$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/43540B7A0EE311EF9E24862BC4F9AE02.roa File: 43540B7A0EE311EF9E24862BC4F9AE02.roa (raw, json) Hash identifier: 136+5Mqj8LsH3BeiE2xVedpLET3+SzJNeO37YmXz3rk= Subject key identifier: 91:AA:43:CF:B2:D0:61:71:2B:A1:08:92:94:98:1F:65:4B:6E:99:D4 Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 04BC Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/43540B7A0EE311EF9E24862BC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:02:17 +0000 ROA not before: Thu 04 Dec 2025 22:37:23 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 45814 IP address blocks: 103.48.24.0/24 maxlen: 24 103.48.25.0/24 maxlen: 24 103.104.84.0/24 maxlen: 24 103.104.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1212 (0x4bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Dec 4 22:37:23 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a454f9-01b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c9:9e:33:f8:dc:c4:21:3d:85:62:89:40:43: ea:f5:98:a5:e8:82:a2:ff:d6:0c:54:23:4c:8c:5e: c8:b4:26:4f:b2:eb:a3:05:67:be:8d:e0:13:58:d4: 7d:22:38:d7:c3:ac:2b:d9:35:a6:98:b5:7a:b1:cd: 7c:63:0f:db:86:a6:c4:4d:1e:59:f4:a1:a0:40:0c: 7c:40:43:c5:39:2a:74:6d:a7:63:88:45:d7:ac:ac: 2c:03:b5:7f:ce:7f:6c:11:42:a4:e3:10:1e:e2:7e: de:66:8b:4c:07:17:25:71:3e:e2:c6:f6:62:1e:ab: 1c:2a:9f:c0:a4:39:df:30:c9:9d:c2:d3:a8:76:dc: 6a:bb:e1:6a:03:25:47:d4:27:62:2d:a2:aa:69:63: f7:a9:05:59:a5:f0:e5:f0:aa:c7:28:ec:a8:d8:2e: a5:b9:e8:28:66:73:99:63:6b:62:82:f6:e1:90:40: a9:56:04:12:a8:d9:f2:35:45:d5:d8:cc:e3:00:97: e3:e6:ee:97:55:48:88:17:df:bc:cf:ab:e6:bf:04: b3:ff:05:f3:40:9b:2c:7b:ff:90:c9:7f:0c:ce:e4: a4:0a:23:4e:b0:d2:49:23:9e:e7:70:e7:57:92:7d: 0b:0d:03:ba:e6:39:ad:5b:9e:40:a9:87:fe:e9:41: 3f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:AA:43:CF:B2:D0:61:71:2B:A1:08:92:94:98:1F:65:4B:6E:99:D4 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/43540B7A0EE311EF9E24862BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.48.24.0/23 103.104.84.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:e8:2b:69:d5:2f:8c:ec:5c:87:a0:bd:3c:e1:de:60:39:60: 7e:8e:71:b4:a9:d9:41:25:b7:43:64:d4:eb:87:cc:41:20:dc: d0:67:97:cc:49:2c:44:0b:f7:be:dd:13:0b:6a:1a:fe:13:8a: 39:0c:14:19:2c:74:da:59:31:83:39:aa:65:8b:45:67:e3:57: af:4b:e5:10:05:cf:9c:09:d1:cf:1b:94:90:e8:7b:ea:9a:26: 68:10:21:31:a5:4a:24:5b:06:90:38:61:a3:ce:c7:71:9a:96: ff:81:42:89:10:aa:96:ef:c8:81:1a:ae:6d:5c:67:c8:d1:6d: 5a:12:29:1d:fe:b2:eb:0c:64:15:31:76:29:be:0d:18:d6:ad: ba:eb:71:68:6c:29:9e:88:fe:f7:c1:66:7c:0c:5c:86:ff:a4: 56:da:d8:a2:0e:5d:e3:23:ee:9a:d8:64:c7:44:79:0e:6b:d3: b7:2a:a3:03:a6:a7:99:cc:99:c6:cb:1e:d1:10:d8:91:1f:06: c5:95:57:2d:9f:58:95:70:af:61:72:c5:9c:71:34:e5:3a:89: 92:02:20:4d:56:24:2d:7b:0b:16:1e:0c:b7:5d:e2:4e:50:93: 8f:ee:12:b3:f8:3c:35:6c:5c:f2:d8:3e:8b:5f:74:24:75:0e: ef:16:a6:92 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjUxMjA0MjIzNzIzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTRmOS0wMWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8cmeM/jcxCE9hWKJQEPq9Zil6IKi/9YMVCNMjF7ItCZPsuujBWe+jeATWNR9 IjjXw6wr2TWmmLV6sc18Yw/bhqbETR5Z9KGgQAx8QEPFOSp0badjiEXXrKwsA7V/ zn9sEUKk4xAe4n7eZotMBxclcT7ixvZiHqscKp/ApDnfMMmdwtOodtxqu+FqAyVH 1CdiLaKqaWP3qQVZpfDl8KrHKOyo2C6luegoZnOZY2tigvbhkECpVgQSqNnyNUXV 2MzjAJfj5u6XVUiIF9+8z6vmvwSz/wXzQJsse/+QyX8MzuSkCiNOsNJJI57ncOdX kn0LDQO65jmtW55AqYf+6UE/WwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFJGqQ8+y 0GFxK6EIkpSYH2VLbpnUMB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhCNEYvREQ3MzI2NDg2OEJDMTFFQzg3ODA3OTQ4QzRGOUFFMDIvNDM1NDBCN0Ew RUUzMTFFRjlFMjQ4NjJCQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZzAYAwQBZ2hUMA0GCSqGSIb3DQEBCwUAA4IBAQAP6Ctp1S+M7FyH oL084d5gOWB+jnG0qdlBJbdDZNTrh8xBINzQZ5fMSSxEC/e+3RMLahr+E4o5DBQZ LHTaWTGDOapli0Vn41evS+UQBc+cCdHPG5SQ6HvqmiZoECExpUokWwaQOGGjzsdx mpb/gUKJEKqW78iBGq5tXGfI0W1aEikd/rLrDGQVMXYpvg0Y1q2663FobCmeiP73 wWZ8DFyG/6RW2tiiDl3jI+6a2GTHRHkOa9O3KqMDpqeZzJnGyx7RENiRHwbFlVct n1iVcK9hcsWccTTlOomSAiBNViQtewsWHgy3XeJOUJOP7hKz+Dw1bFzy2D6LX3Qk dQ7vFqaS -----END CERTIFICATE-----Generated at Mon Mar 2 06:48:50 2026 by rpki-client