$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/DC3B564C5B2411F18054A248B6833773.roa File: DC3B564C5B2411F18054A248B6833773.roa (raw, json) Hash identifier: FRlTztebrzKN5gTiqkicNfd899UvBHsCJgIh/4JZ0Ss= Subject key identifier: F4:9D:03:8B:21:DA:EA:0D:9E:28:54:AC:9B:C9:B5:A5:13:E6:3E:C4 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 0935 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/DC3B564C5B2411F18054A248B6833773.roa Signing time: Fri 29 May 2026 06:08:50 +0000 ROA not before: Fri 29 May 2026 06:08:50 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 10099 IP address blocks: 43.229.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 22:42:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2357 (0x935) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: May 29 06:08:50 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6a192d72-605d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f6:80:74:7c:e5:da:76:b8:70:57:a4:bf:83: cc:fa:a9:3d:11:1b:0f:ed:e3:5b:bd:f3:e5:7f:d0: 50:38:a2:c7:e1:98:71:c6:5e:05:28:9f:57:e5:bf: dd:a9:3b:58:e5:cc:92:71:96:01:75:31:87:e5:bf: 0e:56:33:6d:55:67:46:06:49:2c:be:10:88:66:d6: 24:24:7e:38:ef:7b:a5:e1:f4:a5:66:b0:0a:d0:bf: 80:3f:b2:a6:13:71:b9:8a:94:ff:e2:fa:cb:40:a7: 76:21:bd:e7:f6:b1:e1:5a:ad:4a:af:b7:43:c5:7d: 55:f2:82:03:46:7d:9d:0c:c1:4f:5e:c5:a4:db:ee: 52:c6:27:4a:5d:1f:b6:4f:9c:b6:01:1f:f7:bf:14: 38:06:ec:e5:84:56:d8:bd:ba:21:90:f9:27:6b:45: f8:7b:b3:c6:37:50:15:ec:83:13:fd:bd:94:9e:fe: 49:d8:53:8e:e7:9a:25:59:9b:f9:11:01:8d:50:83: 33:8c:76:ae:3b:87:1e:89:f6:f2:8e:b2:c6:75:f1: 57:28:8d:c8:a6:4b:33:d5:1a:d8:76:bf:5e:e5:e9: 22:98:f4:e2:80:7c:5e:db:e4:b3:0f:ab:65:27:f5: e1:9e:d7:d4:68:44:87:b6:f7:26:29:d7:3d:5e:64: 33:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:9D:03:8B:21:DA:EA:0D:9E:28:54:AC:9B:C9:B5:A5:13:E6:3E:C4 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/DC3B564C5B2411F18054A248B6833773.roa sbgp-ipAddrBlock: critical IPv4: 43.229.154.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:c1:a4:6c:b7:08:58:17:de:e4:c8:2e:da:22:58:ba:dd:68: 61:ff:93:4f:79:0b:6c:9b:5d:cc:69:1a:ea:fe:e5:b7:40:6f: d6:5c:df:a1:d3:da:d5:04:0f:c5:25:41:11:b4:ee:dc:12:17: e8:37:88:a6:34:58:5f:04:5b:6c:3d:1b:49:ee:d5:b3:52:97: e7:43:96:ee:70:4a:df:06:fd:3d:69:b1:ca:bf:b1:e8:59:96: 88:3f:80:c6:99:5b:b5:e0:e2:ac:9d:1d:76:b2:f3:d6:67:f0: fd:c5:53:4c:e9:f6:da:1e:95:8f:0f:e6:d7:2d:87:67:82:20: 95:ee:d0:a8:aa:cd:6e:fd:b6:5d:b8:fc:39:b1:17:26:a6:f4: 38:51:e3:58:f1:41:4c:b6:2b:43:57:e7:49:fe:67:ad:b2:64: cd:af:b7:b3:06:12:0a:7c:18:16:8e:d5:c1:c8:2c:e0:7d:2d: c3:93:d7:ad:f4:2c:e7:69:08:61:fb:2a:f9:de:6a:ee:3f:d1: a3:80:45:e8:0e:de:b6:a0:8d:8d:ea:11:96:1a:ab:9a:dd:9d: d2:e4:9e:44:3f:74:bc:ea:7a:ba:a3:9f:46:44:02:5e:cd:65: cd:5e:21:43:ae:12:34:b8:06:36:eb:eb:a0:5d:a8:9e:31:4f: 52:c2:eb:de -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjYwNTI5MDYwODUwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE5MmQ3Mi02MDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvaAdHzl2na4cFekv4PM+qk9ERsP7eNbvfPlf9BQOKLH4Zhxxl4FKJ9X5b/d qTtY5cyScZYBdTGH5b8OVjNtVWdGBkksvhCIZtYkJH4473ul4fSlZrAK0L+AP7Km E3G5ipT/4vrLQKd2Ib3n9rHhWq1Kr7dDxX1V8oIDRn2dDMFPXsWk2+5SxidKXR+2 T5y2AR/3vxQ4BuzlhFbYvbohkPkna0X4e7PGN1AV7IMT/b2Unv5J2FOO55olWZv5 EQGNUIMzjHauO4ceifbyjrLGdfFXKI3Ipksz1RrYdr9e5ekimPTigHxe2+SzD6tl J/XhntfUaESHtvcmKdc9XmQzqwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPSdA4sh 2uoNnihUrJvJtaUT5j7EMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvREMzQjU2NEM1 QjI0MTFGMTgwNTRBMjQ4QjY4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK+WaMA0GCSqGSIb3DQEBCwUAA4IBAQCMwaRstwhYF97kyC7aIli6 3Whh/5NPeQtsm13MaRrq/uW3QG/WXN+h09rVBA/FJUERtO7cEhfoN4imNFhfBFts PRtJ7tWzUpfnQ5bucErfBv09abHKv7HoWZaIP4DGmVu14OKsnR12svPWZ/D9xVNM 6fbaHpWPD+bXLYdngiCV7tCoqs1u/bZduPw5sRcmpvQ4UeNY8UFMtitDV+dJ/met smTNr7ezBhIKfBgWjtXByCzgfS3Dk9et9CznaQhh+yr53mruP9GjgEXoDt62oI2N 6hGWGqua3Z3S5J5EP3S86nq6o59GRAJezWXNXiFDrhI0uAY26+ugXaieMU9Swuve -----END CERTIFICATE-----Generated at Thu Jun 4 14:24:43 2026 by rpki-client