$ rpki-client -vvf rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/5B9A1DA0114211ED957E085DC4F9AE02.roa File: 5B9A1DA0114211ED957E085DC4F9AE02.roa (raw, json) Hash identifier: HcYDF1RDnUUTCEVc6spiR1L6wgjAoILbSwJyhQUkxh8= Subject key identifier: 63:14:3F:DA:F7:1F:07:16:F7:60:7E:CA:17:38:5E:B1:BB:A9:DF:AD Certificate issuer: /CN=A9144463/serialNumber=6BAA5C520B8E4BF564C4BBF46E1F316BD45FA037 Certificate serial: 0345 Authority key identifier: 6B:AA:5C:52:0B:8E:4B:F5:64:C4:BB:F4:6E:1F:31:6B:D4:5F:A0:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a6pcUguOS_VkxLv0bh8xa9RfoDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/5B9A1DA0114211ED957E085DC4F9AE02.roa Signing time: Thu 11 Jun 2026 03:30:27 +0000 ROA not before: Thu 11 Jun 2026 03:30:27 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 56294 IP address blocks: 43.243.0.0/24 maxlen: 24 43.243.2.0/24 maxlen: 24 43.243.3.0/24 maxlen: 24 103.4.60.0/24 maxlen: 24 103.4.61.0/24 maxlen: 24 103.4.62.0/24 maxlen: 24 103.4.63.0/24 maxlen: 24 2401:2280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/a6pcUguOS_VkxLv0bh8xa9RfoDc.crl rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/a6pcUguOS_VkxLv0bh8xa9RfoDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a6pcUguOS_VkxLv0bh8xa9RfoDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 01:06:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 837 (0x345) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144463, serialNumber=6BAA5C520B8E4BF564C4BBF46E1F316BD45FA037 Validity Not Before: Jun 11 03:30:27 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a2a2bd3-9c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:dc:c4:32:fe:d0:0e:73:4d:cd:74:33:dd:84: 32:cc:0a:cd:c5:49:38:48:f4:7a:fa:95:03:43:8f: 06:e0:9b:00:0e:8f:7a:33:d2:0f:06:b2:b0:05:7a: 4e:01:c9:6d:20:24:e9:a3:96:da:4a:a1:a6:0b:85: a3:92:c0:23:79:8b:de:d4:d9:c8:01:61:11:a8:63: 9a:68:06:df:18:4d:a7:86:ea:6f:a6:47:28:d5:5c: 46:63:06:ad:69:61:4b:61:c0:64:85:33:6c:85:a6: 50:40:f6:95:35:69:48:4b:2f:2e:05:ba:d2:c7:27: e5:bd:3c:80:ab:91:3f:b7:38:38:cd:29:7e:fe:0f: e6:bf:8b:fe:0b:1f:46:b7:ca:cc:a9:33:78:b8:51: a4:8d:0f:65:e4:28:c3:cb:ef:4a:6a:fc:d6:0f:84: b1:72:99:06:7e:81:13:01:67:98:89:cd:bb:a7:25: 3c:37:13:8d:fb:30:3a:0d:4f:fa:4d:99:53:91:98: b4:08:dc:df:26:bf:91:d8:0e:95:23:27:9d:fe:41: 36:6c:4f:7d:70:71:b4:16:67:0b:57:47:d6:7e:07: 43:ac:b6:48:2c:37:05:54:8a:50:78:8f:bc:4d:d1: c6:54:c5:31:8a:f3:35:b6:d6:d5:47:0d:29:27:73: 52:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:14:3F:DA:F7:1F:07:16:F7:60:7E:CA:17:38:5E:B1:BB:A9:DF:AD X509v3 Authority Key Identifier: