$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa File: 61663178F88311EDB1DF555DC4F9AE02.roa (raw, json) Hash identifier: G33TYspXU2Fxzv5ILVfshRhaPdOVDek7NtRxACK31hc= Subject key identifier: EA:27:5E:AA:5A:B8:24:2A:E1:FF:B6:C8:A9:5C:A1:65:E9:7E:69:97 Certificate issuer: /CN=A91CFA8E/serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Certificate serial: 0245 Authority key identifier: D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:18:47 +0000 ROA not before: Fri 07 Nov 2025 05:03:19 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 56309 IP address blocks: 43.229.148.0/22 maxlen: 24 43.249.32.0/23 maxlen: 24 103.13.28.0/22 maxlen: 24 103.40.118.0/23 maxlen: 24 103.99.11.0/24 maxlen: 24 103.107.52.0/22 maxlen: 24 103.114.201.0/24 maxlen: 24 103.114.203.0/24 maxlen: 24 103.117.148.0/22 maxlen: 24 103.224.84.0/22 maxlen: 24 117.18.124.0/22 maxlen: 24 199.21.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8E, serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Validity Not Before: Nov 7 05:03:19 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a458d7-1475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:01:8b:0b:59:dd:cb:6f:ff:97:f4:0f:5e:7c: dd:c5:76:38:ef:e9:eb:11:8a:95:53:a2:3b:72:b5: e3:b8:50:9a:3b:09:b5:58:bc:1b:df:51:6c:8d:9a: 9a:d2:d4:d2:c0:be:a9:d6:7f:0d:36:f4:13:e2:6a: 7e:75:6a:2a:04:94:f7:e6:dd:d8:5b:2d:97:d6:ce: 3b:50:89:87:40:86:25:2d:6d:4c:eb:6d:05:4c:34: ac:61:77:77:ca:9d:9e:94:49:97:63:03:0a:95:5e: f2:40:f6:b0:37:d4:bb:93:25:e3:d5:5c:3c:9e:bc: 95:a2:48:c8:d2:a2:6f:b4:81:cb:a3:c0:80:f5:8d: 94:47:79:26:ac:50:ae:f5:ad:af:28:2a:34:5c:3a: af:c5:d7:bc:07:1f:39:36:9d:64:3e:72:e0:60:1f: 66:c2:8e:3e:dc:9b:85:5f:cb:30:66:eb:c5:d0:46: f3:f8:99:d1:92:79:11:3c:7d:f4:fe:62:e6:b7:dc: 1b:98:1a:b0:00:53:7c:b9:6a:39:1f:64:22:db:4f: 60:bc:da:5a:86:14:46:70:fb:32:55:e7:05:40:bd: 71:ae:7f:00:ca:17:92:54:18:5f:78:82:ce:f9:79: c7:50:da:bb:5c:3a:53:15:86:86:72:36:6d:c4:3c: 4c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:27:5E:AA:5A:B8:24:2A:E1:FF:B6:C8:A9:5C:A1:65:E9:7E:69:97 X509v3 Authority Key Identifier: keyid:D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.229.148.0/22 43.249.32.0/23 103.13.28.0/22 103.40.118.0/23 103.99.11.0/24 103.107.52.0/22 103.114.201.0/24 103.114.203.0/24 103.117.148.0/22 103.224.84.0/22 117.18.124.0/22 199.21.172.0/22 Signature Algorithm: sha256WithRSAEncryption 16:a3:4f:5b:93:80:50:af:63:71:d6:92:a5:b6:6a:89:35:ed: