$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E7B/511B3B1AD99A11F08D4938B065D3641D/B1921BE21D1C11F19ECA08BE103D8C67.roa File: B1921BE21D1C11F19ECA08BE103D8C67.roa (raw, json) Hash identifier: WobrnjAcJid+qQ3zmSqPJbNrzTm76HPt3Dd40mnXzdk= Subject key identifier: 78:6F:5A:FB:52:8C:30:7E:F4:4D:7A:CF:6B:10:9E:46:81:5F:48:00 Certificate issuer: /CN=A9158E7B/serialNumber=BA394275C4FF8F8EF234749A36F2A1913927955B Certificate serial: 35 Authority key identifier: BA:39:42:75:C4:FF:8F:8E:F2:34:74:9A:36:F2:A1:91:39:27:95:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujlCdcT_j47yNHSaNvKhkTknlVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E7B/511B3B1AD99A11F08D4938B065D3641D/B1921BE21D1C11F19ECA08BE103D8C67.roa Signing time: Wed 11 Mar 2026 07:34:10 +0000 ROA not before: Wed 11 Mar 2026 07:34:10 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 13335 IP address blocks: 43.243.108.0/22 maxlen: 24 103.231.28.0/22 maxlen: 24 2405:fc40::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E7B/511B3B1AD99A11F08D4938B065D3641D/ujlCdcT_j47yNHSaNvKhkTknlVs.crl rsync://rpki.apnic.net/member_repository/A9158E7B/511B3B1AD99A11F08D4938B065D3641D/ujlCdcT_j47yNHSaNvKhkTknlVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujlCdcT_j47yNHSaNvKhkTknlVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E7B, serialNumber=BA394275C4FF8F8EF234749A36F2A1913927955B Validity Not Before: Mar 11 07:34:10 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69b11af2-7ae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d3:2c:19:d1:db:53:4d:5e:37:88:a7:58:2a: 7a:85:41:44:bf:e4:60:ea:56:0f:0b:25:26:44:7a: ed:69:4a:e4:27:6b:2b:22:44:e9:26:c4:b7:4a:6e: db:80:cd:18:39:13:e7:78:3b:73:7b:cd:9b:a4:1c: ee:8e:38:cc:8a:c6:db:80:e8:6b:95:0e:45:9c:a7: eb:9e:23:b5:3a:8c:0e:19:46:57:34:ed:7b:0c:b5: 7d:9c:73:97:85:d0:0d:26:8c:51:bf:27:61:a3:da: e8:06:81:63:af:9f:6a:2e:49:08:d0:f4:29:09:8b: 02:33:87:dd:44:ed:d9:fd:bf:42:03:a6:a3:4a:16: dd:71:30:ba:ed:4d:e4:31:61:97:68:95:4c:a1:4a: 3d:25:bd:96:c6:b9:ee:af:0a:d0:ec:67:bc:6c:aa: 63:94:b3:1d:a4:a1:56:e5:cf:55:18:29:af:50:f4: eb:d9:ce:70:b7:f0:d2:fa:74:d9:b1:b4:47:c2:cf: a6:7d:3e:43:d8:3b:43:a4:60:9f:c3:07:2a:df:46: 83:c9:0e:d4:df:11:48:be:5a:49:56:ea:a9:e6:56: c2:5b:25:a9:7a:bc:ea:ee:9b:98:34:5d:a3:3d:12: 49:e6:6c:b7:de:ad:51:0a:f9:14:4f:ef:7f:38:73: 94:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:6F:5A:FB:52:8C:30:7E:F4:4D:7A:CF:6B:10:9E:46:81:5F:48:00 X509v3 Authority Key Identifier: keyid:BA:39:42:75:C4:FF:8F:8E:F2:34:74:9A:36:F2:A1:91:39:27:95:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E7B/511B3B1AD99A11F08D4938B065D3641D/ujlCdcT_j47yNHSaNvKhkTknlVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujlCdcT_j47yNHSaNvKhkTknlVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E7B/511B3B1AD99A11F08D4938B065D3641D/B1921BE21D1C11F19ECA08BE103D8C67.roa