$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1F2A/932F85BE9F8F11F0BB974B2DC4F9AE02/DE6BD6189F8F11F08976857BC4F9AE02.roa File: DE6BD6189F8F11F08976857BC4F9AE02.roa (raw, json) Hash identifier: gEDKwshdmBsC3CB4+s8rKksc9ZXswjsTOQAKy74q070= Subject key identifier: E8:67:56:ED:76:1F:44:FA:AF:AD:2A:41:E8:C1:CB:A6:D8:6E:13:62 Certificate issuer: /CN=A91F1F2A/serialNumber=6B118C158E0B8D9B984ECDDC78B244802E470547 Certificate serial: 4F Authority key identifier: 6B:11:8C:15:8E:0B:8D:9B:98:4E:CD:DC:78:B2:44:80:2E:47:05:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/axGMFY4LjZuYTs3ceLJEgC5HBUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1F2A/932F85BE9F8F11F0BB974B2DC4F9AE02/DE6BD6189F8F11F08976857BC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:15:26 +0000 ROA not before: Thu 02 Oct 2025 13:01:11 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 151335 IP address blocks: 43.225.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1F2A/932F85BE9F8F11F0BB974B2DC4F9AE02/axGMFY4LjZuYTs3ceLJEgC5HBUc.crl rsync://rpki.apnic.net/member_repository/A91F1F2A/932F85BE9F8F11F0BB974B2DC4F9AE02/axGMFY4LjZuYTs3ceLJEgC5HBUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/axGMFY4LjZuYTs3ceLJEgC5HBUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1F2A, serialNumber=6B118C158E0B8D9B984ECDDC78B244802E470547 Validity Not Before: Oct 2 13:01:11 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a3d97e-c340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4b:c4:eb:6a:68:e1:6a:f2:e8:e4:56:c0:25: bb:e1:4a:3b:25:84:84:82:36:26:33:db:f0:e2:e2: 30:34:45:59:d7:50:7b:a3:d4:ca:77:87:5c:70:fc: f2:5f:3d:8d:f7:6d:89:f1:cb:18:d2:4a:a9:a4:a1: b9:09:eb:7c:20:4e:e4:06:52:57:d0:32:bc:e4:9c: a5:53:73:10:4e:0e:a4:ca:3f:81:68:29:65:ed:57: bb:d4:5c:ac:10:ed:12:d1:f2:02:c1:72:ea:a5:96: a6:29:eb:88:04:02:9c:d3:23:20:5b:6f:a3:39:c8: 24:5e:ad:7b:af:25:92:c6:15:0a:c7:bb:5d:57:86: cc:cf:ab:7e:2a:61:0c:e6:03:5d:9d:76:c8:ec:85: 27:0d:16:79:df:78:4e:fd:36:59:a4:1c:e0:08:62: f0:e6:c2:e5:8c:b1:e6:fa:99:7b:28:90:2c:5e:d5: ea:a1:45:1b:62:16:cf:6c:a4:9c:a0:ec:e1:3b:50: 4d:08:c2:90:dc:dc:90:15:92:62:2d:d9:c0:18:61: 64:06:ef:c4:e3:44:12:35:ab:9e:45:0e:4c:ee:36: 5b:22:05:74:6b:b0:4b:9f:18:13:aa:7a:b9:b8:30: 3e:d1:55:50:40:f5:d5:39:b6:67:7d:2d:6c:3d:90: b6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:67:56:ED:76:1F:44:FA:AF:AD:2A:41:E8:C1:CB:A6:D8:6E:13:62 X509v3 Authority Key Identifier: keyid:6B:11:8C:15:8E:0B:8D:9B:98:4E:CD:DC:78:B2:44:80:2E:47:05:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1F2A/932F85BE9F8F11F0BB974B2DC4F9AE02/axGMFY4LjZuYTs3ceLJEgC5HBUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/axGMFY4LjZuYTs3ceLJEgC5HBUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1F2A/932F85BE9F8F11F0BB974B2DC4F9AE02/DE6BD6189F8F11F08976857BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.225.128.0/23 