$ rpki-client -vvf rpki.apnic.net/member_repository/A91C575E/E2ACB43A896A11F081E44D57C4F9AE02/3FD60CEC896B11F0A99C2258C4F9AE02.roa File: 3FD60CEC896B11F0A99C2258C4F9AE02.roa (raw, json) Hash identifier: Znxli92ke42bUcuO4y2MWt6186ap7JgRI1qPxtQiAUw= Subject key identifier: 2C:44:72:1F:95:C3:F4:06:7A:84:0C:19:B0:CE:F0:42:E4:BF:92:F2 Certificate issuer: /CN=A91C575E/serialNumber=513ECE73EE9EA325EA442931B0062BD8BF304A76 Certificate serial: 62 Authority key identifier: 51:3E:CE:73:EE:9E:A3:25:EA:44:29:31:B0:06:2B:D8:BF:30:4A:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C575E/E2ACB43A896A11F081E44D57C4F9AE02/3FD60CEC896B11F0A99C2258C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:29:31 +0000 ROA not before: Thu 04 Sep 2025 10:27:47 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 154198 IP address blocks: 43.228.104.0/23 maxlen: 23 43.228.104.0/24 maxlen: 24 43.228.105.0/24 maxlen: 24 2402:27e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C575E/E2ACB43A896A11F081E44D57C4F9AE02/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.crl rsync://rpki.apnic.net/member_repository/A91C575E/E2ACB43A896A11F081E44D57C4F9AE02/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C575E, serialNumber=513ECE73EE9EA325EA442931B0062BD8BF304A76 Validity Not Before: Sep 4 10:27:47 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a3dccb-deae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:aa:ac:0b:7c:7c:34:31:e0:29:d0:8d:f2:ea: 4a:bb:31:9b:05:9f:0d:5e:16:56:23:d8:a9:f4:16: b2:3e:5f:78:c4:1f:96:95:7d:cf:32:b1:97:8f:dc: d4:10:ef:1b:86:a3:d2:09:a0:cc:68:ae:4d:61:18: 6c:b8:d9:d8:f8:79:77:17:e2:be:fc:23:b9:40:6c: 90:43:15:db:76:95:71:a4:1f:6e:a0:d8:23:47:23: 2c:35:00:1a:0e:a1:dd:20:44:1a:81:e6:8d:42:12: 51:17:08:52:a1:49:df:13:f2:4a:5a:28:24:67:9f: 1a:47:de:0a:07:3f:16:fd:af:9f:0d:0a:7b:99:34: 6d:0f:e0:cb:77:76:54:bf:c3:c2:b7:f7:3a:9a:ba: d8:8b:24:e2:8c:31:2a:78:b9:25:0a:62:e4:6f:37: 78:b9:e3:dc:c2:6e:50:3f:df:e0:05:0c:cb:9e:a1: 17:e8:19:9f:18:ce:40:9d:83:31:8d:97:ad:ea:93: 5d:48:4b:88:45:b6:f6:d6:5e:66:3e:50:e5:3c:69: e7:18:bf:be:e3:96:29:ad:75:1f:c0:de:a9:cc:c0: 50:83:e8:7c:16:1b:d1:fb:d7:ee:9f:6b:85:f9:a5: 41:a8:e6:2f:49:b1:ce:2b:20:c6:d2:ff:35:c9:6f: f0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:44:72:1F:95:C3:F4:06:7A:84:0C:19:B0:CE:F0:42:E4:BF:92:F2 X509v3 Authority Key Identifier: keyid:51:3E:CE:73:EE:9E:A3:25:EA:44:29:31:B0:06:2B:D8:BF:30:4A:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C575E/E2ACB43A896A11F081E44D57C4F9AE02/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C575E/E2ACB43A896A11F081E44D57C4F9AE02/3FD60CEC896B11F0A99C2258C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.228.104.0/23 