$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/43487B18BF1811E9A2C00E63C4F9AE02.roa File: 43487B18BF1811E9A2C00E63C4F9AE02.roa (raw, json) Hash identifier: iD/ZZuFi7/RhaL5/ToA8PIzL2/6qCFz6N1JbxCrgnXQ= Subject key identifier: 31:32:EE:BD:9B:5E:87:26:1A:D3:CA:08:6D:6E:F7:91:52:0D:70:5D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2C41 Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/43487B18BF1811E9A2C00E63C4F9AE02.roa Signing time: Tue 28 Apr 2026 16:19:01 +0000 ROA not before: Tue 28 Apr 2026 16:19:01 +0000 ROA not after: Fri 28 Aug 2026 00:00:00 +0000 asID: 45558 IP address blocks: 43.224.43.0/24 maxlen: 24 203.215.60.0/22 maxlen: 22 203.215.60.0/24 maxlen: 24 203.215.61.0/24 maxlen: 24 203.215.62.0/24 maxlen: 24 203.215.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11329 (0x2c41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Apr 28 16:19:01 2026 GMT Not After : Aug 28 00:00:00 2026 GMT Subject: CN=69f0ddf5-0b44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:39:94:52:0a:4a:5b:50:c0:16:51:a5:af:ae: f0:31:ac:e2:84:d8:a7:43:b9:bb:42:46:73:c4:67: bf:9b:15:bd:0d:08:b0:84:8b:68:99:f6:43:01:7c: 7f:8e:d6:19:46:40:ab:e5:7d:b2:2c:8e:ff:8d:ee: b6:9d:c8:ec:81:ed:62:8e:ed:60:7d:91:86:09:83: 44:7a:b4:63:6c:41:3e:64:e1:98:0d:c6:ff:74:dd: aa:1d:0d:62:c2:e6:85:77:a3:94:93:32:e6:51:8a: 83:92:b9:fb:44:b9:2f:58:ea:1c:39:cd:87:02:d7: 0d:ca:61:bd:b9:19:d0:07:e3:2c:4d:4f:39:32:57: 0e:fa:84:51:12:31:a5:c7:db:77:f4:ad:56:dd:97: e6:a1:c0:5f:5a:c7:45:da:5b:bd:f4:3f:c9:e1:7f: 54:b9:d3:b2:09:c9:dc:f2:cf:5f:08:51:be:51:e3: 07:ec:cb:1a:cf:d0:c3:58:43:7d:f6:11:6b:e1:bc: 39:4d:cb:c2:65:35:4e:34:01:7f:a9:6d:8d:0a:4f: be:33:41:f3:4e:8a:2d:aa:d4:c6:f6:dc:32:92:58: 42:2d:ed:47:80:84:ca:3c:76:aa:7d:d6:63:6c:3c: b1:0d:17:35:74:54:e3:65:bf:5b:e4:2e:11:89:d8: 61:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:32:EE:BD:9B:5E:87:26:1A:D3:CA:08:6D:6E:F7:91:52:0D:70:5D X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/43487B18BF1811E9A2C00E63C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.224.43.0/24 203.215.60.0/22 Signature Algorithm: sha256WithRSAEncryption 32:83:d8:d5:e1:4f:a4:26:2b:bb:71:02:1b:64:04:f5:b6:f7: 95:c8:80:f3:df:99:2b:e7:17:09:4f:f0:c1:37:bd:33:12:ae: 05:ca:a9:1a:d4:e8:9c:fc:aa:bf:d3:7b:b6:d1:01:dc:e9:dd: b9:fc:66:91:65:51:d3:0f:63:6d:d7:09:ab:fa:e6:b6:b8:54: bf:f7:14:a2:4c:88:00:6f:f5:1d:92:7b:86:92:c2:94:49:0a: c7:a9:64:87:2d:ca:6c:dc:6b:ed:7c:ad:2a:63:aa:93:3a:23: c3:3c:74:19:a6:d3:ac:07:ff:93:6e:e9:45:e5:a6:2a:3a:d5: 49:a6:59:ef:83:36:a9:b3:d1:70:b0:13:3d:52:57:f4:dd:dc: 88:1e:a1:99:45:97:1a:90:b4:5a:2d:7f:c3:80:23:6a:7c:84: ac:91:9c:9f:b5:c1:e5:2d:06:31:d5:60:45:fa:2c:9a:36:64: 2b:04:c6:b3:05:06:f1:18:d0:de:55:75:8b:ca:ba:70:d8:49: e0:d0:c4:9f:c3:b6:c3:3f:27:cd:d2:d7:a2:ac:b7:d8:39:f2: f6:fd:1a:4f:b0:78:01:d6:0f:77:3b:63:c6:80:98:c6:be:3e: 7d:2f:ba:6a:1e:56:50:42:5f:64:78:6e:a0:c3:79:86:93:1c: 32:5d:6e:c1 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICLEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjYwNDI4MTYxOTAxWhcNMjYwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWYwZGRmNS0wYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8DmUUgpKW1DAFlGlr67wMazihNinQ7m7QkZzxGe/mxW9DQiwhItomfZDAXx/ jtYZRkCr5X2yLI7/je62ncjsge1iju1gfZGGCYNEerRjbEE+ZOGYDcb/dN2qHQ1i wuaFd6OUkzLmUYqDkrn7RLkvWOocOc2HAtcNymG9uRnQB+MsTU85MlcO+oRREjGl x9t39K1W3ZfmocBfWsdF2lu99D/J4X9UudOyCcnc8s9fCFG+UeMH7Msaz9DDWEN9 9hFr4bw5TcvCZTVONAF/qW2NCk++M0HzTootqtTG9twyklhCLe1HgITKPHaqfdZj bDyxDRc1dFTjZb9b5C4RidhhZQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFDEy7r2b XocmGtPKCG1u95FSDXBdMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJBRTUvOEQzRTU0RUFFRDU5MTFFM0IwOTAxMTkyNTkxMUVBMzIvNDM0ODdCMThC RjE4MTFFOUEyQzAwRTYzQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK+ArAwQCy9c8MA0GCSqGSIb3DQEBCwUAA4IBAQAyg9jV4U+kJiu7 cQIbZAT1tveVyIDz35kr5xcJT/DBN70zEq4Fyqka1Oic/Kq/03u20QHc6d25/GaR ZVHTD2Nt1wmr+ua2uFS/9xSiTIgAb/UdknuGksKUSQrHqWSHLcps3GvtfK0qY6qT OiPDPHQZptOsB/+TbulF5aYqOtVJplnvgzaps9FwsBM9Ulf03dyIHqGZRZcakLRa LX/DgCNqfISskZyftcHlLQYx1WBF+iyaNmQrBMazBQbxGNDeVXWLyrpw2Eng0MSf w7bDPyfN0teirLfYOfL2/RpPsHgB1g93O2PGgJjGvj59L7pqHlZQQl9keG6gw3mG kxwyXW7B -----END CERTIFICATE-----Generated at Wed May 13 14:29:30 2026 by rpki-client