$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/9517317CDFD811F0B8B3FAFD526F56BC.roa File: 9517317CDFD811F0B8B3FAFD526F56BC.roa (raw, json) Hash identifier: qb5R9Q7jOpq5Y6i3cJApZKmbM4WU3zRSziZ9WVbhWNM= Subject key identifier: BB:86:57:00:F6:2A:85:D2:2A:E5:B6:BE:76:73:48:8A:E5:E7:2A:F8 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 08E9 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/9517317CDFD811F0B8B3FAFD526F56BC.roa Signing time: Sun 01 Mar 2026 18:53:59 +0000 ROA not before: Tue 23 Dec 2025 08:22:55 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 136173 IP address blocks: 43.229.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:04:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2281 (0x8e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Dec 23 08:22:55 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48b46-fbe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6f:59:3e:b3:23:a1:a2:78:6d:5c:e1:d8:76: 21:5c:57:c7:70:1b:6b:8d:59:7f:e0:53:d7:f7:bd: 11:70:f1:e0:5c:e2:c2:13:b8:b9:d4:2e:27:e5:ef: f8:3a:27:61:a3:93:3e:ac:c5:96:2e:0a:55:d4:1d: 15:2b:86:01:5c:78:95:64:da:e7:6f:ae:5e:16:b8: 3d:95:f3:23:13:a8:53:a0:78:c2:cc:1e:2d:db:b9: 28:06:6e:a3:11:0a:f1:fa:63:08:e0:54:87:34:14: c0:ea:6f:61:f9:36:d9:20:f9:b9:3f:4f:ff:f7:d4: 65:a9:9c:30:8d:c1:08:20:07:ff:a9:2c:29:1d:38: 80:b1:e8:fa:03:47:a0:40:b8:74:c3:20:3f:64:b2: 08:e8:d4:8b:29:ec:90:b2:70:e3:42:43:64:4c:14: 34:0d:8e:2d:64:7f:92:39:f9:55:9d:73:3f:fc:50: 45:9d:c8:92:1b:46:04:df:07:76:cd:65:9b:ad:74: 90:82:c6:8d:24:d8:2f:6e:55:53:d1:2b:4c:ac:3c: 3f:0f:d1:51:7e:2d:cf:db:76:e7:a0:c2:44:dd:6a: 08:5d:ee:98:5e:fd:ea:5f:5a:69:50:46:c3:9e:23: 95:53:e4:70:41:66:de:e6:81:58:fd:93:78:7c:cc: 59:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:86:57:00:F6:2A:85:D2:2A:E5:B6:BE:76:73:48:8A:E5:E7:2A:F8 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/9517317CDFD811F0B8B3FAFD526F56BC.roa sbgp-ipAddrBlock: critical IPv4: 43.229.155.0/24 Signature Algorithm: sha256WithRSAEncryption aa:a3:80:81:9b:78:04:ae:28:c9:27:21:20:5d:60:46:d9:b1: 80:88:7f:fa:0e:82:11:1f:f5:b6:0d:25:e6:ec:76:f5:9f:e6: dd:bf:e6:67:fc:ab:70:19:e9:d4:e9:1a:9b:a2:d9:56:66:c8: b0:8a:d7:52:f6:97:28:c1:f8:2a:6d:f4:9a:7f:1b:0a:d1:d6: 92:db:21:3d:47:e4:b8:1d:00:f1:35:c8:f2:ad:f6:53:d1:02: 02:ad:ac:97:52:6e:a4:60:44:20:b0:2d:00:b9:5d:ab:87:87: c5:17:60:2c:b7:1c:8a:47:fc:fa:cc:cc:d6:8b:dc:cf:58:92: 61:77:c7:55:53:6c:34:dd:02:d1:5e:ea:28:18:0d:7b:93:9a: 6b:68:07:a5:21:c6:32:10:a4:fd:46:8f:6c:92:a3:2b:0e:6c: 7d:aa:2b:c4:ed:55:d7:ee:09:88:33:b8:f0:07:fc:83:9f:2d: da:04:b4:ec:fe:d0:63:b4:27:94:db:24:e8:82:25:d2:92:8a: f5:60:e3:14:45:7e:24:1f:d6:b6:d1:51:04:ab:5f:7a:44:64: 19:ef:cf:18:0c:b5:8d:8f:d6:d4:37:5c:61:3b:9d:f2:24:f5: 26:f2:21:4c:13:e7:74:b9:de:83:ee:5f:95:f5:17:a6:3f:86: 96:d4:ce:99 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUxMjIzMDgyMjU1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGI0Ni1mYmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1G9ZPrMjoaJ4bVzh2HYhXFfHcBtrjVl/4FPX970RcPHgXOLCE7i51C4n5e/4 Oidho5M+rMWWLgpV1B0VK4YBXHiVZNrnb65eFrg9lfMjE6hToHjCzB4t27koBm6j EQrx+mMI4FSHNBTA6m9h+TbZIPm5P0//99RlqZwwjcEIIAf/qSwpHTiAsej6A0eg QLh0wyA/ZLII6NSLKeyQsnDjQkNkTBQ0DY4tZH+SOflVnXM//FBFnciSG0YE3wd2 zWWbrXSQgsaNJNgvblVT0StMrDw/D9FRfi3P23bnoMJE3WoIXe6YXv3qX1ppUEbD niOVU+RwQWbe5oFY/ZN4fMxZgwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLuGVwD2 KoXSKuW2vnZzSIrl5yr4MB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvOTUxNzMxN0NE RkQ4MTFGMEI4QjNGQUZENTI2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK+WbMA0GCSqGSIb3DQEBCwUAA4IBAQCqo4CBm3gErijJJyEgXWBG 2bGAiH/6DoIRH/W2DSXm7Hb1n+bdv+Zn/KtwGenU6RqbotlWZsiwitdS9pcowfgq bfSafxsK0daS2yE9R+S4HQDxNcjyrfZT0QICrayXUm6kYEQgsC0AuV2rh4fFF2As txyKR/z6zMzWi9zPWJJhd8dVU2w03QLRXuooGA17k5praAelIcYyEKT9Ro9skqMr Dmx9qivE7VXX7gmIM7jwB/yDny3aBLTs/tBjtCeU2yTogiXSkor1YOMURX4kH9a2 0VEEq196RGQZ788YDLWNj9bUN1xhO53yJPUm8iFME+d0ud6D7l+V9RemP4aW1M6Z -----END CERTIFICATE-----Generated at Mon Mar 2 05:10:21 2026 by rpki-client