$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/7E645DDA123511F19B73B6E9233D8C67.roa File: 7E645DDA123511F19B73B6E9233D8C67.roa (raw, json) Hash identifier: Lf9KFa0nKOWU6CI7SCy/k5kIenr/yr27iXLl4mKSIX0= Subject key identifier: 03:BA:E3:60:F6:10:D8:27:6E:45:02:A1:84:21:42:37:62:92:8D:97 Certificate issuer: /CN=A91C1A14/serialNumber=598DD5A39AE477658AD5BCBFE36264A1A61D6708 Certificate serial: 0A44 Authority key identifier: 59:8D:D5:A3:9A:E4:77:65:8A:D5:BC:BF:E3:62:64:A1:A6:1D:67:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/7E645DDA123511F19B73B6E9233D8C67.roa Signing time: Sun 01 Mar 2026 18:00:41 +0000 ROA not before: Wed 25 Feb 2026 10:36:21 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 198381 IP address blocks: 43.225.97.0/24 maxlen: 24 103.244.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.crl rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:05:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2628 (0xa44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A14, serialNumber=598DD5A39AE477658AD5BCBFE36264A1A61D6708 Validity Not Before: Feb 25 10:36:21 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a47ec9-caa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:0e:a0:7a:1b:37:59:51:d2:b7:c7:e6:cc:48: ae:2c:46:2e:c2:34:fe:d9:b3:52:0d:ce:e4:26:03: aa:aa:38:bb:a6:15:40:29:d1:a0:8a:8d:f6:f0:b1: 06:7b:4d:fb:40:7c:57:88:52:fd:6e:93:ca:81:0e: 2e:f0:fb:34:ed:e6:e9:3c:16:84:0b:14:30:ff:be: aa:fd:c7:09:f0:5b:b9:f0:b0:ce:a6:1a:06:75:d6: 05:7d:1f:cf:45:ab:f7:d4:bf:53:01:b3:55:4a:6c: 4f:53:ea:ca:53:f1:64:86:d4:2e:33:f5:4a:ad:8a: cd:e5:c1:07:24:92:f0:3a:b7:af:76:44:b6:9f:ef: 2f:a3:df:eb:86:31:57:90:0b:21:5b:d5:a2:4d:05: f6:2b:1a:e7:fd:55:ca:62:86:56:38:d7:fb:a2:38: 21:ac:63:c5:5b:1b:ec:66:11:4c:1b:3e:db:ca:f9: 95:45:53:c4:8a:ce:14:fa:da:bb:18:b8:63:0d:24: 73:76:dc:e1:9e:96:4d:33:7e:6d:45:9a:b6:2f:55: 21:98:bb:c4:b5:ea:6d:cd:12:0c:c8:da:08:56:1e: 3a:6d:79:d5:63:cc:76:ce:57:43:99:90:a5:17:3f: 9b:2e:ac:8a:56:96:33:2c:87:69:bf:30:ed:55:aa: d6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:BA:E3:60:F6:10:D8:27:6E:45:02:A1:84:21:42:37:62:92:8D:97 X509v3 Authority Key Identifier: keyid:59:8D:D5:A3:9A:E4:77:65:8A:D5:BC:BF:E3:62:64:A1:A6:1D:67:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/7E645DDA123511F19B73B6E9233D8C67.roa sbgp-ipAddrBlock: critical IPv4: 43.225.97.0/24 103.244.132.