Signature Algorithm: sha256WithRSAEncryption b0:74:39:2d:f8:d5:f2:5d:87:48:1c:88:58:cd:94:4f:d9:04: 26:cb:6a:3d:ea:28:81:dd:d3:e1:86:70:27:3f:6e:b7:24:41: aa:76:b4:69:86:7d:33:c1:94:4b:a9:23:9a:7f:be:69:2b:43: 64:84:c7:64:10:20:97:7f:c7:23:88:f4:3a:20:40:01:5f:41: 94:3e:95:81:27:e0:27:bb:70:a9:61:ee:31:da:f4:1c:4e:0d: 34:77:cc:4f:83:bd:0f:97:af:1f:ba:6e:6c:d6:6b:cf:d8:9a: 78:5d:a9:f0:03:aa:f9:bc:06:62:d9:41:2b:b3:5a:09:3d:ff: f7:0e:22:37:06:09:ce:76:65:bd:fa:f4:87:e2:2d:cd:f6:c7: cf:54:31:58:78:80:0a:ce:5b:73:5f:d8:15:0e:e4:66:97:29: a3:80:d4:b6:ee:6d:ff:3d:a2:84:6a:50:f2:78:a6:6a:07:2e: d1:a7:57:dd:d5:bc:91:54:96:ae:2f:44:b7:5f:14:a5:0c:c6: 53:3f:ef:d0:c5:a0:17:75:13:cc:0d:0f:01:9e:a7:31:bc:80: 17:ae:ab:19:ef:4d:7e:77:65:4d:6d:0d:e2:40:58:b1:a6:f0: 5b:f4:5f:37:13:5f:b3:bd:0c:48:3f:a8:91:80:83:bb:85:d4: f4:81:de:17 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MUYyQTExMC8GA1UEBRMoNkIxMThDMTU4RTBCOEQ5Qjk4NEVDRERDNzhCMjQ0ODAy RTQ3MDU0NzAeFw0yNTEwMDIxMzAxMTFaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOTdlLWMzNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyS8TramjhavLo5FbAJbvhSjslhISCNiYz2/Di4jA0RVnXUHuj1Mp3h1xw/PJf PY33bYnxyxjSSqmkobkJ63wgTuQGUlfQMrzknKVTcxBODqTKP4FoKWXtV7vUXKwQ 7RLR8gLBcuqllqYp64gEApzTIyBbb6M5yCRerXuvJZLGFQrHu11XhszPq34qYQzm A12ddsjshScNFnnfeE79NlmkHOAIYvDmwuWMseb6mXsokCxe1eqhRRtiFs9spJyg 7OE7UE0IwpDc3JAVkmIt2cAYYWQG78TjRBI1q55FDkzuNlsiBXRrsEufGBOqerm4 MD7RVVBA9dU5tmd9LWw9kLbvAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU6GdW7XYf RPqvrSpB6MHLpthuE2IwHwYDVR0jBBgwFoAUaxGMFY4LjZuYTs3ceLJEgC5HBUcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYxRjJBLzkzMkY4NUJFOUY4 RjExRjBCQjk3NEIyREM0RjlBRTAyL2F4R01GWTRMalp1WVRzM2NlTEpFZ0M1SEJV Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXhHTUZZNExqWnVZVHMzY2VMSkVnQzVIQlVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUYyQS85MzJGODVCRTlGOEYxMUYwQkI5NzRCMkRDNEY5QUUwMi9ERTZCRDYxODlG OEYxMUYwODk3Njg1N0JDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAEr4YAwDQYJKoZIhvcNAQELBQADggEBALB0OS341fJdh0gciFjNlE/Z BCbLaj3qKIHd0+GGcCc/brckQap2tGmGfTPBlEupI5p/vmkrQ2SEx2QQIJd/xyOI 9DogQAFfQZQ+lYEn4Ce7cKlh7jHa9BxODTR3zE+DvQ+Xrx+6bmzWa8/YmnhdqfAD qvm8BmLZQSuzWgk9//cOIjcGCc52Zb369IfiLc32x89UMVh4gArOW3Nf2BUO5GaX KaOA1Lbubf89ooRqUPJ4pmoHLtGnV93VvJFUlq4vRLdfFKUMxlM/79DFoBd1E8wN DwGepzG8gBeuqxnvTX53ZU1tDeJAWLGm8Fv0XzcTX7O9DEg/qJGAg7uF1PSB3hc= -----END CERTIFICATE-----Generated at Mon Mar 2 02:14:19 2026 by rpki-client