$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/66BEBEDE83CB11E796105342C4F9AE02.roa File: 66BEBEDE83CB11E796105342C4F9AE02.roa (raw, json) Hash identifier: f0Q1Azb+EY8V4HrdxVOXBmjzrSvFe4VSQb8ZAnHoPpo= Subject key identifier: AE:A8:7A:C3:FE:30:F6:48:9F:09:9E:61:36:C2:ED:C0:AB:BE:45:71 Certificate issuer: /CN=A91D1306/serialNumber=E04FB2AA627D97B989AECFE86974E3C5F303121A Certificate serial: 19A5 Authority key identifier: E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/66BEBEDE83CB11E796105342C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:30:44 +0000 ROA not before: Tue 08 Apr 2025 16:54:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17882 IP address blocks: 43.228.128.0/24 maxlen: 24 43.228.129.0/24 maxlen: 24 43.228.130.0/24 maxlen: 24 43.228.131.0/24 maxlen: 24 103.229.120.0/24 maxlen: 24 103.229.121.0/24 maxlen: 24 103.229.122.0/24 maxlen: 24 103.229.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.crl rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6565 (0x19a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1306, serialNumber=E04FB2AA627D97B989AECFE86974E3C5F303121A Validity Not Before: Apr 8 16:54:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a42364-00d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fa:64:83:53:fd:f5:71:7b:a8:39:93:8a:20: fc:a5:20:a5:5d:c5:a0:d9:c5:51:99:a2:11:e2:3e: a0:91:2b:ba:05:07:ad:c8:f7:25:ae:01:a1:05:e7: 65:30:5e:4a:86:46:e6:76:99:57:a3:7a:08:35:ec: 85:da:b3:ac:94:e4:51:c8:76:ea:e8:c1:ca:a3:01: 1f:56:79:0e:ba:3a:d1:f8:0e:fe:74:c4:39:e0:e0: f9:db:58:96:b5:c3:e9:6c:42:47:f7:5b:5b:c2:10: 25:00:ca:bb:54:46:01:e4:c3:2e:5b:c3:1f:8f:ce: 9e:c6:6c:41:27:37:8c:16:7b:70:04:ff:2b:29:6c: 1f:6a:ec:aa:38:cb:ad:7e:c2:09:05:6b:21:cb:d2: b9:5d:c0:4c:6c:4e:59:96:f2:75:54:b0:77:7d:87: 60:d5:6f:4e:61:1c:ec:a8:d7:f5:dd:09:29:4e:d9: 3b:5f:b3:b7:97:e8:75:df:44:78:6d:64:24:33:f5: 27:20:74:ff:dc:ec:f0:2b:80:f0:2d:b2:4b:f3:e7: 54:51:a4:dd:e2:62:24:13:fb:31:01:23:a2:10:6b: db:a4:4c:ab:59:e1:3d:a5:eb:3d:a2:f9:e2:6e:f0: 9b:95:c6:ad:d1:de:05:db:b1:33:79:27:9f:a3:25: a3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A8:7A:C3:FE:30:F6:48:9F:09:9E:61:36:C2:ED:C0:AB:BE:45:71 X509v3 Authority Key Identifier: keyid:E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/66BEBEDE83CB11E796105342C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.228.128.0/22 103.229.120.0/22 Signature Algorithm: sha256WithRSAEncryption 