$ rpki-client -vvf rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/DAF4B31C983E11ECA0050128C4F9AE02.roa File: DAF4B31C983E11ECA0050128C4F9AE02.roa (raw, json) Hash identifier: 3v0l+mNUK1QMbnnyeVFXpatXq2cbTwunHprjgz1Y/Vw= Subject key identifier: 6C:17:66:23:83:90:86:B1:0F:C4:64:92:82:71:3E:95:36:AB:61:7A Certificate issuer: /CN=A917C44C/serialNumber=18D24169B0254EA7F29943C505E2B5931AFAB926 Certificate serial: 0475 Authority key identifier: 18:D2:41:69:B0:25:4E:A7:F2:99:43:C5:05:E2:B5:93:1A:FA:B9:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNJBabAlTqfymUPFBeK1kxr6uSY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/DAF4B31C983E11ECA0050128C4F9AE02.roa Signing time: Wed 03 Jun 2026 00:30:00 +0000 ROA not before: Wed 03 Jun 2026 00:30:00 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 132268 IP address blocks: 43.243.58.0/23 maxlen: 23 45.253.124.0/22 maxlen: 22 103.9.106.0/24 maxlen: 24 103.242.38.0/23 maxlen: 23 103.242.48.0/24 maxlen: 24 2401:4340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/GNJBabAlTqfymUPFBeK1kxr6uSY.crl rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/GNJBabAlTqfymUPFBeK1kxr6uSY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNJBabAlTqfymUPFBeK1kxr6uSY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1141 (0x475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C44C, serialNumber=18D24169B0254EA7F29943C505E2B5931AFAB926 Validity Not Before: Jun 3 00:30:00 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a1f7588-ae82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:69:0b:84:87:1a:ef:c2:91:9d:b4:50:c5:d2: 4a:1d:96:b6:85:91:48:49:7b:3b:b1:3a:4c:f4:95: 22:b1:d8:7a:c3:46:6e:82:be:4f:27:63:0f:a4:3a: b8:61:f8:15:3e:d8:06:4b:3a:16:b3:f7:e3:c0:e1: 42:f7:a1:0a:25:79:33:35:71:ab:3a:07:3c:e0:79: fc:d1:45:a8:bc:80:3c:bb:9d:d7:db:fe:dc:80:20: 40:3b:0f:19:a4:1b:7f:d4:05:f7:90:b3:b5:15:3b: 55:ed:72:aa:58:07:81:5e:43:65:eb:a2:0c:73:2f: 70:15:16:8e:b5:2f:8d:e4:a2:0a:0e:4e:3a:cc:3a: 96:3d:95:52:46:72:15:67:88:7c:2f:8b:78:ae:cd: aa:3e:61:d8:57:a1:2d:e8:00:2d:d1:f3:2c:8d:b1: 96:47:82:de:f6:b4:c6:19:bb:15:7a:9c:58:62:1c: ee:d2:07:d8:11:a7:6b:dc:23:a8:b7:a0:66:a4:77: d0:09:c7:cf:25:38:63:ab:d1:01:0d:af:cb:4b:28: 09:f5:eb:21:db:a6:c6:64:42:07:43:d3:86:b1:4a: fd:9d:fe:2b:9c:0e:a7:a2:13:fe:f8:14:41:d6:15: bd:e3:0f:8f:06:32:e1:12:0f:a7:34:3a:c9:ec:81: f8:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:17:66:23:83:90:86:B1:0F:C4:64:92:82:71:3E:95:36:AB:61:7A X509v3 Authority Key Identifier: keyid:18:D2:41:69:B0:25:4E:A7:F2:99:43:C5:05:E2:B5:93:1A:FA:B9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/GNJBabAlTqfymUPFBeK1kxr6uSY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNJBabAlTqfymUPFBeK1kxr6uSY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/DAF4B31C983E11ECA0050128C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.58.0/23 