$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa File: 5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa (raw, json) Hash identifier: +AUVvwTT7ST+BeSrArm8ZmuI1OzsiyoIqJ3c0xzwnVs= Subject key identifier: D1:CC:EA:40:3B:05:D0:CE:3B:30:E4:EB:D2:C9:EA:1E:B2:D9:CD:BA Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Certificate serial: 0818 Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa Signing time: Thu 04 Jun 2026 21:27:03 +0000 ROA not before: Thu 04 Jun 2026 21:27:03 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 132245 IP address blocks: 43.231.200.0/24 maxlen: 24 43.231.201.0/24 maxlen: 24 43.231.202.0/24 maxlen: 24 43.231.203.0/24 maxlen: 24 103.8.132.0/24 maxlen: 24 103.8.133.0/24 maxlen: 24 103.8.134.0/24 maxlen: 24 103.8.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 21:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2072 (0x818) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141620, serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Validity Not Before: Jun 4 21:27:03 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a21eda7-27c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2b:ac:3e:36:3b:c0:a2:91:c8:4d:8e:d6:c9: f7:fa:b7:45:fd:01:dc:20:fd:b6:35:a8:c2:cb:02: 59:f8:65:4a:ec:33:2d:9a:71:1a:b8:89:34:26:cf: 98:04:d3:58:ad:d2:3b:e0:e7:bd:53:20:86:86:fa: 47:56:9c:bd:85:ee:66:fe:df:87:8f:3c:d4:41:fd: 9b:de:9a:cf:f3:7b:85:13:75:77:26:aa:e8:82:46: 69:d7:3d:6f:7e:2a:1e:0a:16:da:69:69:b8:9c:d8: 94:88:e5:82:82:9c:5b:e8:1b:9d:dc:b9:55:5a:15: cc:fb:25:fa:03:99:53:f0:15:ab:f0:a4:c5:95:06: 8b:e0:84:b5:f1:8f:5d:1b:1e:a2:91:cb:2d:ad:aa: 38:0a:e6:e4:c7:d3:cb:05:31:11:26:dd:7f:b1:6f: ef:a2:15:f8:e5:fd:96:c7:5b:f6:fc:19:1c:3c:f8: 9a:cc:b8:61:5d:6f:6a:fe:bf:8b:3e:d0:47:ab:4b: e1:11:dc:72:64:cd:9c:8b:6e:ed:d9:29:2a:aa:05: c9:3b:86:24:dd:cc:7e:49:58:b0:2e:fe:e4:1f:98: a1:da:8b:ed:a9:61:8b:12:cf:e9:cb:13:8a:3a:ab: 93:6e:9b:70:64:a2:e0:a8:ea:1e:9c:bf:d7:dc:47: 72:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:CC:EA:40:3B:05:D0:CE:3B:30:E4:EB:D2:C9:EA:1E:B2:D9:CD:BA X509v3 Authority Key Identifier: keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.231.200.0/22 103.8.132.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:48:c0:f7:5d:ef:89:55:8e:ce:2b:36:81:04:98:f3:8d:7e: b4:e7:9b:83:37:9b:f4:4c:e4:45:d9:39:de:93:f5:19:18:82: 7b:02:95:90:a6:67:19:90:27:4e:55:36:25:50:d1:af:10:ce: e7:8b:e0:65:ca:51:77:18:be:24:e6:7a:68:be:9c:e5:c5:5e: a6:cc:be:76:ea:03:b2:ab:55:b4:0e:d2:6d:4e:77:2f:0e:d0: 22:53:5d:6e:b4:ef:4d:b0:78:78:5d:39:f6:87:df:1b:38:4d: 85:b1:b7:7a:7b:20:06:85:51:df:f5:d4:2d:6d:db:19:d4:b2: a7:9b:ec:a7:bc:ae:ba:ac:37:eb:09:a7:ad:32:95:f1:e1:5f: 43:37:6c:42:02:73:37:40:49:9e:1f:7b:e0:76:5d:02:cb:c8: 38:92:0b:6d:e4:e6:85:fb:4a:9d:6d:ae:a9:64:4b:49:19:15: 6b:1a:3c:60:5c:ee:7b:a4:7b:14:f8:de:9d:58:80:64:98:47: a4:a3:21:a8:ec:51:1f:21:cf:b0:79:9b:6c:5e:f7:49:2a:35: eb:57:c8:12:b4:8b:11:20:e4:b1:3a:f2:e4:a4:b3:9d:8b:4b: 9a:f7:63:98:ed:36:be:74:f2:6d:e7:4d:32:a5:14:db:a4:ef: e1:88:59:13 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE2MjAxMTAvBgNVBAUTKDAzNjY4QTIxRjBGMDFGMDZCMjc0RkQ4OENDOUUwQTZF ODNENTVGODUwHhcNMjYwNjA0MjEyNzAzWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxZWRhNy0yN2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCusPjY7wKKRyE2O1sn3+rdF/QHcIP22NajCywJZ+GVK7DMtmnEauIk0Js+Y BNNYrdI74Oe9UyCGhvpHVpy9he5m/t+HjzzUQf2b3prP83uFE3V3JqrogkZp1z1v fioeChbaaWm4nNiUiOWCgpxb6Bud3LlVWhXM+yX6A5lT8BWr8KTFlQaL4IS18Y9d Gx6ikcstrao4Cubkx9PLBTERJt1/sW/vohX45f2Wx1v2/BkcPPiazLhhXW9q/r+L PtBHq0vhEdxyZM2ci27t2SkqqgXJO4Yk3cx+SViwLv7kH5ih2ovtqWGLEs/pyxOK OquTbptwZKLgqOoenL/X3EdyewIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNHM6kA7 BdDOOzDk69LJ6h6y2c26MB8GA1UdIwQYMBaAFANmiiHw8B8GsnT9iMyeCm6D1V+F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTYyMC8yMTk4MTZBQTI5 M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3YXlkUDJJeko0S2JvUFZY NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EyYUtJZkR3SHdheWRQMkl6SjRLYm9QVlg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDE2MjAvMjE5ODE2QUEyOTNEMTFFQkJGQzE0NzcxQzRGOUFFMDIvNURERTZCQzIy OTNFMTFFQjlERkEzQzcyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK+fIAwQCZwiEMA0GCSqGSIb3DQEBCwUAA4IBAQB6SMD3Xe+JVY7O KzaBBJjzjX6055uDN5v0TORF2Tnek/UZGIJ7ApWQpmcZkCdOVTYlUNGvEM7ni+Bl ylF3GL4k5npovpzlxV6mzL526gOyq1W0DtJtTncvDtAiU11utO9NsHh4XTn2h98b OE2Fsbd6eyAGhVHf9dQtbdsZ1LKnm+ynvK66rDfrCaetMpXx4V9DN2xCAnM3QEme H3vgdl0Cy8g4kgtt5OaF+0qdba6pZEtJGRVrGjxgXO57pHsU+N6dWIBkmEekoyGo 7FEfIc+weZtsXvdJKjXrV8gStIsRIOSxOvLkpLOdi0ua92OY7Ta+dPJt500ypRTb pO/hiFkT -----END CERTIFICATE-----Generated at Sun Jun 7 01:53:09 2026 by rpki-client