$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/9C1B70121D1A11F1A275F377103D8C67.roa File: 9C1B70121D1A11F1A275F377103D8C67.roa (raw, json) Hash identifier: y0kiR2bauMVDFaqNZbNEH9+p4Ybcw1shQXfdJNNrqvI= Subject key identifier: B9:D1:07:9A:BC:83:82:4E:B0:8F:E6:0F:86:A0:64:75:20:68:73:69 Certificate issuer: /CN=A911CC61/serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Certificate serial: 3D Authority key identifier: 04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/9C1B70121D1A11F1A275F377103D8C67.roa Signing time: Wed 11 Mar 2026 07:19:15 +0000 ROA not before: Wed 11 Mar 2026 07:19:15 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 64050 IP address blocks: 43.226.16.0/22 maxlen: 24 103.45.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC61, serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Validity Not Before: Mar 11 07:19:15 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69b11773-a62d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6b:f9:83:dc:3c:72:65:56:3d:97:c1:5d:22: d3:e1:2f:62:42:1f:76:7f:85:cd:89:a0:6a:93:f2: 0c:f9:46:0d:66:30:bd:85:6f:55:db:f0:05:ce:76: 60:22:cd:ad:3d:5f:4e:29:65:c9:15:87:0d:26:83: 69:c7:bf:19:e9:e3:9a:f8:64:e8:c0:99:11:e8:8e: ea:e9:93:d6:d2:a9:4c:3f:27:50:24:75:04:7a:14: 7b:84:0c:7f:a3:26:7c:45:b6:2f:34:6c:3a:f9:bf: 43:11:73:cb:a8:78:d1:c5:8d:63:24:70:c9:f9:ad: d3:3f:63:07:63:79:18:ad:ca:f6:ba:7e:7f:d7:f5: 70:95:fa:09:fc:bc:55:77:86:8f:04:6b:a6:48:05: a2:0f:5c:7f:e9:9b:de:3b:a8:b7:10:e9:c6:07:0c: f9:a7:0d:69:c8:63:ae:8a:69:37:5e:56:79:1b:64: 7e:fa:7f:a2:40:a7:7d:f0:fc:bf:cb:5a:d0:93:e7: 51:7f:de:e8:5e:8d:6a:0a:63:5d:d2:b3:a7:8e:4d: 21:9d:8c:80:67:cb:8c:3c:e2:06:83:2b:4b:e9:5c: 7b:a1:25:71:8d:e2:f7:13:9b:4d:15:1f:95:52:55: 30:16:3d:e4:0d:25:fa:f3:03:54:3d:0d:d0:31:ff: 11:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D1:07:9A:BC:83:82:4E:B0:8F:E6:0F:86:A0:64:75:20:68:73:69 X509v3 Authority Key Identifier: keyid:04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/9C1B70121D1A11F1A275F377103D8C67.roa sbgp-ipAddrBlock: critical IPv4: 43.226.16.0/22 103.45.64.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:66:95:5f:76:ab:a2:5d:22:58:d3:6d:53:13:3a:95:53:82: 4e:d6:e1:35:3c:51:01:5a:69:b3:8b:2e:62:fe:03:16:33:8c: 80:50:84:71:2e:6c:1b:38:b5:6a:e7:b0:75:48:44:d3:a5:bb: af:8d:f0:66:46:ef:27:83:6d:f5:7f:3c:45:85:57:3c:4f:36: 68:b5:48:f1:30:fb:06:2a:29:d0:67:d3:09:01:df:5c:b1:e5: 8e:96:af:8d:f0:6e:41:1e:b6:9d:09:12:9f:73:00:ca:d6:de: 30:94:a0:b4:bc:a7:83:4c:14:97:06:43:ce:3d:5b:72:f8:c0: d3:04:b8:59:5c:a2:42:fa:59:67:8d:54:e0:f9:c0:6c:db:ea: dd:a2:a4:c8:27:a5:d0:d6:10:c6:65:31:85:22:02:f9:c3:1e: 5f:2e:fb:9b:35:63:dd:c4:89:5a:65:49:31:a7:72:46:2b:f9: e2:18:e1:5d:c5:4e:1a:91:b7:1a:78:05:0a:ac:1a:b4:7c:93: bc:9a:06:17:26:73:12:a8:7b:88:5e:58:24:1c:d0:fd:a3:f0: b8:cf:47:e3:ef:83:9f:7e:bd:66:42:6d:64:4e:27:86:71:68: b8:b9:5e:79:3e:c5:62:24:23:b5:73:99:a4:6d:cc:d2:48:7e: b8:db:c5:16 -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0M2MTExMC8GA1UEBRMoMDQ3NDkzN0U3OUE5RDY3MzM1M0VBQkQ4MkM0Qjg0MjRC NkM2ODMwRDAeFw0yNjAzMTEwNzE5MTVaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YjExNzczLWE2MmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCca/mD3DxyZVY9l8FdItPhL2JCH3Z/hc2JoGqT8gz5Rg1mML2Fb1Xb8AXOdmAi za09X04pZckVhw0mg2nHvxnp45r4ZOjAmRHojurpk9bSqUw/J1AkdQR6FHuEDH+j JnxFti80bDr5v0MRc8uoeNHFjWMkcMn5rdM/YwdjeRityva6fn/X9XCV+gn8vFV3 ho8Ea6ZIBaIPXH/pm947qLcQ6cYHDPmnDWnIY66KaTdeVnkbZH76f6JAp33w/L/L WtCT51F/3uhejWoKY13Ss6eOTSGdjIBny4w84gaDK0vpXHuhJXGN4vcTm00VH5VS VTAWPeQNJfrzA1Q9DdAx/xGbAgMBAAGjggJmMIICYjAdBgNVHQ4EFgQUudEHmryD gk6wj+YPhqBkdSBoc2kwHwYDVR0jBBgwFoAUBHSTfnmp1nM1PqvYLEuEJLbGgw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzYxLzMzMUQxNDE4REEz RTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5NMVBxdllMRXVFSkxiR2d3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQkhTVGZubXAxbk0xUHF2WUxFdUVKTGJHZ3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0M2MS8zMzFEMTQxOERBM0UxMUYwOEZEMUU4Mzg4RUQzNjQxRC85QzFCNzAxMjFE MUExMUYxQTI3NUYzNzcxMDNEOEM2Ny5yb2EwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAIr4hADBAJnLUAwDQYJKoZIhvcNAQELBQADggEBAGxmlV92q6JdIljT bVMTOpVTgk7W4TU8UQFaabOLLmL+AxYzjIBQhHEubBs4tWrnsHVIRNOlu6+N8GZG 7yeDbfV/PEWFVzxPNmi1SPEw+wYqKdBn0wkB31yx5Y6Wr43wbkEetp0JEp9zAMrW 3jCUoLS8p4NMFJcGQ849W3L4wNMEuFlcokL6WWeNVOD5wGzb6t2ipMgnpdDWEMZl MYUiAvnDHl8u+5s1Y93EiVplSTGnckYr+eIY4V3FThqRtxp4BQqsGrR8k7yaBhcm cxKoe4heWCQc0P2j8LjPR+Pvg59+vWZCbWROJ4ZxaLi5Xnk+xWIkI7VzmaRtzNJI frjbxRY= -----END CERTIFICATE-----Generated at Thu Mar 26 21:31:10 2026 by rpki-client