45.253.124.0/22 103.9.106.0/24 103.242.38.0/23 103.242.48.0/24 IPv6: 2401:4340::/32 Signature Algorithm: sha256WithRSAEncryption 91:3b:02:e5:92:cb:58:e2:fb:ac:c1:f2:60:21:4e:ac:90:c8: b1:12:5f:b1:82:ab:dd:0c:32:94:35:2c:bb:c0:bf:64:fc:25: 92:1c:73:8c:b4:c6:cc:25:76:ca:58:79:eb:f8:9a:34:b4:32: 1b:2b:d2:55:8f:d0:29:9d:56:7a:fa:f7:65:12:a5:22:83:77: 1c:6e:ba:7e:f2:82:c9:22:25:4e:dc:78:a1:b5:55:ba:41:31: 0e:19:5b:4c:b7:1c:07:76:2e:ff:41:13:34:c5:88:fd:ab:c7: 08:c3:19:20:88:df:50:dd:bb:9f:4f:39:68:dd:af:37:47:9f: 39:ea:d8:15:63:79:30:02:8a:71:01:85:c9:3b:84:2a:fc:13: 90:8a:e7:81:68:ea:cb:b2:d0:c3:5c:ae:8e:dd:9d:d5:ed:b3: c0:6f:6a:92:00:34:56:7d:f0:5a:40:ad:8a:b9:02:52:88:a5: 65:8d:41:5b:db:6f:9f:85:a2:82:95:f0:5f:d7:c6:35:af:47: e4:32:77:ec:3f:70:92:28:72:1a:44:11:bf:00:f6:a7:4c:49: 89:33:23:b0:80:68:dd:17:ec:57:0c:32:14:3e:22:35:20:49: 64:63:a7:87:82:90:e6:e1:0e:e2:da:b7:81:7e:86:f5:fc:c3: a9:3f:0f:4b -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICBHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0NEMxMTAvBgNVBAUTKDE4RDI0MTY5QjAyNTRFQTdGMjk5NDNDNTA1RTJCNTkz MUFGQUI5MjYwHhcNMjYwNjAzMDAzMDAwWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFmNzU4OC1hZTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmkLhIca78KRnbRQxdJKHZa2hZFISXs7sTpM9JUisdh6w0Zugr5PJ2MPpDq4 YfgVPtgGSzoWs/fjwOFC96EKJXkzNXGrOgc84Hn80UWovIA8u53X2/7cgCBAOw8Z pBt/1AX3kLO1FTtV7XKqWAeBXkNl66IMcy9wFRaOtS+N5KIKDk46zDqWPZVSRnIV Z4h8L4t4rs2qPmHYV6Et6AAt0fMsjbGWR4Le9rTGGbsVepxYYhzu0gfYEadr3COo t6BmpHfQCcfPJThjq9EBDa/LSygJ9esh26bGZEIHQ9OGsUr9nf4rnA6nohP++BRB 1hW94w+PBjLhEg+nNDrJ7IH4vQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFGwXZiOD kIaxD8RkkoJxPpU2q2F6MB8GA1UdIwQYMBaAFBjSQWmwJU6n8plDxQXitZMa+rkm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQ0Qy80QjVCMjlBQTk0 NTgxMUVDOTkwNTdBM0FDNEY5QUUwMi9HTkpCYWJBbFRxZnltVVBGQmVLMWt4cjZ1 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dOSkJhYkFsVHFmeW1VUEZCZUsxa3hyNnVTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0NEMvNEI1QjI5QUE5NDU4MTFFQzk5MDU3QTNBQzRGOUFFMDIvREFGNEIzMUM5 ODNFMTFFQ0EwMDUwMTI4QzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQBK/M6AwQCLf18AwQAZwlqAwQBZ/ImAwQAZ/IwMA0EAgACMAcDBQAk AUNAMA0GCSqGSIb3DQEBCwUAA4IBAQCROwLlkstY4vuswfJgIU6skMixEl+xgqvd DDKUNSy7wL9k/CWSHHOMtMbMJXbKWHnr+Jo0tDIbK9JVj9ApnVZ6+vdlEqUig3cc brp+8oLJIiVO3HihtVW6QTEOGVtMtxwHdi7/QRM0xYj9q8cIwxkgiN9Q3bufTzlo 3a83R5856tgVY3kwAopxAYXJO4Qq/BOQiueBaOrLstDDXK6O3Z3V7bPAb2qSADRW ffBaQK2KuQJSiKVljUFb22+fhaKClfBf18Y1r0fkMnfsP3CSKHIaRBG/APanTEmJ MyOwgGjdF+xXDDIUPiI1IElkY6eHgpDm4Q7i2reBfob1/MOpPw9L -----END CERTIFICATE-----Generated at Sat Jun 13 09:33:58 2026 by rpki-client