$ rpki-client -vvf rpki.apnic.net/member_repository/A918D1A4/1EB9E3A6C6C011EC96C0DD23C4F9AE02/73AF033CF4DA11EFA82A4918C4F9AE02.roa File: 73AF033CF4DA11EFA82A4918C4F9AE02.roa (raw, json) Hash identifier: vcKD0c092EwQlGRDyBF+m3f7p1gimaLImuv+7uPMwTs= Subject key identifier: F5:9F:CF:1E:58:1E:89:C2:C0:46:C7:2E:65:4E:F1:EC:C9:8D:89:F1 Certificate issuer: /CN=A918D1A4/serialNumber=B2DBAD05B69F4797EEF71F03D65ABEADD2892C80 Certificate serial: 03C5 Authority key identifier: B2:DB:AD:05:B6:9F:47:97:EE:F7:1F:03:D6:5A:BE:AD:D2:89:2C:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/stutBbafR5fu9x8D1lq-rdKJLIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D1A4/1EB9E3A6C6C011EC96C0DD23C4F9AE02/73AF033CF4DA11EFA82A4918C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:01:56 +0000 ROA not before: Wed 03 Sep 2025 01:46:44 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132742 IP address blocks: 43.239.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D1A4/1EB9E3A6C6C011EC96C0DD23C4F9AE02/stutBbafR5fu9x8D1lq-rdKJLIA.crl rsync://rpki.apnic.net/member_repository/A918D1A4/1EB9E3A6C6C011EC96C0DD23C4F9AE02/stutBbafR5fu9x8D1lq-rdKJLIA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/stutBbafR5fu9x8D1lq-rdKJLIA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 965 (0x3c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D1A4, serialNumber=B2DBAD05B69F4797EEF71F03D65ABEADD2892C80 Validity Not Before: Sep 3 01:46:44 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a42ab4-76ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:13:5c:d6:1a:72:19:e8:9b:42:22:18:60:a4: 58:3d:10:26:57:e4:29:ac:4d:6c:ec:74:7c:4f:65: 0a:b2:ac:f1:2b:c4:c2:eb:db:af:ef:65:3e:10:3f: cc:ef:b0:86:75:35:32:b5:1c:e1:2e:05:3f:60:47: f9:98:c8:98:ed:90:fc:dd:3f:d5:64:30:fb:2e:dd: 83:4a:89:c9:7b:7c:44:16:e9:96:7d:7a:25:2f:69: ff:c0:4c:7c:c7:02:03:3f:85:fe:8a:94:d0:29:0b: 34:10:96:45:3f:ee:15:fa:32:3d:f0:73:d5:fd:ec: 2c:80:e0:2f:b8:47:32:52:09:48:9a:2a:7b:ef:d9: f3:47:6a:86:ab:20:f3:ea:d6:b4:25:40:c4:19:c7: 0f:6d:28:6d:99:c7:28:a2:3a:08:86:2d:c9:87:c2: b0:ce:d7:b5:e8:fb:97:d4:3f:26:88:82:0f:59:84: 86:17:18:d3:31:d3:96:5a:b4:f4:60:dd:49:89:15: 43:d2:6b:1b:e3:15:79:29:e6:7d:88:74:57:9f:29: 4d:ce:af:7f:71:8c:1a:a4:8f:2b:af:e1:94:a7:2f: 1a:59:ca:89:7e:29:32:3c:ab:ab:da:d7:5d:bb:69: 2a:ef:c8:2f:20:69:ce:79:26:80:ed:64:44:bc:88: ee:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:9F:CF:1E:58:1E:89:C2:C0:46:C7:2E:65:4E:F1:EC:C9:8D:89:F1 X509v3 Authority Key Identifier: keyid:B2:DB:AD:05:B6:9F:47:97:EE:F7:1F:03:D6:5A:BE:AD:D2:89:2C:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D1A4/1EB9E3A6C6C011EC96C0DD23C4F9AE02/stutBbafR5fu9x8D1lq-rdKJLIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/stutBbafR5fu9x8D1lq-rdKJLIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D1A4/1EB9E3A6C6C011EC96C0DD23C4F9AE02/73AF033CF4DA11EFA82A4918C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.164.