IPv6: 2402:27e0::/32 Signature Algorithm: sha256WithRSAEncryption 18:f9:10:c9:14:b4:6f:30:ef:33:fd:0c:4e:a8:69:e6:43:1c: 01:ce:e9:d6:01:79:32:6a:bb:37:ed:eb:50:9e:14:2b:11:7a: 19:cf:f4:71:01:e0:32:9a:98:ec:1d:f3:bc:85:48:b7:85:19: 12:e3:05:a4:81:e6:94:3e:39:17:2c:26:37:91:dc:56:05:69: 2b:00:3b:9b:da:21:6c:8f:4c:c4:25:58:f1:3a:2c:0e:49:28: 34:6b:51:e2:e4:e9:36:50:b5:30:57:32:bb:57:bd:7c:6c:6c: d0:77:6d:2f:d4:e1:de:94:c3:c4:f6:39:2d:14:70:77:1f:69: e3:f6:9b:77:4d:ea:37:f0:57:59:27:75:ff:24:f8:df:9f:ce: e7:c0:f7:5e:0f:ab:d8:93:e9:0d:48:ee:d0:40:ce:61:f6:45: e2:60:36:14:cd:f9:9e:c2:3f:27:25:b0:27:26:5c:12:3b:53: 4c:85:94:a5:63:0a:ab:69:99:e2:28:47:95:65:64:44:fc:56: 34:f5:e9:39:a5:b0:27:74:58:e8:cb:f8:86:7d:aa:c6:e7:c6: 4b:7d:ee:19:a1:00:ae:fa:22:b9:2d:e2:18:72:77:22:4f:a0: 17:1b:5b:e4:48:84:2a:9e:f7:b5:dc:08:c2:ea:6c:87:75:26: cf:67:9d:c6 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTc1RTExMC8GA1UEBRMoNTEzRUNFNzNFRTlFQTMyNUVBNDQyOTMxQjAwNjJCRDhC RjMwNEE3NjAeFw0yNTA5MDQxMDI3NDdaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkY2NiLWRlYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCaqqwLfHw0MeAp0I3y6kq7MZsFnw1eFlYj2Kn0FrI+X3jEH5aVfc8ysZeP3NQQ 7xuGo9IJoMxork1hGGy42dj4eXcX4r78I7lAbJBDFdt2lXGkH26g2CNHIyw1ABoO od0gRBqB5o1CElEXCFKhSd8T8kpaKCRnnxpH3goHPxb9r58NCnuZNG0P4Mt3dlS/ w8K39zqautiLJOKMMSp4uSUKYuRvN3i549zCblA/3+AFDMueoRfoGZ8YzkCdgzGN l63qk11IS4hFtvbWXmY+UOU8aecYv77jlimtdR/A3qnMwFCD6HwWG9H71+6fa4X5 pUGo5i9Jsc4rIMbS/zXJb/BHAgMBAAGjggJvMIICazAdBgNVHQ4EFgQULERyH5XD 9AZ6hAwZsM7wQuS/kvIwHwYDVR0jBBgwFoAUUT7Oc+6eoyXqRCkxsAYr2L8wSnYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1NzVFL0UyQUNCNDNBODk2 QTExRjA4MUU0NEQ1N0M0RjlBRTAyL1VUN09jLTZlb3lYcVJDa3hzQVlyMkw4d1Nu WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVVQ3T2MtNmVveVhxUkNreHNBWXIyTDh3U25ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTc1RS9FMkFDQjQzQTg5NkExMUYwODFFNDRENTdDNEY5QUUwMi8zRkQ2MENFQzg5 NkIxMUYwQTk5QzIyNThDNEY5QUUwMi5yb2EwLgYIKwYBBQUHAQcBAf8EHzAdMAwE AgABMAYDBAEr5GgwDQQCAAIwBwMFACQCJ+AwDQYJKoZIhvcNAQELBQADggEBABj5 EMkUtG8w7zP9DE6oaeZDHAHO6dYBeTJquzft61CeFCsRehnP9HEB4DKamOwd87yF SLeFGRLjBaSB5pQ+ORcsJjeR3FYFaSsAO5vaIWyPTMQlWPE6LA5JKDRrUeLk6TZQ tTBXMrtXvXxsbNB3bS/U4d6Uw8T2OS0UcHcfaeP2m3dN6jfwV1kndf8k+N+fzufA 914Pq9iT6Q1I7tBAzmH2ReJgNhTN+Z7CPyclsCcmXBI7U0yFlKVjCqtpmeIoR5Vl ZET8VjT16TmlsCd0WOjL+IZ9qsbnxkt97hmhAK76Irkt4hhydyJPoBcbW+RIhCqe 97XcCMLqbId1Js9nncY= -----END CERTIFICATE-----Generated at Mon Mar 2 04:56:15 2026 by rpki-client