$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa File: 5DA849821C1211EA819EA46EC4F9AE02.roa (raw, json) Hash identifier: eCHx5TEwPytpGbIBlZulCq7A1nRaBvbKK495Pm+3Ngg= Subject key identifier: 58:2A:35:B6:94:EA:48:88:39:32:3C:5F:6E:D0:02:0F:48:41:B6:3B Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0CB9 Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:34:37 +0000 ROA not before: Wed 28 Jan 2026 19:15:43 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138546 IP address blocks: 43.243.96.0/22 maxlen: 24 103.38.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:26:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3257 (0xcb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966, serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: Jan 28 19:15:43 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a478ad-eeda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0a:f9:da:03:2e:62:7b:9c:38:21:cc:85:aa: fe:71:7e:3e:7e:07:f1:68:0f:aa:77:65:94:68:63: 40:c0:3b:ad:6f:e3:63:e4:bd:1e:43:7e:bb:99:23: a4:27:d6:a1:a8:77:db:fd:16:1e:95:d8:1c:fb:d2: 98:1a:60:64:da:ea:38:ca:c9:a7:17:83:94:16:53: a4:07:32:1b:fb:0b:cf:3f:ba:c6:12:9f:bc:d1:e7: 92:60:6a:74:90:c9:94:03:f7:2a:e4:76:47:ff:68: e6:e9:5b:98:f1:8f:1f:69:0c:f2:33:a7:d8:d0:25: 64:58:8f:cb:bb:d4:c5:0a:8e:4d:11:10:22:ab:6a: 33:33:69:6e:97:28:27:51:08:28:d7:10:b6:07:dd: 06:70:2a:22:65:99:69:b9:65:1b:fa:83:85:cf:a8: 69:83:ab:81:36:5f:b9:64:00:85:d4:85:66:e9:de: d1:f0:56:11:aa:a7:cf:d7:20:49:81:c6:ab:72:7d: be:49:5a:e7:c4:31:89:12:9a:4a:ed:af:63:4c:c9: 80:65:3f:2d:34:be:4c:2a:e1:a7:be:54:37:c5:df: 0d:12:11:0c:75:fe:9a:4d:42:87:29:95:66:fa:e9: 48:4f:f1:5d:e2:b3:00:62:91:71:be:55:9e:c4:7a: 64:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:2A:35:B6:94:EA:48:88:39:32:3C:5F:6E:D0:02:0F:48:41:B6:3B X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.96.0/22 103.38.196.0/22 Signature Algorithm: sha256WithRSAEncryption 61:68:87:57:0f:78:de:21:26:66:4f:6a:30:c2:7b:ee:ba:c8: e1:44:93:f5:26:43:d0:a4:81:05:0a:42:ad:d0:18:82:31:cc: 31:66:61:ad:68:2c:ba:64:47:68:21:92:fa:12:28:61:dc:95: f4:36:d6:d0:bd:c1:6f:37:f8:c0:36:cc:f2:db:1c:92:89:d8: 5e:14:e6:2e:90:9b:5e:d8:47:eb:69:f9:40:d1:32:2c:5b:3e: c0:88:6c:52:19:f9:21:fe:1c:14:3a:dc:26:b0:27:45:e7:f0: c4:6f:ab:d4:4a:70:f1:a5:74:50:0d:4b:08:2f:27:18:01:2f: 2b:74:6b:8a:b4:87:81:ef:c6:c7:a6:fd:11:60:d0:47:eb:c7: b6:71:cc:e7:7e:fc:41:7f:5d:fa:95:2d:1b:19:af:28:9f:e9: f9:88:13:83:70:11:13:bc:bd:dd:43:77:a8:d1:ea:96:cc:b5: 01:74:b9:6c:35:0f:fd:36:27:67:75:cb:20:22:14:a0:bf:2b: 35:eb:e3:65:43:55:0b:92:85:3d:30:6e:92:e3:a1:2b:35:68: b1:ce:d0:82:f1:77:59:03:1d:12:d4:7b:ac:74:43:0b:eb:21: e8:aa:30:17:90:4e:0c:5e:e1:5e:a1:e1:9e:90:f8:f8:99:d0: 36:bb:ce:62 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjYwMTI4MTkxNTQzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzhhZC1lZWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQr52gMuYnucOCHMhar+cX4+fgfxaA+qd2WUaGNAwDutb+Nj5L0eQ367mSOk J9ahqHfb/RYeldgc+9KYGmBk2uo4ysmnF4OUFlOkBzIb+wvPP7rGEp+80eeSYGp0 kMmUA/cq5HZH/2jm6VuY8Y8faQzyM6fY0CVkWI/Lu9TFCo5NERAiq2ozM2lulygn UQgo1xC2B90GcCoiZZlpuWUb+oOFz6hpg6uBNl+5ZACF1IVm6d7R8FYRqqfP1yBJ gcarcn2+SVrnxDGJEppK7a9jTMmAZT8tNL5MKuGnvlQ3xd8NEhEMdf6aTUKHKZVm +ulIT/Fd4rMAYpFxvlWexHpk1wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFFgqNbaU 6kiIOTI8X27QAg9IQbY7MB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM5NjYvQTE5NTJCQTIxQzExMTFFQUI2QzNDNzZEQzRGOUFFMDIvNURBODQ5ODIx QzEyMTFFQTgxOUVBNDZFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/NgAwQCZybEMA0GCSqGSIb3DQEBCwUAA4IBAQBhaIdXD3jeISZm T2owwnvuusjhRJP1JkPQpIEFCkKt0BiCMcwxZmGtaCy6ZEdoIZL6Eihh3JX0NtbQ vcFvN/jANszy2xySidheFOYukJte2EfraflA0TIsWz7AiGxSGfkh/hwUOtwmsCdF 5/DEb6vUSnDxpXRQDUsILycYAS8rdGuKtIeB78bHpv0RYNBH68e2ccznfvxBf136 lS0bGa8on+n5iBODcBETvL3dQ3eo0eqWzLUBdLlsNQ/9NidndcsgIhSgvys16+Nl Q1ULkoU9MG6S46ErNWixztCC8XdZAx0S1HusdEML6yHoqjAXkE4MXuFeoeGekPj4 mdA2u85i -----END CERTIFICATE-----Generated at Mon Mar 2 12:37:15 2026 by rpki-client