$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/6D66CE8017BA11F094861F7DC4F9AE02.roa File: 6D66CE8017BA11F094861F7DC4F9AE02.roa (raw, json) Hash identifier: fhMnOOcqslyy9NxnX7zgTe3J3WzePSNlL2bH73cXkGs= Subject key identifier: EF:F4:5D:CE:40:1E:4E:4F:45:B8:08:B5:39:55:B8:80:98:D7:ED:20 Certificate issuer: /CN=A9147CBE/serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4 Certificate serial: D9 Authority key identifier: 9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/6D66CE8017BA11F094861F7DC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:28:17 +0000 ROA not before: Wed 07 Jan 2026 05:24:29 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 131274 IP address blocks: 43.249.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CBE, serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4 Validity Not Before: Jan 7 05:24:29 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a58261-7dc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3e:1a:cc:e7:f3:5f:72:f9:15:80:89:49:d3: 17:2f:af:e6:7c:2e:c5:c6:f8:e4:ab:0a:f1:d5:19: 43:8d:e5:ef:f3:57:09:6a:f5:a3:6b:16:15:a9:04: a9:40:6e:ff:6a:30:a2:ba:aa:e5:33:6f:ae:72:a3: 79:77:90:41:fa:ab:64:af:87:f1:ac:6b:b0:13:74: fb:b5:01:b7:fc:da:bf:78:5f:28:5d:ba:66:8d:a9: 58:4e:11:2b:f2:50:29:47:64:b8:c8:a1:45:8a:70: b7:dc:24:1a:4f:2c:27:41:fd:11:ce:31:e1:72:ce: 0a:70:94:15:b4:37:82:76:23:da:1f:a1:f0:cd:26: 1b:80:8d:d5:2d:02:69:50:03:14:f7:04:d0:67:92: 01:27:87:22:c1:e5:ea:21:8b:36:e2:f6:62:4e:86: b8:59:a8:2c:d4:ae:2f:54:d6:12:89:28:7a:2a:f8: 49:c4:7a:fe:12:53:61:91:82:2e:7f:04:7c:54:16: 9e:0c:1e:0a:c1:34:ee:de:0a:83:84:96:82:7d:65: 11:09:e4:be:e2:10:55:df:86:51:ac:a9:ba:73:ec: e9:45:86:32:92:cf:bd:36:3c:ff:0f:c5:46:50:ee: 03:89:28:b7:63:6e:fc:16:67:91:23:f6:d0:ea:63: 59:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F4:5D:CE:40:1E:4E:4F:45:B8:08:B5:39:55:B8:80:98:D7:ED:20 X509v3 Authority Key Identifier: keyid:9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/6D66CE8017BA11F094861F7DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.249.99.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:f2:7f:f3:dc:1a:82:fa:1d:8a:52:d8:9e:59:21:dc:5f:e9: 2c:f3:6a:18:cc:ad:cb:54:bb:ab:c2:01:22:1a:bf:02:72:7d: 62:c1:13:56:b5:e6:d2:db:bb:7f:0a:41:d7:24:95:5b:14:8d: 0d:74:87:0c:81:09:f7:89:3c:ec:f4:89:35:04:76:63:23:15: 5d:98:99:e9:3c:e3:08:9f:0f:ff:e0:f9:d2:62:6a:a5:7c:b2: 45:2e:75:18:51:b3:c6:8f:a2:b5:8d:59:bb:4c:7a:d4:e2:51: 2b:0b:82:fa:55:c4:e4:1d:20:bd:f6:66:71:a9:5e:03:f5:23: 72:88:4b:0f:a7:81:58:d1:6b:53:7a:a8:96:11:d3:4a:b6:48: c6:27:03:aa:b6:a7:4e:0b:de:47:75:04:45:58:31:42:81:00: 61:4e:ba:26:01:8c:c7:81:a2:f1:c0:e0:0a:34:1d:7e:1c:e2: 7f:0c:2b:19:37:92:0a:3b:d6:d9:df:41:ec:b4:c0:db:88:b1: ed:4c:65:85:c6:cc:df:0a:d3:bc:3b:02:d9:22:96:cc:59:be: 2f:d3:5b:ac:08:9c:a2:57:39:3c:20:c7:1b:c1:3e:e8:6c:3b: c5:70:c4:44:62:0e:12:f6:fd:68:c2:86:2d:82:48:b7:72:cc: 73:27:57:a9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDQkUxMTAvBgNVBAUTKDlBMTYyNEY0NjA4MkY1NEFDNTc3ODg1OUUyMjZCRDNC QTY5MDIzRjQwHhcNMjYwMTA3MDUyNDI5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODI2MS03ZGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0j4azOfzX3L5FYCJSdMXL6/mfC7Fxvjkqwrx1RlDjeXv81cJavWjaxYVqQSp QG7/ajCiuqrlM2+ucqN5d5BB+qtkr4fxrGuwE3T7tQG3/Nq/eF8oXbpmjalYThEr 8lApR2S4yKFFinC33CQaTywnQf0RzjHhcs4KcJQVtDeCdiPaH6HwzSYbgI3VLQJp UAMU9wTQZ5IBJ4ciweXqIYs24vZiToa4Wags1K4vVNYSiSh6KvhJxHr+ElNhkYIu fwR8VBaeDB4KwTTu3gqDhJaCfWURCeS+4hBV34ZRrKm6c+zpRYYyks+9Njz/D8VG UO4DiSi3Y278FmeRI/bQ6mNZ/wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFO/0Xc5A Hk5PRbgItTlVuICY1+0gMB8GA1UdIwQYMBaAFJoWJPRggvVKxXeIWeImvTumkCP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0NCRS84M0JBODdBRUQ3 QzIxMUVGODE5MERBNUNDNEY5QUUwMi9taFlrOUdDQzlVckZkNGhaNGlhOU82YVFJ X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21oWWs5R0NDOVVyRmQ0aFo0aWE5TzZhUUlfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDdDQkUvODNCQTg3QUVEN0MyMTFFRjgxOTBEQTVDQzRGOUFFMDIvNkQ2NkNFODAx N0JBMTFGMDk0ODYxRjdEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK/ljMA0GCSqGSIb3DQEBCwUAA4IBAQBv8n/z3BqC+h2KUtieWSHc X+ks82oYzK3LVLurwgEiGr8Ccn1iwRNWtebS27t/CkHXJJVbFI0NdIcMgQn3iTzs 9Ik1BHZjIxVdmJnpPOMInw//4PnSYmqlfLJFLnUYUbPGj6K1jVm7THrU4lErC4L6 VcTkHSC99mZxqV4D9SNyiEsPp4FY0WtTeqiWEdNKtkjGJwOqtqdOC95HdQRFWDFC gQBhTromAYzHgaLxwOAKNB1+HOJ/DCsZN5IKO9bZ30HstMDbiLHtTGWFxszfCtO8 OwLZIpbMWb4v01usCJyiVzk8IMcbwT7obDvFcMREYg4S9v1owoYtgki3csxzJ1ep -----END CERTIFICATE-----Generated at Thu Mar 26 07:13:19 2026 by rpki-client