$ rpki-client -vvf rpki.apnic.net/member_repository/A9127726/F9FFF6AC1DA711E2963AFAA108B02CD2/AF976FA2023311ED945EBE12C4F9AE02.roa File: AF976FA2023311ED945EBE12C4F9AE02.roa (raw, json) Hash identifier: nqfeIktxmQlFz9Aic/Gy6OFmwqmnaf18sWJN3V2VG1s= Subject key identifier: 8B:6F:8C:DB:33:5D:43:B3:B3:21:FD:02:C8:D5:95:BF:85:BF:37:AA Certificate issuer: /CN=A9127726/serialNumber=BD87855CB681E23359BFEC1A34F1992B671E5EEE Certificate serial: 3587 Authority key identifier: BD:87:85:5C:B6:81:E2:33:59:BF:EC:1A:34:F1:99:2B:67:1E:5E:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vYeFXLaB4jNZv-waNPGZK2ceXu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127726/F9FFF6AC1DA711E2963AFAA108B02CD2/AF976FA2023311ED945EBE12C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:12:42 +0000 ROA not before: Thu 08 May 2025 15:21:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134135 IP address blocks: 43.245.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127726/F9FFF6AC1DA711E2963AFAA108B02CD2/vYeFXLaB4jNZv-waNPGZK2ceXu4.crl rsync://rpki.apnic.net/member_repository/A9127726/F9FFF6AC1DA711E2963AFAA108B02CD2/vYeFXLaB4jNZv-waNPGZK2ceXu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vYeFXLaB4jNZv-waNPGZK2ceXu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13703 (0x3587) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127726, serialNumber=BD87855CB681E23359BFEC1A34F1992B671E5EEE Validity Not Before: May 8 15:21:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a42d3a-e634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f0:1a:62:23:71:c7:0f:a4:c7:ef:99:8a:e1: 0d:7d:6d:0e:cd:3f:5b:26:ca:24:44:b3:1e:01:4e: b3:56:19:a8:e8:72:fa:14:74:7f:91:c8:c1:4a:4d: 7d:0c:91:83:eb:9b:0d:9a:1b:8a:6c:e8:95:27:77: b7:dc:7d:d7:a7:26:c7:be:06:07:78:97:07:4b:a7: 85:5d:86:80:c0:12:cf:ae:05:f4:2c:bf:01:aa:73: 5e:38:6e:4b:2f:33:5d:75:7b:b2:2b:18:d0:d3:18: c9:b7:7b:2d:2d:91:64:b8:bf:e7:cd:2d:f9:70:63: c6:a8:97:f0:ed:8f:60:4f:4a:75:d4:4a:bc:3a:7b: 41:90:4e:a5:91:04:db:42:79:7b:0e:7f:d1:f2:13: f9:fb:9b:54:1c:c4:68:cb:6f:1b:19:d4:19:76:b2: aa:cd:09:28:c9:34:e3:ca:8a:80:7c:7e:65:67:42: d6:ca:8e:33:3a:12:3d:e9:f9:9e:f0:58:e5:c2:52: f5:5d:05:ea:43:50:55:35:e4:a5:c8:14:fc:d7:a1: cd:2d:d1:a8:43:55:2c:12:95:47:35:88:31:e9:0e: 4f:94:41:5d:47:09:f3:15:91:67:ba:5a:7f:4b:af: 5c:1a:3b:04:85:cb:6c:1b:31:06:2c:80:5e:78:d1: e6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6F:8C:DB:33:5D:43:B3:B3:21:FD:02:C8:D5:95:BF:85:BF:37:AA X509v3 Authority Key Identifier: keyid:BD:87:85:5C:B6:81:E2:33:59:BF:EC:1A:34:F1:99:2B:67:1E:5E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127726/F9FFF6AC1DA711E2963AFAA108B02CD2/vYeFXLaB4jNZv-waNPGZK2ceXu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vYeFXLaB4jNZv-waNPGZK2ceXu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127726/F9FFF6AC1DA711E2963AFAA108B02CD2/AF976FA2023311ED945EBE12C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.245.118.