$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/B42198DC64F211ED9AEC046FC4F9AE02.roa File: B42198DC64F211ED9AEC046FC4F9AE02.roa (raw, json) Hash identifier: D1G789F7QO5EUSaHtpBz9qFV89CyiPWE00spTrcS29Y= Subject key identifier: AE:76:6D:6B:24:1E:A4:69:41:B4:B1:55:12:68:DD:BC:BB:20:D0:6D Certificate issuer: /CN=A91B5CEA/serialNumber=FD4E5CFBBE51340160396D596E1B3248CFC81CC4 Certificate serial: 0278 Authority key identifier: FD:4E:5C:FB:BE:51:34:01:60:39:6D:59:6E:1B:32:48:CF:C8:1C:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U5c-75RNAFgOW1ZbhsySM_IHMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/B42198DC64F211ED9AEC046FC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:14:47 +0000 ROA not before: Thu 07 Aug 2025 03:08:54 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133606 IP address blocks: 43.243.120.0/22 maxlen: 24 43.243.176.0/22 maxlen: 24 43.254.56.0/22 maxlen: 24 103.94.180.0/22 maxlen: 24 103.238.116.0/22 maxlen: 24 116.199.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/_U5c-75RNAFgOW1ZbhsySM_IHMQ.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/_U5c-75RNAFgOW1ZbhsySM_IHMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U5c-75RNAFgOW1ZbhsySM_IHMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:55:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 632 (0x278) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=FD4E5CFBBE51340160396D596E1B3248CFC81CC4 Validity Not Before: Aug 7 03:08:54 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a3f577-ac3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fd:d6:c0:4d:10:4e:00:9c:82:68:69:26:90: 9e:d2:18:63:e0:00:72:b5:3c:0f:ce:24:98:15:22: b0:eb:19:4d:e4:ec:56:67:f5:4b:d8:8d:d1:e5:dc: 2f:13:db:eb:95:e5:75:2f:e8:ec:56:9e:e6:c9:6b: c9:ea:cd:94:e0:4a:ec:4a:e2:b5:fa:88:a6:53:90: 6f:73:eb:b2:ba:e6:3c:6e:2c:2f:55:2c:e1:e4:5a: ed:ba:5f:17:78:83:76:81:b0:76:63:72:9a:78:19: ed:2d:c4:ff:b1:18:d7:ab:b0:11:8b:57:60:a7:9b: e4:55:4a:15:3e:ce:c8:0f:1c:02:a4:a1:5e:0d:78: 47:14:c2:f2:f4:d9:a9:93:14:79:6e:7c:67:85:1d: 71:6d:4d:61:a3:9c:a1:47:ad:9b:d3:57:9c:6f:a7: da:09:2e:ad:db:9a:66:38:96:ef:fe:b4:d5:67:6c: 21:ea:53:b2:92:80:ed:9d:eb:bd:2e:63:45:5a:a1: 7a:f1:9f:e3:74:d7:fa:e2:6d:64:8f:56:1a:a6:b7: 8d:d3:d5:ed:72:a6:28:9f:ba:f1:19:7c:0e:0f:18: 5c:97:5e:3b:90:f5:92:f0:db:85:20:35:f8:db:ff: f6:e8:03:e6:b8:ca:b1:af:73:13:f7:10:1e:b5:9e: a3:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:76:6D:6B:24:1E:A4:69:41:B4:B1:55:12:68:DD:BC:BB:20:D0:6D X509v3 Authority Key Identifier: keyid:FD:4E:5C:FB:BE:51:34:01:60:39:6D:59:6E:1B:32:48:CF:C8:1C:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/_U5c-75RNAFgOW1ZbhsySM_IHMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U5c-75RNAFgOW1ZbhsySM_IHMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/B42198DC64F211ED9AEC046FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.120.0/22 43.243.176.0/22 43.254.56.0/22 103.94.180.0/22 103.238.116.0/22 116.199.172.