$ rpki-client -vvf rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/5B9A1DA0114211ED957E085DC4F9AE02.roa File: 5B9A1DA0114211ED957E085DC4F9AE02.roa (raw, json) Hash identifier: vkPFBvt/5yAF0LWsC1Iq77FAoW5Enz33ovvnzBskktE= Subject key identifier: C9:82:D6:6C:8D:98:D3:1B:2E:1A:3D:56:5B:7A:AD:98:79:65:07:DB Certificate issuer: /CN=A9144463/serialNumber=6BAA5C520B8E4BF564C4BBF46E1F316BD45FA037 Certificate serial: 030D Authority key identifier: 6B:AA:5C:52:0B:8E:4B:F5:64:C4:BB:F4:6E:1F:31:6B:D4:5F:A0:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a6pcUguOS_VkxLv0bh8xa9RfoDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/5B9A1DA0114211ED957E085DC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:23:34 +0000 ROA not before: Wed 21 May 2025 06:50:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 56294 IP address blocks: 43.243.0.0/24 maxlen: 24 43.243.2.0/24 maxlen: 24 43.243.3.0/24 maxlen: 24 103.4.60.0/24 maxlen: 24 103.4.61.0/24 maxlen: 24 103.4.62.0/24 maxlen: 24 103.4.63.0/24 maxlen: 24 2401:2280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/a6pcUguOS_VkxLv0bh8xa9RfoDc.crl rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/a6pcUguOS_VkxLv0bh8xa9RfoDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a6pcUguOS_VkxLv0bh8xa9RfoDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 781 (0x30d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144463, serialNumber=6BAA5C520B8E4BF564C4BBF46E1F316BD45FA037 Validity Not Before: May 21 06:50:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3e976-6598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:00:f5:1a:58:73:9b:ce:f2:51:49:54:e8:5d: 0a:9f:1a:8d:9b:6d:6a:a7:c8:ec:4d:c2:a7:31:08: 15:d2:c0:f4:ea:f0:22:86:93:4b:45:11:c6:65:4e: c1:6b:c1:95:57:10:73:78:78:b0:5a:4a:d7:ce:83: b6:6f:e5:0e:04:71:32:91:72:3e:35:95:b2:b9:fb: 69:42:d9:d9:aa:16:26:27:2d:01:e8:d6:af:48:13: db:00:da:b8:0e:a6:10:07:75:6f:90:55:5e:7e:e5: 64:27:0d:7d:97:54:1b:00:07:cb:bc:07:43:16:a9: 4a:a6:55:f4:29:3d:ca:6f:0a:35:59:2f:b5:42:1a: 2d:69:56:df:37:e8:f6:79:5a:06:18:9e:83:55:99: 84:41:c3:68:0a:d3:11:79:01:91:75:80:3c:d5:f2: f2:be:f6:c8:f0:eb:7c:18:12:7e:86:b6:83:c6:28: 96:e2:a8:fb:26:e0:de:96:7f:34:d7:f6:af:54:b5: 34:69:37:13:b7:83:a9:8b:dc:ec:ba:66:2d:8a:d7: 81:64:1b:39:15:4f:28:7a:9e:c6:a6:94:ca:08:12: 25:5b:80:11:3f:d7:da:da:01:a9:00:23:e2:37:92: 1b:29:d6:1c:ef:c0:f4:4f:25:86:4e:55:41:26:3f: 9a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:82:D6:6C:8D:98:D3:1B:2E:1A:3D:56:5B:7A:AD:98:79:65:07:DB X509v3 Authority Key Identifier: