$ rpki-client -vvf rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/DAF4B31C983E11ECA0050128C4F9AE02.roa File: DAF4B31C983E11ECA0050128C4F9AE02.roa (raw, json) Hash identifier: MYKVh0eWzR2V3iXTSn4h6WjjCDRp1L/sgZ79mBnbQVk= Subject key identifier: 90:BC:42:16:72:06:92:FA:28:0F:59:3D:FE:3F:09:D4:C5:85:3A:58 Certificate issuer: /CN=A917C44C/serialNumber=18D24169B0254EA7F29943C505E2B5931AFAB926 Certificate serial: 0442 Authority key identifier: 18:D2:41:69:B0:25:4E:A7:F2:99:43:C5:05:E2:B5:93:1A:FA:B9:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNJBabAlTqfymUPFBeK1kxr6uSY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/DAF4B31C983E11ECA0050128C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:41:56 +0000 ROA not before: Thu 05 Jun 2025 01:06:20 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132268 IP address blocks: 43.243.58.0/23 maxlen: 23 45.253.124.0/22 maxlen: 22 103.9.106.0/24 maxlen: 24 103.242.38.0/23 maxlen: 23 103.242.48.0/24 maxlen: 24 2401:4340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/GNJBabAlTqfymUPFBeK1kxr6uSY.crl rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/GNJBabAlTqfymUPFBeK1kxr6uSY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNJBabAlTqfymUPFBeK1kxr6uSY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1090 (0x442) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C44C, serialNumber=18D24169B0254EA7F29943C505E2B5931AFAB926 Validity Not Before: Jun 5 01:06:20 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a5a1b3-9a56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ef:57:58:96:0d:15:0f:8a:57:27:c0:92:4f: 46:39:66:5b:55:63:6d:98:45:8a:52:2d:e6:46:b0: b0:59:27:f2:4c:75:57:59:8e:04:4e:3a:bb:b4:d8: d1:8b:a0:7a:c2:3e:7b:b7:e6:bf:e2:65:32:c0:bf: 8a:24:ce:b6:3f:90:dc:a5:75:88:b6:b5:4c:18:c8: d7:a9:0d:1a:1f:55:e3:70:81:4b:cb:34:1c:2b:7a: b6:b2:e7:2c:be:43:67:cb:9d:30:a9:80:6d:ff:ea: a1:9e:5d:d6:a1:91:8b:fa:ee:a0:55:f7:d4:08:a7: 34:34:03:18:12:43:1d:11:34:d3:59:b5:c7:71:1d: d8:40:0f:1a:3a:15:c5:f5:f8:c2:0c:03:f5:83:7f: a7:4c:49:fb:d3:dc:4c:16:cf:fe:34:e5:8a:44:91: 97:24:7d:44:75:f8:4f:18:2b:96:ba:dd:96:fb:98: 5f:88:c2:68:47:a3:71:6f:44:03:3e:53:9a:8e:20: c7:58:c2:8f:1b:a9:f7:3d:32:64:55:e0:84:10:9c: d2:5d:d7:9d:d0:ed:22:ba:a4:4b:9c:6d:a0:8b:83: c8:a0:81:33:40:0b:a8:a1:b1:d2:43:e0:87:6b:52: fb:5a:eb:c7:da:02:16:f1:2d:c7:cb:e2:ac:32:bc: 7d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:BC:42:16:72:06:92:FA:28:0F:59:3D:FE:3F:09:D4:C5:85:3A:58 X509v3 Authority Key Identifier: keyid:18:D2:41:69:B0:25:4E:A7:F2:99:43:C5:05:E2:B5:93:1A:FA:B9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/GNJBabAlTqfymUPFBeK1kxr6uSY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNJBabAlTqfymUPFBeK1kxr6uSY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/DAF4B31C983E11ECA0050128C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.58.0/23 