$ rpki-client -vvf rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/9BD4B85894D611EE85EDE844C4F9AE02.roa File: 9BD4B85894D611EE85EDE844C4F9AE02.roa (raw, json) Hash identifier: VJzdJO1/Wt2J0Hm+mjH2h7xfG3svuVrItd0zXJyOv4s= Subject key identifier: F8:28:D6:06:31:59:CA:9B:C5:81:D2:C4:DB:A5:EC:27:1C:43:DD:42 Certificate issuer: /CN=A91237A2/serialNumber=4382F9AA3016FCBF31F924CF132E95BF92709ADD Certificate serial: 01AB Authority key identifier: 43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/9BD4B85894D611EE85EDE844C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:20:52 +0000 ROA not before: Tue 25 Nov 2025 02:19:42 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151986 IP address blocks: 43.248.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91237A2, serialNumber=4382F9AA3016FCBF31F924CF132E95BF92709ADD Validity Not Before: Nov 25 02:19:42 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a59cc4-3fed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d0:55:25:b9:6c:51:1c:a3:93:5c:9e:58:d2: 49:b6:6a:3d:a7:de:62:01:ba:b9:ee:69:1a:db:9a: 52:d5:03:dc:92:e0:c1:d4:e7:9b:c3:fa:f5:f6:c1: 3c:28:9d:7f:c0:cd:15:11:4a:12:5f:f4:4f:28:ba: 19:6b:d9:6c:8b:f8:fa:63:a1:cd:f3:6c:16:25:95: dd:b6:5b:e9:c4:24:33:11:45:c2:91:70:9a:d4:b6: 0a:06:c0:49:0e:b9:cf:42:d2:9d:11:90:62:a6:eb: 7f:8f:12:1c:17:17:59:b6:15:c3:37:a0:a9:ee:40: 32:0a:8f:1b:fa:33:d6:f0:a3:2b:47:99:d7:96:95: cd:c8:ac:b6:3e:43:e4:a7:7d:d8:fc:f1:4a:68:c2: a1:63:55:1a:ae:31:98:fc:80:76:3a:54:3e:56:32: 89:25:d9:df:b9:60:84:b4:3d:93:3e:98:ac:7f:47: 0a:80:7f:af:b4:ad:d3:d1:52:9b:86:92:d3:e6:da: 5e:51:67:de:65:59:4a:58:78:7a:1e:23:31:a3:4d: 48:45:57:15:70:57:2a:be:79:de:b1:4b:2a:c4:2f: 59:33:7a:51:88:a1:98:6d:ca:ce:ad:ba:44:8b:ff: 98:0b:06:0e:15:4a:ae:e0:1b:1d:3a:3c:40:21:ea: d4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:28:D6:06:31:59:CA:9B:C5:81:D2:C4:DB:A5:EC:27:1C:43:DD:42 X509v3 Authority Key Identifier: keyid:43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/9BD4B85894D611EE85EDE844C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.248.56.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:35:4e:ad:9b:56:68:c3:fc:4c:2a:c1:d3:01:23:73:1f:43: 6b:84:59:94:56:b2:2f:45:2e:74:88:ef:37:3b:e9:f0:8e:ea: 10:6d:96:19:a7:b2:da:7e:e4:2d:46:3a:c0:99:40:cd:d7:84: 2a:78:90:24:69:38:19:8c:6e:58:38:15:dc:9e:5e:ae:fe:eb: a7:9c:86:2e:8c:df:0e:9b:86:6f:d0:b2:25:37:60:ae:66:a7: a6:cb:ee:2c:3e:32:f5:65:de:c6:de:6a:54:d6:f6:86:5c:a7: 55:fb:ef:e3:0f:2e:5b:df:14:35:68:79:a6:eb:00:2e:07:95: e5:d2:8a:ea:5c:c7:ea:81:9f:b6:96:cc:64:09:f4:cc:9f:3d: 2a:3b:24:35:08:34:f9:c0:cc:5d:e8:9a:ac:c6:33:fb:0d:14: 1b:01:4f:a0:91:4a:50:d4:3e:53:51:06:d8:85:8d:98:ee:73: 30:fd:59:db:91:2a:29:04:8f:53:6e:b4:d2:84:b8:d7:bf:da: f6:fa:73:11:2b:d8:86:cc:f2:4a:4d:c4:ef:9c:11:8b:3e:5b: 4b:b9:eb:64:27:92:2a:3d:be:7c:15:6c:82:75:94:e9:fe:ad: a1:23:96:ea:73:52:ee:29:cc:03:c0:c7:91:96:a9:5e:fe:65: 49:a1:be:77 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM3QTIxMTAvBgNVBAUTKDQzODJGOUFBMzAxNkZDQkYzMUY5MjRDRjEzMkU5NUJG OTI3MDlBREQwHhcNMjUxMTI1MDIxOTQyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWNjNC0zZmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutBVJblsURyjk1yeWNJJtmo9p95iAbq57mka25pS1QPckuDB1Oebw/r19sE8 KJ1/wM0VEUoSX/RPKLoZa9lsi/j6Y6HN82wWJZXdtlvpxCQzEUXCkXCa1LYKBsBJ DrnPQtKdEZBiput/jxIcFxdZthXDN6Cp7kAyCo8b+jPW8KMrR5nXlpXNyKy2PkPk p33Y/PFKaMKhY1UarjGY/IB2OlQ+VjKJJdnfuWCEtD2TPpisf0cKgH+vtK3T0VKb hpLT5tpeUWfeZVlKWHh6HiMxo01IRVcVcFcqvnnesUsqxC9ZM3pRiKGYbcrOrbpE i/+YCwYOFUqu4BsdOjxAIerUowIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPgo1gYx WcqbxYHSxNul7CccQ91CMB8GA1UdIwQYMBaAFEOC+aowFvy/MfkkzxMulb+ScJrd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzdBMi80OUU2RTNENjkz M0MxMUVFQjQyMTBGMjlDNEY5QUUwMi9RNEw1cWpBV19MOHgtU1RQRXk2VnY1Sndt dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E0TDVxakFXX0w4eC1TVFBFeTZWdjVKd210MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM3QTIvNDlFNkUzRDY5MzNDMTFFRUI0MjEwRjI5QzRGOUFFMDIvOUJENEI4NTg5 NEQ2MTFFRTg1RURFODQ0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK/g4MA0GCSqGSIb3DQEBCwUAA4IBAQBMNU6tm1Zow/xMKsHTASNz H0NrhFmUVrIvRS50iO83O+nwjuoQbZYZp7LafuQtRjrAmUDN14QqeJAkaTgZjG5Y OBXcnl6u/uunnIYujN8Om4Zv0LIlN2CuZqemy+4sPjL1Zd7G3mpU1vaGXKdV++/j Dy5b3xQ1aHmm6wAuB5Xl0orqXMfqgZ+2lsxkCfTMnz0qOyQ1CDT5wMxd6JqsxjP7 DRQbAU+gkUpQ1D5TUQbYhY2Y7nMw/VnbkSopBI9TbrTShLjXv9r2+nMRK9iGzPJK TcTvnBGLPltLuetkJ5IqPb58FWyCdZTp/q2hI5bqc1LuKcwDwMeRlqle/mVJob53 -----END CERTIFICATE-----Generated at Sat Mar 28 10:35:11 2026 by rpki-client