$ rpki-client -vvf rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/D34D9A72BBEB11EC83BEA22AC4F9AE02.roa File: D34D9A72BBEB11EC83BEA22AC4F9AE02.roa (raw, json) Hash identifier: Gkl5+TclHvIuU+Y7kT6wEWYG/ARLdwHsVt4z+6lE0IM= Subject key identifier: A8:40:B0:2B:88:A9:3E:AD:CD:52:2F:7F:B1:79:26:CE:4A:D3:B1:5F Certificate issuer: /CN=A912176D/serialNumber=96F42E19F69D596A0318921590A17DD53233E595 Certificate serial: 0914 Authority key identifier: 96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/D34D9A72BBEB11EC83BEA22AC4F9AE02.roa Signing time: Sun 10 May 2026 22:27:26 +0000 ROA not before: Sun 10 May 2026 22:27:26 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132825 IP address blocks: 43.231.4.0/24 maxlen: 24 43.231.5.0/24 maxlen: 24 43.231.6.0/24 maxlen: 24 43.231.7.0/24 maxlen: 24 103.250.4.0/24 maxlen: 24 103.250.5.0/24 maxlen: 24 103.250.6.0/24 maxlen: 24 103.250.7.0/24 maxlen: 24 118.107.192.0/24 maxlen: 24 118.107.193.0/24 maxlen: 24 118.107.194.0/24 maxlen: 24 118.107.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.crl rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2324 (0x914) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912176D, serialNumber=96F42E19F69D596A0318921590A17DD53233E595 Validity Not Before: May 10 22:27:26 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6a01064e-60f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b0:2a:9d:2c:c3:d4:7c:80:2e:cc:9e:e0:31: 33:f8:ec:24:74:3b:6a:d2:ee:95:b1:b1:03:5b:2d: b0:0d:31:3e:d2:3b:0a:1a:56:fb:5e:dc:c3:c3:11: b4:7b:47:7e:e1:8d:ad:cf:0e:f7:1d:f5:c8:f5:73: 0d:6f:cf:93:12:3e:bd:50:66:f8:21:95:9e:63:f6: 9d:15:fa:41:75:9a:4e:e7:0a:dd:48:eb:15:73:b1: 70:62:bd:bd:8b:6e:59:05:d9:b0:d1:4a:11:54:26: 20:9c:c3:76:27:b3:f3:9a:d7:b0:3d:79:3b:f0:33: d4:a5:74:ac:3b:d1:cc:53:27:62:1f:3c:3b:30:85: 74:9b:88:e6:c1:d9:80:32:00:83:0a:b5:e8:1a:6d: 60:58:1c:31:00:97:e7:85:ca:a4:f9:ec:6b:64:cd: 93:36:81:dd:1e:c3:ca:f0:4d:82:02:58:24:59:c6: 58:69:f4:2b:14:af:fc:60:e7:e0:e6:5c:50:b9:1a: b5:63:dd:d0:63:a4:f6:e0:46:90:f8:51:7e:31:0e: 87:ca:77:38:b0:40:f0:20:cd:35:3b:97:59:2d:a4: ab:fd:dc:b8:31:23:e7:fe:2c:b3:11:6b:61:7b:1b: ed:41:de:c9:47:df:fd:88:5e:dc:d9:b9:98:e8:8b: 29:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:40:B0:2B:88:A9:3E:AD:CD:52:2F:7F:B1:79:26:CE:4A:D3:B1:5F X509v3 Authority Key Identifier: keyid:96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/D34D9A72BBEB11EC83BEA22AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.231.4.0/22 