$ rpki-client -vvf rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/BBFF83183E1311F1A75FAD3AAF833773.roa File: BBFF83183E1311F1A75FAD3AAF833773.roa (raw, json) Hash identifier: tVkmnNetZiuk3U9n5t1OgMJioxU81CU8IuCEcNguLvc= Subject key identifier: 9C:4C:E6:63:BA:29:A4:A5:F0:1A:79:8E:D3:F9:D9:4F:F7:95:54:D3 Certificate issuer: /CN=A91456CD/serialNumber=6296165C36DF960566B1ED350EA7DE7F338B3A99 Certificate serial: 04 Authority key identifier: 62:96:16:5C:36:DF:96:05:66:B1:ED:35:0E:A7:DE:7F:33:8B:3A:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YpYWXDbflgVmse01DqfefzOLOpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/BBFF83183E1311F1A75FAD3AAF833773.roa Signing time: Wed 22 Apr 2026 06:23:10 +0000 ROA not before: Wed 22 Apr 2026 06:23:10 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 13335 IP address blocks: 43.228.232.0/24 maxlen: 24 43.228.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.crl rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YpYWXDbflgVmse01DqfefzOLOpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 09:17:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91456CD, serialNumber=6296165C36DF960566B1ED350EA7DE7F338B3A99 Validity Not Before: Apr 22 06:23:10 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69e8694e-8aa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:36:cb:f4:8e:71:74:fc:93:83:17:78:72:f3: 08:45:16:0b:98:24:f0:2b:86:6b:fb:a0:7d:15:4b: 90:81:5e:8f:77:b2:05:8f:47:9f:90:9d:15:1f:94: d7:8f:7d:10:d3:b8:15:ce:30:14:bf:0d:e8:53:2e: 24:b3:82:3b:51:75:7c:b7:6e:26:13:62:91:e7:9f: 8b:9d:3e:e8:45:7b:0f:fb:7e:6d:5e:94:e8:13:f1: 2d:6a:78:68:9a:f3:2d:f2:f6:b1:b1:99:54:16:1a: 2d:0c:95:05:66:cb:d5:d6:d5:29:73:0f:b7:6a:65: f3:47:02:6c:b2:4f:3f:f1:2d:27:5f:f8:23:7b:ca: ee:6a:3a:b4:04:4a:49:f1:13:e0:29:d7:7c:38:32: 1b:4f:5b:0f:57:43:97:2b:10:76:c8:d5:2b:72:f0: 8a:f5:5b:f0:8f:0a:28:8c:29:2e:35:04:19:e6:d6: 29:35:02:3c:64:6c:a9:32:ed:fc:c0:5c:3d:2f:5d: 6a:1b:28:14:fe:72:6d:56:06:fb:2d:15:5e:62:17: 01:31:79:ec:cf:12:f5:cc:f1:f1:53:fa:6b:d2:23: d4:0b:bd:f2:f6:ab:df:2b:1f:5c:4e:32:33:c1:dc: d1:ce:e7:e9:a3:e4:53:3b:3e:19:f3:be:ae:3b:e3: bf:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:4C:E6:63:BA:29:A4:A5:F0:1A:79:8E:D3:F9:D9:4F:F7:95:54:D3 X509v3 Authority Key Identifier: keyid:62:96:16:5C:36:DF:96:05:66:B1:ED:35:0E:A7:DE:7F:33:8B:3A:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YpYWXDbflgVmse01DqfefzOLOpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/BBFF83183E1311F1A75FAD3AAF833773.roa sbgp-ipAddrBlock: critical IPv4: 43.228.232.