$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/33EB881ED9A011F08EC1CA9167D3641D.roa File: 33EB881ED9A011F08EC1CA9167D3641D.roa (raw, json) Hash identifier: BgD9Nozy6YrPBl3k/LaQh1iksmIlumLLGLfxZ8EsuWo= Subject key identifier: 23:41:F7:77:D9:1C:C4:8B:1F:B1:41:99:73:67:71:98:BE:B6:F8:A9 Certificate issuer: /CN=A91F3256/serialNumber=37CD9BB086EF0AF5A32BD885474686806D9096FB Certificate serial: 2C Authority key identifier: 37:CD:9B:B0:86:EF:0A:F5:A3:2B:D8:85:47:46:86:80:6D:90:96:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N82bsIbvCvWjK9iFR0aGgG2Qlvs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/33EB881ED9A011F08EC1CA9167D3641D.roa Signing time: Mon 02 Mar 2026 14:30:17 +0000 ROA not before: Mon 15 Dec 2025 10:24:14 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152194 IP address blocks: 43.243.28.0/22 maxlen: 24 103.230.240.0/22 maxlen: 24 2401:8b80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/N82bsIbvCvWjK9iFR0aGgG2Qlvs.crl rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/N82bsIbvCvWjK9iFR0aGgG2Qlvs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N82bsIbvCvWjK9iFR0aGgG2Qlvs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3256, serialNumber=37CD9BB086EF0AF5A32BD885474686806D9096FB Validity Not Before: Dec 15 10:24:14 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a59ef9-65a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f4:e8:b2:fe:1b:c3:f3:93:72:87:ee:3a:d0: e8:5f:6b:b9:67:17:fc:40:ea:0f:9c:4b:5c:f7:33: 22:cb:f8:c1:cf:7d:f9:0b:31:b6:d4:42:61:12:85: c8:8b:2b:d1:b8:2c:d0:34:02:99:e8:61:9f:5a:2b: 20:a8:35:b9:13:a7:37:5b:a9:78:93:a0:ba:2e:88: 5f:db:8d:3e:fd:e0:01:a4:e9:e3:93:ec:23:23:6f: 59:82:5a:ae:9e:a6:47:7c:d0:40:14:34:b4:1e:b2: f9:36:1c:f5:ac:4c:cf:a6:18:11:53:67:16:ed:db: 2b:b2:02:e0:f3:35:ab:dd:38:7d:8a:ad:8d:e2:97: fb:a0:cc:f7:d9:85:7b:1a:d5:5f:19:52:85:1f:8d: 30:e2:54:80:ce:0f:57:ef:bc:51:08:ea:be:b4:13: 74:0c:55:83:71:2b:1d:bd:bc:83:f3:e4:a8:5e:46: e8:ff:be:5c:c7:3b:4f:85:17:17:f1:55:6a:50:02: 3e:26:55:c6:3e:18:4f:d7:f4:16:27:a5:04:da:40: 08:79:a7:45:a4:25:50:65:a7:67:78:18:89:c9:af: c5:ad:57:91:fb:71:48:e7:c7:74:6b:99:32:ce:ce: a8:8b:b2:b1:ec:ff:d4:8a:a6:af:56:05:c1:af:1c: 30:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:41:F7:77:D9:1C:C4:8B:1F:B1:41:99:73:67:71:98:BE:B6:F8:A9 X509v3 Authority Key Identifier: keyid:37:CD:9B:B0:86:EF:0A:F5:A3:2B:D8:85:47:46:86:80:6D:90:96:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/N82bsIbvCvWjK9iFR0aGgG2Qlvs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N82bsIbvCvWjK9iFR0aGgG2Qlvs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/33EB881ED9A011F08EC1CA9167D3641D.roa