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:f5:0e:0e:68:21:60:78:60:88:a8:d5:8c:81:76:c2:81:98: 57:ed:18:19:5b:d8:85:de:6e:22:02:23:54:5c:27:39:b1:c1: dd:16:ac:5e:ae:77:d7:2e:33:35:6f:9b:bc:02:25:8d:0f:b6: 2d:57:48:61:03:52:c8:aa:d4:95:8d:c8:3a:a0:35:61:74:ee: f7:72:fb:d8:3e:42:05:56:81:63:5d:fd:90:28:0a:35:b7:76: 2e:5a:ee:c2:bc:c4:37:ca:7c:fb:b2:a6:93:2b:6e:c9:12:cc: d4:a7:4f:7e:ea:9d:ae:d0:fc:c3:c5:98:02:15:f9:96:65:f2: b0:87:cb:75:80:41:ee:0f:6b:cf:b4:54:2a:41:e1:74:00:56: 8c:db:54:76:13:0e:08:df:ad:c0:8d:d5:d8:c1:8c:95:80:3e: a2:af:6d:29:95:4c:81:52:86:42:a0:97:c8:9d:1b:74:ee:fd: 30:e2:f3:a5:40:1b:e2:cb:6b:da:a2:ce:47:59:70:15:3e:30: 62:f2:05:60:31:a4:03:5b:c1:f8:ff:40:82:f1:eb:94:dc:f6: 9c:12:34:e8:f1:9d:4b:05:5b:36:af:45:b4:93:43:3e:a1:58: da:cc:30:bd:e4:35:3e:b4:c0:c4:9c:fb:9a:b8:f7:5f:4b:79: 6d:24:6b:0b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxQTQxMTAvBgNVBAUTKEIyREJBRDA1QjY5RjQ3OTdFRUY3MUYwM0Q2NUFCRUFE RDI4OTJDODAwHhcNMjUwOTAzMDE0NjQ0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmFiNC03NmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBNc1hpyGeibQiIYYKRYPRAmV+QprE1s7HR8T2UKsqzxK8TC69uv72U+ED/M 77CGdTUytRzhLgU/YEf5mMiY7ZD83T/VZDD7Lt2DSonJe3xEFumWfXolL2n/wEx8 xwIDP4X+ipTQKQs0EJZFP+4V+jI98HPV/ewsgOAvuEcyUglImip779nzR2qGqyDz 6ta0JUDEGccPbShtmccoojoIhi3Jh8Kwzte16PuX1D8miIIPWYSGFxjTMdOWWrT0 YN1JiRVD0msb4xV5KeZ9iHRXnylNzq9/cYwapI8rr+GUpy8aWcqJfikyPKur2tdd u2kq78gvIGnOeSaA7WREvIju8wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPWfzx5Y HonCwEbHLmVO8ezJjYnxMB8GA1UdIwQYMBaAFLLbrQW2n0eX7vcfA9Zavq3SiSyA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDFBNC8xRUI5RTNBNkM2 QzAxMUVDOTZDMEREMjNDNEY5QUUwMi9zdHV0QmJhZlI1ZnU5eDhEMWxxLXJkS0pM SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N0dXRCYmFmUjVmdTl4OEQxbHEtcmRLSkxJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQxQTQvMUVCOUUzQTZDNkMwMTFFQzk2QzBERDIzQzRGOUFFMDIvNzNBRjAzM0NG NERBMTFFRkE4MkE0OTE4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK++kMA0GCSqGSIb3DQEBCwUAA4IBAQAq9Q4OaCFgeGCIqNWMgXbC gZhX7RgZW9iF3m4iAiNUXCc5scHdFqxernfXLjM1b5u8AiWND7YtV0hhA1LIqtSV jcg6oDVhdO73cvvYPkIFVoFjXf2QKAo1t3YuWu7CvMQ3ynz7sqaTK27JEszUp09+ 6p2u0PzDxZgCFfmWZfKwh8t1gEHuD2vPtFQqQeF0AFaM21R2Ew4I363AjdXYwYyV gD6ir20plUyBUoZCoJfInRt07v0w4vOlQBviy2vaos5HWXAVPjBi8gVgMaQDW8H4 /0CC8euU3PacEjTo8Z1LBVs2r0W0k0M+oVjazDC95DU+tMDEnPuauPdfS3ltJGsL -----END CERTIFICATE-----Generated at Mon Mar 2 02:13:09 2026 by rpki-client