keyid:6B:AA:5C:52:0B:8E:4B:F5:64:C4:BB:F4:6E:1F:31:6B:D4:5F:A0:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/a6pcUguOS_VkxLv0bh8xa9RfoDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a6pcUguOS_VkxLv0bh8xa9RfoDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/5B9A1DA0114211ED957E085DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.0.0/24 43.243.2.0/23 103.4.60.0/22 IPv6: 2401:2280::/32 Signature Algorithm: sha256WithRSAEncryption 58:91:9e:49:7a:b6:e8:41:5d:f2:19:a4:31:97:f3:e2:cf:ea: f7:a1:9a:cc:47:d9:cb:17:4f:d5:36:38:ad:76:b5:b8:0b:e0: 51:98:55:a6:3c:e7:dc:6f:ff:e3:f8:fc:51:b3:85:67:3e:d9: 62:7f:11:de:e7:b1:ae:7f:35:c9:49:53:52:bc:cc:5b:28:d4: 22:0c:73:34:4d:fe:3f:1f:15:d7:80:f0:a0:b9:11:de:52:aa: 3b:db:5d:7c:d5:88:35:ea:cd:6c:b6:2d:da:16:f9:cb:6e:b1: 3f:be:3e:9c:24:7c:19:61:de:f8:68:db:8a:45:d9:4f:21:6b: 28:3b:4f:c6:de:1e:af:ff:aa:8d:63:fb:fb:49:2a:18:44:be: b7:95:52:8a:50:2c:3f:51:79:88:c6:49:4b:38:54:44:65:43: 03:46:be:b0:24:ad:4c:f7:57:a5:e4:4a:20:90:7e:a8:ff:96: a2:a8:93:7d:15:46:33:04:2b:b6:da:4b:aa:0a:65:56:13:cc: 70:23:81:b9:c9:b1:a9:58:fb:ac:85:ca:d8:74:d4:5e:3a:ac: 0b:63:1a:bb:92:57:14:be:08:0e:76:99:4a:11:f8:e5:31:73: 48:59:e5:9a:30:8e:cd:9e:c7:cb:80:e3:d6:2b:8f:e6:88:a9: 7b:f0:4b:6e -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICA0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ0NjMxMTAvBgNVBAUTKDZCQUE1QzUyMEI4RTRCRjU2NEM0QkJGNDZFMUYzMTZC RDQ1RkEwMzcwHhcNMjYwNjExMDMzMDI3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTJhMmJkMy05YzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtzEMv7QDnNNzXQz3YQyzArNxUk4SPR6+pUDQ48G4JsADo96M9IPBrKwBXpO AcltICTpo5baSqGmC4WjksAjeYve1NnIAWERqGOaaAbfGE2nhupvpkco1VxGYwat aWFLYcBkhTNshaZQQPaVNWlISy8uBbrSxyflvTyAq5E/tzg4zSl+/g/mv4v+Cx9G t8rMqTN4uFGkjQ9l5CjDy+9KavzWD4SxcpkGfoETAWeYic27pyU8NxON+zA6DU/6 TZlTkZi0CNzfJr+R2A6VIyed/kE2bE99cHG0FmcLV0fWfgdDrLZILDcFVIpQeI+8 TdHGVMUxivM1ttbVRw0pJ3NS6QIDAQABo4ICezCCAncwHQYDVR0OBBYEFGMUP9r3 HwcW92B+yhc4XrG7qd+tMB8GA1UdIwQYMBaAFGuqXFILjkv1ZMS79G4fMWvUX6A3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDQ2My84QkY1QTVENDEx MzYxMUVEOEYwQUI3MTJDNEY5QUUwMi9hNnBjVWd1T1NfVmt4THYwYmg4eGE5UmZv RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E2cGNVZ3VPU19Wa3hMdjBiaDh4YTlSZm9EYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQ0NjMvOEJGNUE1RDQxMTM2MTFFRDhGMEFCNzEyQzRGOUFFMDIvNUI5QTFEQTAx MTQyMTFFRDk1N0UwODVEQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQAK/MAAwQBK/MCAwQCZwQ8MA0EAgACMAcDBQAkASKAMA0GCSqGSIb3 DQEBCwUAA4IBAQBYkZ5JerboQV3yGaQxl/Piz+r3oZrMR9nLF0/VNjitdrW4C+BR mFWmPOfcb//j+PxRs4VnPtlifxHe57GufzXJSVNSvMxbKNQiDHM0Tf4/HxXXgPCg uRHeUqo721181Yg16s1sti3aFvnLbrE/vj6cJHwZYd74aNuKRdlPIWsoO0/G3h6v /6qNY/v7SSoYRL63lVKKUCw/UXmIxklLOFREZUMDRr6wJK1M91el5EogkH6o/5ai qJN9FUYzBCu22kuqCmVWE8xwI4G5ybGpWPushcrYdNReOqwLYxq7klcUvggOdplK EfjlMXNIWeWaMI7NnsfLgOPWK4/miKl78Etu -----END CERTIFICATE-----Generated at Sat Jun 13 13:58:22 2026 by rpki-client