$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/D470449E0E4411ED9C0F5B45C4F9AE02.roa File: D470449E0E4411ED9C0F5B45C4F9AE02.roa (raw, json) Hash identifier: extwZoZ4o7qFht4F8tbdr5isEJa1lOyoukk0O3tlrPE= Subject key identifier: CB:E9:32:20:C6:1B:00:BD:63:CD:99:4A:0F:EF:2F:7B:D7:62:CD:C0 Certificate issuer: /CN=A91A78A7/serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Certificate serial: 030C Authority key identifier: 45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/D470449E0E4411ED9C0F5B45C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:05:01 +0000 ROA not before: Fri 25 Jul 2025 02:09:31 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 3661 IP address blocks: 43.230.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 780 (0x30c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7, serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Validity Not Before: Jul 25 02:09:31 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4013d-cede Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f2:97:2d:f2:81:b9:34:aa:ea:e1:93:23:a5: 2c:41:07:48:c3:5b:4b:13:e7:ba:7d:72:29:55:57: 77:f7:1b:b7:08:a3:00:3f:8f:25:93:04:72:c8:2d: 4b:0d:7d:50:11:26:a4:c9:fa:44:71:09:24:5e:57: a2:de:2b:5e:b5:98:49:48:30:9f:9e:ba:1e:0b:97: e1:13:b5:c3:4d:23:48:7f:55:c8:fd:db:b3:08:8a: bf:5e:fb:1e:2e:ec:76:3e:5d:5b:48:28:98:ce:cd: ec:7c:27:07:61:b1:07:9b:eb:70:44:db:c5:95:b5: 89:89:7e:4a:31:3e:69:6a:5f:bc:7f:d8:ea:b5:2a: 10:7d:27:45:96:80:ae:9a:5c:70:e0:6e:cf:a4:47: c8:f5:56:69:2b:17:b9:23:eb:0e:54:45:36:a3:d1: 3d:41:9c:5e:07:95:38:56:88:f0:93:ec:52:e5:02: 40:56:10:df:5e:fa:27:14:db:26:82:69:4e:de:b7: 3f:00:8f:62:00:73:2b:c5:67:89:ed:01:77:d8:2c: 47:97:03:a0:3d:ac:c6:8b:b5:d6:c0:90:e8:fb:ff: ef:57:2e:a0:4a:fe:cf:bc:3d:97:61:7a:03:40:fb: d8:d7:0b:16:ea:f6:57:48:34:69:29:2b:5a:73:e3: e1:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E9:32:20:C6:1B:00:BD:63:CD:99:4A:0F:EF:2F:7B:D7:62:CD:C0 X509v3 Authority Key Identifier: keyid:45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/D470449E0E4411ED9C0F5B45C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.116.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:9f:33:97:94:b8:ca:20:cc:34:4b:e4:c1:9a:fc:52:6a:b8: 49:b9:70:77:22:22:1c:f8:05:c4:59:5a:19:19:22:05:b2:80: 1b:c4:13:c5:34:34:8e:6b:c2:d2:40:a4:0c:34:af:1e:b7:b2: 01:0a:e5:4c:21:5d:37:6a:82:05:1d:fa:02:97:8d:ab:6d:01: 0f:0b:c4:d9:34:f9:17:47:55:38:41:3e:ce:35:16:0d:29:83: 68:46:c4:52:69:f9:9e:7b:4d:aa:78:cf:c6:78:a4:a3:03:4f: 47:82:da:60:de:90:78:99:8f:60:68:71:43:17:71:3e:c3:7d: d2:1a:36:65:20:f1:d1:e7:7f:aa:9f:b5:d0:03:21:50:c4:50: 69:50:79:d5:62:44:9e:1a:2d:11:86:62:0f:19:ce:ca:8a:b8: 2a:78:2f:16:d4:71:f2:29:ab:38:09:32:b5:95:ae:a7:37:bb: b9:3b:ea:5e:4e:c3:82:3e:09:b7:f3:24:51:5d:df:f0:20:19: 57:99:4d:6f:ca:c1:b5:d7:7e:33:2b:52:00:1a:98:3a:ce:2d: 2a:93:2f:57:c9:3f:c1:91:bf:3f:f2:2b:c4:dd:33:79:92:8f: 05:33:04:c6:d4:cf:e1:10:cf:01:6d:ba:79:29:e7:d9:0b:2c: a0:a2:66:d8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDQ1MzM3REM1RTQ4MzlFNDk4MTkxMjlERUEyQTk0NjFC MDIxQ0QxOTAwHhcNMjUwNzI1MDIwOTMxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDEzZC1jZWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvKXLfKBuTSq6uGTI6UsQQdIw1tLE+e6fXIpVVd39xu3CKMAP48lkwRyyC1L DX1QESakyfpEcQkkXlei3itetZhJSDCfnroeC5fhE7XDTSNIf1XI/duzCIq/Xvse Lux2Pl1bSCiYzs3sfCcHYbEHm+twRNvFlbWJiX5KMT5pal+8f9jqtSoQfSdFloCu mlxw4G7PpEfI9VZpKxe5I+sOVEU2o9E9QZxeB5U4Vojwk+xS5QJAVhDfXvonFNsm gmlO3rc/AI9iAHMrxWeJ7QF32CxHlwOgPazGi7XWwJDo+//vVy6gSv7PvD2XYXoD QPvY1wsW6vZXSDRpKStac+Ph6wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMvpMiDG GwC9Y82ZSg/vL3vXYs3AMB8GA1UdIwQYMBaAFEUzfcXkg55JgZEp3qKpRhsCHNGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy8xMDRCMTk0NjBD QkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5rbUJrU25lb3FsR0d3SWMw WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JUTjl4ZVNEbmttQmtTbmVvcWxHR3dJYzBaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTc4QTcvMTA0QjE5NDYwQ0JEMTFFREFBNzdEMTJEQzRGOUFFMDIvRDQ3MDQ0OUUw RTQ0MTFFRDlDMEY1QjQ1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK+Z0MA0GCSqGSIb3DQEBCwUAA4IBAQCbnzOXlLjKIMw0S+TBmvxS arhJuXB3IiIc+AXEWVoZGSIFsoAbxBPFNDSOa8LSQKQMNK8et7IBCuVMIV03aoIF HfoCl42rbQEPC8TZNPkXR1U4QT7ONRYNKYNoRsRSafmee02qeM/GeKSjA09Hgtpg 3pB4mY9gaHFDF3E+w33SGjZlIPHR53+qn7XQAyFQxFBpUHnVYkSeGi0RhmIPGc7K irgqeC8W1HHyKas4CTK1la6nN7u5O+peTsOCPgm38yRRXd/wIBlXmU1vysG1134z K1IAGpg6zi0qky9XyT/Bkb8/8ivE3TN5ko8FMwTG1M/hEM8Bbbp5KefZCyygombY -----END CERTIFICATE-----Generated at Mon Mar 2 06:53:03 2026 by rpki-client