13:19:ae:c6:79:f5:59:12:a6:f8:8f:60:30:d7:c1:d1:80:72: 00:b6:99:44:02:b9:85:62:6e:26:30:59:48:e6:31:51:51:5e: 04:18:f1:19:57:46:4d:df:d3:02:a0:37:86:82:a6:c8:f3:35: 32:1c:10:9f:f7:52:ea:11:72:b5:f4:ba:d3:19:c7:c1:fa:1d: 7e:53:41:e6:20:00:fa:73:6e:27:9a:fb:a2:98:36:00:c5:83: d8:20:51:c5:a2:92:ce:48:b5:40:e3:3c:29:68:0e:da:00:c9: 17:2a:17:53:d6:9a:06:a9:11:74:71:0b:77:09:63:99:fb:06: b9:4e:1a:37:46:62:9d:b1:1c:eb:cc:e9:de:26:a1:92:bf:55: ba:f1:92:6e:b4:62:2d:0e:2b:94:09:51:34:ce:94:2b:a6:57: 8c:84:14:92:b5:0d:c0:88:e4:55:a8:be:7f:d6:63:22:53:20: 69:57:37:f1:b3:f9:df:da:17:cb:87:43:ea:7a:ee:f0:76:69: 8b:ba:4c:45:c0:a8:9e:43:2b:59:9c:62:47:84:3d:f2:e1:39: 06:c4:38:66:26:bc:31:da:31:1c:a5:b7:72:5d:a1:be:ae:b7: 7d:52:73:fa:1f:49:ac:71:8a:5a:d2:e2:24:f3:c7:af:99:8a: 30:75:17:f7 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICGaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEzMDYxMTAvBgNVBAUTKEUwNEZCMkFBNjI3RDk3Qjk4OUFFQ0ZFODY5NzRFM0M1 RjMwMzEyMUEwHhcNMjUwNDA4MTY1NDM4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjM2NC0wMGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/pkg1P99XF7qDmTiiD8pSClXcWg2cVRmaIR4j6gkSu6BQetyPclrgGhBedl MF5KhkbmdplXo3oINeyF2rOslORRyHbq6MHKowEfVnkOujrR+A7+dMQ54OD521iW tcPpbEJH91tbwhAlAMq7VEYB5MMuW8Mfj86exmxBJzeMFntwBP8rKWwfauyqOMut fsIJBWshy9K5XcBMbE5ZlvJ1VLB3fYdg1W9OYRzsqNf13QkpTtk7X7O3l+h130R4 bWQkM/UnIHT/3OzwK4DwLbJL8+dUUaTd4mIkE/sxASOiEGvbpEyrWeE9pes9ovni bvCblcat0d4F27EzeSefoyWjlwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFK6oesP+ MPZInwmeYTbC7cCrvkVxMB8GA1UdIwQYMBaAFOBPsqpifZe5ia7P6Gl048XzAxIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTMwNi9GRTQ5NzQ5ODgz Q0ExMUU3QjgyNDBBNDJDNEY5QUUwMi80RS15cW1KOWw3bUpyc19vYVhUanhmTURF aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRFLXlxbUo5bDdtSnJzX29hWFRqeGZNREVoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDEzMDYvRkU0OTc0OTg4M0NBMTFFN0I4MjQwQTQyQzRGOUFFMDIvNjZCRUJFREU4 M0NCMTFFNzk2MTA1MzQyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK+SAAwQCZ+V4MA0GCSqGSIb3DQEBCwUAA4IBAQATGa7GefVZEqb4 j2Aw18HRgHIAtplEArmFYm4mMFlI5jFRUV4EGPEZV0ZN39MCoDeGgqbI8zUyHBCf 91LqEXK19LrTGcfB+h1+U0HmIAD6c24nmvuimDYAxYPYIFHFopLOSLVA4zwpaA7a AMkXKhdT1poGqRF0cQt3CWOZ+wa5Tho3RmKdsRzrzOneJqGSv1W68ZJutGItDiuU CVE0zpQrpleMhBSStQ3AiORVqL5/1mMiUyBpVzfxs/nf2hfLh0Pqeu7wdmmLukxF wKieQytZnGJHhD3y4TkGxDhmJrwx2jEcpbdyXaG+rrd9UnP6H0mscYpa0uIk88ev mYowdRf3 -----END CERTIFICATE-----Generated at Mon Mar 2 08:39:50 2026 by rpki-client