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:67:93:5b:7b:d1:51:f0:05:21:85:64:4d:b1:36:b6:95:f0: a3:bd:24:33:e5:9a:43:60:d4:64:e5:87:99:33:a2:05:69:8c: a8:87:91:ff:74:26:87:ab:7a:94:99:b8:bd:f4:95:aa:7c:b7: 0e:22:26:6d:8e:92:3e:5b:9e:17:b3:74:10:b9:b2:4d:21:9c: 42:b1:71:ab:7f:cd:b4:4e:b0:45:59:22:72:80:98:a5:c9:72: 4a:6e:d8:5b:28:8b:6e:d1:f4:5d:ad:05:da:38:ed:21:e9:24: c9:c8:96:36:3e:e2:f1:3f:2b:36:46:47:60:12:41:48:40:dd: 0a:93:01:0f:e1:84:0b:e2:0d:ab:f3:e0:27:e8:80:2e:65:97: b1:05:a6:b0:ed:23:c5:52:fc:59:94:a5:5e:68:9c:a6:d8:f4: b1:e6:95:9c:da:c5:32:34:63:9c:dd:78:d3:1e:9a:84:f7:c5: 66:a5:7d:6c:5e:cb:d8:82:e5:78:2d:94:40:a5:4f:7d:22:d3: 56:b5:b5:f7:51:7a:b3:b3:54:f4:a7:f6:a3:da:32:d8:38:36: e2:65:02:f8:df:b8:14:69:da:d7:5e:87:b8:d1:4d:07:3b:1f: 5d:3b:9d:07:31:17:b7:d2:be:31:fa:37:3d:af:2c:70:4d:98: 7b:70:9d:79 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NTZDRDExMC8GA1UEBRMoNjI5NjE2NUMzNkRGOTYwNTY2QjFFRDM1MEVBN0RFN0Yz MzhCM0E5OTAeFw0yNjA0MjIwNjIzMTBaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZTg2OTRlLThhYTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDNsv0jnF0/JODF3hy8whFFguYJPArhmv7oH0VS5CBXo93sgWPR5+QnRUflNeP fRDTuBXOMBS/DehTLiSzgjtRdXy3biYTYpHnn4udPuhFew/7fm1elOgT8S1qeGia 8y3y9rGxmVQWGi0MlQVmy9XW1SlzD7dqZfNHAmyyTz/xLSdf+CN7yu5qOrQESknx E+Ap13w4MhtPWw9XQ5crEHbI1Sty8Ir1W/CPCiiMKS41BBnm1ik1AjxkbKky7fzA XD0vXWobKBT+cm1WBvstFV5iFwExeezPEvXM8fFT+mvSI9QLvfL2q98rH1xOMjPB 3NHO5+mj5FM7Phnzvq47479VAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUnEzmY7op pKXwGnmO0/nZT/eVVNMwHwYDVR0jBBgwFoAUYpYWXDbflgVmse01DqfefzOLOpkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1NkNEL0FDNEE4ODQwM0Uw RjExRjFBQTE1OEQ1NkFBODMzNzczL1lwWVdYRGJmbGdWbXNlMDFEcWZlZnpPTE9w ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWXBZV1hEYmZsZ1Ztc2UwMURxZmVmek9MT3BrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTZDRC9BQzRBODg0MDNFMEYxMUYxQUExNThENTZBQTgzMzc3My9CQkZGODMxODNF MTMxMUYxQTc1RkFEM0FBRjgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAEr5OgwDQYJKoZIhvcNAQELBQADggEBAApnk1t70VHwBSGFZE2xNraV 8KO9JDPlmkNg1GTlh5kzogVpjKiHkf90JoerepSZuL30lap8tw4iJm2Okj5bnhez dBC5sk0hnEKxcat/zbROsEVZInKAmKXJckpu2Fsoi27R9F2tBdo47SHpJMnIljY+ 4vE/KzZGR2ASQUhA3QqTAQ/hhAviDavz4CfogC5ll7EFprDtI8VS/FmUpV5onKbY 9LHmlZzaxTI0Y5zdeNMemoT3xWalfWxey9iC5XgtlEClT30i01a1tfdRerOzVPSn 9qPaMtg4NuJlAvjfuBRp2tdeh7jRTQc7H107nQcxF7fSvjH6Nz2vLHBNmHtwnXk= -----END CERTIFICATE-----Generated at Wed May 13 09:17:18 2026 by rpki-client