$ rpki-client -vvf rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/C1D49C12AEDF11EE96155C68C4F9AE02.roa File: C1D49C12AEDF11EE96155C68C4F9AE02.roa (raw, json) Hash identifier: oWL84TyZ/4qr1arE/Q8w/Mr6FtdTOaST7Iq5FUjAcrI= Subject key identifier: 3E:73:3C:85:C7:0B:CC:0E:EA:86:18:D9:0E:63:B7:9E:82:E3:7D:91 Certificate issuer: /CN=A9185413/serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Certificate serial: 01BC Authority key identifier: 0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/C1D49C12AEDF11EE96155C68C4F9AE02.roa Signing time: Thu 23 Apr 2026 04:37:27 +0000 ROA not before: Thu 23 Apr 2026 04:37:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 132787 IP address blocks: 43.242.244.0/24 maxlen: 24 43.242.245.0/24 maxlen: 24 43.242.246.0/24 maxlen: 24 43.242.247.0/24 maxlen: 24 103.24.172.0/24 maxlen: 24 103.24.173.0/24 maxlen: 24 103.24.174.0/24 maxlen: 24 103.24.175.0/24 maxlen: 24 2402:20a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 03:54:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185413, serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Validity Not Before: Apr 23 04:37:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69e9a207-bd9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4f:44:e6:41:89:96:2e:d7:7f:9e:d8:c5:d3: 43:2c:03:f3:c1:ad:a4:88:0d:fc:16:4c:69:94:36: 62:49:8c:d3:fc:e4:4b:03:e1:e1:9d:e1:32:74:80: 77:8c:2d:e7:0d:7c:48:10:58:36:72:24:47:33:46: 96:3a:75:31:cc:0d:2d:bb:71:55:f4:42:21:98:7b: 8d:6b:cf:ce:18:c8:ab:69:fa:ac:83:8e:d5:7c:eb: ca:f1:b1:c9:19:9d:37:59:81:86:51:1f:35:40:e7: 0a:f9:1e:8c:68:f2:b0:d4:f0:52:5b:57:9a:61:86: 56:5b:f6:2f:31:cf:4e:9d:01:2c:3d:67:e1:fc:c5: 66:8b:fd:49:95:16:ab:cd:d8:7f:f4:2c:6e:3e:6c: 27:b9:ad:b1:6a:fb:8d:82:3f:66:f0:95:af:f8:e5: 5f:47:48:2e:82:ac:df:47:59:65:71:e5:a0:ba:d7: 01:38:23:7a:ef:d0:92:bf:45:61:8f:54:bb:51:ed: d3:65:b6:42:17:54:8b:5f:02:92:b1:c5:ee:90:08: 3b:f4:e8:f3:2a:e4:36:5a:01:6e:14:2b:46:d9:08: ec:4b:e7:8a:9c:81:69:23:1a:29:88:93:9d:eb:6e: f4:93:2e:ea:b8:72:b0:8c:b0:68:49:42:c9:0b:4b: a6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:73:3C:85:C7:0B:CC:0E:EA:86:18:D9:0E:63:B7:9E:82:E3:7D:91 X509v3 Authority Key Identifier: keyid:0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/C1D49C12AEDF11EE96155C68C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.242.244.0/22 103.24.172.0/22 IPv6: 2402:20a0::/32 Signature Algorithm: sha256WithRSAEncryption 