$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/9B1ABC54486111E8AA9B1B45C4F9AE02.roa File: 9B1ABC54486111E8AA9B1B45C4F9AE02.roa (raw, json) Hash identifier: PFFhqDUXgOwHYlXLP448JNGm2ge+CUxQd0U8hOPUQgY= Subject key identifier: AD:65:B5:3C:B3:8D:8D:70:65:3E:00:A3:8C:D7:52:6A:2B:95:6F:34 Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 2204 Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/9B1ABC54486111E8AA9B1B45C4F9AE02.roa Signing time: Sat 28 Mar 2026 16:23:11 +0000 ROA not before: Sat 28 Mar 2026 16:23:11 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 58621 IP address blocks: 43.243.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8708 (0x2204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F, serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Validity Not Before: Mar 28 16:23:11 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c8006f-37f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:08:de:69:3b:94:94:ce:1a:37:98:82:fb:fa: 7b:25:49:f9:cf:4a:8e:cd:e1:48:5f:61:f3:a1:4a: a2:74:f7:85:6f:69:3f:9f:2d:50:6b:e1:94:b5:3b: c5:22:04:b2:e6:30:76:1f:9c:4c:6f:4d:05:6b:15: 72:3e:ff:76:fd:7e:8d:b5:d1:3c:c3:28:d6:05:f9: 7d:81:3d:57:f8:36:ad:9d:23:62:4b:fd:ee:07:0d: 64:3b:b7:3e:a4:e2:17:e1:23:eb:7e:e1:9f:fa:52: 70:ec:9d:97:81:ed:3e:24:e5:b9:05:a9:e6:b3:c3: 78:da:5f:9c:ea:16:97:50:9f:7b:d9:df:aa:eb:7c: 8e:32:ab:21:08:bb:ce:93:7d:38:d1:8c:17:b2:24: 5f:af:cd:2c:14:4b:60:77:e2:98:c1:51:74:21:b9: 0f:59:e7:a7:28:5a:2a:aa:37:fc:b8:84:2f:ef:07: 19:ac:cd:65:ff:44:e4:c2:2f:b6:c5:fa:53:eb:ad: a1:b2:1c:f3:e1:e6:34:55:42:83:77:88:8b:8f:25: 52:50:19:f2:bb:5b:c2:ea:05:bd:27:e9:bb:8c:a0: 81:45:18:2e:e1:cf:ee:67:22:fb:d4:2b:9b:eb:63: 7c:3a:f7:73:33:1e:59:3e:ca:68:d3:a8:66:6e:7a: 21:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:65:B5:3C:B3:8D:8D:70:65:3E:00:A3:8C:D7:52:6A:2B:95:6F:34 X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/9B1ABC54486111E8AA9B1B45C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.118.0/24 Signature Algorithm: sha256WithRSAEncryption d3:c2:8c:39:a5:4c:ed:52:2e:17:36:80:3c:c2:be:55:20:04: 89:38:65:cf:5e:5b:86:62:bb:31:15:69:d7:f6:89:22:d4:1d: 80:cd:c5:44:0e:0b:50:bc:a6:c3:60:01:f9:a6:43:4f:4b:58: f5:3a:2a:72:24:6d:39:6f:c5:79:1e:f0:92:5a:61:29:c7:de: 6f:fb:7a:03:b3:36:f2:e5:88:b1:9a:75:01:b8:cc:ae:57:69: b0:c5:6b:65:9c:7b:08:0d:e1:a8:96:de:b5:45:cb:41:19:fc: 54:8a:eb:6a:c2:d2:16:d9:aa:3e:c3:3b:1f:cb:d0:0a:1d:31: 9f:5c:c7:49:41:9a:e8:10:b5:fd:73:a2:c9:dc:56:91:fb:43: 94:a1:bb:18:34:e3:35:29:43:13:2f:64:d1:ba:bf:89:bc:04: ad:0a:02:72:d9:84:a2:81:ca:b5:2d:b8:8b:d1:87:c8:b5:35: 12:3d:46:fc:71:4d:c4:4f:e0:3e:78:93:73:11:91:30:e1:83: 8f:d0:10:49:cd:b1:03:33:c5:87:1f:ac:dc:d4:a3:ed:15:ed: 0d:9b:e1:e5:8d:d4:3c:89:77:e3:0b:bf:85:17:c3:d5:15:fc: 2b:12:b0:8a:cf:b5:55:cf:6a:d2:e8:32:19:50:0b:7a:5a:97: 55:4a:96:8f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICIgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjYwMzI4MTYyMzExWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM4MDA2Zi0zN2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAjeaTuUlM4aN5iC+/p7JUn5z0qOzeFIX2HzoUqidPeFb2k/ny1Qa+GUtTvF IgSy5jB2H5xMb00FaxVyPv92/X6NtdE8wyjWBfl9gT1X+DatnSNiS/3uBw1kO7c+ pOIX4SPrfuGf+lJw7J2Xge0+JOW5Banms8N42l+c6haXUJ972d+q63yOMqshCLvO k3040YwXsiRfr80sFEtgd+KYwVF0IbkPWeenKFoqqjf8uIQv7wcZrM1l/0Tkwi+2 xfpT662hshzz4eY0VUKDd4iLjyVSUBnyu1vC6gW9J+m7jKCBRRgu4c/uZyL71Cub 62N8OvdzMx5ZPspo06hmbnohOwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFK1ltTyz jY1wZT4Ao4zXUmorlW80MB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYyN0YvOUMzMjU2QTJFOThGMTFFNUIyQURDNTY3QzRGOUFFMDIvOUIxQUJDNTQ0 ODYxMTFFOEFBOUIxQjQ1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK/N2MA0GCSqGSIb3DQEBCwUAA4IBAQDTwow5pUztUi4XNoA8wr5V IASJOGXPXluGYrsxFWnX9oki1B2AzcVEDgtQvKbDYAH5pkNPS1j1OipyJG05b8V5 HvCSWmEpx95v+3oDszby5YixmnUBuMyuV2mwxWtlnHsIDeGolt61RctBGfxUiutq wtIW2ao+wzsfy9AKHTGfXMdJQZroELX9c6LJ3FaR+0OUobsYNOM1KUMTL2TRur+J vAStCgJy2YSigcq1LbiL0YfItTUSPUb8cU3ET+A+eJNzEZEw4YOP0BBJzbEDM8WH H6zc1KPtFe0Nm+HljdQ8iXfjC7+FF8PVFfwrErCKz7VVz2rS6DIZUAt6WpdVSpaP -----END CERTIFICATE-----Generated at Fri Apr 17 16:33:37 2026 by rpki-client