$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/43AB9FC641A311ECA73C8C0EC4F9AE02.roa File: 43AB9FC641A311ECA73C8C0EC4F9AE02.roa (raw, json) Hash identifier: c2cJS2iph6p8YY5WwPZImJbk/18SsYiI3UYK2A4/nuY= Subject key identifier: CA:5A:57:FB:EA:97:D1:95:55:C4:3C:A4:27:16:D1:1A:51:0D:4B:DB Certificate issuer: /CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Certificate serial: 05D2 Authority key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/43AB9FC641A311ECA73C8C0EC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:26:52 +0000 ROA not before: Mon 22 Sep 2025 16:35:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 213.170.156.0/24 maxlen: 24 213.170.157.0/24 maxlen: 24 213.170.158.0/24 maxlen: 24 213.170.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1490 (0x5d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09, serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Validity Not Before: Sep 22 16:35:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a476dc-8c59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:7b:20:42:0d:1b:91:29:b6:25:3d:11:36:4b: 00:b4:37:6a:a5:73:c0:a0:c7:36:56:d0:2d:a5:c8: 51:79:84:e0:83:c7:4e:d4:60:14:35:dd:45:e1:5d: 93:b1:ad:8a:aa:56:87:89:29:ed:90:11:8a:bb:c9: 91:f1:3f:f9:6d:37:70:dc:b7:2b:a8:12:3f:44:75: f3:a2:aa:89:4f:35:c5:a0:01:d4:75:f0:ee:db:d0: 40:c7:95:c7:65:70:d1:4b:43:25:dc:85:ec:c5:77: 30:b3:c6:f5:36:45:5d:97:46:a1:3d:ce:41:30:52: 4c:4f:34:59:12:22:68:e5:52:67:92:45:e8:79:fa: 68:60:ac:9d:85:8a:09:17:40:98:2c:09:22:b6:8b: 80:b3:e6:06:c6:fb:4f:cf:c1:1a:89:af:1d:85:2d: 40:fe:b1:87:61:1c:3a:2c:e1:a5:53:ab:46:3f:3c: 2a:ce:8f:58:28:8c:54:31:04:f8:c2:c2:90:96:02: e9:96:f6:19:a1:ad:1a:45:af:43:4b:c6:a0:54:ae: 70:ca:79:28:89:7e:9c:38:55:6f:8b:6c:16:6a:ec: 6c:4f:bc:e1:f5:af:37:ca:cc:10:9f:40:c4:c6:f6: b0:f0:9b:2a:0e:51:ae:89:71:67:6f:78:a4:20:7e: e2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5A:57:FB:EA:97:D1:95:55:C4:3C:A4:27:16:D1:1A:51:0D:4B:DB X509v3 Authority Key Identifier: keyid:AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/43AB9FC641A311ECA73C8C0EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 213.170.156.0/22 Signature Algorithm: sha256WithRSAEncryption c3:ca:e3:03:52:fe:97:b1:27:95:32:4e:95:16:50:ee:6b:5f: 92:36:4c:6f:7f:8b:42:3f:73:1b:58:7a:7a:8c:a2:11:1e:42: 1e:0e:7c:5e:85:b8:85:66:9a:dc:2c:f9:ff:f3:81:26:fd:6c: 60:9d:b0:a2:05:4c:be:43:0d:f5:63:38:9e:98:eb:8a:ae:dd: 0e:3a:57:6b:e9:d3:9c:5d:df:ad:d5:ba:ce:ff:8e:90:60:e7: d1:70:9f:cb:cf:ff:e5:6d:fe:3f:0e:6f:03:eb:1d:f1:3c:4a: c0:25:b7:be:7d:0b:2f:54:44:d1:33:e9:6d:0e:28:34:76:8a: 53:4c:28:5b:d6:bf:fd:b5:12:de:72:fa:14:05:99:05:3f:6e: e4:e5:a3:58:44:94:34:6e:c3:18:be:d6:a4:47:e1:61:91:c5: 3f:38:82:72:ba:a6:69:2b:e1:da:23:e6:34:e2:b1:93:cb:33: f2:2a:c7:2d:b3:aa:93:7b:12:f3:f8:2d:e6:95:12:45:07:75: 72:82:09:a3:0b:3f:5e:97:5a:20:6e:d8:d5:bb:2f:93:b5:ca: 86:20:f8:9c:42:2c:04:2a:4f:8a:f2:a0:7e:7d:8d:ae:d7:46: 90:49:e7:c5:c2:e0:c9:df:84:06:07:4f:b9:63:29:e4:65:8b: f0:5d:ee:de -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKEFEQjk4OTc4RkQ3NTFGOTlEOUE4RUIyQUU3MkQzQzBD NTUwNDUzQTQwHhcNMjUwOTIyMTYzNTIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzZkYy04YzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkXsgQg0bkSm2JT0RNksAtDdqpXPAoMc2VtAtpchReYTgg8dO1GAUNd1F4V2T sa2KqlaHiSntkBGKu8mR8T/5bTdw3LcrqBI/RHXzoqqJTzXFoAHUdfDu29BAx5XH ZXDRS0Ml3IXsxXcws8b1NkVdl0ahPc5BMFJMTzRZEiJo5VJnkkXoefpoYKydhYoJ F0CYLAkitouAs+YGxvtPz8Eaia8dhS1A/rGHYRw6LOGlU6tGPzwqzo9YKIxUMQT4 wsKQlgLplvYZoa0aRa9DS8agVK5wynkoiX6cOFVvi2wWauxsT7zh9a83yswQn0DE xvaw8JsqDlGuiXFnb3ikIH7iGQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMpaV/vq l9GVVcQ8pCcW0RpRDUvbMB8GA1UdIwQYMBaAFK25iXj9dR+Z2ajrKuctPAxVBFOk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS9FQUM3RUVBMDEx MkQxMUVDOEQ4NzA1N0RDNEY5QUUwMi9yYm1KZVAxMUg1blpxT3NxNXkwOERGVUVV NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JibUplUDExSDVuWnFPc3E1eTA4REZVRVU2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvRUFDN0VFQTAxMTJEMTFFQzhEODcwNTdEQzRGOUFFMDIvNDNBQjlGQzY0 MUEzMTFFQ0E3M0M4QzBFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQC1aqcMA0GCSqGSIb3DQEBCwUAA4IBAQDDyuMDUv6XsSeVMk6VFlDu a1+SNkxvf4tCP3MbWHp6jKIRHkIeDnxehbiFZprcLPn/84Em/WxgnbCiBUy+Qw31 YziemOuKrt0OOldr6dOcXd+t1brO/46QYOfRcJ/Lz//lbf4/Dm8D6x3xPErAJbe+ fQsvVETRM+ltDig0dopTTChb1r/9tRLecvoUBZkFP27k5aNYRJQ0bsMYvtakR+Fh kcU/OIJyuqZpK+HaI+Y04rGTyzPyKscts6qTexLz+C3mlRJFB3VyggmjCz9el1og btjVuy+TtcqGIPicQiwEKk+K8qB+fY2u10aQSefFwuDJ34QGB0+5YynkZYvwXe7e -----END CERTIFICATE-----Generated at Mon Mar 2 05:34:37 2026 by rpki-client