$ rpki-client -vvf rpki.apnic.net/member_repository/A9171155/09D36C90930511F0BEEAC611C4F9AE02/DC9357242CEF11F19569049CA6833773.roa File: DC9357242CEF11F19569049CA6833773.roa (raw, json) Hash identifier: LyXNFSUKaVEfYkBM93JJQqk8m5s8Gi0RCu4mZmOB6Ok= Subject key identifier: 7C:61:6C:5C:4C:CC:9A:1D:95:CE:9E:25:6F:A0:CF:8C:0F:37:CC:F8 Certificate issuer: /CN=A9171155/serialNumber=AD3FA6AF80E37311D0B3AEC94A757E54463C49B7 Certificate serial: 6D Authority key identifier: AD:3F:A6:AF:80:E3:73:11:D0:B3:AE:C9:4A:75:7E:54:46:3C:49:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT-mr4DjcxHQs67JSnV-VEY8Sbc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171155/09D36C90930511F0BEEAC611C4F9AE02/DC9357242CEF11F19569049CA6833773.roa Signing time: Tue 31 Mar 2026 10:53:33 +0000 ROA not before: Tue 31 Mar 2026 10:53:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136461 IP address blocks: 43.225.130.0/23 maxlen: 24 2402:2ba0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171155/09D36C90930511F0BEEAC611C4F9AE02/rT-mr4DjcxHQs67JSnV-VEY8Sbc.crl rsync://rpki.apnic.net/member_repository/A9171155/09D36C90930511F0BEEAC611C4F9AE02/rT-mr4DjcxHQs67JSnV-VEY8Sbc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT-mr4DjcxHQs67JSnV-VEY8Sbc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:16:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171155, serialNumber=AD3FA6AF80E37311D0B3AEC94A757E54463C49B7 Validity Not Before: Mar 31 10:53:33 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69cba7ad-3bf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4d:36:04:88:7f:fa:b7:06:1c:13:6d:e7:c9: 74:d5:9c:77:26:47:b0:32:44:57:b3:50:e9:73:c9: 75:c0:67:7f:9d:97:ad:f7:b2:a8:f2:4f:12:b9:04: 86:03:ed:f7:29:ae:f3:33:fe:88:6c:f0:3c:0e:10: 4b:e2:40:48:46:9a:c0:1c:26:12:13:7f:ce:a8:3c: c3:7a:84:29:d8:72:e9:4d:20:a7:e3:be:7f:81:bf: 98:b8:84:fa:9c:43:74:37:5b:56:ad:ba:ba:8d:8c: 21:8a:a2:7c:f5:4b:6e:86:cd:18:1e:29:f1:67:6b: ce:a2:47:71:57:83:c7:b0:b3:2e:fb:aa:d0:c3:97: cc:34:e1:5a:e4:ad:4d:b0:e9:e1:11:ae:f7:bf:4d: c1:f2:cd:0f:d9:68:f8:48:45:27:6e:70:a4:0f:94: 54:a3:76:08:74:fe:3a:58:2e:80:29:0f:fc:58:e9: 9a:af:f9:4b:a5:5e:3f:e3:00:e6:9f:6f:a1:53:29: 40:c4:a4:aa:d9:e6:b1:35:13:e7:4b:22:dc:7f:1d: 43:6f:fc:1e:4b:64:66:53:e8:14:d1:c1:b4:d4:01: 62:27:36:ec:e8:55:f1:0b:ee:33:bd:2f:c5:5e:9a: 57:30:c8:74:20:cb:3c:a7:39:a4:b4:4d:63:05:57: e2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:61:6C:5C:4C:CC:9A:1D:95:CE:9E:25:6F:A0:CF:8C:0F:37:CC:F8 X509v3 Authority Key Identifier: keyid:AD:3F:A6:AF:80:E3:73:11:D0:B3:AE:C9:4A:75:7E:54:46:3C:49:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171155/09D36C90930511F0BEEAC611C4F9AE02/rT-mr4DjcxHQs67JSnV-VEY8Sbc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT-mr4DjcxHQs67JSnV-VEY8Sbc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171155/09D36C90930511F0BEEAC611C4F9AE02/DC9357242CEF11F19569049CA6833773.roa