$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/A73C0BF6D93511E6B2617F7BC4F9AE02.roa File: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (raw, json) Hash identifier: 9Wh8912cu3W7SvBPurOS5rCjf4J0gjpN7uj92f3pmsg= Subject key identifier: 3B:EF:37:3D:18:B5:3B:DB:19:9B:2F:A1:15:C0:7F:D8:CE:A2:2A:81 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 2283 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/A73C0BF6D93511E6B2617F7BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:19:00 +0000 ROA not before: Thu 02 Oct 2025 16:13:43 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 54836 IP address blocks: 43.230.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:27:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8835 (0x2283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Oct 2 16:13:43 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48314-319c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:07:3d:1e:3a:33:03:7b:9f:34:93:69:07:75: 84:0c:df:e6:13:01:6b:c7:aa:88:e6:bd:8c:6f:83: 90:86:4b:05:b6:29:58:28:7d:7a:48:6e:8f:6d:fc: de:de:3b:5f:34:af:5b:b7:0a:20:80:55:48:ca:c6: 1e:ba:21:94:64:c2:c2:af:8c:c6:75:d4:ca:e1:16: 5a:cd:53:7c:a3:b8:26:fb:8f:ef:14:b9:64:f0:6f: 75:f1:dc:f1:1a:68:a1:ea:ad:41:27:41:f7:15:d7: 33:b0:f9:f9:aa:e3:db:e8:76:d0:3c:51:e2:76:2f: c2:7b:3d:86:52:45:d3:a5:3d:42:28:61:14:64:63: 8f:37:f1:b6:89:0e:91:5e:44:ff:15:f0:ab:13:ca: 46:77:d6:0a:a0:3f:15:54:f8:0b:87:5b:82:30:7c: d6:fd:c4:15:ed:df:b6:62:1d:11:fb:a5:1c:ef:c0: e1:d9:03:32:7c:ad:1d:99:c3:8b:2d:5c:fd:66:29: a2:17:77:26:ef:f9:20:f1:5b:b2:18:ce:76:2a:99: 88:a4:9b:5d:5c:19:54:88:73:f5:35:04:7d:16:24: 24:ac:e4:ed:3f:01:09:33:b7:7d:33:c2:e1:e4:91: 41:2e:76:bd:cc:fc:36:b5:62:0c:a1:d1:1a:d6:34: 9f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:EF:37:3D:18:B5:3B:DB:19:9B:2F:A1:15:C0:7F:D8:CE:A2:2A:81 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/A73C0BF6D93511E6B2617F7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.26.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:9e:99:52:c2:60:d6:dc:53:ab:7d:6c:df:2b:1e:64:fb:e6: e4:25:80:39:81:d6:32:d3:72:55:13:ec:25:db:cf:49:54:02: da:fd:e1:df:11:d9:3e:18:81:11:97:65:90:d3:21:f1:33:78: 83:4f:00:ed:fa:ef:5f:64:b0:2b:41:7a:f3:b8:14:87:2c:d4: fb:ba:ee:fa:70:dc:1e:3a:0e:7f:c1:c8:f4:4f:cf:09:2b:1f: af:64:78:82:c9:61:7e:fb:9b:99:d9:36:a4:20:c5:bb:91:d1: 5c:9d:7b:cb:6c:67:c4:da:d8:63:da:b9:e7:4a:de:65:09:a6: 00:36:69:6f:45:ee:f1:b3:ea:b6:50:b5:a9:01:6a:38:e4:89: d2:05:17:d9:ad:a6:a9:db:8b:ee:dd:84:cf:ab:db:6e:05:4c: cf:78:62:91:15:65:32:f5:b3:2d:eb:fe:98:55:64:78:c7:80: 0b:ef:14:e7:4f:7e:6d:7f:22:55:9a:98:72:1f:23:24:64:83: 1f:d7:81:69:12:bd:77:d3:f8:cc:f8:31:32:03:c2:74:4e:0f: a0:55:7d:4d:e9:bb:34:ab:29:9c:10:b3:e8:57:e1:bb:2b:9b: 94:85:3c:84:21:9d:86:b0:86:01:19:fe:06:df:c1:32:db:15: e5:68:4e:27 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICIoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjUxMDAyMTYxMzQzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODMxNC0zMTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugc9HjozA3ufNJNpB3WEDN/mEwFrx6qI5r2Mb4OQhksFtilYKH16SG6Pbfze 3jtfNK9btwoggFVIysYeuiGUZMLCr4zGddTK4RZazVN8o7gm+4/vFLlk8G918dzx Gmih6q1BJ0H3FdczsPn5quPb6HbQPFHidi/Cez2GUkXTpT1CKGEUZGOPN/G2iQ6R XkT/FfCrE8pGd9YKoD8VVPgLh1uCMHzW/cQV7d+2Yh0R+6Uc78Dh2QMyfK0dmcOL LVz9ZimiF3cm7/kg8VuyGM52KpmIpJtdXBlUiHP1NQR9FiQkrOTtPwEJM7d9M8Lh 5JFBLna9zPw2tWIModEa1jSfFQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDvvNz0Y tTvbGZsvoRXAf9jOoiqBMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBFQkYvNUY4NEQ3RDhEQjgwMTFFNTlBQjdFRDFFQzRGOUFFMDIvQTczQzBCRjZE OTM1MTFFNkIyNjE3RjdCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK+YaMA0GCSqGSIb3DQEBCwUAA4IBAQA6nplSwmDW3FOrfWzfKx5k ++bkJYA5gdYy03JVE+wl289JVALa/eHfEdk+GIERl2WQ0yHxM3iDTwDt+u9fZLAr QXrzuBSHLNT7uu76cNweOg5/wcj0T88JKx+vZHiCyWF++5uZ2TakIMW7kdFcnXvL bGfE2thj2rnnSt5lCaYANmlvRe7xs+q2ULWpAWo45InSBRfZraap24vu3YTPq9tu BUzPeGKRFWUy9bMt6/6YVWR4x4AL7xTnT35tfyJVmphyHyMkZIMf14FpEr130/jM +DEyA8J0Tg+gVX1N6bs0qymcELPoV+G7K5uUhTyEIZ2GsIYBGf4G38Ey2xXlaE4n -----END CERTIFICATE-----Generated at Mon Mar 2 05:44:18 2026 by rpki-client