keyid:6B:AA:5C:52:0B:8E:4B:F5:64:C4:BB:F4:6E:1F:31:6B:D4:5F:A0:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/a6pcUguOS_VkxLv0bh8xa9RfoDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a6pcUguOS_VkxLv0bh8xa9RfoDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/5B9A1DA0114211ED957E085DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.0.0/24 43.243.2.0/23 103.4.60.0/22 IPv6: 2401:2280::/32 Signature Algorithm: sha256WithRSAEncryption b0:81:c1:51:b5:4c:86:02:43:3a:21:be:6d:fc:61:55:83:a9: cc:a3:58:d0:a4:98:80:66:0b:d7:77:9d:d9:03:82:c5:cb:dc: 41:77:2b:96:42:9c:a4:5a:fc:61:c8:f4:5f:32:97:0b:38:27: ad:a0:8a:b4:9a:48:b5:4c:b3:3c:89:a4:ba:16:5d:67:06:af: 0b:d9:87:41:c9:c6:d9:63:54:63:71:fc:11:e9:02:3d:2b:88: 04:4f:d1:a8:22:c3:3c:63:3d:ac:53:82:bf:45:f7:d3:47:ad: 49:7b:61:e0:f3:b7:8d:1e:fb:1c:20:61:32:cd:04:4a:4a:aa: 9f:46:eb:17:98:c1:c2:d6:d0:d1:23:a2:75:ce:7c:23:4d:ab: 7c:fe:b7:7c:a3:d7:24:03:39:7d:41:f0:f8:f3:b0:a3:c0:e2: 68:06:e6:51:0c:7d:5f:ee:d9:57:68:79:ac:59:c2:ba:5c:8d: bf:7d:56:e2:74:14:a7:24:c7:9b:4c:84:81:82:70:8e:56:69: 0b:2e:a6:28:b3:91:82:cc:74:b9:4d:3f:41:77:b3:eb:4b:54: 07:db:56:d0:73:fa:f8:45:98:6a:db:6b:fc:83:93:61:23:48: 6a:99:2c:02:12:34:d4:20:68:f2:78:f0:34:66:66:e4:2a:db: 21:66:b8:cd -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ0NjMxMTAvBgNVBAUTKDZCQUE1QzUyMEI4RTRCRjU2NEM0QkJGNDZFMUYzMTZC RDQ1RkEwMzcwHhcNMjUwNTIxMDY1MDMzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTk3Ni02NTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQD1Glhzm87yUUlU6F0KnxqNm21qp8jsTcKnMQgV0sD06vAihpNLRRHGZU7B a8GVVxBzeHiwWkrXzoO2b+UOBHEykXI+NZWyuftpQtnZqhYmJy0B6NavSBPbANq4 DqYQB3VvkFVefuVkJw19l1QbAAfLvAdDFqlKplX0KT3Kbwo1WS+1QhotaVbfN+j2 eVoGGJ6DVZmEQcNoCtMReQGRdYA81fLyvvbI8Ot8GBJ+hraDxiiW4qj7JuDeln80 1/avVLU0aTcTt4Opi9zsumYtiteBZBs5FU8oep7GppTKCBIlW4ARP9fa2gGpACPi N5IbKdYc78D0TyWGTlVBJj+a9wIDAQABo4ICezCCAncwHQYDVR0OBBYEFMmC1myN mNMbLho9Vlt6rZh5ZQfbMB8GA1UdIwQYMBaAFGuqXFILjkv1ZMS79G4fMWvUX6A3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDQ2My84QkY1QTVENDEx MzYxMUVEOEYwQUI3MTJDNEY5QUUwMi9hNnBjVWd1T1NfVmt4THYwYmg4eGE5UmZv RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E2cGNVZ3VPU19Wa3hMdjBiaDh4YTlSZm9EYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQ0NjMvOEJGNUE1RDQxMTM2MTFFRDhGMEFCNzEyQzRGOUFFMDIvNUI5QTFEQTAx MTQyMTFFRDk1N0UwODVEQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQAK/MAAwQBK/MCAwQCZwQ8MA0EAgACMAcDBQAkASKAMA0GCSqGSIb3 DQEBCwUAA4IBAQCwgcFRtUyGAkM6Ib5t/GFVg6nMo1jQpJiAZgvXd53ZA4LFy9xB dyuWQpykWvxhyPRfMpcLOCetoIq0mki1TLM8iaS6Fl1nBq8L2YdBycbZY1RjcfwR 6QI9K4gET9GoIsM8Yz2sU4K/RffTR61Je2Hg87eNHvscIGEyzQRKSqqfRusXmMHC 1tDRI6J1znwjTat8/rd8o9ckAzl9QfD487CjwOJoBuZRDH1f7tlXaHmsWcK6XI2/ fVbidBSnJMebTISBgnCOVmkLLqYos5GCzHS5TT9Bd7PrS1QH21bQc/r4RZhq22v8 g5NhI0hqmSwCEjTUIGjyePA0ZmbkKtshZrjN -----END CERTIFICATE-----Generated at Thu Mar 26 17:26:43 2026 by rpki-client