$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEDE7/E7FD3058D99D11F0BBE7839966D3641D/63C2AF74D99E11F0A31734B566D3641D.roa File: 63C2AF74D99E11F0A31734B566D3641D.roa (raw, json) Hash identifier: XqsHjVz2/3IOIuZJsTXT+P8IFg2LCZpsTf20ES1Rkms= Subject key identifier: 2B:69:CF:AB:A9:A1:6D:66:A9:30:2E:3B:3E:87:ED:9E:DA:25:B5:27 Certificate issuer: /CN=A91FEDE7/serialNumber=E1C59FA5A6BC876F7CE4A46CAAAE60604F051866 Certificate serial: 2C Authority key identifier: E1:C5:9F:A5:A6:BC:87:6F:7C:E4:A4:6C:AA:AE:60:60:4F:05:18:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cWfpaa8h2985KRsqq5gYE8FGGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEDE7/E7FD3058D99D11F0BBE7839966D3641D/63C2AF74D99E11F0A31734B566D3641D.roa Signing time: Sun 01 Mar 2026 05:53:40 +0000 ROA not before: Mon 15 Dec 2025 10:18:16 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152194 IP address blocks: 43.243.72.0/22 maxlen: 22 43.243.72.0/24 maxlen: 24 43.243.73.0/24 maxlen: 24 43.243.74.0/24 maxlen: 24 43.243.75.0/24 maxlen: 24 103.230.228.0/22 maxlen: 24 2405:fcc0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEDE7/E7FD3058D99D11F0BBE7839966D3641D/4cWfpaa8h2985KRsqq5gYE8FGGY.crl rsync://rpki.apnic.net/member_repository/A91FEDE7/E7FD3058D99D11F0BBE7839966D3641D/4cWfpaa8h2985KRsqq5gYE8FGGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cWfpaa8h2985KRsqq5gYE8FGGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEDE7, serialNumber=E1C59FA5A6BC876F7CE4A46CAAAE60604F051866 Validity Not Before: Dec 15 10:18:16 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3d463-4ef5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:62:80:73:e8:a8:48:e9:f8:ad:41:b5:8c:5c: 1f:3d:c3:54:f3:4f:b0:ad:c7:45:bd:81:e3:8c:8c: 53:a8:74:e0:94:ac:90:48:ce:d3:32:ef:cd:77:07: 25:10:be:68:50:4f:2f:79:7c:bc:e4:c5:21:cb:9c: 59:4f:4a:0a:ef:f6:bc:af:d1:4d:cb:a6:21:36:7b: db:f7:a7:2b:94:22:04:a6:b8:39:25:20:ef:28:c2: 20:15:61:6d:b8:94:ec:e7:1b:f6:ed:25:91:25:9d: 22:82:c9:5c:c6:68:44:93:d1:b5:42:f1:87:bb:da: b4:51:85:1c:4f:89:d3:c7:b5:96:ab:52:db:9e:93: c4:cb:88:12:b9:18:12:2a:b9:9e:5d:5e:2e:9f:b5: 3a:14:ee:3a:e2:c4:8a:4b:15:ea:4d:fc:06:dc:56: 89:e0:ed:73:9c:35:fa:ea:d7:3a:01:e3:0d:08:20: ef:4c:fb:e4:7e:a7:81:4e:c6:9f:b0:e4:ac:f6:83: 28:0f:a7:64:d8:fb:dd:37:48:7c:f8:a4:23:ce:01: ba:e5:36:82:cb:53:e8:68:64:2d:bb:eb:59:04:0b: f6:4f:b3:7c:39:4b:74:9a:0a:cc:0d:83:d3:41:7b: 6a:2b:b4:90:ea:ac:1d:6c:c5:1f:66:2e:a4:9a:78: 97:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:69:CF:AB:A9:A1:6D:66:A9:30:2E:3B:3E:87:ED:9E:DA:25:B5:27 X509v3 Authority Key Identifier: