$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/AF95E6D8F2B711EAA1C01744C4F9AE02.roa File: AF95E6D8F2B711EAA1C01744C4F9AE02.roa (raw, json) Hash identifier: +hP/S33CE/vW2PVe4j6x+mIfnFjnccy0DaJEQbWIdqM= Subject key identifier: 50:C3:EF:64:98:C8:53:5C:9F:0F:45:F1:ED:07:C6:34:5C:01:BF:90 Certificate issuer: /CN=A91F17F6/serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Certificate serial: 0865 Authority key identifier: 52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/AF95E6D8F2B711EAA1C01744C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:38:06 +0000 ROA not before: Fri 02 May 2025 21:33:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 56229 IP address blocks: 43.231.72.0/24 maxlen: 24 43.231.73.0/24 maxlen: 24 43.231.74.0/24 maxlen: 24 43.231.75.0/24 maxlen: 24 103.3.72.0/24 maxlen: 24 103.3.73.0/24 maxlen: 24 103.3.74.0/24 maxlen: 24 103.3.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2149 (0x865) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17F6, serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Validity Not Before: May 2 21:33:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3faed-9e45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:00:d6:07:af:c2:fe:4e:e0:5d:ab:99:cd:3d: 4a:75:1a:a9:1c:d0:b9:c0:ed:ab:a8:bc:71:86:a4: 8c:96:02:1e:26:c5:18:be:7d:bf:a0:76:6d:90:4e: b5:fb:d6:39:9e:66:76:d6:7e:18:3d:aa:99:b9:1f: ef:ef:11:9e:bc:1f:97:b7:58:5e:2e:89:29:3f:2b: 16:c0:25:45:94:9d:71:65:d1:59:be:3d:17:30:d7: c5:68:dc:9a:f1:59:de:5c:81:71:a1:1b:8e:2b:af: f5:fb:90:ee:4e:5e:8e:44:77:31:9b:60:1f:2d:d1: ce:f8:14:c9:e3:4f:ec:a5:ea:00:b4:ac:82:64:ec: 08:83:d8:c1:82:38:5a:ae:68:30:15:2a:71:ca:2f: b8:36:bd:8e:01:db:ef:98:6e:ba:5c:2b:7d:b7:5c: 4f:2f:b4:49:91:df:81:d3:90:19:6f:9b:0c:48:4f: e5:6e:96:58:60:bf:86:02:85:16:46:22:d2:de:e3: 80:14:6f:aa:57:ff:97:f4:fc:6b:2d:47:eb:b3:df: 6b:71:51:69:98:66:ed:c5:8d:bb:a2:51:81:4d:2e: b3:55:a2:e2:55:4a:56:2e:27:4c:bb:fc:a6:bb:be: d8:1f:df:b6:14:4a:12:91:72:44:36:c6:f8:f7:5f: 27:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:C3:EF:64:98:C8:53:5C:9F:0F:45:F1:ED:07:C6:34:5C:01:BF:90 X509v3 Authority Key Identifier: keyid:52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/AF95E6D8F2B711EAA1C01744C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.231.72.0/22 103.3.72.0/22 Signature Algorithm: sha256WithRSAEncryption 19:81:68:e4:03:7a:ea:0e:08:69:d2:f7:a8:ea:be:2a:f7:87: ed:99:aa:7b:54:68:86:e4:f9:3b:41:54:86:65:e4:b7:1e:e6: 32:79:3f:9b:b2:36:4f:4c:a8:e2:25:b4:84:ff:6a:a6:e4:db: 81:df:a5:78:23:97:19:50:83:54:65:d9:de:1a:25:b5:83:a2: 05:83:00:33:db:b3:ef:8b:eb:ed:b2:cc:55:7e:02:e7:b0:f4: 25:05:93:4f:44:3f:eb:57:d6:8b:85:49:75:c3:4b:e4:00:4b: 6c:00:cc:dd:6d:fe:e9:fc:49:64:b3:9d:ba:87:23:68:38:08: da:25:65:fa:ab:bd:03:4f:5d:15:3c:88:38:e2:fb:e4:7e:d0: 18:f5:5b:21:73:af:0d:5e:dc:3d:0f:07:0b:d5:27:a5:b6:eb: 32:b4:8f:ea:40:19:3c:15:9a:3f:a6:b0:7e:71:25:eb:86:14: 34:91:70:73:f5:85:a7:13:08:a4:23:2a:c9:c3:c9:c7:3b:aa: 9d:95:99:26:59:9c:40:f6:10:1b:2d:c5:0d:d4:ca:a3:15:c1: 46:49:51:74:ff:bf:c1:db:15:6f:97:ad:57:01:65:b0:f0:96: d4:60:59:ee:47:76:bd:67:f1:10:b1:d4:8a:30:14:02:c8:bd: 60:ed:21:30 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3RjYxMTAvBgNVBAUTKDUyRDVENkZGQkRBODhGNTQ1RTUxQkFGOTlGN0RBQ0Ux OTNDMDZFNTcwHhcNMjUwNTAyMjEzMzE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmFlZC05ZTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQDWB6/C/k7gXauZzT1KdRqpHNC5wO2rqLxxhqSMlgIeJsUYvn2/oHZtkE61 +9Y5nmZ21n4YPaqZuR/v7xGevB+Xt1heLokpPysWwCVFlJ1xZdFZvj0XMNfFaNya 8VneXIFxoRuOK6/1+5DuTl6ORHcxm2AfLdHO+BTJ40/speoAtKyCZOwIg9jBgjha rmgwFSpxyi+4Nr2OAdvvmG66XCt9t1xPL7RJkd+B05AZb5sMSE/lbpZYYL+GAoUW RiLS3uOAFG+qV/+X9PxrLUfrs99rcVFpmGbtxY27olGBTS6zVaLiVUpWLidMu/ym u77YH9+2FEoSkXJENsb4918nIwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFFDD72SY yFNcnw9F8e0HxjRcAb+QMB8GA1UdIwQYMBaAFFLV1v+9qI9UXlG6+Z99rOGTwG5X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdGNi9FRDkzQ0VFOEYy QjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2oxUmVVYnI1bjMyczRaUEFi bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V0WFdfNzJvajFSZVVicjVuMzJzNFpQQWJsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE3RjYvRUQ5M0NFRThGMkI1MTFFQTlBM0Y2MzQxQzRGOUFFMDIvQUY5NUU2RDhG MkI3MTFFQUExQzAxNzQ0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK+dIAwQCZwNIMA0GCSqGSIb3DQEBCwUAA4IBAQAZgWjkA3rqDghp 0veo6r4q94ftmap7VGiG5Pk7QVSGZeS3HuYyeT+bsjZPTKjiJbSE/2qm5NuB36V4 I5cZUINUZdneGiW1g6IFgwAz27Pvi+vtssxVfgLnsPQlBZNPRD/rV9aLhUl1w0vk AEtsAMzdbf7p/Elks526hyNoOAjaJWX6q70DT10VPIg44vvkftAY9Vshc68NXtw9 DwcL1SeltusytI/qQBk8FZo/prB+cSXrhhQ0kXBz9YWnEwikIyrJw8nHO6qdlZkm WZxA9hAbLcUN1MqjFcFGSVF0/7/B2xVvl61XAWWw8JbUYFnuR3a9Z/EQsdSKMBQC yL1g7SEw -----END CERTIFICATE-----Generated at Mon Mar 2 07:26:46 2026 by rpki-client