8c:45:61:aa:fb:be:65:87: b3:f7:f9:ce:3d:d3:8d:01:86:71:b8:c0:29:41:91: b0:37:de:55:0f:17:11:b8:66:36:89:65:5a:98:40: 4b:06:00:a1:3d:f1:aa:b4:89:46:9c:f8:b8:59:6a: f7:9e:41:a0:2d:37:7e:59:6d:ec:92:c8:45:06:a2: 00:4c:2c:f4:57:6c:58:18:8d:8f:70:e3:8b:77:8c: 7a:16:7e:1d:0b:31:03:7d:72:d9:1e:25:4d:39:0a: 1e:f8:f9:69:a5:48:e4:58:db:ba:9c:a4:ab:c2:41: 5c:65:1c:ad:cd:3e:dd:a5:92:d3:71:4e:dc:ae:8f: a7:ba:df:c3:e0:4c:15:d4:35:35:26:23:72:e4:31: 9f:b8:72:05:52:21:2d:a9:3b:c4:38:40:c6:10:60: be:75:d8:20:9f:63:0b:76:ad:c5:1c:f1:a1:98:30: de:22:4e:39:25:3a:da:f8:38:e8:b7:0b:38:7c:e9: 83:e3:02:9b:c6:3d:a9:19:96:2a:e0:9e:9e:af:cf: b3:5a:6c:9a:ca:a8:e4:6d:4f:a5:71:52:7c:95:3f: 0a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:AC:FB:E5:F0:68:63:B1:F3:36:EB:4A:69:B0:CE:03:C7:09:FB:08 X509v3 Authority Key Identifier: keyid:6D:1B:1C:5E:C9:A9:CE:20:E8:B8:5D:A3:F6:C1:E3:CD:D4:2E:F8:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4378/F629148CD9A011F09A0FB01768D3641D/bRscXsmpziDouF2j9sHjzdQu-Dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRscXsmpziDouF2j9sHjzdQu-Dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4378/F629148CD9A011F09A0FB01768D3641D/21656302D9A211F09604B56168D3641D.roa sbgp-ipAddrBlock: critical IPv4: 43.249.204.0/22 103.41.64.0/22 IPv6: 2401:ab80::/32 Signature Algorithm: sha256WithRSAEncryption ab:20:05:a2:93:14:4f:a4:63:0c:9d:30:30:20:52:68:74:4a: aa:2c:62:4c:9f:76:2c:7e:3b:c8:93:7d:76:a8:eb:47:d5:2e: e9:0e:de:4d:9c:5d:38:33:be:e7:96:f3:50:00:91:9a:11:d7: 7b:70:66:d9:c3:9c:81:e3:ca:dc:d8:ee:6c:66:21:e2:9a:b4: 84:8a:3f:45:31:9d:c1:28:38:da:e5:3e:7e:af:64:be:bf:5a: 31:8e:a8:53:39:23:49:8a:a3:c8:28:5d:7d:51:12:b8:82:6a: ae:f5:1b:09:dc:b9:0a:00:c8:ff:59:32:b1:dd:86:d1:6d:7f: d7:b0:06:27:dc:ab:55:b1:d0:3b:cd:54:25:e9:dc:b4:c0:b9: 26:dd:70:46:eb:9c:56:ee:34:5a:cd:41:65:42:dd:33:a9:04: ce:08:7a:dd:d6:92:79:e4:7d:48:09:df:b8:92:cc:ac:f1:21: 44:db:07:97:e5:2a:b0:a2:66:e3:31:e0:97:09:2a:97:bb:34: ff:e0:a2:4a:b3:df:a7:99:ea:9d:28:de:cc:78:eb:95:0e:15: 8c:3b:a1:56:f2:7b:05:ea:dd:93:ea:f4:b6:74:c3:70:e3:b1: 8f:fc:ee:70:1c:c3:41:de:e4:74:09:f8:f4:22:e3:69:33:1d: 5f:14:75:79 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDM3ODExMC8GA1UEBRMoNkQxQjFDNUVDOUE5Q0UyMEU4Qjg1REEzRjZDMUUzQ0RE NDJFRjgzOTAeFw0yNTEyMTUxMDM4MDJaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkM2MzLTE0ZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD5zmdrtn8/ws3JikEuYfT2YIG8dPRUHHzeiu8MSYfLjlQz7dmMRWGq+75lh7P3 +c49040BhnG4wClBkbA33lUPFxG4ZjaJZVqYQEsGAKE98aq0iUac+LhZaveeQaAt N35ZbeySyEUGogBMLPRXbFgYjY9w44t3jHoWfh0LMQN9ctkeJU05Ch74+WmlSORY 27qcpKvCQVxlHK3NPt2lktNxTtyuj6e638PgTBXUNTUmI3LkMZ+4cgVSIS2pO8Q4 QMYQYL512CCfYwt2rcUc8aGYMN4iTjklOtr4OOi3Czh86YPjApvGPakZlirgnp6v z7NabJrKqORtT6VxUnyVPwpjAgMBAAGjggJ1MIICcTAdBgNVHQ4EFgQU+az75fBo Y7HzNutKabDOA8cJ+wgwHwYDVR0jBBgwFoAUbRscXsmpziDouF2j9sHjzdQu+Dkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0Mzc4L0Y2MjkxNDhDRDlB MDExRjA5QTBGQjAxNzY4RDM2NDFEL2JSc2NYc21wemlEb3VGMmo5c0hqemRRdS1E ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYlJzY1hzbXB6aURvdUYyajlzSGp6ZFF1LURrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM3OC9GNjI5MTQ4Q0Q5QTAxMUYwOUEwRkIwMTc2OEQzNjQxRC8yMTY1NjMwMkQ5 QTIxMUYwOTYwNEI1NjE2OEQzNjQxRC5yb2EwNAYIKwYBBQUHAQcBAf8EJTAjMBIE AgABMAwDBAIr+cwDBAJnKUAwDQQCAAIwBwMFACQBq4AwDQYJKoZIhvcNAQELBQAD ggEBAKsgBaKTFE+kYwydMDAgUmh0SqosYkyfdix+O8iTfXao60fVLukO3k2cXTgz vueW81AAkZoR13twZtnDnIHjytzY7mxmIeKatISKP0UxncEoONrlPn6vZL6/WjGO qFM5I0mKo8goXX1REriCaq71GwncuQoAyP9ZMrHdhtFtf9ewBifcq1Wx0DvNVCXp 3LTAuSbdcEbrnFbuNFrNQWVC3TOpBM4Iet3WknnkfUgJ37iSzKzxIUTbB5flKrCi ZuMx4JcJKpe7NP/gokqz36eZ6p0o3sx465UOFYw7oVbyewXq3ZPq9LZ0w3DjsY/8 7nAcw0He5HQJ+PQi42kzHV8UdXk= -----END CERTIFICATE-----Generated at Mon Mar 2 14:13:20 2026 by rpki-client