$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/D90961489C1311EFA0BF1480C4F9AE02.roa File: D90961489C1311EFA0BF1480C4F9AE02.roa (raw, json) Hash identifier: jz3mUG66x+LfglClnYcC2zPJcIcV277FZw8xXWBFQHI= Subject key identifier: 33:37:88:9D:CA:B4:6F:FD:13:D5:30:45:A4:03:A9:47:CE:A1:54:B6 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1BCC Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/D90961489C1311EFA0BF1480C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:29:09 +0000 ROA not before: Sat 20 Sep 2025 16:34:57 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 4837 IP address blocks: 43.248.4.0/24 maxlen: 24 43.248.7.0/24 maxlen: 24 60.16.0.0/13 maxlen: 24 103.3.132.0/24 maxlen: 24 113.9.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:47:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7116 (0x1bcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Sep 20 16:34:57 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a45b45-dab2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d5:c1:63:a3:ff:75:ef:c8:fb:4d:32:b1:04: ce:fb:ba:e7:32:3b:8a:cd:84:21:90:e2:fb:19:9b: d0:73:40:34:82:f8:c1:2b:92:79:1f:15:32:2d:b4: 0a:bd:3e:3b:59:d9:84:ff:11:34:83:73:c7:67:78: d3:a5:33:70:8c:43:11:b0:4e:e9:c9:11:09:95:ff: 91:03:0d:84:82:d7:fe:92:d2:b3:29:2e:de:49:34: 30:2c:3a:65:27:78:34:d6:2f:45:a8:7a:9f:d1:55: 12:f4:20:06:76:59:f4:ca:00:6b:55:b7:72:61:05: 54:e2:f1:0d:a0:fd:de:44:70:dd:aa:aa:61:a8:c4: f9:d0:e7:96:c3:31:6d:8e:11:9e:af:fb:6b:64:b8: 4a:e5:65:8d:76:b2:05:33:96:dd:33:59:99:c3:b4: 2d:9a:d3:20:cf:3b:ef:bf:b6:2c:c7:ed:bb:7a:4d: f5:25:66:3e:35:4d:fd:a8:b2:59:e6:25:b2:fa:50: c9:b5:bf:12:0f:e2:5e:dc:d9:3f:2d:7d:16:9c:63: 11:cb:2b:fb:6f:0c:cd:a5:2c:73:68:83:d7:4f:13: 44:05:db:47:2e:e9:c0:86:f0:5d:7a:98:83:84:d4: b5:1d:6b:b1:19:41:15:00:4c:52:51:c3:78:36:2e: b7:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:37:88:9D:CA:B4:6F:FD:13:D5:30:45:A4:03:A9:47:CE:A1:54:B6 X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/D90961489C1311EFA0BF1480C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.248.4.0/24 43.248.7.0/24 60.16.0.0/13 103.3.132.0/24 113.9.196.0/24 Signature Algorithm: sha256WithRSAEncryption b4:95:d5:d3:c2:03:75:ff:d7:07:9b:fb:79:45:56:8d:d8:fe: 10:61:c3:f2:c0:9f:59:6b:9c:11:8b:c8:55:de:b2:dd:9c:c1: 83:06:9f:de:00:b3:05:29:2b:44:56:79:a9:de:bd:08:33:57: bc:9e:60:e6:ae:2b:05:03:f1:96:2f:11:e5:74:7e:8b:89:01: 32:2f:e4:6c:64:68:f3:f7:42:86:63:56:10:26:92:e9:08:8c: a5:3e:0a:d9:28:0d:6c:d2:f6:f9:21:da:a6:ae:1e:36:83:3b: 9b:5f:38:8e:4d:ee:8b:cd:d4:d6:ac:63:57:e2:81:99:12:b5: 65:2e:52:13:6a:98:90:0c:99:4b:53:75:48:90:be:14:a4:6f: 6b:05:93:30:78:cd:f2:a2:35:a8:02:fc:9c:2a:41:c6:e0:b6: 6c:41:95:8e:bf:56:31:b2:86:36:41:a7:44:7c:e8:5d:09:87: a6:3c:52:53:73:b6:e1:30:b5:44:84:22:4b:12:fa:21:a2:4a: b1:c5:82:22:13:9d:87:9a:26:30:be:4a:27:0f:2f:61:48:b8: 69:4c:e2:88:03:48:98:90:d8:2a:48:db:f9:1c:c5:4c:5a:c8: b3:57:fb:8c:d4:9c:73:6c:d7:c7:a2:82:f3:b6:1e:23:7e:92: e7:57:7b:50 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICG8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjUwOTIwMTYzNDU3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWI0NS1kYWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9XBY6P/de/I+00ysQTO+7rnMjuKzYQhkOL7GZvQc0A0gvjBK5J5HxUyLbQK vT47WdmE/xE0g3PHZ3jTpTNwjEMRsE7pyREJlf+RAw2Egtf+ktKzKS7eSTQwLDpl J3g01i9FqHqf0VUS9CAGdln0ygBrVbdyYQVU4vENoP3eRHDdqqphqMT50OeWwzFt jhGer/trZLhK5WWNdrIFM5bdM1mZw7QtmtMgzzvvv7Ysx+27ek31JWY+NU39qLJZ 5iWy+lDJtb8SD+Je3Nk/LX0WnGMRyyv7bwzNpSxzaIPXTxNEBdtHLunAhvBdepiD hNS1HWuxGUEVAExSUcN4Ni63qQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFDM3iJ3K tG/9E9UwRaQDqUfOoVS2MB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNDQjMvMURCNzk4M0MyNTlEMTFFNzg1RDMyNTBBQzRGOUFFMDIvRDkwOTYxNDg5 QzEzMTFFRkEwQkYxNDgwQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAj BAIAATAdAwQAK/gEAwQAK/gHAwMDPBADBABnA4QDBABxCcQwDQYJKoZIhvcNAQEL BQADggEBALSV1dPCA3X/1web+3lFVo3Y/hBhw/LAn1lrnBGLyFXest2cwYMGn94A swUpK0RWeanevQgzV7yeYOauKwUD8ZYvEeV0fouJATIv5GxkaPP3QoZjVhAmkukI jKU+CtkoDWzS9vkh2qauHjaDO5tfOI5N7ovN1NasY1figZkStWUuUhNqmJAMmUtT dUiQvhSkb2sFkzB4zfKiNagC/JwqQcbgtmxBlY6/VjGyhjZBp0R86F0Jh6Y8UlNz tuEwtUSEIksS+iGiSrHFgiITnYeaJjC+SicPL2FIuGlM4ogDSJiQ2CpI2/kcxUxa yLNX+4zUnHNs18eigvO2HiN+kudXe1A= -----END CERTIFICATE-----Generated at Mon Mar 2 09:45:57 2026 by rpki-client