$ rpki-client -vvf rpki.apnic.net/member_repository/A9132667/91592B4ABB9C11F0A5A3D815C4F9AE02/4FFB27E2BDBE11F0999C417DC4F9AE02.roa File: 4FFB27E2BDBE11F0999C417DC4F9AE02.roa (raw, json) Hash identifier: BAu12vyqXmR0qHLygAuhUs2RE7FdNd2Ix/Ksj7XLnkk= Subject key identifier: D0:83:BD:81:D1:1B:77:78:16:0A:F0:38:04:20:B0:33:C1:B2:7F:CD Certificate issuer: /CN=A9132667/serialNumber=D0F638C5B98AE8AFCD6CEE0503824197409C3E93 Certificate serial: 3E Authority key identifier: D0:F6:38:C5:B9:8A:E8:AF:CD:6C:EE:05:03:82:41:97:40:9C:3E:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0PY4xbmK6K_NbO4FA4JBl0CcPpM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132667/91592B4ABB9C11F0A5A3D815C4F9AE02/4FFB27E2BDBE11F0999C417DC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:06:26 +0000 ROA not before: Sun 09 Nov 2025 22:49:13 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 45793 IP address blocks: 202.43.80.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132667/91592B4ABB9C11F0A5A3D815C4F9AE02/0PY4xbmK6K_NbO4FA4JBl0CcPpM.crl rsync://rpki.apnic.net/member_repository/A9132667/91592B4ABB9C11F0A5A3D815C4F9AE02/0PY4xbmK6K_NbO4FA4JBl0CcPpM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0PY4xbmK6K_NbO4FA4JBl0CcPpM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:52:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132667, serialNumber=D0F638C5B98AE8AFCD6CEE0503824197409C3E93 Validity Not Before: Nov 9 22:49:13 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3d762-6172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:04:2b:00:1a:28:a8:f1:5b:9d:69:c8:90:76: ef:8c:aa:e7:b3:b4:37:6a:7d:6a:a4:c8:7e:72:7c: 44:30:be:dc:e1:c9:64:65:09:37:11:73:82:ae:5b: 33:ca:0b:13:c0:74:b4:c2:3b:22:d9:25:0c:73:8e: 28:65:8d:8a:3b:a3:e2:52:f2:06:bb:76:47:2e:76: aa:b4:df:72:a8:0b:ca:a5:c7:22:e6:83:9d:36:e3: 0b:96:63:0d:93:16:06:41:1f:9d:09:e3:ca:ee:81: 05:ad:b3:fe:ee:ad:85:01:1c:69:ed:67:33:d6:80: fc:ba:03:e8:16:9a:8c:38:30:1b:84:08:a4:a4:f7: f8:ff:0d:6b:ca:15:d6:c8:a0:6f:a1:f2:7d:8a:82: 8c:e3:a6:5d:9b:b3:c4:05:cc:b7:bf:1b:5b:05:a2: 2b:26:4e:44:51:92:0b:df:c1:e3:7b:be:ab:04:ab: c0:85:e4:2d:50:eb:bb:47:12:40:9c:fc:44:4b:d3: ae:57:b0:2d:0c:36:88:da:18:ce:04:8c:4e:24:38: 1b:c9:f3:6c:86:42:5d:b8:fe:40:28:11:92:9a:c4: 72:dd:cd:c7:88:9b:ce:fc:78:64:af:d3:21:5d:c2: 86:c6:87:1b:af:fa:6e:db:43:67:86:6c:83:1e:14: 51:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:83:BD:81:D1:1B:77:78:16:0A:F0:38:04:20:B0:33:C1:B2:7F:CD X509v3 Authority Key Identifier: