$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/D56B4ABED54E11EFAD8C4E52C4F9AE02.roa File: D56B4ABED54E11EFAD8C4E52C4F9AE02.roa (raw, json) Hash identifier: GdMrJQOmwecU85NbmUFnrqBWRHWEAMkwnRXidf68flk= Subject key identifier: 84:85:31:0A:7A:F2:5B:C6:D9:4A:61:F5:81:F4:E9:18:83:5C:24:58 Certificate issuer: /CN=A91F1446/serialNumber=B5D33A7A32A5082D336B6B05B7965F307470A276 Certificate serial: 03DB Authority key identifier: B5:D3:3A:7A:32:A5:08:2D:33:6B:6B:05:B7:96:5F:30:74:70:A2:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/D56B4ABED54E11EFAD8C4E52C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:50:05 +0000 ROA not before: Fri 28 Nov 2025 23:26:18 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 153494 IP address blocks: 43.241.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.crl rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 987 (0x3db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1446, serialNumber=B5D33A7A32A5082D336B6B05B7965F307470A276 Validity Not Before: Nov 28 23:26:18 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4602d-8bb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1e:86:de:83:b3:3b:7b:af:03:21:72:c1:fc: a9:5a:9d:1a:67:60:f0:65:8e:9d:38:69:e0:11:4d: 3c:2f:b0:c5:65:87:0f:1f:6f:98:8b:27:79:68:a6: 7f:e4:81:ab:14:08:ea:16:b1:2d:80:b8:47:ad:60: 6c:77:48:5b:f1:e6:37:bd:66:c5:72:59:b8:f2:8b: cf:7f:ae:dd:75:55:a4:2c:c2:67:98:c1:3e:80:09: c8:c5:e5:b9:5d:fb:f3:ab:90:35:56:14:c6:31:c6: f7:95:51:5f:12:ef:7b:a7:9e:79:36:75:e5:2e:19: 45:ee:fe:7d:09:87:0d:71:a4:13:b0:ee:9e:a7:f6: d2:55:35:2e:f4:ee:38:c6:0e:56:38:7e:ba:ac:39: 6c:0b:c4:5d:ef:11:7f:c4:ac:29:3f:80:ed:3e:ad: 83:b6:a6:37:96:20:a9:2e:35:f0:b4:ca:60:a6:2a: a0:e4:42:14:2e:5a:c8:e5:ce:a0:58:f2:af:99:dd: 69:e6:0f:5a:d2:62:0d:52:ac:ce:33:67:6a:6a:e2: 1b:33:c2:4b:e4:3b:9d:8d:dd:ac:c3:6f:94:08:ed: 70:94:6e:a3:59:2d:57:9a:c3:db:60:f3:6c:4f:17: c6:e7:48:21:83:c7:6b:3a:a7:c6:5a:5e:ed:a4:9d: 4a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:85:31:0A:7A:F2:5B:C6:D9:4A:61:F5:81:F4:E9:18:83:5C:24:58 X509v3 Authority Key Identifier: keyid:B5:D3:3A:7A:32:A5:08:2D:33:6B:6B:05:B7:96:5F:30:74:70:A2:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/D56B4ABED54E11EFAD8C4E52C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.241.252.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:66:da:9a:70:08:4a:af:b1:03:7a:e8:f9:97:07:68:c8:7b: 7e:fb:05:56:0a:98:38:c9:f6:ff:ce:d5:de:dc:d4:b1:25:4e: e0:da:59:01:5b:b4:bb:ea:b4:39:d0:17:62:e2:36:f0:cf:40: a2:ae:26:f7:70:98:f3:db:e4:1b:99:86:86:09:4e:78:03:45: 45:93:88:02:b3:ab:f2:a4:15:a9:4d:43:74:f3:67:91:8f:2d: f2:1c:54:4a:b0:61:de:ac:4b:68:97:3b:d6:cf:ae:ba:b9:96: e5:51:b4:e9:92:cd:44:62:35:dc:09:a1:eb:7d:f8:fd:e2:be: 05:81:7a:53:2e:f4:de:e1:77:8f:ef:98:57:d5:a8:22:ed:45: 14:14:ca:2f:75:71:c9:20:63:1a:dc:5e:1b:11:af:52:f5:27: 0d:f0:00:d8:1f:dd:05:3e:2a:3d:4b:58:c7:b9:84:39:a2:1c: cf:e4:1b:15:d2:12:18:f3:0a:43:66:2a:78:3c:f3:0b:c4:3f: d7:3c:dc:5f:49:50:77:ee:6a:68:76:e8:a5:f3:42:78:bf:1d: e5:0e:fe:ec:d7:d5:56:26:ec:18:ad:0d:13:f1:a0:42:f5:f8: c4:a3:31:b6:31:81:55:c5:b1:71:e1:79:ed:34:3c:5f:a0:4f: dc:e1:a7:ea -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0NDYxMTAvBgNVBAUTKEI1RDMzQTdBMzJBNTA4MkQzMzZCNkIwNUI3OTY1RjMw NzQ3MEEyNzYwHhcNMjUxMTI4MjMyNjE4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjAyZC04YmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAth6G3oOzO3uvAyFywfypWp0aZ2DwZY6dOGngEU08L7DFZYcPH2+Yiyd5aKZ/ 5IGrFAjqFrEtgLhHrWBsd0hb8eY3vWbFclm48ovPf67ddVWkLMJnmME+gAnIxeW5 Xfvzq5A1VhTGMcb3lVFfEu97p555NnXlLhlF7v59CYcNcaQTsO6ep/bSVTUu9O44 xg5WOH66rDlsC8Rd7xF/xKwpP4DtPq2DtqY3liCpLjXwtMpgpiqg5EIULlrI5c6g WPKvmd1p5g9a0mINUqzOM2dqauIbM8JL5Dudjd2sw2+UCO1wlG6jWS1XmsPbYPNs TxfG50ghg8drOqfGWl7tpJ1KBwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFISFMQp6 8lvG2Uph9YH06RiDXCRYMB8GA1UdIwQYMBaAFLXTOnoypQgtM2trBbeWXzB0cKJ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ0Ni8yQTFGRjU2RUM1 MzUxMUVDOEU1QTAzMTNDNEY5QUUwMi90ZE02ZWpLbENDMHphMnNGdDVaZk1IUndv blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RkTTZlaktsQ0MwemEyc0Z0NVpmTUhSd29uWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE0NDYvMkExRkY1NkVDNTM1MTFFQzhFNUEwMzEzQzRGOUFFMDIvRDU2QjRBQkVE NTRFMTFFRkFEOEM0RTUyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/H8MA0GCSqGSIb3DQEBCwUAA4IBAQCMZtqacAhKr7EDeuj5lwdo yHt++wVWCpg4yfb/ztXe3NSxJU7g2lkBW7S76rQ50Bdi4jbwz0Cirib3cJjz2+Qb mYaGCU54A0VFk4gCs6vypBWpTUN082eRjy3yHFRKsGHerEtolzvWz666uZblUbTp ks1EYjXcCaHrffj94r4FgXpTLvTe4XeP75hX1agi7UUUFMovdXHJIGMa3F4bEa9S 9ScN8ADYH90FPio9S1jHuYQ5ohzP5BsV0hIY8wpDZip4PPMLxD/XPNxfSVB37mpo duil80J4vx3lDv7s19VWJuwYrQ0T8aBC9fjEozG2MYFVxbFx4XntNDxfoE/c4afq -----END CERTIFICATE-----Generated at Mon Mar 2 04:33:37 2026 by rpki-client