$ rpki-client -vvf rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/C3CDE52C01D611F1B315EDD8366F56BC.roa File: C3CDE52C01D611F1B315EDD8366F56BC.roa (raw, json) Hash identifier: 3d/B1cImc/RFP7X2DoDqV9LtQ79OxGVpr8nJEv4LRf4= Subject key identifier: 5B:8A:1B:F7:AA:9B:5D:5E:51:C2:7E:7A:52:18:51:28:BA:66:2B:00 Certificate issuer: /CN=A9183B95/serialNumber=FAD7ECC9C05CD8EB2056909D6C614715E2C5133E Certificate serial: 04DF Authority key identifier: FA:D7:EC:C9:C0:5C:D8:EB:20:56:90:9D:6C:61:47:15:E2:C5:13:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/C3CDE52C01D611F1B315EDD8366F56BC.roa Signing time: Sun 01 Mar 2026 18:43:28 +0000 ROA not before: Wed 04 Feb 2026 14:35:34 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 205759 IP address blocks: 43.228.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.crl rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1247 (0x4df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183B95, serialNumber=FAD7ECC9C05CD8EB2056909D6C614715E2C5133E Validity Not Before: Feb 4 14:35:34 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a488d0-f4bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:2a:9e:97:5d:8f:5b:af:d9:e3:aa:c5:19:96: c8:c3:a1:6c:46:0d:69:24:22:95:5c:42:ed:c2:39: 2a:d5:2d:32:7c:d4:9e:f3:57:d4:99:42:90:c8:9e: 66:34:f4:d8:d7:cd:ac:41:bc:eb:35:83:48:4b:1b: a3:13:d3:6b:75:d0:f3:b0:12:bc:72:ef:f6:60:72: db:a7:27:a7:81:1f:08:dc:7c:c8:ca:45:49:1c:7f: 3a:a4:7d:b1:af:ef:8c:a1:e5:d9:9c:32:69:d5:b9: 06:3b:c9:68:9c:5a:10:d8:31:6a:2b:e2:8d:c9:1d: 17:97:39:f1:40:d0:85:8c:cb:0a:c3:fa:ab:df:fd: 87:9b:bf:7f:dd:86:ea:aa:58:5b:87:8a:8e:39:a6: 76:10:70:fb:8b:d1:3c:fe:fb:c3:a8:32:fe:62:55: b2:75:a4:c8:a4:20:65:3c:11:d4:76:df:5f:d2:36: 6a:ae:91:ed:0c:83:88:94:09:33:ba:34:75:8c:85: e9:01:49:60:05:6c:97:30:c7:a2:66:96:22:d2:ee: be:98:10:13:ad:1d:93:a5:82:d0:fa:bc:43:d7:9c: dd:ea:ed:b5:81:bf:90:7b:ce:6b:01:fa:a4:81:40: b7:9f:6f:13:a3:43:42:0e:41:2c:0b:7d:f0:fe:a5: e4:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:8A:1B:F7:AA:9B:5D:5E:51:C2:7E:7A:52:18:51:28:BA:66:2B:00 X509v3 Authority Key Identifier: keyid:FA:D7:EC:C9:C0:5C:D8:EB:20:56:90:9D:6C:61:47:15:E2:C5:13:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/C3CDE52C01D611F1B315EDD8366F56BC.roa sbgp-ipAddrBlock: critical IPv4: 43.228.157.0/24 Signature Algorithm: sha256WithRSAEncryption a0:e6:48:f1:5c:18:cc:74:54:75:4c:7f:48:e6:ad:97:f3:a1: 