$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/9D664600CB1211EAACC0E528C4F9AE02.roa File: 9D664600CB1211EAACC0E528C4F9AE02.roa (raw, json) Hash identifier: A/vW/8y1/8Csuv1WZEdk6lJbCOT0BwYWD575nFNCBMU= Subject key identifier: F6:6F:C8:B4:52:83:23:65:46:76:9B:C7:EB:66:29:D3:BA:06:C6:48 Certificate issuer: /CN=A91DBF0D/serialNumber=0D68DBAD600F8BD90B355B98F4B238FB9E9A57FA Certificate serial: 08EA Authority key identifier: 0D:68:DB:AD:60:0F:8B:D9:0B:35:5B:98:F4:B2:38:FB:9E:9A:57:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/9D664600CB1211EAACC0E528C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:50:02 +0000 ROA not before: Fri 16 Jan 2026 20:16:50 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 63920 IP address blocks: 43.225.48.0/22 maxlen: 24 103.44.32.0/22 maxlen: 24 103.65.252.0/22 maxlen: 24 103.208.164.0/22 maxlen: 24 137.59.168.0/22 maxlen: 24 2401:cd80::/31 maxlen: 48 2404:4180::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.crl rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:04:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2282 (0x8ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0D, serialNumber=0D68DBAD600F8BD90B355B98F4B238FB9E9A57FA Validity Not Before: Jan 16 20:16:50 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4521a-050e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:53:86:46:f7:11:68:68:71:6e:1d:1a:ce:01: 1c:9f:c3:fa:b2:36:f7:6c:26:26:b9:14:17:6f:8a: fb:bf:24:5e:f6:9a:d6:8d:bd:3e:e0:12:84:13:ef: 14:5b:9c:b5:98:15:50:e2:4b:1e:13:89:c8:ab:bf: 6d:dd:06:d7:f1:91:69:51:d4:3d:9c:24:f7:4e:73: 28:ea:49:2f:09:95:ff:a1:61:a8:82:ba:45:53:0a: 58:91:86:97:d9:2f:f6:cf:78:25:80:72:37:4a:df: 2c:28:6c:36:33:d2:9f:ba:ae:3e:c5:15:9c:3c:f5: 16:34:63:43:3f:98:17:ac:d7:09:be:d4:26:51:d9: 14:0e:e1:58:00:cd:23:92:c9:cd:c3:fa:26:92:ef: 55:12:fc:c9:62:20:a6:a6:d0:d3:02:07:f9:a1:74: 7b:44:a4:3d:de:d2:98:31:ca:73:c7:c4:39:7f:be: 3e:87:85:f5:ca:c2:e1:9e:7d:b1:18:db:ab:73:ac: fa:8a:31:0a:ed:cf:4e:91:8e:6d:b6:42:0e:6c:a3: a7:a6:70:44:c6:73:c7:61:d2:9a:5a:90:31:d7:a5: 47:06:7f:c5:b4:1f:4a:45:f5:6e:f2:4b:1b:cb:90: 56:22:40:84:ee:23:bb:00:09:da:1a:f8:9c:bb:7b: 0b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:6F:C8:B4:52:83:23:65:46:76:9B:C7:EB:66:29:D3:BA:06:C6:48 X509v3 Authority Key Identifier: keyid:0D:68:DB:AD:60:0F:8B:D9:0B:35:5B:98:F4:B2:38:FB:9E:9A:57:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/9D664600CB1211EAACC0E528C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.225.48.0/22 103.44.32.0/22 103.65.252.0/22 103.208.164.0/22 137.59.168.0/22 