$ rpki-client -vvf rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/B0A47CAE7DA711EFB7190E26C4F9AE02.roa File: B0A47CAE7DA711EFB7190E26C4F9AE02.roa (raw, json) Hash identifier: 2RDAppFJUdg/Iy2Cf9QB/kesdW68o49m1fLor35OKAk= Subject key identifier: 83:F3:58:0B:EF:F5:39:FB:C1:6B:FB:0D:88:A5:4B:A8:1C:55:77:72 Certificate issuer: /CN=A91799A0/serialNumber=37E03524B5847DBEAD00FE378C46ABD0CA7045F8 Certificate serial: 0446 Authority key identifier: 37:E0:35:24:B5:84:7D:BE:AD:00:FE:37:8C:46:AB:D0:CA:70:45:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/B0A47CAE7DA711EFB7190E26C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:01:54 +0000 ROA not before: Tue 23 Sep 2025 01:18:56 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133794 IP address blocks: 43.251.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.crl rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:56:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1094 (0x446) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91799A0, serialNumber=37E03524B5847DBEAD00FE378C46ABD0CA7045F8 Validity Not Before: Sep 23 01:18:56 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58a42-742e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:4c:30:79:14:32:d3:19:5f:49:59:7a:0c:d0: 14:79:70:81:ba:e1:e0:70:7d:27:62:70:9d:60:0e: d0:09:37:bd:9d:a6:e0:c5:4e:b0:9f:ae:46:8c:a0: 5e:4e:2d:b7:39:ad:ad:79:0d:19:00:77:0b:aa:ff: 6f:95:79:bb:e3:ee:4e:2e:d0:45:56:e4:a2:3b:fb: e5:e3:67:2f:9e:01:7a:68:df:e1:55:16:26:0d:d6: ed:6a:2a:fc:e4:98:c9:35:59:c7:d8:99:64:f6:3a: 3d:4b:1b:74:05:91:6a:b0:21:2e:93:07:47:01:b9: dd:3a:92:8f:1e:04:41:96:6d:b4:f6:d4:21:9c:89: 75:61:9a:6c:93:8b:62:6e:66:50:02:b7:5a:8b:d4: 39:67:e3:70:69:50:5b:ef:c9:c7:9e:cf:37:d8:55: ab:1d:ba:87:b8:e5:4e:61:41:67:c0:8d:87:6c:a2: dc:31:00:86:fe:25:1c:07:fc:bd:98:f9:93:fd:4a: 02:29:ac:36:65:25:26:84:df:06:0b:92:b6:44:30: ce:35:6f:31:2d:67:8b:25:c6:7a:6f:4d:cf:0d:e2: 4e:59:d4:e2:77:e1:67:6c:33:91:f8:27:89:a8:a1: 91:5f:53:ea:97:0b:6d:96:08:c5:da:91:f9:76:62: 99:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:F3:58:0B:EF:F5:39:FB:C1:6B:FB:0D:88:A5:4B:A8:1C:55:77:72 X509v3 Authority Key Identifier: keyid:37:E0:35:24:B5:84:7D:BE:AD:00:FE:37:8C:46:AB:D0:CA:70:45:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/B0A47CAE7DA711EFB7190E26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.251.240.0/22 Signature Algorithm: sha256WithRSAEncryption af:12:70:37:b3:a6:8d:05:18:ab:32:a3:d8:da:07:ff:de:1d: 3d:48:c4:82:4f:31:d4:f1:1d:a2:55:8a:33:88:65:fb:f5:f3: fd:98:19:f1:89:08:57:5f:8c:d1:2b:1b:94:9d:af:b9:42:26: 2b:07:20:0c:e9:19:cf:b9:1c:ab:4f:56:e5:56:cf:51:6a:87: 6b:4c:58:48:39:76:44:96:96:c8:c8:36:93:3d:6d:4d:54:d6: 56:ec:68:aa:c7:68:e5:3a:f9:29:6b:e0:f6:f6:be:33:4c:66: 29:b8:49:f7:c0:3f:d7:f1:ee:d6:01:b0:8a:fc:07:e1:84:ba: 7b:e2:23:08:93:3b:7e:f7:e0:c9:84:2f:65:b1:f5:c8:0a:25: 08:01:54:4d:35:2c:c3:84:2b:6e:6c:20:a2:b8:e0:cb:47:85: 2f:c9:c6:d7:0b:96:47:66:c9:56:5d:60:85:40:7f:88:5e:e3: 02:81:63:b2:c3:b6:34:7c:07:56:ef:2e:0b:68:ea:4f:38:3e: 6c:61:ae:cc:71:ba:0a:db:55:56:ed:d8:2d:4f:59:67:41:e3: 1f:49:65:43:a8:fe:0d:f6:50:59:dd:31:ae:7d:11:64:01:36: e2:30:70:1a:79:78:be:16:78:b8:66:e7:07:a4:8e:f0:aa:6b: 72:ff:a7:96 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5QTAxMTAvBgNVBAUTKDM3RTAzNTI0QjU4NDdEQkVBRDAwRkUzNzhDNDZBQkQw Q0E3MDQ1RjgwHhcNMjUwOTIzMDExODU2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGE0Mi03NDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkwweRQy0xlfSVl6DNAUeXCBuuHgcH0nYnCdYA7QCTe9nabgxU6wn65GjKBe Ti23Oa2teQ0ZAHcLqv9vlXm74+5OLtBFVuSiO/vl42cvngF6aN/hVRYmDdbtair8 5JjJNVnH2Jlk9jo9Sxt0BZFqsCEukwdHAbndOpKPHgRBlm209tQhnIl1YZpsk4ti bmZQArdai9Q5Z+NwaVBb78nHns832FWrHbqHuOVOYUFnwI2HbKLcMQCG/iUcB/y9 mPmT/UoCKaw2ZSUmhN8GC5K2RDDONW8xLWeLJcZ6b03PDeJOWdTid+FnbDOR+CeJ qKGRX1PqlwttlgjF2pH5dmKZjwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIPzWAvv 9Tn7wWv7DYilS6gcVXdyMB8GA1UdIwQYMBaAFDfgNSS1hH2+rQD+N4xGq9DKcEX4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTlBMC80MEVEQTExRTlB RTgxMUVDOTc0QjQ5MUNDNEY5QUUwMi9OLUExSkxXRWZiNnRBUDQzakVhcjBNcHdS ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04tQTFKTFdFZmI2dEFQNDNqRWFyME1wd1JmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzk5QTAvNDBFREExMUU5QUU4MTFFQzk3NEI0OTFDQzRGOUFFMDIvQjBBNDdDQUU3 REE3MTFFRkI3MTkwRTI2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/vwMA0GCSqGSIb3DQEBCwUAA4IBAQCvEnA3s6aNBRirMqPY2gf/ 3h09SMSCTzHU8R2iVYoziGX79fP9mBnxiQhXX4zRKxuUna+5QiYrByAM6RnPuRyr T1blVs9RaodrTFhIOXZElpbIyDaTPW1NVNZW7Giqx2jlOvkpa+D29r4zTGYpuEn3 wD/X8e7WAbCK/AfhhLp74iMIkzt+9+DJhC9lsfXICiUIAVRNNSzDhCtubCCiuODL R4UvycbXC5ZHZslWXWCFQH+IXuMCgWOyw7Y0fAdW7y4LaOpPOD5sYa7McboK21VW 7dgtT1lnQeMfSWVDqP4N9lBZ3TGufRFkATbiMHAaeXi+Fni4ZucHpI7wqmty/6eW -----END CERTIFICATE-----Generated at Fri Mar 27 02:03:06 2026 by rpki-client