$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/4BB610C2E16511EC8EDF6621C4F9AE02.roa File: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (raw, json) Hash identifier: V2s04hpKMBAVv/lJnUKiNjyWl7KXuZCsoHa55XAdO8M= Subject key identifier: 2A:19:A5:2D:81:93:22:43:2E:F1:3C:AF:16:67:A5:E3:B2:E9:39:C3 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 07A9 Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/4BB610C2E16511EC8EDF6621C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:59:08 +0000 ROA not before: Sat 12 Jul 2025 15:52:50 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133443 IP address blocks: 43.239.72.0/24 maxlen: 24 43.239.73.0/24 maxlen: 24 43.239.74.0/24 maxlen: 24 43.239.75.0/24 maxlen: 24 103.229.84.0/24 maxlen: 24 103.229.85.0/24 maxlen: 24 103.229.86.0/24 maxlen: 24 103.229.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:15:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1961 (0x7a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824, serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: Jul 12 15:52:50 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a48c7c-32ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0a:d5:8b:e8:c4:af:71:e2:46:e0:39:a5:fa: 44:48:39:0a:db:58:9c:b7:ad:0c:d5:d2:10:34:29: ce:75:80:60:35:1a:eb:8f:85:82:23:2c:e6:5c:62: a3:5e:eb:3d:7e:d9:cf:21:d1:24:ea:74:a3:eb:43: 7b:f2:c4:2a:29:bc:50:4d:d7:83:b2:a8:95:79:1f: 2e:a5:63:d5:33:31:4a:5b:ee:e7:c2:d1:da:38:3f: 81:64:54:8b:d1:28:4e:9b:99:e3:25:ff:d3:32:e1: 88:37:cd:14:45:86:cb:ab:32:3c:21:fa:e8:d6:18: d3:53:5d:dc:ca:91:92:87:17:e3:55:c3:dd:6d:95: f5:a2:df:f5:80:19:36:0d:d0:4c:33:1f:67:3f:c4: 19:fc:74:b8:10:e6:a9:ba:c2:a2:fe:09:b7:f2:38: 76:34:0e:06:17:62:9c:2d:e6:5a:9c:c7:fa:cc:45: f5:69:a6:90:4f:f2:53:a2:c5:40:1b:c3:f6:44:b2: d5:cd:4d:44:7c:63:79:75:eb:4a:55:02:1d:f6:6c: c7:8f:97:be:63:ae:1c:67:80:09:75:72:5f:3e:45: 27:b8:39:8e:7a:68:c9:fa:92:03:03:5a:88:58:b6: 05:81:54:cd:19:09:36:bb:2e:b2:15:ab:83:9f:de: 45:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:19:A5:2D:81:93:22:43:2E:F1:3C:AF:16:67:A5:E3:B2:E9:39:C3 X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/4BB610C2E16511EC8EDF6621C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.72.0/22 103.229.84.0/22 Signature Algorithm: sha256WithRSAEncryption b8:d7:10:7a:a0:19:2d:7e:c2:9c:b9:06:16:c4:f5:02:c7:33: 11:d1:3f:c6:58:2b:ce:44:93:ff:18:7d:2d:f6:7b:49:27:e1: 18:c2:c8:9a:47:86:cc:e8:ec:c7:14:ad:9c:fa:25:b0:d0:1f: 71:aa:c4:42:4f:d6:42:cd:16:24:ff:4c:1d:7e:07:cd:2c:d3: d3:db:a6:80:a4:46:da:5e:ab:1e:97:80:c2:ac:fe:3b:90:48: ce:13:cb:56:ca:c9:3d:91:37:db:5b:73:fb:18:8a:6b:7b:e9: e4:ae:34:a4:37:bf:11:74:75:01:75:cc:69:b5:e2:1a:e6:98: 99:d0:27:e9:2f:65:8d:b5:e7:f8:91:5a:36:25:17:1f:a5:25: 46:6e:09:70:92:33:32:c3:1e:ef:ff:6b:9c:01:eb:fb:75:7e: 70:cd:70:f8:a1:b3:85:ba:f3:16:1f:14:e9:8f:0c:19:29:7e: 81:fb:dc:d4:b4:00:cd:ec:82:4e:67:58:fb:20:02:41:b6:92: f6:53:50:9e:cc:9d:c4:07:c8:ac:13:96:0d:b2:26:63:0e:82: 3c:68:2b:e3:cc:58:d0:92:c2:81:2a:7d:00:f0:2b:26:70:f3: 09:91:1e:10:9b:e7:b9:20:24:5a:46:1f:5a:f9:b1:8d:cf:88: 0e:f6:e3:49 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICB6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjUwNzEyMTU1MjUwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGM3Yy0zMmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQrVi+jEr3HiRuA5pfpESDkK21ict60M1dIQNCnOdYBgNRrrj4WCIyzmXGKj Xus9ftnPIdEk6nSj60N78sQqKbxQTdeDsqiVeR8upWPVMzFKW+7nwtHaOD+BZFSL 0ShOm5njJf/TMuGIN80URYbLqzI8Ifro1hjTU13cypGShxfjVcPdbZX1ot/1gBk2 DdBMMx9nP8QZ/HS4EOapusKi/gm38jh2NA4GF2KcLeZanMf6zEX1aaaQT/JTosVA G8P2RLLVzU1EfGN5detKVQId9mzHj5e+Y64cZ4AJdXJfPkUnuDmOemjJ+pIDA1qI WLYFgVTNGQk2uy6yFauDn95FBwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCoZpS2B kyJDLvE8rxZnpeOy6TnDMB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjM4MjQvQkEwRUZFNTJGRDI1MTFFNDlEOTMyNzNCQzRGOUFFMDIvNEJCNjEwQzJF MTY1MTFFQzhFREY2NjIxQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK+9IAwQCZ+VUMA0GCSqGSIb3DQEBCwUAA4IBAQC41xB6oBktfsKc uQYWxPUCxzMR0T/GWCvORJP/GH0t9ntJJ+EYwsiaR4bM6OzHFK2c+iWw0B9xqsRC T9ZCzRYk/0wdfgfNLNPT26aApEbaXqsel4DCrP47kEjOE8tWysk9kTfbW3P7GIpr e+nkrjSkN78RdHUBdcxpteIa5piZ0CfpL2WNtef4kVo2JRcfpSVGbglwkjMywx7v /2ucAev7dX5wzXD4obOFuvMWHxTpjwwZKX6B+9zUtADN7IJOZ1j7IAJBtpL2U1Ce zJ3EB8isE5YNsiZjDoI8aCvjzFjQksKBKn0A8CsmcPMJkR4Qm+e5ICRaRh9a+bGN z4gO9uNJ -----END CERTIFICATE-----Generated at Mon Mar 2 16:25:13 2026 by rpki-client