18:a9:f6:3f:eb:20:8e:0b:a2:b1:ea:9a:c6:e4:a8:4a:24:28: b7:5a:4c:43:a8:43:0f:46:a7:41:cc:70:01:d1:1f:4d:99:3e: 39:8a:1a:0a:e0:9f:95:57:06:c9:49:6d:e1:29:7e:b8:69:7d: 6c:8b:30:08:9b:ac:55:37:32:5a:0d:45:a8:a9:01:09:f2:02: fc:72:42:f3:bd:3e:ab:95:8e:82:bb:9c:a4:1e:3d:f3:48:9c: ea:92:ba:10:9c:87:e2:70:64:cc:ce:9f:e9:2d:5c:b2:ec:4d: 58:81:19:d7:d9:d7:7a:1d:5d:df:8c:9c:67:6d:e1:85:60:aa: 25:c0:fc:a4:bf:0c:ac:ba:b0:13:74:27:88:6f:e5:9c:6c:6d: 71:ea:7a:93:56:db:59:70:eb:33:60:f2:ec:64:3e:68:4f:63: 42:9a:ac:71:a1:10:0a:8d:e5:85:1a:80:91:fb:7e:ce:31:d1: b8:fd:ca:2d:6e:a5:02:f0:ff:10:d5:8a:99:7c:c6:cb:79:1d: 3a:18:fb:f1:4d:c2:fd:53:85:d9:c8:c6:66:7b:e1:21:63:bf: 4b:84:14:9a:50:78:38:5d:60:39:0b:74:ea:8e:d7:c8:8b:55: 25:a1:e8:44:9d:30:2d:6f:a9:fd:7e:3e:46:b7:b2:f9:7d:96: bd:1b:e7:41 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0MTMxMTAvBgNVBAUTKDBGOTlCMUZFQ0ZBNTcwMDRGNjQzRDgyQkY1MTFDREQ0 NzQ3ODZEQTAwHhcNMjYwNDIzMDQzNzI3WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU5YTIwNy1iZDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyk9E5kGJli7Xf57YxdNDLAPzwa2kiA38FkxplDZiSYzT/ORLA+HhneEydIB3 jC3nDXxIEFg2ciRHM0aWOnUxzA0tu3FV9EIhmHuNa8/OGMirafqsg47VfOvK8bHJ GZ03WYGGUR81QOcK+R6MaPKw1PBSW1eaYYZWW/YvMc9OnQEsPWfh/MVmi/1JlRar zdh/9CxuPmwnua2xavuNgj9m8JWv+OVfR0gugqzfR1llceWgutcBOCN679CSv0Vh j1S7Ue3TZbZCF1SLXwKSscXukAg79OjzKuQ2WgFuFCtG2QjsS+eKnIFpIxopiJOd 6270ky7quHKwjLBoSULJC0umywIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFD5zPIXH C8wO6oYY2Q5jt56C432RMB8GA1UdIwQYMBaAFA+Zsf7PpXAE9kPYK/URzdR0eG2g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQxMy83NTlBRDI0Q0FC OUUxMUVFOTYzRDMxN0RDNEY5QUUwMi9ENW14X3MtbGNBVDJROWdyOVJITjFIUjRi YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1bXhfcy1sY0FUMlE5Z3I5UkhOMUhSNGJhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU0MTMvNzU5QUQyNENBQjlFMTFFRTk2M0QzMTdEQzRGOUFFMDIvQzFENDlDMTJB RURGMTFFRTk2MTU1QzY4QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCK/L0AwQCZxisMA0EAgACMAcDBQAkAiCgMA0GCSqGSIb3DQEBCwUA A4IBAQAYqfY/6yCOC6Kx6prG5KhKJCi3WkxDqEMPRqdBzHAB0R9NmT45ihoK4J+V VwbJSW3hKX64aX1sizAIm6xVNzJaDUWoqQEJ8gL8ckLzvT6rlY6Cu5ykHj3zSJzq kroQnIficGTMzp/pLVyy7E1YgRnX2dd6HV3fjJxnbeGFYKolwPykvwysurATdCeI b+WcbG1x6nqTVttZcOszYPLsZD5oT2NCmqxxoRAKjeWFGoCR+37OMdG4/cotbqUC 8P8Q1YqZfMbLeR06GPvxTcL9U4XZyMZme+EhY79LhBSaUHg4XWA5C3TqjtfIi1Ul oehEnTAtb6n9fj5Gt7L5fZa9G+dB -----END CERTIFICATE-----Generated at Wed May 13 02:22:01 2026 by rpki-client