45.253.124.0/22 103.9.106.0/24 103.242.38.0/23 103.242.48.0/24 IPv6: 2401:4340::/32 Signature Algorithm: sha256WithRSAEncryption b4:2d:db:6e:c3:40:b5:f5:e3:c8:01:58:31:ca:df:30:9f:91: 14:e6:55:7f:7a:ab:13:76:cf:40:ef:b3:05:da:21:44:94:50: 22:b9:b8:6d:64:22:fd:dd:40:03:0c:19:80:21:7e:89:fe:e9: 28:32:06:eb:eb:2d:01:5e:48:4a:ad:a0:d1:57:7e:7b:74:8d: be:59:40:6f:11:09:a7:14:4e:19:20:76:d4:0b:65:42:9d:77: f3:d5:12:36:cf:8b:1e:1c:56:c6:da:64:c4:3f:7f:58:db:a3: 7b:de:27:19:0c:95:95:f4:06:09:3d:dc:0d:f7:ea:e7:9c:8d: be:30:77:25:c1:64:84:5b:81:37:19:b0:8e:bd:14:7d:61:ad: ed:b0:6e:52:5f:49:b1:34:df:ff:c9:dc:67:35:21:d1:55:a9: fd:92:74:bd:32:7b:13:d6:65:85:ce:66:eb:73:31:a7:66:24: 00:be:55:4c:08:a5:04:c7:ca:57:05:c7:72:e7:7b:44:a8:56: c7:12:53:59:5d:9d:8b:32:ea:88:82:4a:6a:ea:61:f6:ff:8e: f7:5c:36:e0:0c:09:01:5c:7d:ae:fb:ae:5e:66:84:25:88:fd: f4:2d:8d:19:02:94:ba:67:35:14:ba:39:ff:a0:e7:5f:20:4f: 44:29:b6:26 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICBEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0NEMxMTAvBgNVBAUTKDE4RDI0MTY5QjAyNTRFQTdGMjk5NDNDNTA1RTJCNTkz MUFGQUI5MjYwHhcNMjUwNjA1MDEwNjIwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTFiMy05YTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwe9XWJYNFQ+KVyfAkk9GOWZbVWNtmEWKUi3mRrCwWSfyTHVXWY4ETjq7tNjR i6B6wj57t+a/4mUywL+KJM62P5DcpXWItrVMGMjXqQ0aH1XjcIFLyzQcK3q2sucs vkNny50wqYBt/+qhnl3WoZGL+u6gVffUCKc0NAMYEkMdETTTWbXHcR3YQA8aOhXF 9fjCDAP1g3+nTEn709xMFs/+NOWKRJGXJH1EdfhPGCuWut2W+5hfiMJoR6Nxb0QD PlOajiDHWMKPG6n3PTJkVeCEEJzSXded0O0iuqRLnG2gi4PIoIEzQAuoobHSQ+CH a1L7WuvH2gIW8S3Hy+KsMrx9fwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFJC8QhZy BpL6KA9ZPf4/CdTFhTpYMB8GA1UdIwQYMBaAFBjSQWmwJU6n8plDxQXitZMa+rkm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQ0Qy80QjVCMjlBQTk0 NTgxMUVDOTkwNTdBM0FDNEY5QUUwMi9HTkpCYWJBbFRxZnltVVBGQmVLMWt4cjZ1 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dOSkJhYkFsVHFmeW1VUEZCZUsxa3hyNnVTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0NEMvNEI1QjI5QUE5NDU4MTFFQzk5MDU3QTNBQzRGOUFFMDIvREFGNEIzMUM5 ODNFMTFFQ0EwMDUwMTI4QzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQBK/M6AwQCLf18AwQAZwlqAwQBZ/ImAwQAZ/IwMA0EAgACMAcDBQAk AUNAMA0GCSqGSIb3DQEBCwUAA4IBAQC0Ldtuw0C19ePIAVgxyt8wn5EU5lV/eqsT ds9A77MF2iFElFAiubhtZCL93UADDBmAIX6J/ukoMgbr6y0BXkhKraDRV357dI2+ WUBvEQmnFE4ZIHbUC2VCnXfz1RI2z4seHFbG2mTEP39Y26N73icZDJWV9AYJPdwN 9+rnnI2+MHclwWSEW4E3GbCOvRR9Ya3tsG5SX0mxNN//ydxnNSHRVan9knS9MnsT 1mWFzmbrczGnZiQAvlVMCKUEx8pXBcdy53tEqFbHElNZXZ2LMuqIgkpq6mH2/473 XDbgDAkBXH2u+65eZoQliP30LY0ZApS6ZzUUujn/oOdfIE9EKbYm -----END CERTIFICATE-----Generated at Sat Mar 28 12:07:38 2026 by rpki-client