keyid:D0:F6:38:C5:B9:8A:E8:AF:CD:6C:EE:05:03:82:41:97:40:9C:3E:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132667/91592B4ABB9C11F0A5A3D815C4F9AE02/0PY4xbmK6K_NbO4FA4JBl0CcPpM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0PY4xbmK6K_NbO4FA4JBl0CcPpM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132667/91592B4ABB9C11F0A5A3D815C4F9AE02/4FFB27E2BDBE11F0999C417DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.43.80.0/23 Signature Algorithm: sha256WithRSAEncryption a2:b3:04:3c:92:6f:2f:01:e8:f4:70:59:f1:e4:b6:cd:5d:cc: 90:37:08:82:e2:a8:6b:7c:a4:b8:3e:53:7a:09:29:b4:44:5b: e2:28:b1:fd:44:25:c8:37:9c:66:eb:c4:f6:ba:78:5c:7f:2a: 71:47:ae:10:8f:ff:97:c8:0a:c2:b0:03:8e:c1:4e:58:27:44: 6e:4d:1f:06:78:23:3f:7b:c3:f3:25:6c:59:49:d1:96:39:e0: dd:94:a3:fc:aa:42:54:3c:36:6f:b2:3d:37:1f:99:d7:2e:7a: 47:d0:15:13:1a:01:6c:f8:52:c5:06:3b:6b:ac:19:94:9b:6f: 63:8c:07:06:36:bb:a1:a5:aa:2a:51:d2:3a:1f:f9:8f:5f:aa: c2:07:da:84:14:a4:63:32:68:e7:8d:99:c7:ae:c6:0f:7b:60: 36:7e:1d:50:5f:30:e4:19:32:c8:ac:f7:47:95:af:4c:25:51: 35:b4:ae:54:46:9a:7d:2d:45:0d:a3:bb:3a:2c:81:d4:05:54: 30:38:c8:d9:3f:7f:21:b8:6c:85:d0:ca:7e:b0:72:11:37:7b: 6f:a4:01:2a:5c:d4:a0:8d:2e:2e:37:95:f8:be:a4:81:a8:5c: 69:4e:6c:d7:a2:ee:13:a4:75:d1:fa:43:f8:38:bc:8a:c3:08: 5d:05:ba:3c -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MjY2NzExMC8GA1UEBRMoRDBGNjM4QzVCOThBRThBRkNENkNFRTA1MDM4MjQxOTc0 MDlDM0U5MzAeFw0yNTExMDkyMjQ5MTNaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNzYyLTYxNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzBCsAGiio8VudaciQdu+MqueztDdqfWqkyH5yfEQwvtzhyWRlCTcRc4KuWzPK CxPAdLTCOyLZJQxzjihljYo7o+JS8ga7dkcudqq033KoC8qlxyLmg5024wuWYw2T FgZBH50J48rugQWts/7urYUBHGntZzPWgPy6A+gWmow4MBuECKSk9/j/DWvKFdbI oG+h8n2Kgozjpl2bs8QFzLe/G1sFoismTkRRkgvfweN7vqsEq8CF5C1Q67tHEkCc /ERL065XsC0MNojaGM4EjE4kOBvJ82yGQl24/kAoEZKaxHLdzceIm878eGSv0yFd wobGhxuv+m7bQ2eGbIMeFFGHAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU0IO9gdEb d3gWCvA4BCCwM8Gyf80wHwYDVR0jBBgwFoAU0PY4xbmK6K/NbO4FA4JBl0CcPpMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyNjY3LzkxNTkyQjRBQkI5 QzExRjBBNUEzRDgxNUM0RjlBRTAyLzBQWTR4Ym1LNktfTmJPNEZBNEpCbDBDY1Bw TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMFBZNHhibUs2S19OYk80RkE0SkJsMENjUHBNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjY2Ny85MTU5MkI0QUJCOUMxMUYwQTVBM0Q4MTVDNEY5QUUwMi80RkZCMjdFMkJE QkUxMUYwOTk5QzQxN0RDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAHKK1AwDQYJKoZIhvcNAQELBQADggEBAKKzBDySby8B6PRwWfHkts1d zJA3CILiqGt8pLg+U3oJKbREW+Iosf1EJcg3nGbrxPa6eFx/KnFHrhCP/5fICsKw A47BTlgnRG5NHwZ4Iz97w/MlbFlJ0ZY54N2Uo/yqQlQ8Nm+yPTcfmdcuekfQFRMa AWz4UsUGO2usGZSbb2OMBwY2u6GlqipR0jof+Y9fqsIH2oQUpGMyaOeNmceuxg97 YDZ+HVBfMOQZMsis90eVr0wlUTW0rlRGmn0tRQ2juzosgdQFVDA4yNk/fyG4bIXQ yn6wchE3e2+kASpc1KCNLi43lfi+pIGoXGlObNei7hOkddH6Q/g4vIrDCF0Fujw= -----END CERTIFICATE-----Generated at Mon Mar 2 05:01:45 2026 by rpki-client