$ rpki-client -vvf rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/C28841A201DB11EDA4B7F257C4F9AE02.roa File: C28841A201DB11EDA4B7F257C4F9AE02.roa (raw, json) Hash identifier: yYTtvE7CXHf8fnX9NjEKKec9Ps0u8GPKEPqTfsvne5k= Subject key identifier: DE:E5:60:7D:93:62:B9:A1:B8:57:1B:88:E5:51:F2:C6:0C:89:B4:5B Certificate issuer: /CN=A91D19ED/serialNumber=1ED4A50449F86200A0C2668069A28324F9F6A93E Certificate serial: 070E Authority key identifier: 1E:D4:A5:04:49:F8:62:00:A0:C2:66:80:69:A2:83:24:F9:F6:A9:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/C28841A201DB11EDA4B7F257C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:01:11 +0000 ROA not before: Mon 02 Feb 2026 22:18:39 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 38583 IP address blocks: 43.243.236.0/24 maxlen: 24 43.243.237.0/24 maxlen: 24 103.24.240.0/23 maxlen: 24 103.39.60.0/22 maxlen: 22 103.224.208.0/24 maxlen: 24 103.224.209.0/24 maxlen: 24 103.224.211.0/24 maxlen: 24 103.249.127.0/24 maxlen: 24 113.29.244.0/22 maxlen: 24 125.214.88.0/21 maxlen: 24 175.184.193.0/24 maxlen: 24 175.184.195.0/24 maxlen: 24 175.184.196.0/24 maxlen: 24 175.184.197.0/24 maxlen: 24 175.184.199.0/24 maxlen: 24 175.184.216.0/24 maxlen: 24 175.184.217.0/24 maxlen: 24 175.184.221.0/24 maxlen: 24 175.184.222.0/24 maxlen: 24 175.184.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:16:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1806 (0x70e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D19ED, serialNumber=1ED4A50449F86200A0C2668069A28324F9F6A93E Validity Not Before: Feb 2 22:18:39 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a47ee7-12c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a6:c7:ad:fb:30:0e:c0:76:f3:c5:9d:cd:8a: 88:ef:5a:b7:a3:25:3c:f9:25:9a:25:96:1d:df:04: 61:ba:b4:5d:e5:04:8d:28:18:9a:fc:f1:6a:5e:4a: c2:b7:3a:4c:52:c2:1f:0e:ca:9b:0e:00:a2:51:93: 9c:c4:3d:0e:6b:5b:14:8d:31:c9:ec:74:60:24:a5: 21:6e:74:d3:91:c5:5d:58:92:17:bd:24:46:9f:19: 35:a0:7f:66:d5:b2:6d:93:e9:74:4d:6d:4a:5b:34: 86:0e:83:d8:ca:24:9e:e1:7e:ae:0e:ef:9c:29:df: bf:15:88:d2:69:a5:75:ea:25:56:9d:c8:ad:58:7c: 81:42:19:cc:e7:ce:ec:f4:f7:24:fe:7f:a2:c1:6e: f5:d5:8b:ce:46:2d:c2:77:84:4d:18:d4:3d:10:dd: 90:6f:37:4c:03:a9:23:5f:75:88:5f:02:c4:be:aa: 9c:f6:78:f9:dd:19:50:1a:49:51:53:69:32:15:c5: 54:67:9d:9c:b0:f5:fa:6f:d8:f7:8e:44:46:b3:b1: 74:16:d4:ef:e9:0c:90:c2:17:46:ee:98:ea:67:35: a6:4f:56:6d:a2:9c:6d:36:b9:b2:e8:4a:24:e9:6d: 2b:a1:cb:b2:5d:26:e2:5d:a7:e7:62:03:35:72:33: 85:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E5:60:7D:93:62:B9:A1:B8:57:1B:88:E5:51:F2:C6:0C:89:B4:5B X509v3 Authority Key Identifier: keyid:1E:D4:A5:04:49:F8:62:00:A0:C2:66:80:69:A2:83:24:F9:F6:A9:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/C28841A201DB11EDA4B7F257C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.236.0/23 