$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/A96F9914F1D811EFA3152963C4F9AE02.roa File: A96F9914F1D811EFA3152963C4F9AE02.roa (raw, json) Hash identifier: 83NxF7lUsOtgh4yzzrYO7dgtUgO2FORjLb/RtRaqMGo= Subject key identifier: 78:B6:CD:44:21:70:6E:8C:06:29:74:3A:5A:D7:0D:C8:19:C1:CC:DE Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 0723 Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/A96F9914F1D811EFA3152963C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:31:04 +0000 ROA not before: Tue 02 Dec 2025 21:25:08 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139769 IP address blocks: 43.251.8.0/24 maxlen: 24 43.251.9.0/24 maxlen: 24 43.251.10.0/24 maxlen: 24 43.251.11.0/24 maxlen: 24 103.42.104.0/24 maxlen: 24 103.42.105.0/24 maxlen: 24 103.42.106.0/24 maxlen: 24 103.42.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1827 (0x723) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499, serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Validity Not Before: Dec 2 21:25:08 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43188-dfa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5d:bd:32:7c:0a:4d:e8:32:ab:45:82:2b:3e: 2a:48:88:86:51:36:2f:74:6f:f5:39:17:25:44:6a: f7:4f:32:fc:9b:cd:2a:58:0d:f6:41:04:dd:08:e4: 65:ee:df:92:b1:ec:ad:af:29:fe:55:c2:46:d6:e8: 85:7d:7c:3a:84:e3:af:fc:8d:0e:26:a1:29:cd:2f: 37:20:02:41:46:5d:fe:04:89:6e:82:f4:b3:ab:c9: 1f:08:16:b8:75:57:8f:29:65:73:11:dd:49:c7:66: d9:97:20:d4:9d:b5:fc:7b:bc:60:d8:62:e2:02:a8: 09:49:fd:cd:0a:4c:a2:39:49:24:df:09:87:18:9d: 0e:99:ec:b4:59:31:17:29:75:7a:7f:9b:03:69:e3: c5:27:1a:a6:b3:74:9b:b4:f9:33:7b:c1:a6:e0:6f: 24:7a:a0:df:d5:29:cb:f2:2b:0d:6a:2a:a3:9f:28: ed:3e:9d:35:35:72:1e:e0:1f:f8:c8:f3:1c:cd:4c: 9a:1f:93:cf:67:da:11:2b:4a:6a:3c:6e:68:34:3a: cf:d6:04:62:11:ac:d0:51:49:35:19:82:0f:45:f7: ba:cc:f9:7a:8e:e8:a3:60:ce:e3:0b:13:07:f3:d8: ad:07:6e:b6:e8:25:7b:2f:ad:c7:88:31:f9:1e:03: 74:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:B6:CD:44:21:70:6E:8C:06:29:74:3A:5A:D7:0D:C8:19:C1:CC:DE X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/A96F9914F1D811EFA3152963C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.251.8.0/22 103.42.104.0/22 Signature Algorithm: sha256WithRSAEncryption a2:d4:1d:39:29:ac:0c:4d:9e:56:56:b4:09:e9:bf:b0:cc:d9: 9c:fc:0b:22:2c:f3:e3:46:3e:55:10:08:1a:53:44:90:d6:80: 6d:26:3f:50:06:cd:ea:87:e4:73:24:e8:8c:e5:cf:87:54:f2: dc:d3:0e:1f:22:72:09:4a:1a:18:68:d8:09:c6:01:4a:ac:c7: f5:72:19:6e:b1:1f:13:21:5e:bb:77:a2:a1:08:3e:93:34:47: f0:47:38:8c:2a:92:89:89:dc:3b:ab:fa:5c:02:b8:ac:a0:a5: 5e:19:77:52:4a:e7:83:ca:63:3c:bb:c8:1c:43:21:03:2a:1e: 63:d4:63:f7:27:8a:a6:e1:21:32:6e:d1:c8:20:e8:61:d2:63: 3f:ce:54:c4:b9:27:57:56:1c:4f:37:98:d0:b6:bb:59:c3:70: 98:47:0a:30:78:e8:64:30:1c:96:7b:b6:9c:b0:ac:88:fc:20: 1b:8b:e4:72:03:79:9b:3e:20:3c:cd:97:29:bc:d0:61:8b:34: 5d:d2:a4:c8:3f:8a:81:8d:c0:fb:72:bd:1a:0e:51:ab:6e:d4: 6b:f8:15:b2:7a:2a:49:5b:b0:86:95:08:47:9d:f4:64:83:f9: e4:77:52:e4:a8:7b:bd:77:41:c0:b5:e8:db:78:63:b1:44:21: a5:31:1f:e9 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICByMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjUxMjAyMjEyNTA4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzE4OC1kZmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAql29MnwKTegyq0WCKz4qSIiGUTYvdG/1ORclRGr3TzL8m80qWA32QQTdCORl 7t+Sseytryn+VcJG1uiFfXw6hOOv/I0OJqEpzS83IAJBRl3+BIlugvSzq8kfCBa4 dVePKWVzEd1Jx2bZlyDUnbX8e7xg2GLiAqgJSf3NCkyiOUkk3wmHGJ0Omey0WTEX KXV6f5sDaePFJxqms3SbtPkze8Gm4G8keqDf1SnL8isNaiqjnyjtPp01NXIe4B/4 yPMczUyaH5PPZ9oRK0pqPG5oNDrP1gRiEazQUUk1GYIPRfe6zPl6juijYM7jCxMH 89itB2626CV7L63HiDH5HgN0cwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFHi2zUQh cG6MBil0OlrXDcgZwczeMB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY0OTkvOUY4MzZDNTI3ODA5MTFFQkExNkFFMTU2QzRGOUFFMDIvQTk2Rjk5MTRG MUQ4MTFFRkEzMTUyOTYzQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/sIAwQCZypoMA0GCSqGSIb3DQEBCwUAA4IBAQCi1B05KawMTZ5W VrQJ6b+wzNmc/AsiLPPjRj5VEAgaU0SQ1oBtJj9QBs3qh+RzJOiM5c+HVPLc0w4f InIJShoYaNgJxgFKrMf1chlusR8TIV67d6KhCD6TNEfwRziMKpKJidw7q/pcAris oKVeGXdSSueDymM8u8gcQyEDKh5j1GP3J4qm4SEybtHIIOhh0mM/zlTEuSdXVhxP N5jQtrtZw3CYRwoweOhkMByWe7acsKyI/CAbi+RyA3mbPiA8zZcpvNBhizRd0qTI P4qBjcD7cr0aDlGrbtRr+BWyeipJW7CGlQhHnfRkg/nkd1LkqHu9d0HAtejbeGOx RCGlMR/p -----END CERTIFICATE-----Generated at Mon Mar 2 13:20:35 2026 by rpki-client