$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/87421F34DA3E11F09B1225578ED3641D.roa File: 87421F34DA3E11F09B1225578ED3641D.roa (raw, json) Hash identifier: UtPJM8H0Jn4XRTUJzDBFAqLrKI7+GYkS60Ss/BvP398= Subject key identifier: F8:33:54:18:84:FD:ED:FF:07:00:DE:DB:70:AF:DB:BC:F7:30:19:12 Certificate issuer: /CN=A911CC61/serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Certificate serial: 32 Authority key identifier: 04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/87421F34DA3E11F09B1225578ED3641D.roa Signing time: Sun 01 Mar 2026 05:55:03 +0000 ROA not before: Tue 03 Feb 2026 08:26:07 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 64050 IP address blocks: 43.226.17.0/24 maxlen: 24 43.226.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:13:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC61, serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Validity Not Before: Feb 3 08:26:07 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a3d4b7-5c86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:80:74:7a:9d:e7:40:6d:a4:8b:76:5b:c5:0f: 63:77:2c:84:be:74:54:58:7a:b8:e4:92:45:78:e4: 1a:a4:97:60:00:4d:ef:5f:f9:cf:06:c2:ce:5d:0f: d2:18:43:48:59:c2:16:de:53:37:8e:a4:8a:39:be: d5:4c:89:c1:b0:06:6d:68:16:44:0a:0a:4f:2f:ec: 0a:86:a4:ff:bb:03:6f:86:73:81:f4:6a:d5:f0:a4: e9:b7:79:e7:81:a2:8b:74:ce:f2:41:cc:d5:a3:eb: 48:45:0e:e8:35:b0:f4:75:71:e7:09:80:11:e3:31: 8a:39:bf:e1:92:e2:cf:10:9a:03:99:01:4b:1c:fa: 00:c5:0a:31:14:91:31:08:b3:c2:b3:51:c9:38:06: a7:82:2d:b1:0f:c4:ad:08:b7:92:07:4e:3d:bf:bb: 28:84:f1:e2:68:e1:55:e1:ab:2d:6f:37:a7:9b:40: aa:12:0f:b3:85:fa:21:24:1a:4c:6d:48:0a:c7:50: f3:18:1e:e5:2c:3d:40:b9:fc:24:d1:57:da:09:ed: 58:62:c6:0a:d0:58:fb:63:94:c0:95:e3:07:b5:53: 89:5f:25:23:fa:32:03:a1:37:93:b7:dd:1c:8c:4f: d0:e6:27:5c:9a:d9:71:3e:6a:6a:5e:52:5f:89:c7: cc:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:33:54:18:84:FD:ED:FF:07:00:DE:DB:70:AF:DB:BC:F7:30:19:12 X509v3 Authority Key Identifier: keyid:04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/87421F34DA3E11F09B1225578ED3641D.roa sbgp-ipAddrBlock: critical IPv4: 43.226.17.0-43.226.18.255 Signature Algorithm: sha256WithRSAEncryption 17:12:62:7c:e2:62:f3:c9:35:23:25:1f:be:47:27:77:43:93: 15:77:27:3e:07:05:dd:9a:83:ad:b5:01:17:f9:dc:c3:d6:b4: 98:51:40:2e:c9:12:42:09:33:9c:07:78:02:82:60:3c:94:07: 2b:d0:3b:56:31:ba:9f:60:fb:d5:9c:fe:bd:f9:34:a9:b9:f5: 0c:c9:72:74:1f:cc:50:df:e5:f7:5c:62:8f:3e:53:8b:a3:f6: f1:7f:93:84:00:33:2b:d7:ed:bb:42:e7:1f:0f:9f:d1:94:3c: bd:1e:79:3d:02:dd:44:c1:e2:63:84:26:64:15:1a:7a:a5:2f: b8:98:e6:b5:85:64:b9:0b:d3:30:8e:ee:36:cb:ec:e8:e2:70: 04:c6:28:3c:68:4d:1f:89:ef:94:60:23:1d:70:c3:c6:8d:10: 0a:22:51:8d:6e:9a:16:67:d0:0b:7e:ee:c0:d7:16:78:57:31: a2:a6:88:68:10:4c:f9:6c:49:00:7f:48:25:4c:bc:94:2f:f5: 31:a1:93:55:7e:ed:d7:cd:2c:70:3c:27:26:7e:d0:d7:80:4e: 04:f8:d7:4c:68:c2:2a:00:c4:bd:36:29:7f:68:4d:05:08:b6: 95:8b:38:b2:a3:dd:41:01:2d:60:f1:56:72:3f:0b:c0:29:2d: c1:65:9e:76 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0M2MTExMC8GA1UEBRMoMDQ3NDkzN0U3OUE5RDY3MzM1M0VBQkQ4MkM0Qjg0MjRC NkM2ODMwRDAeFw0yNjAyMDMwODI2MDdaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNGI3LTVjODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDagHR6nedAbaSLdlvFD2N3LIS+dFRYerjkkkV45Bqkl2AATe9f+c8Gws5dD9IY Q0hZwhbeUzeOpIo5vtVMicGwBm1oFkQKCk8v7AqGpP+7A2+Gc4H0atXwpOm3eeeB oot0zvJBzNWj60hFDug1sPR1cecJgBHjMYo5v+GS4s8QmgOZAUsc+gDFCjEUkTEI s8KzUck4BqeCLbEPxK0It5IHTj2/uyiE8eJo4VXhqy1vN6ebQKoSD7OF+iEkGkxt SArHUPMYHuUsPUC5/CTRV9oJ7VhixgrQWPtjlMCV4we1U4lfJSP6MgOhN5O33RyM T9DmJ1ya2XE+ampeUl+Jx8xPAgMBAAGjggJoMIICZDAdBgNVHQ4EFgQU+DNUGIT9 7f8HAN7bcK/bvPcwGRIwHwYDVR0jBBgwFoAUBHSTfnmp1nM1PqvYLEuEJLbGgw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzYxLzMzMUQxNDE4REEz RTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5NMVBxdllMRXVFSkxiR2d3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQkhTVGZubXAxbk0xUHF2WUxFdUVKTGJHZ3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0M2MS8zMzFEMTQxOERBM0UxMUYwOEZEMUU4Mzg4RUQzNjQxRC84NzQyMUYzNERB M0UxMUYwOUIxMjI1NTc4RUQzNjQxRC5yb2EwJwYIKwYBBQUHAQcBAf8EGDAWMBQE AgABMA4wDAMEACviEQMEACviEjANBgkqhkiG9w0BAQsFAAOCAQEAFxJifOJi88k1 IyUfvkcnd0OTFXcnPgcF3ZqDrbUBF/ncw9a0mFFALskSQgkznAd4AoJgPJQHK9A7 VjG6n2D71Zz+vfk0qbn1DMlydB/MUN/l91xijz5Ti6P28X+ThAAzK9ftu0LnHw+f 0ZQ8vR55PQLdRMHiY4QmZBUaeqUvuJjmtYVkuQvTMI7uNsvs6OJwBMYoPGhNH4nv lGAjHXDDxo0QCiJRjW6aFmfQC37uwNcWeFcxoqaIaBBM+WxJAH9IJUy8lC/1MaGT VX7t180scDwnJn7Q14BOBPjXTGjCKgDEvTYpf2hNBQi2lYs4sqPdQQEtYPFWcj8L wCktwWWedg== -----END CERTIFICATE-----Generated at Mon Mar 2 07:41:06 2026 by rpki-client