$ rpki-client -vvf rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/43DD36C8184D11F182F41629283D8C67.roa File: 43DD36C8184D11F182F41629283D8C67.roa (raw, json) Hash identifier: DOIAg2BUAvTTiw9cYvjPTnuxYTKi04v2hjJikaEo380= Subject key identifier: 22:1F:2D:78:D2:21:14:6F:12:9E:7A:4E:AE:31:8E:D7:75:1A:99:D4 Certificate issuer: /CN=A916807A/serialNumber=729E2F9C1D87C214735078CFD21C638E07157B5D Certificate serial: 0370 Authority key identifier: 72:9E:2F:9C:1D:87:C2:14:73:50:78:CF:D2:1C:63:8E:07:15:7B:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cp4vnB2HwhRzUHjP0hxjjgcVe10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/43DD36C8184D11F182F41629283D8C67.roa Signing time: Fri 01 May 2026 13:37:43 +0000 ROA not before: Fri 01 May 2026 13:37:43 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 834 IP address blocks: 202.155.80.0/21 maxlen: 24 202.155.92.0/23 maxlen: 24 202.155.104.0/21 maxlen: 24 202.155.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/cp4vnB2HwhRzUHjP0hxjjgcVe10.crl rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/cp4vnB2HwhRzUHjP0hxjjgcVe10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cp4vnB2HwhRzUHjP0hxjjgcVe10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 880 (0x370) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916807A, serialNumber=729E2F9C1D87C214735078CFD21C638E07157B5D Validity Not Before: May 1 13:37:43 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69f4aca7-f42c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ed:66:7f:8e:87:ad:d8:51:e8:57:cd:1a:78: 23:90:fc:b7:fb:7e:2e:4a:8d:81:50:34:57:71:4f: d7:f7:ff:b8:19:e9:74:95:8c:56:f2:68:cc:1a:15: 57:ba:01:38:2f:d2:57:dc:da:b1:50:4c:18:0a:ef: 2a:e8:05:c9:cc:17:b6:8f:fe:46:ce:79:6e:e8:a2: 2f:c9:2f:92:4e:6d:0b:f9:4f:4c:c7:65:5d:cf:35: e7:1c:6d:d6:58:70:c0:e6:5d:c0:aa:c8:48:5b:38: 0a:33:c7:b0:61:46:37:0e:68:6e:01:2c:66:d5:6d: f4:e2:62:e4:98:f3:f1:e7:80:4a:32:c9:62:ac:54: ac:4c:03:35:5f:94:9d:d8:ee:63:eb:ec:92:83:5d: 8c:3d:38:a9:e9:10:c5:8b:05:bb:92:50:a6:70:c2: 61:13:e8:f4:c3:a9:1e:f9:47:61:af:32:34:b1:cd: 94:3f:bf:05:3d:6e:2f:77:e4:9c:cf:a4:17:c4:66: 81:ad:c2:e8:da:6d:69:a9:76:71:cf:37:50:56:5c: 70:96:34:d2:49:00:08:6a:31:1d:c5:56:45:06:9d: 50:db:b0:39:56:24:5c:df:d8:97:a2:4a:b7:31:b9: d8:f8:2d:33:78:49:f4:54:ae:7c:e3:e2:fe:08:25: ca:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:1F:2D:78:D2:21:14:6F:12:9E:7A:4E:AE:31:8E:D7:75:1A:99:D4 X509v3 Authority Key Identifier: keyid:72:9E:2F:9C:1D:87:C2:14:73:50:78:CF:D2:1C:63:8E:07:15:7B:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/cp4vnB2HwhRzUHjP0hxjjgcVe10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cp4vnB2HwhRzUHjP0hxjjgcVe10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/43DD36C8184D11F182F41629283D8C67.roa