IPv6: 2401:cd80::/31 2404:4180::/32 Signature Algorithm: sha256WithRSAEncryption 6c:d3:c1:a7:67:a9:b2:83:94:da:bd:35:c8:88:f9:5f:85:8e: 21:19:44:c8:5a:c2:fa:f1:76:c5:1d:b5:fa:09:0e:ac:28:d5: 6a:0d:43:2b:aa:62:8e:87:02:71:96:55:c2:2a:31:8f:be:29: f4:89:ad:53:aa:76:92:c7:57:89:df:68:5c:a6:2a:58:df:31: e4:52:cd:0e:6f:b2:e5:53:39:83:d2:26:95:e6:62:66:fc:6a: 86:06:cc:91:c2:9a:08:24:62:22:02:60:4b:9f:02:45:0a:9b: b3:18:13:bb:16:93:27:1d:5a:f5:cd:db:05:04:f2:b0:63:af: 5b:90:a2:4e:36:2d:2d:bd:f8:e8:c0:11:9e:5c:76:71:9c:9e: 7b:69:29:30:ec:59:24:64:2b:a7:4b:bd:29:21:a2:ad:a9:e2: e9:f5:1c:fd:96:a1:4a:ba:42:23:b2:6f:94:ff:6a:88:71:d9: 8c:bb:ee:f7:5e:20:a2:93:4b:ee:8c:37:b7:43:62:19:45:43: 2a:3a:a8:76:08:c6:b8:d2:10:68:c3:44:b4:46:22:46:b6:d4: 24:b6:14:e2:e3:b2:57:eb:21:65:6a:65:e4:75:99:f1:c8:59: 32:bf:3a:26:27:5f:a6:b2:fc:0d:82:f3:96:e3:f1:8c:3a:74: 82:ed:2f:12 -----BEGIN CERTIFICATE----- MIIFajCCBFKgAwIBAgICCOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJGMEQxMTAvBgNVBAUTKDBENjhEQkFENjAwRjhCRDkwQjM1NUI5OEY0QjIzOEZC OUU5QTU3RkEwHhcNMjYwMTE2MjAxNjUwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTIxYS0wNTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21OGRvcRaGhxbh0azgEcn8P6sjb3bCYmuRQXb4r7vyRe9prWjb0+4BKEE+8U W5y1mBVQ4kseE4nIq79t3QbX8ZFpUdQ9nCT3TnMo6kkvCZX/oWGogrpFUwpYkYaX 2S/2z3glgHI3St8sKGw2M9Kfuq4+xRWcPPUWNGNDP5gXrNcJvtQmUdkUDuFYAM0j ksnNw/omku9VEvzJYiCmptDTAgf5oXR7RKQ93tKYMcpzx8Q5f74+h4X1ysLhnn2x GNurc6z6ijEK7c9OkY5ttkIObKOnpnBExnPHYdKaWpAx16VHBn/FtB9KRfVu8ksb y5BWIkCE7iO7AAnaGvicu3sLwwIDAQABo4ICjjCCAoowHQYDVR0OBBYEFPZvyLRS gyNlRnabx+tmKdO6BsZIMB8GA1UdIwQYMBaAFA1o261gD4vZCzVbmPSyOPuemlf6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkYwRC81Nzk2NEQ0QUNC MEUxMUVBQTEwRjMzMURDNEY5QUUwMi9EV2picldBUGk5a0xOVnVZOUxJNC01NmFW X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RXamJyV0FQaTlrTE5WdVk5TEk0LTU2YVZfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJGMEQvNTc5NjRENEFDQjBFMTFFQUExMEYzMzFEQzRGOUFFMDIvOUQ2NjQ2MDBD QjEyMTFFQUFDQzBFNTI4QzRGOUFFMDIucm9hME0GCCsGAQUFBwEHAQH/BD4wPDAk BAIAATAeAwQCK+EwAwQCZywgAwQCZ0H8AwQCZ9CkAwQCiTuoMBQEAgACMA4DBQEk Ac2AAwUAJARBgDANBgkqhkiG9w0BAQsFAAOCAQEAbNPBp2epsoOU2r01yIj5X4WO IRlEyFrC+vF2xR21+gkOrCjVag1DK6pijocCcZZVwioxj74p9ImtU6p2ksdXid9o XKYqWN8x5FLNDm+y5VM5g9ImleZiZvxqhgbMkcKaCCRiIgJgS58CRQqbsxgTuxaT Jx1a9c3bBQTysGOvW5CiTjYtLb346MARnlx2cZyee2kpMOxZJGQrp0u9KSGirani 6fUc/ZahSrpCI7JvlP9qiHHZjLvu914gopNL7ow3t0NiGUVDKjqodgjGuNIQaMNE tEYiRrbUJLYU4uOyV+shZWpl5HWZ8chZMr86JidfprL8DYLzluPxjDp0gu0vEg== -----END CERTIFICATE-----Generated at Mon Mar 2 10:53:48 2026 by rpki-client