$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/F04A74EC90C511EDA07C3025C4F9AE02.roa File: F04A74EC90C511EDA07C3025C4F9AE02.roa (raw, json) Hash identifier: ll1SbuQqvTvXz+W/3qaivS8wQz00+kN4RdwzaNK6/rU= Subject key identifier: 00:17:64:21:81:06:6C:AC:FE:90:9D:8A:0B:46:48:91:71:35:02:AD Certificate issuer: /CN=A91E4696/serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Certificate serial: 025F Authority key identifier: 27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/F04A74EC90C511EDA07C3025C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:58:48 +0000 ROA not before: Thu 03 Jul 2025 03:06:58 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38277 IP address blocks: 43.252.164.0/22 maxlen: 22 43.252.164.0/24 maxlen: 24 43.252.165.0/24 maxlen: 24 43.252.166.0/24 maxlen: 24 43.252.167.0/24 maxlen: 24 103.28.44.0/22 maxlen: 22 103.28.44.0/24 maxlen: 24 103.28.45.0/24 maxlen: 24 103.28.46.0/24 maxlen: 24 103.28.47.0/24 maxlen: 24 203.124.8.0/24 maxlen: 24 203.124.9.0/24 maxlen: 24 203.124.10.0/24 maxlen: 24 203.124.11.0/24 maxlen: 24 203.124.12.0/24 maxlen: 24 203.124.13.0/24 maxlen: 24 203.124.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:59:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4696, serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Validity Not Before: Jul 3 03:06:58 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a41be8-e930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:48:4a:81:27:9d:45:b7:74:1b:a3:f2:02:c9: 38:e8:7e:ae:f5:96:f9:65:7e:d4:35:9f:2d:dc:fa: bd:ef:d8:b1:c9:03:90:86:95:82:d9:4b:fc:1b:1f: 3d:36:45:89:90:9d:b6:7f:0e:3a:cb:5e:3a:06:35: 3c:31:1b:f1:2e:48:a1:1d:32:48:54:b1:ee:93:24: 81:5a:e4:a9:95:ad:ae:df:37:b0:8c:38:9a:c7:7b: 30:56:56:b4:76:13:b2:eb:db:91:9a:dc:28:e3:cf: 12:a0:ac:cf:a9:48:33:5f:fc:51:e3:cb:8f:7e:e0: d4:ae:2e:5e:ad:af:45:fa:2d:04:aa:27:34:f1:3a: 2b:f2:2d:87:2e:b1:cb:b4:de:ad:4c:df:d3:fc:b0: 62:f4:4a:cc:9e:71:ee:5a:07:fc:e4:aa:17:95:24: bd:dc:15:52:7c:8f:b8:55:21:4a:87:75:b4:96:6d: 2d:61:9a:3e:f2:b0:2f:98:d1:12:7a:15:a9:5d:a9: 6b:14:5a:8d:b5:7a:19:49:6c:aa:c9:10:93:a3:76: 35:7a:42:27:7b:ab:4e:4d:cd:9e:d4:9e:36:6e:88: 3a:49:3d:ce:fc:c0:c7:95:01:18:03:6c:43:ff:60: 13:e2:0d:1b:6f:31:53:25:43:e9:14:57:4b:1d:8e: d8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:17:64:21:81:06:6C:AC:FE:90:9D:8A:0B:46:48:91:71:35:02:AD X509v3 Authority Key Identifier: keyid:27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/F04A74EC90C511EDA07C3025C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.252.164.0/22 