sbgp-ipAddrBlock: critical IPv4: 202.155.80.0/21 202.155.92.0/23 202.155.104.0/21 202.155.124.0/22 Signature Algorithm: sha256WithRSAEncryption 87:da:82:c3:8a:f9:56:a2:7f:8b:11:35:fd:cb:9f:94:ce:2a: 1c:43:b6:13:17:41:00:6a:58:ee:37:8d:69:0f:c3:f0:6a:d6: 0a:9d:ac:6b:c9:99:88:16:9c:88:1d:63:1c:87:df:fc:f4:d3: 93:f6:bc:bb:a2:5b:11:06:42:a8:75:56:e1:0b:ee:e5:68:2d: 34:94:a8:6a:e4:c6:85:28:ce:0e:16:44:f0:dd:47:e9:ee:20: 67:86:18:f5:07:e1:c4:38:95:fb:5c:f2:55:71:4b:87:2a:d3: 12:d0:b8:34:1c:f0:aa:09:70:2a:27:57:20:78:04:c2:88:1c: 73:3a:07:2e:24:e5:80:59:8c:88:6e:cd:78:36:6c:4c:15:41: c7:cd:71:3d:97:e4:6b:6d:b5:e4:6f:77:7d:f4:80:3a:b2:91: 34:7d:83:ad:fb:00:9c:02:b3:dd:b5:cc:a9:2a:f2:a2:c2:76: 49:04:68:ef:81:d3:39:aa:78:ac:a8:1a:25:28:4f:cd:8c:28: 2c:fe:6d:a9:7f:c0:24:b6:fd:10:59:61:ac:8d:05:e4:3c:c2: 8e:ed:bc:a0:cd:23:b1:1f:cb:20:fa:3d:aa:6e:5c:4e:cf:0a: 30:67:52:de:d9:25:79:b3:3f:d1:5b:27:45:f1:35:c9:7f:4f: 73:eb:a9:c0 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICA3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgwN0ExMTAvBgNVBAUTKDcyOUUyRjlDMUQ4N0MyMTQ3MzUwNzhDRkQyMUM2MzhF MDcxNTdCNUQwHhcNMjYwNTAxMTMzNzQzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY0YWNhNy1mNDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7O1mf46HrdhR6FfNGngjkPy3+34uSo2BUDRXcU/X9/+4Gel0lYxW8mjMGhVX ugE4L9JX3NqxUEwYCu8q6AXJzBe2j/5Gznlu6KIvyS+STm0L+U9Mx2VdzzXnHG3W WHDA5l3AqshIWzgKM8ewYUY3DmhuASxm1W304mLkmPPx54BKMslirFSsTAM1X5Sd 2O5j6+ySg12MPTip6RDFiwW7klCmcMJhE+j0w6ke+UdhrzI0sc2UP78FPW4vd+Sc z6QXxGaBrcLo2m1pqXZxzzdQVlxwljTSSQAIajEdxVZFBp1Q27A5ViRc39iXokq3 MbnY+C0zeEn0VK584+L+CCXKQwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFCIfLXjS IRRvEp56Tq4xjtd1GpnUMB8GA1UdIwQYMBaAFHKeL5wdh8IUc1B4z9IcY44HFXtd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODA3QS8wMjYzQUI0ODNF ODgxMUVEQTYxQTlCMkFDNEY5QUUwMi9jcDR2bkIySHdoUnpVSGpQMGh4ampnY1Zl MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NwNHZuQjJId2hSelVIalAwaHhqamdjVmUxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgwN0EvMDI2M0FCNDgzRTg4MTFFREE2MUE5QjJBQzRGOUFFMDIvNDNERDM2Qzgx ODREMTFGMTgyRjQxNjI5MjgzRDhDNjcucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQDyptQAwQByptcAwQDyptoAwQCypt8MA0GCSqGSIb3DQEBCwUAA4IB AQCH2oLDivlWon+LETX9y5+UziocQ7YTF0EAaljuN41pD8PwatYKnaxryZmIFpyI HWMch9/89NOT9ry7olsRBkKodVbhC+7laC00lKhq5MaFKM4OFkTw3Ufp7iBnhhj1 B+HEOJX7XPJVcUuHKtMS0Lg0HPCqCXAqJ1cgeATCiBxzOgcuJOWAWYyIbs14NmxM FUHHzXE9l+RrbbXkb3d99IA6spE0fYOt+wCcArPdtcypKvKiwnZJBGjvgdM5qnis qBolKE/NjCgs/m2pf8Aktv0QWWGsjQXkPMKO7bygzSOxH8sg+j2qblxOzwowZ1Le 2SV5sz/RWydF8TXJf09z66nA -----END CERTIFICATE-----Generated at Wed May 13 05:00:48 2026 by rpki-client