$ rpki-client -vvf rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/7C484C3A437F11F0BD1A1C23C4F9AE02.roa File: 7C484C3A437F11F0BD1A1C23C4F9AE02.roa (raw, json) Hash identifier: 9Jrx3qrMFzNo/lB3LiTCYLW9XLrSZZ7Ujo7GQB5e2RA= Subject key identifier: 49:10:42:47:90:66:36:9C:91:14:AD:DD:8D:0A:FF:CB:77:49:6B:63 Certificate issuer: /CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB Certificate serial: 0242 Authority key identifier: AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/7C484C3A437F11F0BD1A1C23C4F9AE02.roa Signing time: Mon 13 Apr 2026 04:38:03 +0000 ROA not before: Mon 13 Apr 2026 04:38:03 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 19970 IP address blocks: 43.231.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:18:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155647, serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB Validity Not Before: Apr 13 04:38:03 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69dc732b-fbc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:90:b4:50:e0:1f:8d:ed:14:a2:ce:58:e5:00: 61:95:d1:c1:37:d3:f6:93:a7:35:01:03:55:41:68: 82:01:c2:25:11:40:34:e2:df:e4:5f:fc:f3:3e:e6: a6:6f:89:80:27:a9:d3:fb:f3:d7:7b:a0:b7:c4:73: fb:4e:dd:60:80:5f:bd:77:f1:9c:9a:18:2b:d0:61: dd:a5:66:6c:0c:9a:ad:2e:bd:c3:45:ed:0a:12:cf: 4d:cc:03:30:f8:3f:d6:69:3a:8d:cf:55:c7:1e:3e: bc:67:eb:72:3b:d2:95:d4:b4:1a:bb:3f:5c:ed:30: 84:48:8d:28:95:e2:8d:72:99:50:0e:27:c8:88:df: f2:08:61:5a:3d:aa:eb:cf:83:fb:1b:f1:13:59:2f: 2d:e6:ff:4e:5a:28:13:e0:bf:a0:3d:80:81:14:6a: 33:f8:bf:ea:4d:12:0d:96:a2:ce:7d:98:58:eb:46: 6a:45:c4:48:d3:e9:9a:8e:f9:db:b0:7a:58:20:7d: ad:14:66:a9:b0:90:0c:c5:39:55:4f:f9:b8:7a:1f: eb:67:b1:5a:c4:fe:97:87:79:3f:df:e0:3e:25:70: e4:b3:f5:25:0f:57:fa:9d:6f:3d:00:eb:ee:1b:63: ae:75:62:f3:44:48:ac:75:30:64:b1:c3:e7:ed:a4: 16:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:10:42:47:90:66:36:9C:91:14:AD:DD:8D:0A:FF:CB:77:49:6B:63 X509v3 Authority Key Identifier: keyid:AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/7C484C3A437F11F0BD1A1C23C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.231.207.0/24 Signature Algorithm: sha256WithRSAEncryption 48:27:21:ec:ec:50:85:fa:89:b9:ed:67:00:04:26:d4:b3:ad: e1:7a:c8:09:01:8a:38:70:1b:af:f9:a1:d6:2e:81:8d:68:1f: 27:04:65:59:3d:e2:22:81:cb:d7:bc:1a:3c:27:f9:29:06:7f: dc:90:5c:ba:9b:83:01:b6:52:98:ac:a1:fe:38:76:a4:37:f7: 61:63:c8:b4:d3:27:d2:7d:58:5b:c4:77:bf:b0:e7:aa:04:88: 3d:b7:65:60:43:70:91:75:93:70:fd:df:2f:ef:f8:55:24:06: 66:d3:97:f5:0b:8e:ee:51:6e:72:4e:a8:cd:60:f3:47:73:5e: dc:16:17:40:c8:e2:0c:39:7b:06:c6:fa:d9:b7:98:56:66:90: b1:64:13:98:f8:1c:bf:65:b8:1e:c9:bc:46:36:c5:f2:0d:80: f5:ff:ec:5d:17:4a:66:45:26:5e:06:6f:1c:0f:97:c4:c2:8f: 24:36:76:9a:f0:cd:b2:49:a3:83:cc:6c:6d:5d:8d:19:8c:76: 50:56:9f:ed:69:ca:ba:03:cb:f2:88:f4:30:41:98:f8:51:e0: 92:f0:a6:01:cd:39:69:16:20:4c:bc:43:cc:e2:6a:60:bc:a6: 4d:bf:c8:10:ce:3b:50:d1:26:b7:72:ea:67:dd:a3:40:99:55: e4:88:98:65 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2NDcxMTAvBgNVBAUTKEFEMzQ0NURCNDIwMTBCMTIxNUE0OUU0MjdGMUFFNzQw MEQ3ODhCRkIwHhcNMjYwNDEzMDQzODAzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWRjNzMyYi1mYmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpC0UOAfje0Uos5Y5QBhldHBN9P2k6c1AQNVQWiCAcIlEUA04t/kX/zzPuam b4mAJ6nT+/PXe6C3xHP7Tt1ggF+9d/Gcmhgr0GHdpWZsDJqtLr3DRe0KEs9NzAMw +D/WaTqNz1XHHj68Z+tyO9KV1LQauz9c7TCESI0oleKNcplQDifIiN/yCGFaParr z4P7G/ETWS8t5v9OWigT4L+gPYCBFGoz+L/qTRINlqLOfZhY60ZqRcRI0+majvnb sHpYIH2tFGapsJAMxTlVT/m4eh/rZ7FaxP6Xh3k/3+A+JXDks/UlD1f6nW89AOvu G2OudWLzREisdTBkscPn7aQWnwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEkQQkeQ ZjackRSt3Y0K/8t3SWtjMB8GA1UdIwQYMBaAFK00RdtCAQsSFaSeQn8a50ANeIv7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY0Ny85MDVDMTA0NkYz NkYxMUVFOTk3MkVCNzlDNEY5QUUwMi9yVFJGMjBJQkN4SVZwSjVDZnhyblFBMTRp X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUUkYyMElCQ3hJVnBKNUNmeHJuUUExNGlfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU2NDcvOTA1QzEwNDZGMzZGMTFFRTk5NzJFQjc5QzRGOUFFMDIvN0M0ODRDM0E0 MzdGMTFGMEJEMUExQzIzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK+fPMA0GCSqGSIb3DQEBCwUAA4IBAQBIJyHs7FCF+om57WcABCbU s63hesgJAYo4cBuv+aHWLoGNaB8nBGVZPeIigcvXvBo8J/kpBn/ckFy6m4MBtlKY rKH+OHakN/dhY8i00yfSfVhbxHe/sOeqBIg9t2VgQ3CRdZNw/d8v7/hVJAZm05f1 C47uUW5yTqjNYPNHc17cFhdAyOIMOXsGxvrZt5hWZpCxZBOY+By/ZbgeybxGNsXy DYD1/+xdF0pmRSZeBm8cD5fEwo8kNnaa8M2ySaODzGxtXY0ZjHZQVp/tacq6A8vy iPQwQZj4UeCS8KYBzTlpFiBMvEPM4mpgvKZNv8gQzjtQ0Sa3cupn3aNAmVXkiJhl -----END CERTIFICATE-----Generated at Fri Apr 17 16:38:54 2026 by rpki-client