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:9d:4a:42:02:c4:63:61:45:cd:c4:90:1e:38:79:c0:37:f7: a1:1c:4c:bf:5e:12:84:45:57:3e:a5:39:6e:37:06:72:a7:0f: bf:0a:79:c6:23:10:b7:38:cf:a2:00:fd:2c:f6:9e:ce:54:f0: 84:cf:20:b6:49:90:b3:4f:c6:34:c5:8f:a4:1f:2e:da:7a:7a: dc:20:50:6b:9d:7d:57:1a:53:62:c4:e3:23:0a:d7:51:73:65: 5a:41:98:27:b5:35:27:10:32:5c:51:81:06:e1:a2:56:f3:82: 81:17:38:50:d0:82:26:d8:e5:ec:31:cc:08:5b:53:bf:c6:66: d6:dd:34:6d:af:59:ba:e7:41:45:bf:4b:c6:ed:8e:08:69:dd: 98:a5:bc:04:33:c7:a4:e8:fa:1b:bf:86:c5:2c:e7:f3:45:d8: a5:a7:60:dd:31:7a:7c:33:17:a6:bd:a7:44:7d:bf:41:04:b1: 09:82:08:7d:88:c3:c4:6b:6b:9d:a0:cf:ef:c1:78:9d:a0:2c: 7b:ae:0c:81:23:64:bc:30:7b:cb:5f:36:c3:c1:35:65:85:9f: 22:93:33:ad:bd:95:5e:1d:f2:9d:4f:c7:a1:0c:ca:21:38:50: a1:14:cd:b4:f1:7d:4c:ff:70:15:db:8b:84:16:44:55:54:95: fe:21:28:0b -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICAngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKEZENEU1Q0ZCQkU1MTM0MDE2MDM5NkQ1OTZFMUIzMjQ4 Q0ZDODFDQzQwHhcNMjUwODA3MDMwODU0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjU3Ny1hYzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/3WwE0QTgCcgmhpJpCe0hhj4ABytTwPziSYFSKw6xlN5OxWZ/VL2I3R5dwv E9vrleV1L+jsVp7myWvJ6s2U4ErsSuK1+oimU5Bvc+uyuuY8biwvVSzh5Frtul8X eIN2gbB2Y3KaeBntLcT/sRjXq7ARi1dgp5vkVUoVPs7IDxwCpKFeDXhHFMLy9Nmp kxR5bnxnhR1xbU1ho5yhR62b01ecb6faCS6t25pmOJbv/rTVZ2wh6lOykoDtneu9 LmNFWqF68Z/jdNf64m1kj1YapreN09XtcqYon7rxGXwODxhcl147kPWS8NuFIDX4 2//26APmuMqxr3MT9xAetZ6jbQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFK52bWsk HqRpQbSxVRJo3by7INBtMB8GA1UdIwQYMBaAFP1OXPu+UTQBYDltWW4bMkjPyBzE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8yOEE3N0I2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9fVTVjLTc1Uk5BRmdPVzFaYmhzeVNNX0lI TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VNWMtNzVSTkFGZ09XMVpiaHN5U01fSUhNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVDRUEvMjhBNzdCNjg2NEVFMTFFREE0QTM0NTEzQzRGOUFFMDIvQjQyMTk4REM2 NEYyMTFFRDlBRUMwNDZGQzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAq BAIAATAkAwQCK/N4AwQCK/OwAwQCK/44AwQCZ160AwQCZ+50AwQCdMesMA0GCSqG SIb3DQEBCwUAA4IBAQA/nUpCAsRjYUXNxJAeOHnAN/ehHEy/XhKERVc+pTluNwZy pw+/CnnGIxC3OM+iAP0s9p7OVPCEzyC2SZCzT8Y0xY+kHy7aenrcIFBrnX1XGlNi xOMjCtdRc2VaQZgntTUnEDJcUYEG4aJW84KBFzhQ0IIm2OXsMcwIW1O/xmbW3TRt r1m650FFv0vG7Y4Iad2YpbwEM8ek6Pobv4bFLOfzRdilp2DdMXp8MxemvadEfb9B BLEJggh9iMPEa2udoM/vwXidoCx7rgyBI2S8MHvLXzbDwTVlhZ8ikzOtvZVeHfKd T8ehDMohOFChFM208X1M/3AV24uEFkRVVJX+ISgL -----END CERTIFICATE-----Generated at Mon Mar 2 05:41:08 2026 by rpki-client