103.28.44.0/22 203.124.8.0-203.124.13.255 203.124.15.0/24 Signature Algorithm: sha256WithRSAEncryption 98:c6:e8:26:99:a3:05:43:dd:a8:3e:51:91:b3:24:2b:6a:70: 12:f6:ed:db:96:1c:df:d9:c4:f4:56:f3:00:59:9d:15:bf:26: 71:ac:b1:46:8c:47:82:22:23:27:40:60:e3:72:81:80:59:e5: fa:ef:93:e2:c7:91:31:87:88:26:6c:c4:0f:31:cd:7e:ac:c5: fc:63:2a:39:64:62:b0:bf:66:f8:8d:76:af:ef:bc:db:84:54: e0:6c:45:cb:9d:58:13:36:1f:0c:27:dc:f7:74:41:c6:8e:6c: e1:93:39:b3:2f:de:97:74:fa:66:99:38:87:8f:b1:68:44:6b: 84:25:2f:7e:33:b1:2f:ef:41:56:2c:ef:4c:25:d2:4c:5e:78: c4:cd:ca:8e:01:70:77:7d:3b:6f:4d:72:58:e9:e9:b8:fb:61: 52:c1:62:3f:01:74:a4:09:44:36:91:bb:34:16:55:62:b8:88: cd:72:21:0d:ef:f7:be:57:81:b6:a9:f7:42:fe:20:4e:30:c4: e0:a5:22:83:7b:20:51:08:44:62:5e:7a:80:77:13:c5:35:3c: cc:36:8c:a3:e8:d0:e3:98:d0:57:d2:cb:d1:5b:f3:c7:ca:4b: ac:f6:83:81:3c:2f:16:d8:34:ad:ba:02:8c:3a:59:a4:a6:79: a1:77:24:fe -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2OTYxMTAvBgNVBAUTKDI3Qjg3MjJDODU5Q0E0RjZGMDNFQzFFMDYxRkRENEMz QjlCNDk3RTUwHhcNMjUwNzAzMDMwNjU4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWJlOC1lOTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6EhKgSedRbd0G6PyAsk46H6u9Zb5ZX7UNZ8t3Pq979ixyQOQhpWC2Uv8Gx89 NkWJkJ22fw46y146BjU8MRvxLkihHTJIVLHukySBWuSpla2u3zewjDiax3swVla0 dhOy69uRmtwo488SoKzPqUgzX/xR48uPfuDUri5era9F+i0Eqic08Tor8i2HLrHL tN6tTN/T/LBi9ErMnnHuWgf85KoXlSS93BVSfI+4VSFKh3W0lm0tYZo+8rAvmNES ehWpXalrFFqNtXoZSWyqyRCTo3Y1ekIne6tOTc2e1J42bog6ST3O/MDHlQEYA2xD /2AT4g0bbzFTJUPpFFdLHY7YCwIDAQABo4ICejCCAnYwHQYDVR0OBBYEFAAXZCGB Bmys/pCdigtGSJFxNQKtMB8GA1UdIwQYMBaAFCe4ciyFnKT28D7B4GH91MO5tJfl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY5Ni9ENkExMUM0QTkw QkYxMUVEOENDMUU3ODNDNEY5QUUwMi9KN2h5TElXY3BQYndQc0hnWWYzVXc3bTBs LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3aHlMSVdjcFBid1BzSGdZZjNVdzdtMGwtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ2OTYvRDZBMTFDNEE5MEJGMTFFRDhDQzFFNzgzQzRGOUFFMDIvRjA0QTc0RUM5 MEM1MTFFREEwN0MzMDI1QzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAm BAIAATAgAwQCK/ykAwQCZxwsMAwDBAPLfAgDBAHLfAwDBADLfA8wDQYJKoZIhvcN AQELBQADggEBAJjG6CaZowVD3ag+UZGzJCtqcBL27duWHN/ZxPRW8wBZnRW/JnGs sUaMR4IiIydAYONygYBZ5frvk+LHkTGHiCZsxA8xzX6sxfxjKjlkYrC/ZviNdq/v vNuEVOBsRcudWBM2Hwwn3Pd0QcaObOGTObMv3pd0+maZOIePsWhEa4QlL34zsS/v QVYs70wl0kxeeMTNyo4BcHd9O29Ncljp6bj7YVLBYj8BdKQJRDaRuzQWVWK4iM1y IQ3v975Xgbap90L+IE4wxOClIoN7IFEIRGJeeoB3E8U1PMw2jKPo0OOY0FfSy9Fb 88fKS6z2g4E8LxbYNK26Aow6WaSmeaF3JP4= -----END CERTIFICATE-----Generated at Mon Mar 2 20:56:44 2026 by rpki-client