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:6a:d6:b7:93:27:60:9e:80:0b:8e:b5:57:4b:64:d5:be:5f: 24:a2:7e:83:e9:18:c3:14:72:ba:1d:c4:c8:4f:dc:11:51:37: 0c:7a:6d:5c:08:4d:70:8e:a8:2b:5f:f0:34:41:d0:06:0e:47: e7:bf:b8:ab:b5:2e:55:75:56:64:bc:88:2c:b1:df:9e:8f:b7: 9e:dd:fb:30:13:76:dd:b0:68:f9:ba:a7:a2:5d:1b:e2:1b:be: f5:65:21:7b:4d:ac:9b:68:e8:1e:0a:ab:18:63:98:ac:ae:a3: 14:29:ee:6d:4a:3a:1b:b3:d1:47:8f:3e:b6:2d:6d:1a:87:3b: 1e:27:99:1a:a0:d9:a6:28:98:a7:15:79:f5:af:60:9e:98:ab: 19:ce:9f:50:5d:ff:03:61:4c:be:9b:be:89:7e:e2:97:93:6f: 57:80:e8:74:0e:ff:9e:54:da:50:05:79:c1:cb:4e:25:0f:c6: 68:f2:1e:31:6b:c4:13:34:ea:3f:66:68:11:6f:62:9a:a4:82: c2:69:86:98:fa:96:3a:bc:84:17:e0:dc:b4:49:57:cb:e2:d8: 2c:81:78:d2:fe:dd:e9:3e:ad:7f:f8:e1:80:ab:34:be:e4:ed: 3b:52:52:83:0e:87:72:a1:f8:aa:5d:dd:98:96:72:e0:e3:a6: 6d:79:cb:45 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBMTQxMTAvBgNVBAUTKDU5OERENUEzOUFFNDc3NjU4QUQ1QkNCRkUzNjI2NEEx QTYxRDY3MDgwHhcNMjYwMjI1MTAzNjIxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2VjOS1jYWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlw6gehs3WVHSt8fmzEiuLEYuwjT+2bNSDc7kJgOqqji7phVAKdGgio328LEG e037QHxXiFL9bpPKgQ4u8Ps07ebpPBaECxQw/76q/ccJ8Fu58LDOphoGddYFfR/P Rav31L9TAbNVSmxPU+rKU/FkhtQuM/VKrYrN5cEHJJLwOrevdkS2n+8vo9/rhjFX kAshW9WiTQX2Kxrn/VXKYoZWONf7ojghrGPFWxvsZhFMGz7byvmVRVPEis4U+tq7 GLhjDSRzdtzhnpZNM35tRZq2L1UhmLvEteptzRIMyNoIVh46bXnVY8x2zldDmZCl Fz+bLqyKVpYzLIdpvzDtVarWPQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFAO642D2 ENgnbkUCoYQhQjdiko2XMB8GA1UdIwQYMBaAFFmN1aOa5HdlitW8v+NiZKGmHWcI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUExNC9GN0U4NjQ0NjhG QkMxMUVBQThDMzEyN0JDNEY5QUUwMi9XWTNWbzVya2QyV0sxYnlfNDJKa29hWWRa d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dZM1ZvNXJrZDJXSzFieV80Mkprb2FZZFp3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFBMTQvRjdFODY0NDY4RkJDMTFFQUE4QzMxMjdCQzRGOUFFMDIvN0U2NDVEREEx MjM1MTFGMTlCNzNCNkU5MjMzRDhDNjcucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK+FhAwQBZ/SEMA0GCSqGSIb3DQEBCwUAA4IBAQALata3kydgnoAL jrVXS2TVvl8kon6D6RjDFHK6HcTIT9wRUTcMem1cCE1wjqgrX/A0QdAGDkfnv7ir tS5VdVZkvIgssd+ej7ee3fswE3bdsGj5uqeiXRviG771ZSF7TaybaOgeCqsYY5is rqMUKe5tSjobs9FHjz62LW0ahzseJ5kaoNmmKJinFXn1r2CemKsZzp9QXf8DYUy+ m76JfuKXk29XgOh0Dv+eVNpQBXnBy04lD8Zo8h4xa8QTNOo/ZmgRb2KapILCaYaY +pY6vIQX4Ny0SVfL4tgsgXjS/t3pPq1/+OGAqzS+5O07UlKDDodyofiqXd2YlnLg 46ZtectF -----END CERTIFICATE-----Generated at Mon Mar 2 08:43:22 2026 by rpki-client