$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/11DE1CDA467611EC988CDC09C4F9AE02.roa File: 11DE1CDA467611EC988CDC09C4F9AE02.roa (raw, json) Hash identifier: MfV4ukOu3FWI/jsl4kHuM58dQAKJFj/LhFrUhOuLtaI= Subject key identifier: 4F:90:C6:E4:A9:FE:EE:71:E4:AE:B9:79:7A:D4:88:B3:FA:4F:BD:79 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 2285 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/11DE1CDA467611EC988CDC09C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:19:02 +0000 ROA not before: Thu 02 Oct 2025 16:13:46 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58955 IP address blocks: 43.230.27.0/24 maxlen: 24 2407:8100:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8837 (0x2285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Oct 2 16:13:46 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48316-3a84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:25:08:26:cd:dd:df:c2:32:dd:9e:e7:9b:c8: 4c:ad:d8:ca:ac:ee:64:6e:7a:4b:45:f8:93:59:a9: 51:21:5a:64:da:b3:06:4d:b5:c3:57:c5:20:f2:70: 54:6e:97:87:c8:e4:4e:41:d2:0d:6e:dd:98:e7:c6: c9:aa:ad:02:ea:df:00:b5:bb:7b:17:9b:c1:1a:34: f4:b7:28:43:fd:2c:74:94:8d:9e:5d:61:45:f3:e8: b2:97:9e:a0:7c:49:f2:31:81:3b:1c:de:cd:6b:88: 91:ac:cf:1d:95:a5:fc:f8:f9:7a:3a:d0:e3:57:88: 5f:4e:20:d4:ae:b6:92:b4:be:a5:41:3e:86:57:82: b1:5b:e0:bf:ae:f7:92:0a:a2:67:61:b7:fc:a6:76: e3:94:15:bb:b9:fc:44:7f:84:0e:a8:8a:15:bc:ab: 21:bb:04:fd:1b:b0:d8:2f:35:2d:4d:45:88:ae:5b: de:cb:4b:5f:c2:2b:20:f3:4f:9e:0d:c8:b3:24:16: a4:68:08:97:0f:81:09:9e:8c:db:ca:8c:9c:c9:a7: 21:05:53:9c:6f:86:0c:8f:8c:7c:46:d2:8a:40:36: b4:58:ce:79:7a:e3:05:9e:33:27:14:9f:0f:df:cb: ed:ab:5f:bc:93:8c:f1:79:ca:20:a6:76:db:53:dc: 28:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:90:C6:E4:A9:FE:EE:71:E4:AE:B9:79:7A:D4:88:B3:FA:4F:BD:79 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/11DE1CDA467611EC988CDC09C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.27.0/24 IPv6: 2407:8100:2::/48 Signature Algorithm: sha256WithRSAEncryption 5d:3f:6f:53:83:bc:36:47:98:92:08:f5:65:94:f7:67:0a:22: 92:75:e9:cf:c8:42:f9:2e:93:cb:aa:9f:3b:30:2a:84:61:0d: fd:c1:62:6f:c6:90:3c:f8:fc:1c:15:1c:f1:68:a5:93:99:e7: e7:d0:69:7e:96:be:b1:c3:81:b5:22:7c:55:69:72:17:b7:5d: f2:67:8d:8b:6f:37:76:cf:7a:7e:0b:25:d2:1e:39:77:1d:b4: 72:f3:fd:b1:1b:e6:6d:2d:2f:46:98:81:ec:83:2c:54:3c:f8: 97:bb:de:b2:21:85:a3:1b:98:11:c4:2f:f9:07:fd:e6:4d:d7: 23:7d:5e:72:89:6f:fb:71:98:6d:cc:b0:2a:89:bf:ee:f4:81: f9:8c:a5:aa:c3:c0:b7:52:2d:f7:18:2e:e6:c6:7e:cd:76:53: 81:f8:a2:f6:7a:dd:31:8f:67:83:be:cb:34:ca:48:79:47:43: 76:62:6b:11:82:ac:7e:13:9b:51:39:97:f3:36:4f:a2:6e:bd: 93:e4:19:0f:c8:99:00:e7:73:8a:7d:1d:ca:8a:4d:70:65:3e: 32:2d:15:26:0c:c4:0f:00:d5:cb:80:95:6d:fc:d8:dd:48:e6: b7:40:ed:2c:14:d5:56:37:2e:16:5e:9a:07:d6:fb:83:fe:da: e8:1c:c7:eb -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICIoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjUxMDAyMTYxMzQ2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODMxNi0zYTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSUIJs3d38Iy3Z7nm8hMrdjKrO5kbnpLRfiTWalRIVpk2rMGTbXDV8Ug8nBU bpeHyOROQdINbt2Y58bJqq0C6t8Atbt7F5vBGjT0tyhD/Sx0lI2eXWFF8+iyl56g fEnyMYE7HN7Na4iRrM8dlaX8+Pl6OtDjV4hfTiDUrraStL6lQT6GV4KxW+C/rveS CqJnYbf8pnbjlBW7ufxEf4QOqIoVvKshuwT9G7DYLzUtTUWIrlvey0tfwisg80+e DcizJBakaAiXD4EJnozbyoycyachBVOcb4YMj4x8RtKKQDa0WM55euMFnjMnFJ8P 38vtq1+8k4zxecogpnbbU9wo/QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFE+QxuSp /u5x5K65eXrUiLP6T715MB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBFQkYvNUY4NEQ3RDhEQjgwMTFFNTlBQjdFRDFFQzRGOUFFMDIvMTFERTFDREE0 Njc2MTFFQzk4OENEQzA5QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAK+YbMA8EAgACMAkDBwAkB4EAAAIwDQYJKoZIhvcNAQELBQADggEB AF0/b1ODvDZHmJII9WWU92cKIpJ16c/IQvkuk8uqnzswKoRhDf3BYm/GkDz4/BwV HPFopZOZ5+fQaX6WvrHDgbUifFVpche3XfJnjYtvN3bPen4LJdIeOXcdtHLz/bEb 5m0tL0aYgeyDLFQ8+Je73rIhhaMbmBHEL/kH/eZN1yN9XnKJb/txmG3MsCqJv+70 gfmMparDwLdSLfcYLubGfs12U4H4ovZ63TGPZ4O+yzTKSHlHQ3ZiaxGCrH4Tm1E5 l/M2T6JuvZPkGQ/ImQDnc4p9HcqKTXBlPjItFSYMxA8A1cuAlW382N1I5rdA7SwU 1VY3LhZemgfW+4P+2ugcx+s= -----END CERTIFICATE-----Generated at Mon Mar 2 02:11:44 2026 by rpki-client