103.250.4.0/22 118.107.192.0/22 Signature Algorithm: sha256WithRSAEncryption 02:af:60:4e:3b:73:b2:4e:65:c8:94:2f:5c:b9:a0:17:6c:f9: d6:47:97:e7:02:5a:da:40:a6:e7:a1:7b:c1:a3:05:a0:ee:4d: fe:1b:fd:e5:a9:5b:6e:e0:40:01:07:d3:0f:86:73:97:92:b5: ba:2a:9c:81:6b:27:d4:1a:5a:50:57:69:84:d2:a4:a7:84:42: 59:8f:c4:b6:f6:4e:2f:b7:97:7e:d6:92:79:29:eb:93:fb:eb: 4d:89:63:ff:c1:1a:db:2f:07:55:83:a5:c9:45:e9:a1:76:78: bc:8f:65:20:e4:d3:02:f9:eb:b1:4c:70:c9:52:8b:3c:c3:76: 94:ad:f9:f6:73:ba:66:7f:11:ce:99:1d:e8:d4:a6:17:25:9b: 84:59:8b:2b:da:c9:d2:4e:43:01:82:cf:c6:01:b7:62:ad:d5: 21:46:05:85:1a:98:c5:56:fd:f1:45:23:fc:4c:a9:bd:4f:e8: e7:8d:2f:ad:de:02:dd:bb:4d:1a:66:6f:0b:e8:a7:81:bf:76: ae:9d:3e:82:96:d0:44:0c:e9:f4:5c:bd:7b:6e:cb:d9:3e:0c: 6d:a5:86:66:91:b5:44:f2:a2:f1:57:4d:f7:30:74:62:21:ef: 52:b6:0a:93:dd:9a:ed:c6:55:e1:5f:2c:c9:94:fb:ef:e4:7f: 9a:76:61:c6 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE3NkQxMTAvBgNVBAUTKDk2RjQyRTE5RjY5RDU5NkEwMzE4OTIxNTkwQTE3REQ1 MzIzM0U1OTUwHhcNMjYwNTEwMjIyNzI2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAxMDY0ZS02MGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnLAqnSzD1HyALsye4DEz+OwkdDtq0u6VsbEDWy2wDTE+0jsKGlb7XtzDwxG0 e0d+4Y2tzw73HfXI9XMNb8+TEj69UGb4IZWeY/adFfpBdZpO5wrdSOsVc7FwYr29 i25ZBdmw0UoRVCYgnMN2J7PzmtewPXk78DPUpXSsO9HMUydiHzw7MIV0m4jmwdmA MgCDCrXoGm1gWBwxAJfnhcqk+exrZM2TNoHdHsPK8E2CAlgkWcZYafQrFK/8YOfg 5lxQuRq1Y93QY6T24EaQ+FF+MQ6Hync4sEDwIM01O5dZLaSr/dy4MSPn/iyzEWth exvtQd7JR9/9iF7c2bmY6IspTQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFKhAsCuI qT6tzVIvf7F5Js5K07FfMB8GA1UdIwQYMBaAFJb0Lhn2nVlqAxiSFZChfdUyM+WV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTc2RC85M0QxN0NEMDA2 QTAxMUVCQjQwOTA4NTlDNEY5QUUwMi9sdlF1R2ZhZFdXb0RHSklWa0tGOTFUSXo1 WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x2UXVHZmFkV1dvREdKSVZrS0Y5MVRJejVaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE3NkQvOTNEMTdDRDAwNkEwMTFFQkI0MDkwODU5QzRGOUFFMDIvRDM0RDlBNzJC QkVCMTFFQzgzQkVBMjJBQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCK+cEAwQCZ/oEAwQCdmvAMA0GCSqGSIb3DQEBCwUAA4IBAQACr2BO O3OyTmXIlC9cuaAXbPnWR5fnAlraQKbnoXvBowWg7k3+G/3lqVtu4EABB9MPhnOX krW6KpyBayfUGlpQV2mE0qSnhEJZj8S29k4vt5d+1pJ5KeuT++tNiWP/wRrbLwdV g6XJRemhdni8j2Ug5NMC+euxTHDJUos8w3aUrfn2c7pmfxHOmR3o1KYXJZuEWYsr 2snSTkMBgs/GAbdirdUhRgWFGpjFVv3xRSP8TKm9T+jnjS+t3gLdu00aZm8L6KeB v3aunT6CltBEDOn0XL17bsvZPgxtpYZmkbVE8qLxV033MHRiIe9StgqT3ZrtxlXh XyzJlPvv5H+admHG -----END CERTIFICATE-----Generated at Wed May 13 04:55:43 2026 by rpki-client