sbgp-ipAddrBlock: critical IPv4: 43.225.130.0/23 IPv6: 2402:2ba0::/32 Signature Algorithm: sha256WithRSAEncryption 29:9b:31:2c:5d:48:98:d2:f2:95:ed:6d:de:db:af:7c:74:07: b9:03:d2:37:f7:87:b6:96:e2:38:57:2b:40:81:19:97:68:c9: d3:23:60:b6:ed:05:ed:da:3c:e5:f2:b7:55:a3:b2:c3:25:75: 63:45:db:1c:a6:1a:4a:6e:74:e0:39:b3:5a:6c:8a:74:09:20: e0:27:1c:a4:5f:32:5b:a6:30:08:25:3a:e5:c5:9f:1d:53:dd: 0e:b1:2f:a2:cd:3c:e8:ad:36:0d:7d:8e:63:a5:67:75:53:36: 1c:f2:23:f4:c6:fb:27:98:7c:5e:8e:7c:a5:66:a3:2e:29:23: 44:2a:4d:5b:c0:8e:3e:4c:3b:83:72:2f:d5:55:1d:b6:9a:00: fc:a3:89:f4:80:13:69:80:59:3f:09:12:d7:c6:a5:0f:d0:93: dc:10:82:0f:0c:7b:9c:8a:63:09:8a:a9:01:86:8d:af:74:ed: d6:b3:f4:b8:88:15:07:45:e5:6e:f1:99:03:28:44:f8:9d:5e: 38:70:2f:98:11:63:8b:7a:ff:b5:29:c5:a2:d7:84:08:a7:26: 8a:33:93:ef:63:28:c0:8f:df:98:9b:f6:f4:49:0b:fc:f9:25: d1:8b:59:c6:9c:ff:d7:83:f8:5a:2a:ce:ba:69:26:97:90:d0: 70:e1:13:b1 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MTE1NTExMC8GA1UEBRMoQUQzRkE2QUY4MEUzNzMxMUQwQjNBRUM5NEE3NTdFNTQ0 NjNDNDlCNzAeFw0yNjAzMzExMDUzMzNaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5Y2JhN2FkLTNiZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4TTYEiH/6twYcE23nyXTVnHcmR7AyRFezUOlzyXXAZ3+dl633sqjyTxK5BIYD 7fcprvMz/ohs8DwOEEviQEhGmsAcJhITf86oPMN6hCnYculNIKfjvn+Bv5i4hPqc Q3Q3W1aturqNjCGKonz1S26GzRgeKfFna86iR3FXg8ewsy77qtDDl8w04VrkrU2w 6eERrve/TcHyzQ/ZaPhIRSducKQPlFSjdgh0/jpYLoApD/xY6Zqv+UulXj/jAOaf b6FTKUDEpKrZ5rE1E+dLItx/HUNv/B5LZGZT6BTRwbTUAWInNuzoVfEL7jO9L8Ve mlcwyHQgyzynOaS0TWMFV+LzAgMBAAGjggJvMIICazAdBgNVHQ4EFgQUfGFsXEzM mh2Vzp4lb6DPjA83zPgwHwYDVR0jBBgwFoAUrT+mr4DjcxHQs67JSnV+VEY8Sbcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxMTU1LzA5RDM2QzkwOTMw NTExRjBCRUVBQzYxMUM0RjlBRTAyL3JULW1yNERqY3hIUXM2N0pTblYtVkVZOFNi Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvclQtbXI0RGpjeEhRczY3SlNuVi1WRVk4U2JjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTE1NS8wOUQzNkM5MDkzMDUxMUYwQkVFQUM2MTFDNEY5QUUwMi9EQzkzNTcyNDJD RUYxMUYxOTU2OTA0OUNBNjgzMzc3My5yb2EwLgYIKwYBBQUHAQcBAf8EHzAdMAwE AgABMAYDBAEr4YIwDQQCAAIwBwMFACQCK6AwDQYJKoZIhvcNAQELBQADggEBACmb MSxdSJjS8pXtbd7br3x0B7kD0jf3h7aW4jhXK0CBGZdoydMjYLbtBe3aPOXyt1Wj ssMldWNF2xymGkpudOA5s1psinQJIOAnHKRfMlumMAglOuXFnx1T3Q6xL6LNPOit Ng19jmOlZ3VTNhzyI/TG+yeYfF6OfKVmoy4pI0QqTVvAjj5MO4NyL9VVHbaaAPyj ifSAE2mAWT8JEtfGpQ/Qk9wQgg8Me5yKYwmKqQGGja907daz9LiIFQdF5W7xmQMo RPidXjhwL5gRY4t6/7UpxaLXhAinJoozk+9jKMCP35ib9vRJC/z5JdGLWcac/9eD +FoqzrppJpeQ0HDhE7E= -----END CERTIFICATE-----Generated at Mon Apr 6 12:29:54 2026 by rpki-client