$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1C46/05CADD16F18611EA8DEC3C14C4F9AE02/D3EA977EF32D11EA8498822CC4F9AE02.roa File: D3EA977EF32D11EA8498822CC4F9AE02.roa (raw, json) Hash identifier: 2KftQgjQucTB7mWe4Ghtn15fUs79qb57lhCbaWg6O8Q= Subject key identifier: 43:25:66:4F:23:61:79:A7:E2:0D:3C:7C:00:7B:3E:1A:AB:3A:41:35 Certificate issuer: /CN=A91F1C46/serialNumber=C6C19169EEA7D066BC9BCA72DD8830BC183A1266 Certificate serial: 086D Authority key identifier: C6:C1:91:69:EE:A7:D0:66:BC:9B:CA:72:DD:88:30:BC:18:3A:12:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xsGRae6n0Ga8m8py3YgwvBg6EmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1C46/05CADD16F18611EA8DEC3C14C4F9AE02/D3EA977EF32D11EA8498822CC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:36:10 +0000 ROA not before: Fri 06 Jun 2025 21:39:41 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45144 IP address blocks: 43.252.36.0/22 maxlen: 24 103.4.4.0/23 maxlen: 24 103.4.6.0/24 maxlen: 24 182.239.40.0/22 maxlen: 24 2407:de00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1C46/05CADD16F18611EA8DEC3C14C4F9AE02/xsGRae6n0Ga8m8py3YgwvBg6EmY.crl rsync://rpki.apnic.net/member_repository/A91F1C46/05CADD16F18611EA8DEC3C14C4F9AE02/xsGRae6n0Ga8m8py3YgwvBg6EmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xsGRae6n0Ga8m8py3YgwvBg6EmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:37:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2157 (0x86d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1C46, serialNumber=C6C19169EEA7D066BC9BCA72DD8830BC183A1266 Validity Not Before: Jun 6 21:39:41 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4088a-7fe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:47:66:d9:4b:12:87:30:57:4e:d3:a1:d4:16: 24:79:24:6e:40:7b:48:e4:bd:4d:21:cc:01:ff:46: 59:a8:81:9b:ce:96:96:4a:cf:fb:71:cb:29:a3:62: 4d:2f:04:7f:e7:60:e0:7c:a8:10:6f:70:e0:b7:3b: 7b:a8:9d:91:7c:86:91:b0:6b:de:2c:51:06:f7:aa: 7e:92:ed:ef:b1:b9:0a:53:a1:4d:ba:55:e9:92:a1: 03:33:1d:40:56:ff:16:25:e6:f3:a1:a8:37:86:96: 8b:68:0d:6a:7d:00:8a:24:b2:0b:4e:03:3b:00:93: 0f:60:8a:91:14:1c:e1:9d:4b:f9:68:b2:b6:9e:6d: cc:67:eb:96:a9:e1:be:e1:05:fe:a8:fb:c8:13:25: 94:da:a4:0c:76:ea:8e:1d:6c:84:0a:1b:ec:0e:e4: 1f:da:64:da:98:01:60:d8:4f:c9:f9:27:b6:8b:5c: 35:08:7a:90:0a:63:50:59:f9:d7:df:8f:7e:3f:c6: ea:32:8a:76:d1:b5:61:d9:56:1f:33:b6:79:13:09: d5:97:eb:fc:ad:aa:aa:da:54:a6:d0:f9:9e:a0:a9: 3c:8a:af:c8:1e:4a:be:a8:d1:98:f4:d3:8f:68:a2: c1:31:ef:98:cf:2e:c1:b5:e9:86:61:dc:a1:97:6d: 64:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:25:66:4F:23:61:79:A7:E2:0D:3C:7C:00:7B:3E:1A:AB:3A:41:35 X509v3 Authority Key Identifier: keyid:C6:C1:91:69:EE:A7:D0:66:BC:9B:CA:72:DD:88:30:BC:18:3A:12:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1C46/05CADD16F18611EA8DEC3C14C4F9AE02/xsGRae6n0Ga8m8py3YgwvBg6EmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xsGRae6n0Ga8m8py3YgwvBg6EmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1C46/05CADD16F18611EA8DEC3C14C4F9AE02/D3EA977EF32D11EA8498822CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.252.36.0/22 103.4.4.0-103.4.6.255 182.239.40.0/22 IPv6: 2407:de00::/32 Signature Algorithm: sha256WithRSAEncryption 82:33:3d:dc:44:d5:1b:32:0a:d7:89:41:e7:1c:06:5b:ff:c3: f2:c1:98:33:77:b7:f4:d0:53:bb:0d:bc:bf:f6:6e:b0:a2:3b: 50:ab:e3:8d:1d:6f:11:56:a3:82:ce:bb:c9:a1:4b:6a:2b:2e: 6b:27:d2:38:88:c1:12:30:b0:f0:04:e1:8c:61:41:81:0f:e7: 25:ed:27:a9:6f:4d:20:0b:7a:61:06:1f:81:89:7e:3a:a1:6f: 5f:4a:9d:6a:b7:b0:5e:d8:4d:03:56:0a:fc:4a:d0:f9:fb:ea: 7f:04:c5:dd:2c:f5:2d:3c:47:55:91:17:30:b7:50:c3:06:3f: 18:b3:6b:cd:03:34:b7:eb:58:cc:a4:6d:12:46:6d:93:e1:a3: ba:c0:a3:df:84:f1:f4:41:52:06:7c:0a:5e:94:3a:a6:51:b1: ae:fc:29:d6:91:45:2d:9a:2f:16:eb:f8:f2:89:02:76:07:15: ae:cf:c9:3b:20:42:23:6e:f1:58:a6:88:d7:77:96:a9:d3:d3: 3d:63:d9:94:49:db:03:d2:88:c0:2d:8f:9f:ab:cb:d8:48:ac: 80:d4:8a:d9:ee:8f:34:70:79:04:94:a9:e6:e0:7e:29:fc:af: f0:94:e5:bc:a1:cb:94:69:58:5d:6d:c7:17:5d:25:27:a6:4b: d3:bf:a7:2c -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICCG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFDNDYxMTAvBgNVBAUTKEM2QzE5MTY5RUVBN0QwNjZCQzlCQ0E3MkREODgzMEJD MTgzQTEyNjYwHhcNMjUwNjA2MjEzOTQxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDg4YS03ZmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEdm2UsShzBXTtOh1BYkeSRuQHtI5L1NIcwB/0ZZqIGbzpaWSs/7ccspo2JN LwR/52DgfKgQb3Dgtzt7qJ2RfIaRsGveLFEG96p+ku3vsbkKU6FNulXpkqEDMx1A Vv8WJebzoag3hpaLaA1qfQCKJLILTgM7AJMPYIqRFBzhnUv5aLK2nm3MZ+uWqeG+ 4QX+qPvIEyWU2qQMduqOHWyEChvsDuQf2mTamAFg2E/J+Se2i1w1CHqQCmNQWfnX 349+P8bqMop20bVh2VYfM7Z5EwnVl+v8raqq2lSm0PmeoKk8iq/IHkq+qNGY9NOP aKLBMe+Yzy7BtemGYdyhl21k5QIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFEMlZk8j YXmn4g08fAB7PhqrOkE1MB8GA1UdIwQYMBaAFMbBkWnup9BmvJvKct2IMLwYOhJm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUM0Ni8wNUNBREQxNkYx ODYxMUVBOERFQzNDMTRDNEY5QUUwMi94c0dSYWU2bjBHYThtOHB5M1lnd3ZCZzZF bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hzR1JhZTZuMEdhOG04cHkzWWd3dkJnNkVtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjFDNDYvMDVDQUREMTZGMTg2MTFFQThERUMzQzE0QzRGOUFFMDIvRDNFQTk3N0VG MzJEMTFFQTg0OTg4MjJDQzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAg BAIAATAaAwQCK/wkMAwDBAJnBAQDBABnBAYDBAK27ygwDQQCAAIwBwMFACQH3gAw DQYJKoZIhvcNAQELBQADggEBAIIzPdxE1RsyCteJQeccBlv/w/LBmDN3t/TQU7sN vL/2brCiO1Cr440dbxFWo4LOu8mhS2orLmsn0jiIwRIwsPAE4YxhQYEP5yXtJ6lv TSALemEGH4GJfjqhb19KnWq3sF7YTQNWCvxK0Pn76n8Exd0s9S08R1WRFzC3UMMG Pxiza80DNLfrWMykbRJGbZPho7rAo9+E8fRBUgZ8Cl6UOqZRsa78KdaRRS2aLxbr +PKJAnYHFa7PyTsgQiNu8VimiNd3lqnT0z1j2ZRJ2wPSiMAtj5+ry9hIrIDUitnu jzRweQSUqebgfin8r/CU5byhy5RpWF1txxddJSemS9O/pyw= -----END CERTIFICATE-----Generated at Mon Mar 2 10:14:30 2026 by rpki-client