13:f0:b3:ad:b2:67:d0:b3:fb:06:d0:46:b3:ae:b0:5d:8b:0f: 27:d4:4b:8c:1a:f6:f8:e6:48:04:87:8f:8c:0e:1b:80:fa:55: dd:89:e5:a9:2b:32:fa:cc:df:97:96:bd:11:c6:ef:08:53:9c: 03:72:6a:82:59:91:7d:c2:9a:3e:30:29:6b:31:b9:17:b6:12: 86:e1:ec:c2:f2:3f:30:e6:a9:75:e2:6e:05:d4:07:c9:7b:ec: 43:31:bb:48:50:d7:7c:18:da:01:f8:70:a4:94:5b:c9:4f:45: 80:8d:ff:92:9a:05:25:e3:d6:dd:28:31:f0:4d:f6:40:1e:37: 11:ec:14:b2:32:54:1e:d9:09:38:24:97:f3:ac:62:0b:b5:2d: 9d:1f:cb:da:29:68:af:bf:f5:08:b5:77:c0:8b:43:a9:e4:6a: 19:d9:fa:d1:3b:19:4b:89:7c:23:8b:96:3c:85:40:6b:4a:b7: de:cb:2d:92:ee:37:ea:79:0d:f2:ce:d2:7e:b8:98:0e:67:2a: 7f:ce:33:45:7b:b3:36:a1:64:9f:f2:6f:30:fc:d8:a2:ae:f2: 8e:65:0a:7c:5b:40:8b:59:29:f4:c3:ab:0e:9d:b0:84:f3:04: 6a:5c:b4:08 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCOTUxMTAvBgNVBAUTKEZBRDdFQ0M5QzA1Q0Q4RUIyMDU2OTA5RDZDNjE0NzE1 RTJDNTEzM0UwHhcNMjYwMjA0MTQzNTM0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODhkMC1mNGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCqel12PW6/Z46rFGZbIw6FsRg1pJCKVXELtwjkq1S0yfNSe81fUmUKQyJ5m NPTY182sQbzrNYNISxujE9NrddDzsBK8cu/2YHLbpyengR8I3HzIykVJHH86pH2x r++MoeXZnDJp1bkGO8lonFoQ2DFqK+KNyR0XlznxQNCFjMsKw/qr3/2Hm79/3Ybq qlhbh4qOOaZ2EHD7i9E8/vvDqDL+YlWydaTIpCBlPBHUdt9f0jZqrpHtDIOIlAkz ujR1jIXpAUlgBWyXMMeiZpYi0u6+mBATrR2TpYLQ+rxD15zd6u21gb+Qe85rAfqk gUC3n28To0NCDkEsC33w/qXkVwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFuKG/eq m11eUcJ+elIYUSi6ZisAMB8GA1UdIwQYMBaAFPrX7MnAXNjrIFaQnWxhRxXixRM+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0I5NS9CNTRBM0MzNDgw MzUxMUVDOUFEREE1NEZDNEY5QUUwMi8tdGZzeWNCYzJPc2dWcENkYkdGSEZlTEZF ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10ZnN5Y0JjMk9zZ1ZwQ2RiR0ZIRmVMRkV6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODNCOTUvQjU0QTNDMzQ4MDM1MTFFQzlBRERBNTRGQzRGOUFFMDIvQzNDREU1MkMw MUQ2MTFGMUIzMTVFREQ4MzY2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK+SdMA0GCSqGSIb3DQEBCwUAA4IBAQCg5kjxXBjMdFR1TH9I5q2X 86ET8LOtsmfQs/sG0EazrrBdiw8n1EuMGvb45kgEh4+MDhuA+lXdieWpKzL6zN+X lr0Rxu8IU5wDcmqCWZF9wpo+MClrMbkXthKG4ezC8j8w5ql14m4F1AfJe+xDMbtI UNd8GNoB+HCklFvJT0WAjf+SmgUl49bdKDHwTfZAHjcR7BSyMlQe2Qk4JJfzrGIL tS2dH8vaKWivv/UItXfAi0Op5GoZ2frROxlLiXwji5Y8hUBrSrfeyy2S7jfqeQ3y ztJ+uJgOZyp/zjNFe7M2oWSf8m8w/NiirvKOZQp8W0CLWSn0w6sOnbCE8wRqXLQI -----END CERTIFICATE-----Generated at Mon Mar 2 08:55:42 2026 by rpki-client