$ rpki-client -vvf rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/ED49BD3C649A11ECBDAC9565C4F9AE02.roa File: ED49BD3C649A11ECBDAC9565C4F9AE02.roa (raw, json) Hash identifier: rD15pka7RGN6Dr3Q8e78ui79TCm39qYtp73M6ru8354= Subject key identifier: 2D:89:B3:CC:6C:5E:BB:D4:A4:AF:47:0A:7E:2A:6A:F7:41:5B:C5:1A Certificate issuer: /CN=A91E094D/serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Certificate serial: 0630 Authority key identifier: F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/ED49BD3C649A11ECBDAC9565C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:36:22 +0000 ROA not before: Thu 23 Oct 2025 00:13:55 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 42960 IP address blocks: 43.248.8.0/22 maxlen: 24 103.39.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:59:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1584 (0x630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E094D, serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Validity Not Before: Oct 23 00:13:55 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a46b06-cef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:7a:0a:97:da:72:9b:58:f4:9d:da:63:d2:e0: ca:a1:48:5c:88:23:7b:a5:2d:29:02:71:8c:a9:4f: af:8b:9d:23:67:2e:0b:78:cd:b3:6a:2e:36:29:f6: c4:aa:2a:af:41:4f:55:70:bc:c6:fd:cd:9d:58:b3: ee:c7:2e:4e:c9:ba:d5:49:44:da:4b:0d:02:62:9b: db:2d:b6:99:d1:c3:ce:89:bb:31:5f:91:3b:d0:c4: 19:99:4e:3f:81:25:fd:6a:ca:f8:82:a0:f5:28:c5: b1:dd:f2:6e:9f:bd:cf:46:1a:a9:7e:d4:1d:7f:2c: 7d:56:5b:34:50:d4:f8:ef:d8:22:14:2f:bc:b2:6d: 7f:2f:8d:75:5f:fa:51:94:56:7f:ee:23:20:63:42: bd:20:52:9f:4d:15:85:7e:5b:39:fc:6f:c9:38:41: 48:c4:ac:7b:e0:90:89:ad:16:b6:d7:b2:53:70:7d: e1:95:0a:3b:67:f3:f1:bb:01:83:7d:00:71:32:29: d3:4d:63:ac:52:a1:28:e2:1e:cf:74:26:23:0f:6e: 54:9e:b2:ed:5c:5a:da:a8:cf:2b:ee:fb:7d:16:bd: 11:77:98:a6:1b:a4:d2:a4:35:f8:89:46:cc:dc:ca: df:ed:75:79:f4:d9:a8:29:d6:af:55:9f:de:bc:32: ef:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:89:B3:CC:6C:5E:BB:D4:A4:AF:47:0A:7E:2A:6A:F7:41:5B:C5:1A X509v3 Authority Key Identifier: keyid:F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/ED49BD3C649A11ECBDAC9565C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.248.8.0/22 103.39.78.0/23 Signature Algorithm: sha256WithRSAEncryption 20:bc:6a:b2:ff:f7:25:ad:df:1e:86:f5:e8:7b:c4:04:44:81: db:e7:90:de:2c:c1:eb:e3:9f:9d:db:7e:a7:74:93:09:c3:3a: c2:39:54:73:37:22:01:e0:46:c4:b8:f1:b3:f0:ef:f9:06:4a: 85:d5:f0:94:96:1d:9b:51:7d:bd:be:12:d4:e0:b4:ab:7d:42: 89:cf:4d:22:6b:49:4d:42:d3:fb:99:97:95:84:e4:ee:4e:f8: a9:6c:d1:60:83:99:98:ca:37:76:92:3d:8f:8a:81:ce:e6:ec: 97:3a:3b:c4:59:1f:bf:e2:4d:eb:9d:27:cf:bb:4e:f7:fd:9d: 82:b9:95:42:05:ab:b4:3d:84:39:eb:19:78:ee:0d:79:10:80: ce:8d:b2:71:72:45:4e:2b:a8:ca:e7:25:6c:dc:68:52:b6:0f: 83:e6:89:32:63:fd:46:7f:1c:95:cd:1a:72:5f:77:00:31:c7: 3e:be:d9:09:42:06:0f:96:13:1e:1c:3a:8b:8e:f2:01:7e:4f: 06:ed:85:79:6e:4e:e5:35:7e:dd:08:ce:cd:2d:ec:6b:1b:7c: 6c:f2:e0:97:13:a7:b2:f0:6a:8b:e8:31:4e:21:46:25:c7:f8: d3:26:2a:6c:89:b4:d7:bc:43:1e:64:dc:b7:80:85:a5:be:3d: 9d:a0:94:2e -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA5NEQxMTAvBgNVBAUTKEYzMTcwNUU4MThFQTQ4MDNCMDkzNDE5M0Y2MUZDNkUz MzcxNzcyRUQwHhcNMjUxMDIzMDAxMzU1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmIwNi1jZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3oKl9pym1j0ndpj0uDKoUhciCN7pS0pAnGMqU+vi50jZy4LeM2zai42KfbE qiqvQU9VcLzG/c2dWLPuxy5OybrVSUTaSw0CYpvbLbaZ0cPOibsxX5E70MQZmU4/ gSX9asr4gqD1KMWx3fJun73PRhqpftQdfyx9Vls0UNT479giFC+8sm1/L411X/pR lFZ/7iMgY0K9IFKfTRWFfls5/G/JOEFIxKx74JCJrRa217JTcH3hlQo7Z/PxuwGD fQBxMinTTWOsUqEo4h7PdCYjD25UnrLtXFraqM8r7vt9Fr0Rd5imG6TSpDX4iUbM 3Mrf7XV59NmoKdavVZ/evDLvswIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFC2Js8xs XrvUpK9HCn4qavdBW8UaMB8GA1UdIwQYMBaAFPMXBegY6kgDsJNBk/YfxuM3F3Lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDk0RC80MEI3Mzg2RURF ODExMUVCQTlGQzdENzJDNEY5QUUwMi84eGNGNkJqcVNBT3drMEdUOWhfRzR6Y1hj dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh4Y0Y2QmpxU0FPd2swR1Q5aF9HNHpjWGN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTA5NEQvNDBCNzM4NkVERTgxMTFFQkE5RkM3RDcyQzRGOUFFMDIvRUQ0OUJEM0M2 NDlBMTFFQ0JEQUM5NTY1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/gIAwQBZydOMA0GCSqGSIb3DQEBCwUAA4IBAQAgvGqy//clrd8e hvXoe8QERIHb55DeLMHr45+d236ndJMJwzrCOVRzNyIB4EbEuPGz8O/5BkqF1fCU lh2bUX29vhLU4LSrfUKJz00ia0lNQtP7mZeVhOTuTvipbNFgg5mYyjd2kj2PioHO 5uyXOjvEWR+/4k3rnSfPu073/Z2CuZVCBau0PYQ56xl47g15EIDOjbJxckVOK6jK 5yVs3GhStg+D5okyY/1GfxyVzRpyX3cAMcc+vtkJQgYPlhMeHDqLjvIBfk8G7YV5 bk7lNX7dCM7NLexrG3xs8uCXE6ey8GqL6DFOIUYlx/jTJipsibTXvEMeZNy3gIWl vj2doJQu -----END CERTIFICATE-----Generated at Mon Mar 2 09:15:27 2026 by rpki-client