$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa File: 5DA849821C1211EA819EA46EC4F9AE02.roa (raw, json) Hash identifier: 5CBCbCNQtmal7jhPIzguEfXdAdwnlI8iW5BfKYZoqfQ= Subject key identifier: 8F:A1:4B:1E:34:51:D6:0F:0C:B5:45:67:0A:E3:12:BB:AD:8B:BF:36 Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0CEC Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa Signing time: Sat 30 May 2026 19:22:15 +0000 ROA not before: Sat 30 May 2026 19:22:15 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 138546 IP address blocks: 43.243.96.0/22 maxlen: 24 103.38.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:35:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3308 (0xcec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966, serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: May 30 19:22:15 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6a1b38e7-dd12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2b:48:3b:35:99:7f:94:87:22:99:d3:4e:79: e2:eb:25:53:5c:76:36:06:2e:c8:ce:0f:d7:0b:a4: 20:6e:8f:34:36:1a:b3:13:38:e2:8a:2b:0f:6d:6e: 86:33:8a:74:24:8b:09:77:88:7c:3b:15:37:1a:72: 9f:8a:ca:dd:10:2b:32:ff:c6:07:e9:c4:53:af:4d: de:1d:cb:10:0f:0b:5f:83:c4:22:a2:ef:38:a5:13: 11:c0:72:f9:a1:55:f2:6a:d3:8e:77:c6:77:e5:12: e3:b8:a8:86:79:01:14:31:fe:c2:9d:e8:e9:4b:56: 13:b6:2b:01:59:0e:57:df:73:96:5e:0e:00:7a:52: 5e:6d:6a:33:d6:a4:f1:c2:d1:3f:43:06:5c:76:6e: 5f:01:e2:33:ff:d9:fe:c3:ba:b1:e2:4d:ea:f2:3e: 29:c2:25:a5:7c:17:59:a5:0e:ed:cf:8b:7c:1a:fb: 2f:47:ed:51:98:59:71:dc:1e:1a:45:01:1e:86:95: 67:32:f4:8f:9d:cc:a1:79:95:ac:f7:2b:2c:f2:73: 65:c9:cc:bf:4e:2b:bd:d8:04:9d:0f:52:83:e0:a9: 1d:04:54:b6:82:1d:d3:8f:8e:89:34:ac:21:29:9f: 04:c1:a4:af:c0:59:ff:69:26:91:c4:04:09:ae:3d: e6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A1:4B:1E:34:51:D6:0F:0C:B5:45:67:0A:E3:12:BB:AD:8B:BF:36 X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.96.0/22 103.38.196.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:a7:a7:11:79:bd:3f:4a:57:0f:dd:99:0c:f7:3a:fa:70:0d: c1:25:3f:77:0b:8f:73:81:d6:a2:8f:b9:13:2f:48:d2:f0:cc: 9a:bd:72:bc:b6:c7:4c:e3:f7:c1:9f:10:3f:67:87:c5:82:ee: 0c:91:8a:52:3f:82:29:2a:ff:6c:5c:bd:c2:01:d6:9d:b7:df: d5:6a:a1:1b:a9:76:89:71:3b:b6:9b:a1:a8:6e:8e:f8:d5:53: a7:7a:76:82:f7:bf:d0:ad:71:9b:cd:8d:68:7a:de:3a:b5:68: f0:2d:21:3e:5d:2f:d2:e1:2d:b2:d3:19:18:0e:08:65:dd:c1: 70:09:82:d1:69:80:db:e3:15:bd:21:83:6f:09:2f:f8:90:4b: 73:bf:4b:89:ae:1c:20:f0:eb:a4:21:ab:45:9c:9b:26:36:54: a4:f3:3d:30:90:5f:0f:68:04:0d:eb:44:8c:3c:e6:aa:26:7b: 78:38:f1:a7:cb:8e:cf:23:28:e6:d3:54:50:4c:37:fc:2b:a3: 2d:16:1e:f7:c8:3e:44:86:da:f5:ab:b4:c6:39:b0:20:b8:14: 49:42:ae:38:ed:3f:25:c6:d3:16:d5:27:82:5b:8b:f6:eb:a7: f7:66:52:2c:ba:96:c9:79:35:5e:75:6e:19:dc:22:16:04:03: 79:f4:8c:22 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjYwNTMwMTkyMjE1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFiMzhlNy1kZDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCtIOzWZf5SHIpnTTnni6yVTXHY2Bi7Izg/XC6Qgbo80NhqzEzjiiisPbW6G M4p0JIsJd4h8OxU3GnKfisrdECsy/8YH6cRTr03eHcsQDwtfg8Qiou84pRMRwHL5 oVXyatOOd8Z35RLjuKiGeQEUMf7CnejpS1YTtisBWQ5X33OWXg4AelJebWoz1qTx wtE/QwZcdm5fAeIz/9n+w7qx4k3q8j4pwiWlfBdZpQ7tz4t8GvsvR+1RmFlx3B4a RQEehpVnMvSPncyheZWs9yss8nNlycy/Tiu92ASdD1KD4KkdBFS2gh3Tj46JNKwh KZ8EwaSvwFn/aSaRxAQJrj3mewIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFI+hSx40 UdYPDLVFZwrjEruti782MB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM5NjYvQTE5NTJCQTIxQzExMTFFQUI2QzNDNzZEQzRGOUFFMDIvNURBODQ5ODIx QzEyMTFFQTgxOUVBNDZFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/NgAwQCZybEMA0GCSqGSIb3DQEBCwUAA4IBAQBdp6cReb0/SlcP 3ZkM9zr6cA3BJT93C49zgdaij7kTL0jS8MyavXK8tsdM4/fBnxA/Z4fFgu4MkYpS P4IpKv9sXL3CAdadt9/VaqEbqXaJcTu2m6Gobo741VOnenaC97/QrXGbzY1oet46 tWjwLSE+XS/S4S2y0xkYDghl3cFwCYLRaYDb4xW9IYNvCS/4kEtzv0uJrhwg8Ouk IatFnJsmNlSk8z0wkF8PaAQN60SMPOaqJnt4OPGny47PIyjm01RQTDf8K6MtFh73 yD5Ehtr1q7TGObAguBRJQq447T8lxtMW1SeCW4v266f3ZlIsupbJeTVedW4Z3CIW BAN59Iwi -----END CERTIFICATE-----Generated at Sat Jun 13 10:07:33 2026 by rpki-client