$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/192418F6AA1811EA97BC574CC4F9AE02.roa File: 192418F6AA1811EA97BC574CC4F9AE02.roa (raw, json) Hash identifier: KoK5Iooccdm7bF48V5K9NM5q4apf+ptZxZFi9KLj3gs= Subject key identifier: 29:2E:2D:BD:42:AC:0D:21:D4:1F:7F:47:73:A0:1E:29:EA:04:0A:BC Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Certificate serial: 1F88 Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/192418F6AA1811EA97BC574CC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:24:57 +0000 ROA not before: Fri 12 Dec 2025 16:13:47 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 24429 IP address blocks: 43.91.0.0/16 maxlen: 24 43.102.128.0/20 maxlen: 24 43.102.144.0/20 maxlen: 24 43.109.0.0/16 maxlen: 24 2404:2280:100::/40 maxlen: 48 2404:2280:200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8072 (0x1f88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Validity Not Before: Dec 12 16:13:47 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a48479-0f87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6c:a0:d7:15:e7:e3:d9:52:2f:d5:5b:0a:06: 4a:e2:43:f3:e4:9d:51:4c:3d:ff:8b:1c:03:6b:2e: 02:43:d7:8d:04:81:c5:08:52:73:75:30:f8:bb:34: f7:42:5d:ed:7b:e3:f4:41:97:42:b9:9b:73:26:b8: c5:95:d8:10:ae:a8:69:88:2a:66:a6:43:3d:ad:8c: 43:3f:de:9f:50:7c:89:90:fb:01:9f:1f:1c:7a:59: 6a:e0:48:06:bf:f2:65:d0:61:ec:f6:0c:b7:11:83: 6a:8c:f8:bc:82:96:40:73:5d:bf:26:1c:a7:59:fe: 76:c4:36:d9:b5:d3:ca:fb:e1:5d:83:79:c1:57:83: d0:84:c1:ce:e6:cd:c9:d5:b4:8c:cc:98:6f:18:aa: a8:bb:8a:6d:e2:1a:72:e6:11:4a:25:c1:b4:17:ba: c3:39:9f:d7:24:35:56:0c:04:7f:4d:e5:5d:55:c8: 6e:c7:cb:1e:df:d4:d3:b5:35:aa:0b:f9:92:78:82: 54:ac:c6:58:07:c0:68:b5:94:ea:24:bd:24:2e:d3: 97:2c:2b:81:bd:69:7a:a0:a9:99:b8:59:93:9f:22: 9e:db:de:a0:af:f6:61:da:cf:8c:8c:48:45:2e:b1: 15:10:87:ed:ef:77:eb:ac:ae:2e:e7:72:19:d9:f9: 97:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:2E:2D:BD:42:AC:0D:21:D4:1F:7F:47:73:A0:1E:29:EA:04:0A:BC X509v3 Authority Key Identifier: keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/192418F6AA1811EA97BC574CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.91.0.0/16 43.102.128.0/19 43.109.0.0/16 IPv6: 2404:2280:100::-2404:2280:2ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 21:cd:66:16:e1:d9:b9:27:41:5b:dc:a4:2d:0f:81:a2:d9:32: 4c:93:50:aa:a3:c8:55:21:25:30:6f:0b:76:07:54:1e:a6:d3: 44:6d:5d:0e:ea:e3:b5:18:ef:05:be:bd:2a:fd:cc:d2:71:58: 30:e7:e6:64:2d:e4:91:2d:5e:58:a6:3f:de:d1:58:5b:f7:d6: a3:d0:f2:6b:f1:ba:1d:05:88:b9:6f:00:c6:52:71:b5:38:44: 34:d4:66:05:64:aa:17:f5:dd:db:0c:89:63:16:36:d4:db:85: 0f:c1:3f:fe:6d:17:17:6f:53:de:60:0c:d6:e8:3c:be:f9:f6: e0:24:49:23:98:1b:88:00:90:1f:8b:40:15:e9:fb:2f:28:59: 3d:6c:da:a9:19:ad:24:08:32:77:20:47:fb:d0:94:2c:51:11: 37:22:8c:3d:e4:15:7a:78:80:67:3e:2a:69:66:4f:24:53:87: b7:e9:23:b7:a8:21:e8:ab:9e:9b:85:ba:2d:fb:9e:cd:ae:00: 03:3d:7b:5f:db:05:38:94:9a:fe:ac:a0:ef:28:51:99:02:a7: 91:51:af:70:a1:52:a1:8a:a4:71:c6:74:b4:aa:46:4a:8e:b3: e3:0b:22:42:65:d0:e7:81:70:d4:9c:ab:b3:ee:06:4b:9d:17: 88:31:54:e1 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICH4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDlFMUMzNTMxRDAwNDVFQTM4OUI2OENGRjkyODZBMDhG QkNCQkQ4QkQwHhcNMjUxMjEyMTYxMzQ3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODQ3OS0wZjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22yg1xXn49lSL9VbCgZK4kPz5J1RTD3/ixwDay4CQ9eNBIHFCFJzdTD4uzT3 Ql3te+P0QZdCuZtzJrjFldgQrqhpiCpmpkM9rYxDP96fUHyJkPsBnx8cellq4EgG v/Jl0GHs9gy3EYNqjPi8gpZAc12/JhynWf52xDbZtdPK++Fdg3nBV4PQhMHO5s3J 1bSMzJhvGKqou4pt4hpy5hFKJcG0F7rDOZ/XJDVWDAR/TeVdVchux8se39TTtTWq C/mSeIJUrMZYB8BotZTqJL0kLtOXLCuBvWl6oKmZuFmTnyKe296gr/Zh2s+MjEhF LrEVEIft73frrK4u53IZ2fmXqwIDAQABo4IChDCCAoAwHQYDVR0OBBYEFCkuLb1C rA0h1B9/R3OgHinqBAq8MB8GA1UdIwQYMBaAFJ4cNTHQBF6jibaM/5KGoI+8u9i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC85OTNGMjA5MEFC QzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhxT0p0b3pfa29hZ2o3eTcy TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odzFNZEFFWHFPSnRvel9rb2Fnajd5NzJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvOTkzRjIwOTBBQkM0MTFFNkJENkJFRDE0QzRGOUFFMDIvMTkyNDE4RjZB QTE4MTFFQTk3QkM1NzRDQzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAW BAIAATAQAwMAK1sDBAUrZoADAwArbTAYBAIAAjASMBADBgAkBCKAAQMGACQEIoAC MA0GCSqGSIb3DQEBCwUAA4IBAQAhzWYW4dm5J0Fb3KQtD4Gi2TJMk1Cqo8hVISUw bwt2B1QeptNEbV0O6uO1GO8Fvr0q/czScVgw5+ZkLeSRLV5Ypj/e0Vhb99aj0PJr 8bodBYi5bwDGUnG1OEQ01GYFZKoX9d3bDIljFjbU24UPwT/+bRcXb1PeYAzW6Dy+ +fbgJEkjmBuIAJAfi0AV6fsvKFk9bNqpGa0kCDJ3IEf70JQsURE3Iow95BV6eIBn PippZk8kU4e36SO3qCHoq56bhbot+57NrgADPXtf2wU4lJr+rKDvKFGZAqeRUa9w oVKhiqRxxnS0qkZKjrPjCyJCZdDngXDUnKuz7gZLnReIMVTh -----END CERTIFICATE-----Generated at Mon Mar 2 12:18:05 2026 by rpki-client