b4:b8:2b:e6:e3:7c:f2:2c:ea:8e:8c:8e:d5:19:46:9d:8a:ff: a2:bb:0b:ab:1f:cf:c7:7d:87:f9:95:b8:bb:a7:65:dd:a1:bc: cb:7a:6c:5c:5e:2c:19:a3:f5:ac:8e:04:cd:66:ee:80:2b:a0: 83:28:48:7a:a2:b4:99:fe:41:08:21:d9:e3:dd:47:74:18:cf: c9:96:9c:a5:25:03:2c:45:4e:e3:b8:7e:e9:7e:41:c9:93:9b: 38:9f:f8:cc:49:b2:72:b5:49:ed:20:c4:0e:cd:bd:22:04:3b: 99:56:21:eb:0b:51:d1:63:d4:bf:f9:43:04:85:28:18:d5:af: 35:eb:fb:3c:ee:61:56:e3:10:87:eb:bc:8c:66:2f:d2:65:a8: 66:90:a4:02:58:8f:91:bf:61:67:6d:45:5a:da:b5:41:1c:5e: cf:27:da:2e:a2:69:4a:92:ed:5e:e8:a9:8a:43:65:45:a3:1d: 52:7b:88:e6:75:8e:3b:4f:d8:83:1c:a0:ba:46:cc:9e:48:3c: 08:78:a6:12:eb:36:20:55:4f:07:88:0a:2c:64:43:fd:94:ed: 0e:0d:6b:ca:96:0c:3a:93:7c:22:ca:ed:d0:ef:ba:4f:b7:57: ea:f1:d0:71 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEUxMTAvBgNVBAUTKEQ4ODBFRjI2NUI5NDBFMzFERkVEMUM0MkFFRjUxNDRC NjQ0MTM3MTcwHhcNMjUxMTA3MDUwMzE5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NThkNy0xNDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQGLC1ndy2//l/QPXnzdxXY47+nrEYqVU6I7crXjuFCaOwm1WLwb31FsjZqa 0tTSwL6p1n8NNvQT4mp+dWoqBJT35t3YWy2X1s47UImHQIYlLW1M620FTDSsYXd3 yp2elEmXYwMKlV7yQPawN9S7kyXj1Vw8nryVokjI0qJvtIHLo8CA9Y2UR3kmrFCu 9a2vKCo0XDqvxde8Bx85Np1kPnLgYB9mwo4+3JuFX8swZuvF0Ebz+JnRknkRPH30 /mLmt9wbmBqwAFN8uWo5H2Qi209gvNpahhRGcPsyVecFQL1xrn8AyheSVBhfeILO +XnHUNq7XDpTFYaGcjZtxDxMjwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFOonXqpa uCQq4f+2yKlcoWXpfmmXMB8GA1UdIwQYMBaAFNiA7yZblA4x3+0cQq71FEtkQTcX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RS82MUJBRDhFMEY4 N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURqSGY3UnhDcnZVVVMyUkJO eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJJRHZKbHVVRGpIZjdSeENydlVVUzJSQk54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZBOEUvNjFCQUQ4RTBGODdFMTFFRDkwRDg0NDVDQzRGOUFFMDIvNjE2NjMxNzhG ODgzMTFFREIxREY1NTVEQzRGOUFFMDIucm9hMGEGCCsGAQUFBwEHAQH/BFIwUDBO BAIAATBIAwQCK+WUAwQBK/kgAwQCZw0cAwQBZyh2AwQAZ2MLAwQCZ2s0AwQAZ3LJ AwQAZ3LLAwQCZ3WUAwQCZ+BUAwQCdRJ8AwQCxxWsMA0GCSqGSIb3DQEBCwUAA4IB AQAWo09bk4BQr2Nx1pKltmqJNe20uCvm43zyLOqOjI7VGUadiv+iuwurH8/HfYf5 lbi7p2XdobzLemxcXiwZo/WsjgTNZu6AK6CDKEh6orSZ/kEIIdnj3Ud0GM/Jlpyl JQMsRU7juH7pfkHJk5s4n/jMSbJytUntIMQOzb0iBDuZViHrC1HRY9S/+UMEhSgY 1a816/s87mFW4xCH67yMZi/SZahmkKQCWI+Rv2FnbUVa2rVBHF7PJ9ouomlKku1e 6KmKQ2VFox1Se4jmdY47T9iDHKC6RsyeSDwIeKYS6zYgVU8HiAosZEP9lO0ODWvK lgw6k3wiyu3Q77pPt1fq8dBx -----END CERTIFICATE-----Generated at Mon Mar 2 02:20:40 2026 by rpki-client