sbgp-ipAddrBlock: critical IPv4: 43.243.28.0/22 103.230.240.0/22 IPv6: 2401:8b80::/32 Signature Algorithm: sha256WithRSAEncryption 0b:41:48:7a:1d:74:bd:61:88:97:4d:9d:b3:94:6d:30:52:f2: 72:21:c2:d4:93:c1:e2:e4:15:da:e1:24:b9:54:3b:0a:29:9f: 6f:94:8f:78:ef:4d:56:fb:16:1f:25:b7:6b:cd:7e:ed:06:c2: 51:a3:d5:07:6c:a2:94:92:25:aa:70:06:98:8b:ee:66:f1:f1: f3:2b:11:b5:71:bf:19:c4:ef:01:86:98:98:a8:ef:7d:f1:38: f9:55:60:3a:01:86:83:9a:7c:a8:2d:d4:43:af:8c:9b:31:7b: 76:18:8f:b9:11:a3:06:12:32:e3:e3:51:8c:e9:d3:ad:cb:64: 62:ad:03:2d:69:9b:2f:e9:48:98:e8:1c:7b:7a:ba:37:c2:b4: af:48:62:6c:3e:f6:60:83:30:26:e7:a0:e7:da:4a:02:87:e3: f4:fb:58:24:00:b1:c6:84:b6:c5:4c:68:fa:fa:a2:ec:7b:18: 47:6f:ce:13:f3:2d:66:92:10:e8:8a:50:95:a6:16:3a:ef:c6: 70:f0:8e:6c:00:58:a6:14:63:86:16:36:40:ca:cd:13:e8:a3: e5:ff:7e:bf:72:89:70:cc:66:e1:59:c9:59:2a:1f:e7:26:11: db:fb:ef:a3:f3:ef:46:4e:be:8c:3f:5e:c1:96:42:aa:b8:c2: c6:17:60:7d -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MzI1NjExMC8GA1UEBRMoMzdDRDlCQjA4NkVGMEFGNUEzMkJEODg1NDc0Njg2ODA2 RDkwOTZGQjAeFw0yNTEyMTUxMDI0MTRaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU5ZWY5LTY1YTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZ9Oiy/hvD85Nyh+460Ohfa7lnF/xA6g+cS1z3MyLL+MHPffkLMbbUQmEShciL K9G4LNA0ApnoYZ9aKyCoNbkTpzdbqXiToLouiF/bjT794AGk6eOT7CMjb1mCWq6e pkd80EAUNLQesvk2HPWsTM+mGBFTZxbt2yuyAuDzNavdOH2KrY3il/ugzPfZhXsa 1V8ZUoUfjTDiVIDOD1fvvFEI6r60E3QMVYNxKx29vIPz5KheRuj/vlzHO0+FFxfx VWpQAj4mVcY+GE/X9BYnpQTaQAh5p0WkJVBlp2d4GInJr8WtV5H7cUjnx3RrmTLO zqiLsrHs/9SKpq9WBcGvHDAxAgMBAAGjggJ1MIICcTAdBgNVHQ4EFgQUI0H3d9kc xIsfsUGZc2dxmL62+KkwHwYDVR0jBBgwFoAUN82bsIbvCvWjK9iFR0aGgG2Qlvsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzMjU2LzFCNTVENzM4RDk5 RjExRjA5N0VGQkVGOTY2RDM2NDFEL044MmJzSWJ2Q3ZXaks5aUZSMGFHZ0cyUWx2 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjgyYnNJYnZDdldqSzlpRlIwYUdnRzJRbHZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzI1Ni8xQjU1RDczOEQ5OUYxMUYwOTdFRkJFRjk2NkQzNjQxRC8zM0VCODgxRUQ5 QTAxMUYwOEVDMUNBOTE2N0QzNjQxRC5yb2EwNAYIKwYBBQUHAQcBAf8EJTAjMBIE AgABMAwDBAIr8xwDBAJn5vAwDQQCAAIwBwMFACQBi4AwDQYJKoZIhvcNAQELBQAD ggEBAAtBSHoddL1hiJdNnbOUbTBS8nIhwtSTweLkFdrhJLlUOwopn2+Uj3jvTVb7 Fh8lt2vNfu0GwlGj1QdsopSSJapwBpiL7mbx8fMrEbVxvxnE7wGGmJio733xOPlV YDoBhoOafKgt1EOvjJsxe3YYj7kRowYSMuPjUYzp063LZGKtAy1pmy/pSJjoHHt6 ujfCtK9IYmw+9mCDMCbnoOfaSgKH4/T7WCQAscaEtsVMaPr6oux7GEdvzhPzLWaS EOiKUJWmFjrvxnDwjmwAWKYUY4YWNkDKzRPoo+X/fr9yiXDMZuFZyVkqH+cmEdv7 76Pz70ZOvow/XsGWQqq4wsYXYH0= -----END CERTIFICATE-----Generated at Mon Mar 2 19:27:30 2026 by rpki-client