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:9c:27:0f:14:39:b3:73:43:44:36:77:63:70:57:5c:e5:ca: 2d:9a:b1:59:97:d8:35:41:e4:39:07:a5:50:80:71:c2:43:b3: 4d:48:3a:e2:c5:fb:5b:d6:f9:78:56:d2:d6:5d:c3:34:15:28: 36:ed:d8:de:75:d7:9a:67:a1:87:85:91:23:09:03:73:c0:cd: b8:ac:df:8b:07:d9:58:03:36:38:73:89:9b:c9:1c:cd:1c:ea: 40:45:cb:ab:64:37:34:a2:61:32:a2:66:76:b3:6f:ef:69:0f: e5:b9:04:4e:62:00:40:d3:a6:2f:e9:d9:d3:b0:7b:28:c3:52: 11:de:cd:24:b7:23:4e:08:91:77:7f:74:42:24:a2:b1:3a:db: 96:3b:69:29:87:cc:a2:5c:ec:b7:73:2d:dc:12:10:99:31:0e: ae:a7:44:c6:8b:e7:c5:cc:82:8f:45:70:f9:83:0b:f3:45:1d: a5:ae:3c:8b:ba:21:ff:fc:0c:57:7e:26:bd:23:2e:d1:0d:e6: e5:53:b8:1c:e0:45:2c:85:2f:91:3e:45:55:21:5d:8f:fa:e4: fe:2c:a0:9d:8e:94:45:66:5b:23:53:93:ef:26:fc:df:2a:8e: aa:aa:e5:bb:24:fe:6b:57:a8:36:39:1c:72:4c:5f:f2:10:93: a3:fa:45:50 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc3MjYxMTAvBgNVBAUTKEJEODc4NTVDQjY4MUUyMzM1OUJGRUMxQTM0RjE5OTJC NjcxRTVFRUUwHhcNMjUwNTA4MTUyMTEyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmQzYS1lNjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/AaYiNxxw+kx++ZiuENfW0OzT9bJsokRLMeAU6zVhmo6HL6FHR/kcjBSk19 DJGD65sNmhuKbOiVJ3e33H3XpybHvgYHeJcHS6eFXYaAwBLPrgX0LL8BqnNeOG5L LzNddXuyKxjQ0xjJt3stLZFkuL/nzS35cGPGqJfw7Y9gT0p11Eq8OntBkE6lkQTb Qnl7Dn/R8hP5+5tUHMRoy28bGdQZdrKqzQkoyTTjyoqAfH5lZ0LWyo4zOhI96fme 8FjlwlL1XQXqQ1BVNeSlyBT816HNLdGoQ1UsEpVHNYgx6Q5PlEFdRwnzFZFnulp/ S69cGjsEhctsGzEGLIBeeNHm2QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFItvjNsz XUOzsyH9AsjVlb+FvzeqMB8GA1UdIwQYMBaAFL2HhVy2geIzWb/sGjTxmStnHl7u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzcyNi9GOUZGRjZBQzFE QTcxMUUyOTYzQUZBQTEwOEIwMkNEMi92WWVGWExhQjRqTlp2LXdhTlBHWksyY2VY dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZZZUZYTGFCNGpOWnYtd2FOUEdaSzJjZVh1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc3MjYvRjlGRkY2QUMxREE3MTFFMjk2M0FGQUExMDhCMDJDRDIvQUY5NzZGQTIw MjMzMTFFRDk0NUVCRTEyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK/V2MA0GCSqGSIb3DQEBCwUAA4IBAQB7nCcPFDmzc0NENndjcFdc 5cotmrFZl9g1QeQ5B6VQgHHCQ7NNSDrixftb1vl4VtLWXcM0FSg27djeddeaZ6GH hZEjCQNzwM24rN+LB9lYAzY4c4mbyRzNHOpARcurZDc0omEyomZ2s2/vaQ/luQRO YgBA06Yv6dnTsHsow1IR3s0ktyNOCJF3f3RCJKKxOtuWO2kph8yiXOy3cy3cEhCZ MQ6up0TGi+fFzIKPRXD5gwvzRR2lrjyLuiH//AxXfia9Iy7RDeblU7gc4EUshS+R PkVVIV2P+uT+LKCdjpRFZlsjU5PvJvzfKo6qquW7JP5rV6g2ORxyTF/yEJOj+kVQ -----END CERTIFICATE-----Generated at Mon Mar 2 20:36:03 2026 by rpki-client