$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5F649D88F27E11EE8704D12FC4F9AE02.roa File: 5F649D88F27E11EE8704D12FC4F9AE02.roa (raw, json) Hash identifier: 9WmU8Y4ZcOpIMboLEtIMfgE7BVSSzD6O48vbK37ECCM= Subject key identifier: DF:CB:B7:FB:BD:17:45:BD:F2:09:07:1C:F2:58:4E:29:27:79:CE:82 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 2288 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5F649D88F27E11EE8704D12FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:19:05 +0000 ROA not before: Tue 24 Feb 2026 01:17:30 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 43.230.24.0/24 maxlen: 24 43.230.25.0/24 maxlen: 24 103.11.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8840 (0x2288) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Feb 24 01:17:30 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48319-bdfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ad:ea:4e:0e:eb:92:18:d0:22:b7:16:2b:c8: 5b:84:a8:89:24:bf:e9:1d:fc:7a:ea:92:75:78:6d: ed:30:63:0e:9c:86:85:1b:e4:bc:48:3c:35:b6:e9: 0a:de:2b:7b:ce:a9:35:4c:f8:8a:49:72:ca:2f:4d: b3:de:18:49:e9:78:ba:23:88:13:09:89:35:4b:90: be:2b:d8:05:0b:59:7d:cf:85:53:8d:35:57:8f:02: 9c:0d:c6:e1:17:d6:4e:24:53:21:56:a3:5d:41:7a: 13:3b:9e:b7:52:6b:31:d9:61:0d:41:67:03:13:4e: 9f:56:f5:d1:f9:45:a5:63:e6:37:44:d7:f5:f9:9f: 62:52:21:03:24:ba:2c:85:80:f5:e6:8f:0f:50:0f: 80:eb:72:38:7e:e0:3c:7d:6e:1d:50:bf:c3:2a:3e: 56:5d:63:9c:7a:fa:92:15:48:54:45:d9:d6:db:5f: 93:0a:f3:6e:74:7e:3e:53:e7:36:2f:d6:c5:88:7d: 3e:eb:77:0f:d8:c4:af:bd:eb:66:aa:c6:65:f8:40: 8e:d8:0a:c5:91:f0:84:fe:8b:36:0a:53:ff:74:96: 99:57:8d:3b:08:3d:6b:0e:76:5e:b2:fe:3a:89:29: 8d:73:cd:aa:52:db:3f:40:a1:15:75:58:1f:70:07: 18:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:CB:B7:FB:BD:17:45:BD:F2:09:07:1C:F2:58:4E:29:27:79:CE:82 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5F649D88F27E11EE8704D12FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.24.0/23 103.11.150.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:5c:b8:4c:70:b5:b3:81:33:e1:5a:e8:04:67:35:81:fc:79: 3c:00:b4:a3:d3:2b:02:ca:b8:9a:e2:db:d4:05:d2:7e:dc:7a: 8e:54:7c:48:94:1c:91:17:12:b5:8f:cc:37:46:bc:a8:28:f5: 65:47:43:c5:fd:d9:71:73:b2:6d:c4:f7:4a:b9:c5:1b:2b:56: fb:94:32:33:dd:f6:82:e7:de:7f:be:87:93:43:3b:f7:03:2e: c2:6a:5f:9e:11:a5:5d:03:44:11:a8:76:fa:95:80:67:be:2a: 5e:6d:77:76:36:87:36:b9:9a:e2:ef:5f:88:16:a7:84:1a:d1: 4d:4f:86:92:cc:50:f4:eb:eb:2a:3a:4a:e1:d1:35:e9:12:97: c1:f5:2b:03:de:46:f4:dd:13:6a:1f:1b:a9:9e:7e:c9:dd:00: 86:b8:11:ab:bf:39:8f:bd:eb:4c:17:1b:09:93:ec:c3:19:3b: cd:06:39:2f:71:28:6f:45:16:e9:2e:17:ec:43:02:f7:5a:54: 9c:ac:02:8d:3e:69:88:c9:96:e7:0f:f3:82:59:43:62:3c:a4: 00:60:36:8f:c4:20:af:de:4c:62:a2:a9:53:c9:af:ef:8f:b4: 49:9b:42:51:8f:28:8b:25:17:02:a3:00:72:b7:ca:3f:2f:e4: ab:5e:1f:53 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICIogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjYwMjI0MDExNzMwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODMxOS1iZGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm63qTg7rkhjQIrcWK8hbhKiJJL/pHfx66pJ1eG3tMGMOnIaFG+S8SDw1tukK 3it7zqk1TPiKSXLKL02z3hhJ6Xi6I4gTCYk1S5C+K9gFC1l9z4VTjTVXjwKcDcbh F9ZOJFMhVqNdQXoTO563Umsx2WENQWcDE06fVvXR+UWlY+Y3RNf1+Z9iUiEDJLos hYD15o8PUA+A63I4fuA8fW4dUL/DKj5WXWOcevqSFUhURdnW21+TCvNudH4+U+c2 L9bFiH0+63cP2MSvvetmqsZl+ECO2ArFkfCE/os2ClP/dJaZV407CD1rDnZesv46 iSmNc82qUts/QKEVdVgfcAcYIQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFN/Lt/u9 F0W98gkHHPJYTiknec6CMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBFQkYvNUY4NEQ3RDhEQjgwMTFFNTlBQjdFRDFFQzRGOUFFMDIvNUY2NDlEODhG MjdFMTFFRTg3MDREMTJGQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBK+YYAwQAZwuWMA0GCSqGSIb3DQEBCwUAA4IBAQCdXLhMcLWzgTPh WugEZzWB/Hk8ALSj0ysCyria4tvUBdJ+3HqOVHxIlByRFxK1j8w3RryoKPVlR0PF /dlxc7JtxPdKucUbK1b7lDIz3faC595/voeTQzv3Ay7Cal+eEaVdA0QRqHb6lYBn vipebXd2Noc2uZri71+IFqeEGtFNT4aSzFD06+sqOkrh0TXpEpfB9SsD3kb03RNq Hxupnn7J3QCGuBGrvzmPvetMFxsJk+zDGTvNBjkvcShvRRbpLhfsQwL3WlScrAKN PmmIyZbnD/OCWUNiPKQAYDaPxCCv3kxioqlTya/vj7RJm0JRjyiLJRcCowByt8o/ L+SrXh9T -----END CERTIFICATE-----Generated at Mon Mar 2 02:11:39 2026 by rpki-client