$ rpki-client -vvf rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/D1825C02598911F0848EA472C4F9AE02.roa File: D1825C02598911F0848EA472C4F9AE02.roa (raw, json) Hash identifier: CUOq2X8+vITfDwz6mE6or7uSGRdgPeqxHhbop7FI1TQ= Subject key identifier: 45:50:0E:E4:77:8B:21:74:37:29:B9:C9:28:FF:D6:00:5D:22:52:EF Certificate issuer: /CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB Certificate serial: 0246 Authority key identifier: AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/D1825C02598911F0848EA472C4F9AE02.roa Signing time: Mon 13 Apr 2026 04:38:12 +0000 ROA not before: Mon 13 Apr 2026 04:38:12 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 9712 IP address blocks: 43.231.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:15:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155647, serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB Validity Not Before: Apr 13 04:38:12 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69dc7333-888f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:95:ae:75:b4:23:a4:9a:fc:a2:18:d9:ec:c8: 1b:95:3a:35:39:5c:c4:f2:b2:89:45:15:cc:08:e8: 2c:37:44:b2:71:32:42:84:b5:7e:c5:2e:69:e9:9b: b5:7d:ff:47:e6:ae:87:46:b9:f4:18:49:2d:9d:96: 8c:11:b2:da:7c:48:75:46:6f:5d:50:37:e7:62:8e: 77:e8:2f:91:41:99:4a:33:bf:be:43:71:66:9b:5b: 9c:f5:07:fd:c5:1f:a1:65:95:7b:15:9f:55:75:7e: 46:04:99:78:41:9d:2a:63:10:f4:7e:19:a3:2f:7f: ef:2b:0c:43:0b:fa:ee:4a:e2:53:32:09:43:96:66: f5:2f:c8:68:ec:03:b7:91:96:15:6c:6e:1f:f5:ba: 72:22:43:a5:26:05:1a:9d:d5:b5:e9:8a:8d:36:9f: 2b:89:37:27:9f:1e:85:8d:cc:b3:b3:7d:0e:bf:18: 97:3c:2c:8f:4d:59:5e:75:88:c6:c4:3e:f1:2d:cf: fc:cb:d9:d9:1e:c3:0d:82:93:12:cc:74:6d:a0:38: b1:27:46:a8:11:0c:94:95:5a:71:29:6f:96:7f:80: c9:3e:95:73:72:0c:17:01:e6:25:bd:31:49:cc:4a: 2b:66:2f:f4:b9:dc:a7:9a:1a:30:82:45:b4:7a:b7: 04:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:50:0E:E4:77:8B:21:74:37:29:B9:C9:28:FF:D6:00:5D:22:52:EF X509v3 Authority Key Identifier: keyid:AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/D1825C02598911F0848EA472C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.231.204.0/24 Signature Algorithm: sha256WithRSAEncryption 66:38:22:1d:41:22:f7:cc:cc:5e:ea:c6:04:3f:e3:ab:dd:62: 6f:26:7a:f7:2a:e0:4c:5f:7a:54:c8:c8:79:c1:3b:45:5d:f4: 2e:b0:3b:9a:46:ff:67:80:72:2d:7c:17:f0:84:ba:f3:fb:99: 2f:e3:03:19:83:14:71:b6:9d:95:b8:ea:bd:30:4d:5d:b0:9c: e0:26:50:0a:4d:e5:e1:32:18:d1:4e:6e:8b:1f:18:f1:12:68: 5e:25:64:9b:34:16:9e:d9:e7:1b:8b:d2:33:cb:33:71:08:41: f2:de:a9:24:c1:62:f4:dd:81:64:ce:f8:26:54:7a:ab:80:a3: 70:d1:a0:85:58:29:c9:1e:07:af:0a:41:65:62:48:56:9e:1c: 99:52:30:eb:fd:2e:af:1b:06:5f:4a:60:b7:ec:b6:9c:b5:22: 1f:26:0a:69:0b:cb:ab:08:91:ed:30:39:a6:b9:a0:53:30:44: 6c:ba:dc:3d:1c:ea:f5:41:42:a8:a8:a0:7f:06:68:2d:8c:e9: 3c:85:d1:45:e9:08:bf:df:03:dd:4e:8f:46:2d:f8:0e:95:30: 1b:c3:4c:a2:46:da:2a:b2:a9:61:e0:ca:32:a5:c4:15:e2:6e: 34:72:13:64:e2:c5:93:4e:fe:9f:cf:8d:36:36:c2:d0:ec:dc: b8:76:60:8d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2NDcxMTAvBgNVBAUTKEFEMzQ0NURCNDIwMTBCMTIxNUE0OUU0MjdGMUFFNzQw MEQ3ODhCRkIwHhcNMjYwNDEzMDQzODEyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWRjNzMzMy04ODhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5WudbQjpJr8ohjZ7MgblTo1OVzE8rKJRRXMCOgsN0SycTJChLV+xS5p6Zu1 ff9H5q6HRrn0GEktnZaMEbLafEh1Rm9dUDfnYo536C+RQZlKM7++Q3Fmm1uc9Qf9 xR+hZZV7FZ9VdX5GBJl4QZ0qYxD0fhmjL3/vKwxDC/ruSuJTMglDlmb1L8ho7AO3 kZYVbG4f9bpyIkOlJgUandW16YqNNp8riTcnnx6Fjcyzs30OvxiXPCyPTVledYjG xD7xLc/8y9nZHsMNgpMSzHRtoDixJ0aoEQyUlVpxKW+Wf4DJPpVzcgwXAeYlvTFJ zEorZi/0udynmhowgkW0ercEkwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEVQDuR3 iyF0Nym5ySj/1gBdIlLvMB8GA1UdIwQYMBaAFK00RdtCAQsSFaSeQn8a50ANeIv7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY0Ny85MDVDMTA0NkYz NkYxMUVFOTk3MkVCNzlDNEY5QUUwMi9yVFJGMjBJQkN4SVZwSjVDZnhyblFBMTRp X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUUkYyMElCQ3hJVnBKNUNmeHJuUUExNGlfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU2NDcvOTA1QzEwNDZGMzZGMTFFRTk5NzJFQjc5QzRGOUFFMDIvRDE4MjVDMDI1 OTg5MTFGMDg0OEVBNDcyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK+fMMA0GCSqGSIb3DQEBCwUAA4IBAQBmOCIdQSL3zMxe6sYEP+Or 3WJvJnr3KuBMX3pUyMh5wTtFXfQusDuaRv9ngHItfBfwhLrz+5kv4wMZgxRxtp2V uOq9ME1dsJzgJlAKTeXhMhjRTm6LHxjxEmheJWSbNBae2ecbi9IzyzNxCEHy3qkk wWL03YFkzvgmVHqrgKNw0aCFWCnJHgevCkFlYkhWnhyZUjDr/S6vGwZfSmC37Lac tSIfJgppC8urCJHtMDmmuaBTMERsutw9HOr1QUKoqKB/BmgtjOk8hdFF6Qi/3wPd To9GLfgOlTAbw0yiRtoqsqlh4MoypcQV4m40chNk4sWTTv6fz402NsLQ7Ny4dmCN -----END CERTIFICATE-----Generated at Sun Apr 19 12:59:23 2026 by rpki-client