$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/C8436A008D7B11EDB7EB7F37C4F9AE02.roa File: C8436A008D7B11EDB7EB7F37C4F9AE02.roa (raw, json) Hash identifier: SCXjTUPrR9d678oR+OWQXH7H0AUB5NbQ5rZ/IrsYFNo= Subject key identifier: 9D:E7:51:30:43:0F:E6:B6:DC:25:8F:D9:CC:9A:46:63:F8:51:AC:1C Certificate issuer: /CN=A91B2492/serialNumber=73B561DF3A58976F7FAD997A9BA8DE5F676DCFB2 Certificate serial: 0BC1 Authority key identifier: 73:B5:61:DF:3A:58:97:6F:7F:AD:99:7A:9B:A8:DE:5F:67:6D:CF:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7Vh3zpYl29_rZl6m6jeX2dtz7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/C8436A008D7B11EDB7EB7F37C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:44:16 +0000 ROA not before: Fri 18 Jul 2025 19:29:44 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 6507 IP address blocks: 43.229.64.0/22 maxlen: 24 103.240.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/c7Vh3zpYl29_rZl6m6jeX2dtz7I.crl rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/c7Vh3zpYl29_rZl6m6jeX2dtz7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7Vh3zpYl29_rZl6m6jeX2dtz7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3009 (0xbc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2492, serialNumber=73B561DF3A58976F7FAD997A9BA8DE5F676DCFB2 Validity Not Before: Jul 18 19:29:44 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42690-9eb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:32:4a:c5:5f:47:97:2c:3d:87:29:25:03:1e: e4:5e:18:cc:1f:80:13:a8:08:43:09:24:c3:c6:35: bc:f6:db:bf:3f:82:83:85:5a:b4:d9:43:7c:cb:5c: a1:e2:1f:20:01:e0:b9:a7:c4:be:9c:64:e1:f1:3f: 80:be:b8:5f:84:25:95:30:43:b0:15:9f:00:d2:fd: 16:74:92:18:2e:be:b3:f7:d9:f0:27:0f:c6:1b:a4: 2a:a1:8b:27:86:62:30:e1:85:2d:f0:a3:f3:4a:36: 33:fd:73:e1:ef:39:9d:36:f4:e7:d0:8b:93:9d:f4: dc:2c:98:04:b0:92:74:fa:01:49:d1:d3:4f:1f:27: 20:8e:7a:2a:62:c6:01:6d:9a:24:2a:a8:11:a5:e2: db:5f:a4:47:00:0d:e0:c4:da:f3:07:67:e3:cd:ad: da:c5:f9:9c:12:0b:7c:8f:63:ce:b9:3d:3a:50:11: 08:0a:a0:e2:a9:41:67:f6:fe:e4:8b:fd:b9:a9:6b: 1e:57:48:ad:a8:83:02:1e:cc:92:6e:90:31:0d:61: 76:c1:ac:e4:6d:cd:53:a3:90:57:a4:43:d0:38:bd: 61:04:26:e7:61:40:f8:8e:85:ef:e2:40:2a:aa:c1: 9e:fc:8c:f8:10:96:b2:8f:b0:53:77:e6:89:f9:fb: cc:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E7:51:30:43:0F:E6:B6:DC:25:8F:D9:CC:9A:46:63:F8:51:AC:1C X509v3 Authority Key Identifier: keyid:73:B5:61:DF:3A:58:97:6F:7F:AD:99:7A:9B:A8:DE:5F:67:6D:CF:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/c7Vh3zpYl29_rZl6m6jeX2dtz7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7Vh3zpYl29_rZl6m6jeX2dtz7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/C8436A008D7B11EDB7EB7F37C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.229.64.0/22 103.240.224.