103.24.240.0/23 103.39.60.0/22 103.224.208.0/23 103.224.211.0/24 103.249.127.0/24 113.29.244.0/22 125.214.88.0/21 175.184.193.0/24 175.184.195.0-175.184.197.255 175.184.199.0/24 175.184.216.0/23 175.184.221.0-175.184.223.255 Signature Algorithm: sha256WithRSAEncryption 7b:1f:e8:95:d7:fb:39:52:f2:57:c8:40:73:5d:62:04:ea:24: 2e:bf:4c:a4:4b:77:97:7d:87:a4:89:54:af:59:18:e2:d4:7e: 55:0d:b5:f3:a6:c4:7a:93:e2:f4:84:bb:6f:0f:80:63:1c:3e: 98:51:68:26:95:30:9d:d2:5b:b7:ff:df:41:d8:7f:41:c8:b4: 11:1f:39:5b:5d:ef:4a:ff:13:f5:0c:70:f5:59:4a:48:d0:e9: eb:a4:56:f7:4f:3a:51:40:71:c2:8e:80:07:84:c4:65:4e:29: f7:74:6f:da:cd:c0:3f:65:5d:e7:eb:4c:d2:b4:8b:b0:34:5d: 86:24:c4:1c:ff:1d:47:5e:e4:a6:d6:ba:6c:75:b0:24:ef:44: c4:a0:03:d2:84:e0:d4:f4:b4:ba:af:c1:73:cd:13:01:04:b6: bc:13:e1:21:60:d9:9b:7e:0d:92:65:bc:2d:c6:b1:b3:3d:47: ed:8a:46:6f:eb:aa:61:b3:e6:0f:5a:cf:0c:1f:d8:c0:d1:c4: c2:72:67:2f:65:b8:f6:e0:30:c5:ec:4e:db:54:97:11:f7:ad: d0:37:d5:40:48:a7:50:c4:d8:a3:1c:e4:17:25:e3:bc:f7:91: 56:f6:c6:1a:43:9f:20:58:1d:31:01:1f:a9:41:10:75:d3:3e: 52:06:0b:bb -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICBw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE5RUQxMTAvBgNVBAUTKDFFRDRBNTA0NDlGODYyMDBBMEMyNjY4MDY5QTI4MzI0 RjlGNkE5M0UwHhcNMjYwMjAyMjIxODM5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2VlNy0xMmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKbHrfswDsB288WdzYqI71q3oyU8+SWaJZYd3wRhurRd5QSNKBia/PFqXkrC tzpMUsIfDsqbDgCiUZOcxD0Oa1sUjTHJ7HRgJKUhbnTTkcVdWJIXvSRGnxk1oH9m 1bJtk+l0TW1KWzSGDoPYyiSe4X6uDu+cKd+/FYjSaaV16iVWncitWHyBQhnM587s 9Pck/n+iwW711YvORi3Cd4RNGNQ9EN2QbzdMA6kjX3WIXwLEvqqc9nj53RlQGklR U2kyFcVUZ52csPX6b9j3jkRGs7F0FtTv6QyQwhdG7pjqZzWmT1ZtopxtNrmy6Eok 6W0rocuyXSbiXafnYgM1cjOF+wIDAQABo4ICuDCCArQwHQYDVR0OBBYEFN7lYH2T YrmhuFcbiOVR8sYMibRbMB8GA1UdIwQYMBaAFB7UpQRJ+GIAoMJmgGmigyT59qk+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTlFRC81NEI5N0EyNjhB QjYxMUVCODMyRjAzMTRDNEY5QUUwMi9IdFNsQkVuNFlnQ2d3bWFBYWFLREpQbjJx VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0U2xCRW40WWdDZ3dtYUFhYUtESlBuMnFUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE5RUQvNTRCOTdBMjY4QUI2MTFFQjgzMkYwMzE0QzRGOUFFMDIvQzI4ODQxQTIw MURCMTFFREE0QjdGMjU3QzRGOUFFMDIucm9hMHcGCCsGAQUFBwEHAQH/BGgwZjBk BAIAATBeAwQBK/PsAwQBZxjwAwQCZyc8AwQBZ+DQAwQAZ+DTAwQAZ/l/AwQCcR30 AwQDfdZYAwQAr7jBMAwDBACvuMMDBAGvuMQDBACvuMcDBAGvuNgwDAMEAK+43QME Ba+4wDANBgkqhkiG9w0BAQsFAAOCAQEAex/oldf7OVLyV8hAc11iBOokLr9MpEt3 l32HpIlUr1kY4tR+VQ2186bEepPi9IS7bw+AYxw+mFFoJpUwndJbt//fQdh/Qci0 ER85W13vSv8T9Qxw9VlKSNDp66RW9086UUBxwo6AB4TEZU4p93Rv2s3AP2Vd5+tM 0rSLsDRdhiTEHP8dR17kpta6bHWwJO9ExKAD0oTg1PS0uq/Bc80TAQS2vBPhIWDZ m34NkmW8Lcaxsz1H7YpGb+uqYbPmD1rPDB/YwNHEwnJnL2W49uAwxexO21SXEfet 0DfVQEinUMTYoxzkFyXjvPeRVvbGGkOfIFgdMQEfqUEQddM+UgYLuw== -----END CERTIFICATE-----Generated at Mon Mar 2 09:13:32 2026 by rpki-client