sbgp-ipAddrBlock: critical IPv4: 43.243.108.0/22 103.231.28.0/22 IPv6: 2405:fc40::/32 Signature Algorithm: sha256WithRSAEncryption b0:3d:a7:13:83:ab:9d:9a:44:3b:e3:bd:2a:70:1d:c4:bd:44: 5a:70:6e:10:cc:13:df:a3:37:6d:c9:a0:11:64:e3:7e:2f:ae: a1:87:71:40:4e:d8:2e:25:bd:ee:b5:22:30:ac:47:ee:7d:6b: c0:fd:3d:8a:00:9e:aa:2c:4d:ce:3a:8a:9d:fc:dd:10:f8:ef: a7:22:af:67:32:aa:3d:a8:4d:7a:e4:9e:b2:2d:0b:97:d7:81: 91:be:a4:a7:f5:56:cd:bc:68:fe:fa:0b:1e:7d:c6:2d:aa:5e: 9e:be:2e:52:ce:8a:f8:a4:ff:34:4a:21:18:2d:06:e8:e1:fb: cb:69:04:73:31:a8:29:79:0b:f4:4c:99:71:0a:47:3f:38:25: d8:c4:ac:fa:b7:84:91:48:24:4f:da:02:1d:fa:a6:3c:45:45: 13:52:bc:39:2e:3a:aa:cd:c0:62:e7:57:75:a9:31:e1:0f:75: 4c:4a:db:82:71:4b:16:a3:5a:02:47:5e:65:a8:b6:eb:d3:8e: 34:ce:b5:38:c1:69:54:7e:2c:2a:49:96:0b:57:97:db:41:88: 0a:21:64:70:59:aa:73:46:c0:53:b7:86:74:05:c4:4f:51:b2: 97:51:7b:0b:e2:a9:fa:5a:e4:b9:65:b8:3c:c2:91:02:d7:ae: 42:a7:ae:21 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OEU3QjExMC8GA1UEBRMoQkEzOTQyNzVDNEZGOEY4RUYyMzQ3NDlBMzZGMkExOTEz OTI3OTU1QjAeFw0yNjAzMTEwNzM0MTBaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YjExYWYyLTdhZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC10ywZ0dtTTV43iKdYKnqFQUS/5GDqVg8LJSZEeu1pSuQnaysiROkmxLdKbtuA zRg5E+d4O3N7zZukHO6OOMyKxtuA6GuVDkWcp+ueI7U6jA4ZRlc07XsMtX2cc5eF 0A0mjFG/J2Gj2ugGgWOvn2ouSQjQ9CkJiwIzh91E7dn9v0IDpqNKFt1xMLrtTeQx YZdolUyhSj0lvZbGue6vCtDsZ7xsqmOUsx2koVblz1UYKa9Q9OvZznC38NL6dNmx tEfCz6Z9PkPYO0OkYJ/DByrfRoPJDtTfEUi+WklW6qnmVsJbJal6vOrum5g0XaM9 EknmbLferVEK+RRP7384c5QbAgMBAAGjggJ1MIICcTAdBgNVHQ4EFgQUeG9a+1KM MH70TXrPaxCeRoFfSAAwHwYDVR0jBBgwFoAUujlCdcT/j47yNHSaNvKhkTknlVsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4RTdCLzUxMUIzQjFBRDk5 QTExRjA4RDQ5MzhCMDY1RDM2NDFEL3VqbENkY1RfajQ3eU5IU2FOdktoa1RrbmxW cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdWpsQ2RjVF9qNDd5TkhTYU52S2hrVGtubFZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU3Qi81MTFCM0IxQUQ5OUExMUYwOEQ0OTM4QjA2NUQzNjQxRC9CMTkyMUJFMjFE MUMxMUYxOUVDQTA4QkUxMDNEOEM2Ny5yb2EwNAYIKwYBBQUHAQcBAf8EJTAjMBIE AgABMAwDBAIr82wDBAJn5xwwDQQCAAIwBwMFACQF/EAwDQYJKoZIhvcNAQELBQAD ggEBALA9pxODq52aRDvjvSpwHcS9RFpwbhDME9+jN23JoBFk434vrqGHcUBO2C4l ve61IjCsR+59a8D9PYoAnqosTc46ip383RD476cir2cyqj2oTXrknrItC5fXgZG+ pKf1Vs28aP76Cx59xi2qXp6+LlLOivik/zRKIRgtBujh+8tpBHMxqCl5C/RMmXEK Rz84JdjErPq3hJFIJE/aAh36pjxFRRNSvDkuOqrNwGLnV3WpMeEPdUxK24JxSxaj WgJHXmWotuvTjjTOtTjBaVR+LCpJlgtXl9tBiAohZHBZqnNGwFO3hnQFxE9RspdR ewviqfpa5LlluDzCkQLXrkKnriE= -----END CERTIFICATE-----Generated at Thu Mar 26 04:07:31 2026 by rpki-client