$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/20AB43C81F9411F083A54B70C4F9AE02.roa File: 20AB43C81F9411F083A54B70C4F9AE02.roa (raw, json) Hash identifier: W3nL9md2m5OmRVt3q+FDbGg0y/1/j41/PMxuQ4IJIV0= Subject key identifier: BF:A8:20:D4:A5:20:5C:A9:B8:94:98:DF:1D:C6:A4:00:52:7A:F3:96 Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 1018 Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/20AB43C81F9411F083A54B70C4F9AE02.roa Signing time: Mon 08 Jun 2026 18:20:42 +0000 ROA not before: Mon 08 Jun 2026 18:20:42 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 132110 IP address blocks: 43.250.104.0/23 maxlen: 24 43.250.106.0/24 maxlen: 24 43.250.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 17:33:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4120 (0x1018) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF, serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Validity Not Before: Jun 8 18:20:42 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a2707f9-b0b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:04:01:74:a6:4c:c9:cb:5c:69:7f:bc:42:56: be:bf:43:54:e6:e3:06:6e:a6:ee:b9:d0:8e:7f:d8: 7a:f3:7a:ff:28:ea:36:c7:7a:d8:58:2c:25:c3:cd: df:17:09:b6:73:29:be:ca:65:4e:61:fb:b6:c0:98: 0c:db:64:a4:f6:f2:fe:4a:92:2b:98:a6:4c:cd:d8: 19:75:70:ad:a7:6f:d3:e2:bc:55:fc:09:71:6f:94: 4c:1a:14:35:ab:16:a7:50:bb:fc:36:5a:94:98:53: 3a:96:c0:ed:dd:c8:94:8d:11:d9:11:33:e7:4b:d1: 34:db:41:c9:15:c3:c1:ce:e2:6a:bf:0b:7f:32:d5: 61:da:04:84:01:e4:77:e4:8c:a5:43:ec:92:64:15: 83:2b:8b:bf:ab:9f:32:8e:b9:0f:a3:87:f4:df:33: ea:ee:e4:50:28:7d:d0:96:9c:34:78:ea:de:4b:42: 48:ca:2a:5f:5a:1e:e3:ca:2d:ce:ed:02:a1:10:a1: 20:cd:f7:fc:87:d2:df:d7:3d:d6:c6:51:50:86:cc: 88:f0:fd:b0:6e:19:cd:97:57:16:05:b3:e2:b6:a0: 1c:48:b5:2e:1d:16:dc:04:7a:4b:b0:3b:a6:41:61: 29:83:a0:a7:f9:49:b3:af:84:c2:6b:86:89:e4:c7: 8a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:A8:20:D4:A5:20:5C:A9:B8:94:98:DF:1D:C6:A4:00:52:7A:F3:96 X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/20AB43C81F9411F083A54B70C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.250.104.0/22 Signature Algorithm: sha256WithRSAEncryption a4:a8:75:5b:b1:35:30:55:0a:25:66:39:81:fa:fb:50:9e:93: af:b6:8a:3e:b9:cb:4a:14:1e:89:7b:f1:ff:06:8f:79:e8:1e: b6:f8:08:cb:65:80:b4:55:bd:f5:8a:b8:74:05:cf:b4:55:a6: 7a:af:0a:e4:8e:e2:77:dd:c3:a7:7f:19:41:2b:56:1f:57:bd: 3c:b6:53:e9:f4:b4:ae:7e:f6:57:d0:a3:09:dd:5c:81:8b:d6: fd:eb:d2:5c:c0:05:1c:ff:50:e3:e6:3b:77:2b:d5:53:a8:2e: 43:ae:83:f7:3b:93:d0:51:d7:c7:3e:8a:fc:af:d0:6b:d6:c5: c6:38:d7:51:23:a9:46:ff:25:47:65:26:24:ec:fd:b0:38:ae: 75:18:d5:c4:37:3f:1a:8c:45:fc:9c:2e:e5:bf:ab:82:86:d0: 9a:8d:71:ce:6b:89:69:66:81:ba:19:02:9a:5d:48:83:0d:53: 53:44:c2:d4:f0:d1:7a:2f:be:e4:3b:09:98:78:6f:fe:e2:9b: db:d0:ed:dd:ea:d4:2a:84:17:20:4a:f1:c0:c7:cf:19:f6:0e: 8d:a1:21:c4:17:79:d7:b6:3a:9f:e3:bf:78:69:40:0c:39:33: df:da:0b:7b:68:8f:67:b6:0f:c1:16:83:06:3e:2e:c8:d6:23: 5f:b5:30:65 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjYwNjA4MTgyMDQyWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI3MDdmOS1iMGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwQBdKZMyctcaX+8Qla+v0NU5uMGbqbuudCOf9h683r/KOo2x3rYWCwlw83f Fwm2cym+ymVOYfu2wJgM22Sk9vL+SpIrmKZMzdgZdXCtp2/T4rxV/Alxb5RMGhQ1 qxanULv8NlqUmFM6lsDt3ciUjRHZETPnS9E020HJFcPBzuJqvwt/MtVh2gSEAeR3 5IylQ+ySZBWDK4u/q58yjrkPo4f03zPq7uRQKH3Qlpw0eOreS0JIyipfWh7jyi3O 7QKhEKEgzff8h9Lf1z3WxlFQhsyI8P2wbhnNl1cWBbPitqAcSLUuHRbcBHpLsDum QWEpg6Cn+Umzr4TCa4aJ5MeKGQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFL+oINSl IFypuJSY3x3GpABSevOWMB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvMjBBQjQzQzgx Rjk0MTFGMDgzQTU0QjcwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/poMA0GCSqGSIb3DQEBCwUAA4IBAQCkqHVbsTUwVQolZjmB+vtQ npOvtoo+uctKFB6Je/H/Bo956B62+AjLZYC0Vb31irh0Bc+0VaZ6rwrkjuJ33cOn fxlBK1YfV708tlPp9LSufvZX0KMJ3VyBi9b969JcwAUc/1Dj5jt3K9VTqC5DroP3 O5PQUdfHPor8r9Br1sXGONdRI6lG/yVHZSYk7P2wOK51GNXENz8ajEX8nC7lv6uC htCajXHOa4lpZoG6GQKaXUiDDVNTRMLU8NF6L77kOwmYeG/+4pvb0O3d6tQqhBcg SvHAx88Z9g6NoSHEF3nXtjqf4794aUAMOTPf2gt7aI9ntg/BFoMGPi7I1iNftTBl -----END CERTIFICATE-----Generated at Fri Jun 12 17:07:40 2026 by rpki-client