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:da:09:ce:69:76:3f:b4:fb:50:54:8e:7e:aa:c4:a0:d1:d3: c9:b9:b2:01:4b:50:cb:fb:be:33:cb:b0:dd:2b:2f:9f:6f:aa: 7c:b2:dd:ab:64:ff:e6:64:32:79:64:46:f8:7a:0e:75:bf:60: df:91:41:16:0a:e5:17:31:89:8d:4b:0b:2e:3c:53:dc:1c:08: 16:ce:3e:6d:ca:e7:88:3b:68:35:58:65:25:b9:3c:ef:34:38: c0:08:b6:5e:93:55:47:04:91:8f:03:f1:d0:43:19:79:6e:e0: be:42:26:d6:8d:de:2e:9e:62:9e:45:b4:47:d9:2a:d0:bd:72: 02:25:dd:fc:0c:89:f2:6e:76:e4:5b:e4:b5:57:af:49:cd:64: 60:b0:29:72:28:74:07:80:54:e9:8c:48:c5:8d:d6:ea:3a:99: 64:62:f9:4e:d1:57:e2:b2:6d:2b:34:db:99:e4:9a:af:c2:07: dd:a9:99:8c:54:12:64:c5:9f:d9:44:b1:00:5d:31:db:98:97: 43:d2:29:25:4c:8d:4b:fe:c5:c1:87:f1:4a:64:b4:e7:d3:ba: 07:8b:52:94:51:7e:9e:8e:03:f0:5e:2a:7c:f4:fd:5a:14:e1: 36:82:90:8e:9a:84:e6:30:a0:9e:e3:15:f1:79:e4:31:3b:4a: 39:4e:1f:f9 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICC8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI0OTIxMTAvBgNVBAUTKDczQjU2MURGM0E1ODk3NkY3RkFEOTk3QTlCQThERTVG Njc2RENGQjIwHhcNMjUwNzE4MTkyOTQ0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjY5MC05ZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnTJKxV9Hlyw9hyklAx7kXhjMH4ATqAhDCSTDxjW89tu/P4KDhVq02UN8y1yh 4h8gAeC5p8S+nGTh8T+AvrhfhCWVMEOwFZ8A0v0WdJIYLr6z99nwJw/GG6QqoYsn hmIw4YUt8KPzSjYz/XPh7zmdNvTn0IuTnfTcLJgEsJJ0+gFJ0dNPHycgjnoqYsYB bZokKqgRpeLbX6RHAA3gxNrzB2fjza3axfmcEgt8j2POuT06UBEICqDiqUFn9v7k i/25qWseV0itqIMCHsySbpAxDWF2wazkbc1To5BXpEPQOL1hBCbnYUD4joXv4kAq qsGe/Iz4EJayj7BTd+aJ+fvMlwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFJ3nUTBD D+a23CWP2cyaRmP4UawcMB8GA1UdIwQYMBaAFHO1Yd86WJdvf62Zepuo3l9nbc+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjQ5Mi9EQUQ1MTBENDND QjUxMUVBQjgyQ0NDNkNDNEY5QUUwMi9jN1ZoM3pwWWwyOV9yWmw2bTZqZVgyZHR6 N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M3VmgzenBZbDI5X3JabDZtNmplWDJkdHo3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI0OTIvREFENTEwRDQzQ0I1MTFFQUI4MkNDQzZDQzRGOUFFMDIvQzg0MzZBMDA4 RDdCMTFFREI3RUI3RjM3QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK+VAAwQCZ/DgMA0GCSqGSIb3DQEBCwUAA4IBAQCa2gnOaXY/tPtQ VI5+qsSg0dPJubIBS1DL+74zy7DdKy+fb6p8st2rZP/mZDJ5ZEb4eg51v2DfkUEW CuUXMYmNSwsuPFPcHAgWzj5tyueIO2g1WGUluTzvNDjACLZek1VHBJGPA/HQQxl5 buC+QibWjd4unmKeRbRH2SrQvXICJd38DInybnbkW+S1V69JzWRgsClyKHQHgFTp jEjFjdbqOplkYvlO0Vfism0rNNuZ5JqvwgfdqZmMVBJkxZ/ZRLEAXTHbmJdD0ikl TI1L/sXBh/FKZLTn07oHi1KUUX6ejgPwXip89P1aFOE2gpCOmoTmMKCe4xXxeeQx O0o5Th/5 -----END CERTIFICATE-----Generated at Mon Mar 2 12:34:47 2026 by rpki-client