keyid:E1:C5:9F:A5:A6:BC:87:6F:7C:E4:A4:6C:AA:AE:60:60:4F:05:18:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEDE7/E7FD3058D99D11F0BBE7839966D3641D/4cWfpaa8h2985KRsqq5gYE8FGGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cWfpaa8h2985KRsqq5gYE8FGGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEDE7/E7FD3058D99D11F0BBE7839966D3641D/63C2AF74D99E11F0A31734B566D3641D.roa sbgp-ipAddrBlock: critical IPv4: 43.243.72.0/22 103.230.228.0/22 IPv6: 2405:fcc0::/32 Signature Algorithm: sha256WithRSAEncryption 42:e4:81:6a:5d:f4:11:ee:6e:80:fa:e6:46:8b:40:c5:12:41: cc:0e:e8:b9:99:35:13:e8:2e:92:e0:b4:39:fe:6b:ac:c8:51: 0e:d7:23:74:6d:c3:82:ea:24:97:c3:fb:75:06:c6:80:b0:b8: bf:58:54:f3:a5:fd:47:9c:ed:32:5c:48:5d:66:42:d1:24:b8: dc:98:ee:9f:77:89:8b:f2:52:04:28:41:e0:45:4e:d2:8b:26: c2:6d:f1:56:84:46:6b:25:1c:eb:19:35:58:cd:62:92:f0:e9: 0e:a7:78:7d:d6:f5:7f:ec:6e:30:4b:36:df:a1:39:6d:47:ca: 96:22:bf:b9:bf:7d:ba:4f:30:4b:53:7d:fc:57:ce:a3:a9:22: 24:99:82:f4:b4:ea:42:36:de:d1:c0:56:9e:6a:22:7f:7b:a3: 67:b1:b4:bc:21:1a:05:53:d3:43:d1:63:cc:a2:e7:f4:2a:47: d8:67:57:0c:90:96:cb:ac:ad:44:6d:eb:7a:8b:f5:a9:6b:7d: fd:a3:f5:f0:0a:09:4c:17:d7:bb:76:ef:78:ca:63:4c:d2:6a: 66:9b:f6:1a:0f:69:da:da:93:bd:49:51:24:fd:b6:6d:98:26: 23:40:b3:dd:ad:d4:4a:c9:d5:b6:fc:80:6c:63:ec:48:c2:b1: 01:01:40:b4 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RURFNzExMC8GA1UEBRMoRTFDNTlGQTVBNkJDODc2RjdDRTRBNDZDQUFBRTYwNjA0 RjA1MTg2NjAeFw0yNTEyMTUxMDE4MTZaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNDYzLTRlZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9YoBz6KhI6fitQbWMXB89w1TzT7Ctx0W9geOMjFOodOCUrJBIztMy7813ByUQ vmhQTy95fLzkxSHLnFlPSgrv9ryv0U3LpiE2e9v3pyuUIgSmuDklIO8owiAVYW24 lOznG/btJZElnSKCyVzGaEST0bVC8Ye72rRRhRxPidPHtZarUtuek8TLiBK5GBIq uZ5dXi6ftToU7jrixIpLFepN/AbcVong7XOcNfrq1zoB4w0IIO9M++R+p4FOxp+w 5Kz2gygPp2TY+903SHz4pCPOAbrlNoLLU+hoZC2761kEC/ZPs3w5S3SaCswNg9NB e2ortJDqrB1sxR9mLqSaeJeXAgMBAAGjggJ1MIICcTAdBgNVHQ4EFgQUK2nPq6mh bWapMC47PoftntoltScwHwYDVR0jBBgwFoAU4cWfpaa8h2985KRsqq5gYE8FGGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZFREU3L0U3RkQzMDU4RDk5 RDExRjBCQkU3ODM5OTY2RDM2NDFELzRjV2ZwYWE4aDI5ODVLUnNxcTVnWUU4RkdH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGNXZnBhYThoMjk4NUtSc3FxNWdZRThGR0dZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RURFNy9FN0ZEMzA1OEQ5OUQxMUYwQkJFNzgzOTk2NkQzNjQxRC82M0MyQUY3NEQ5 OUUxMUYwQTMxNzM0QjU2NkQzNjQxRC5yb2EwNAYIKwYBBQUHAQcBAf8EJTAjMBIE AgABMAwDBAIr80gDBAJn5uQwDQQCAAIwBwMFACQF/MAwDQYJKoZIhvcNAQELBQAD ggEBAELkgWpd9BHuboD65kaLQMUSQcwO6LmZNRPoLpLgtDn+a6zIUQ7XI3Rtw4Lq JJfD+3UGxoCwuL9YVPOl/Uec7TJcSF1mQtEkuNyY7p93iYvyUgQoQeBFTtKLJsJt 8VaERmslHOsZNVjNYpLw6Q6neH3W9X/sbjBLNt+hOW1HypYiv7m/fbpPMEtTffxX zqOpIiSZgvS06kI23tHAVp5qIn97o2extLwhGgVT00PRY8yi5/QqR9hnVwyQlsus rURt63qL9alrff2j9fAKCUwX17t273jKY0zSamab9hoPadrak71JUST9tm2YJiNA s92t1ErJ1bb8gGxj7EjCsQEBQLQ= -----END CERTIFICATE-----Generated at Mon Mar 2 10:00:39 2026 by rpki-client