$ rpki-client -vvf rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa File: B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa (raw, json) Hash identifier: c2NbvzRPb3OX8yUH2vwhzYHB05TOx09RU6yJUt7vO/Q= Subject key identifier: 87:BE:46:91:CF:11:71:F7:33:97:E8:01:87:A7:F8:33:6D:BE:0F:D9 Certificate issuer: /CN=A918ED57/serialNumber=668872E87997B73B975FE3DAD4DACA8EBEC8EBA3 Certificate serial: 0812 Authority key identifier: 66:88:72:E8:79:97:B7:3B:97:5F:E3:DA:D4:DA:CA:8E:BE:C8:EB:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zohy6HmXtzuXX-Pa1NrKjr7I66M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:25:28 +0000 ROA not before: Thu 04 Sep 2025 22:02:38 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 16552 IP address blocks: 43.247.168.0/22 maxlen: 24 103.14.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/Zohy6HmXtzuXX-Pa1NrKjr7I66M.crl rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/Zohy6HmXtzuXX-Pa1NrKjr7I66M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zohy6HmXtzuXX-Pa1NrKjr7I66M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 20:46:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2066 (0x812) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918ED57, serialNumber=668872E87997B73B975FE3DAD4DACA8EBEC8EBA3 Validity Not Before: Sep 4 22:02:38 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a43038-0fb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a5:61:34:40:7b:13:59:ad:84:e2:73:2e:e6: f0:c0:15:58:6f:06:f8:a6:1b:d0:ac:ff:77:e3:08: 7f:d6:76:66:8d:a5:7a:f1:bc:cd:0d:63:88:21:19: 30:2d:10:a6:ee:7d:34:98:c8:f1:45:6c:56:97:32: f6:26:dc:2c:e3:b0:ec:7a:1e:45:5b:04:3e:46:f3: 17:52:47:fa:88:0d:e9:ec:73:9a:ed:18:4d:80:29: 98:17:55:2a:41:12:2f:ff:49:71:09:09:73:ed:e5: 34:95:6a:b6:3b:16:e4:19:c1:14:9c:af:40:83:6b: c5:54:c1:49:18:40:a0:33:c4:b2:66:a9:33:14:8f: 00:f1:98:08:51:8d:70:17:75:09:54:bb:de:10:36: eb:29:12:a3:9b:c6:ce:6a:fa:0f:16:ae:fe:e1:13: 4a:26:6f:b7:51:7f:82:93:64:36:21:2c:36:b4:dd: ce:32:c5:b2:fe:cd:53:c9:ec:df:25:63:35:bd:77: 1d:67:57:bc:e8:af:38:f9:61:be:6c:f3:ca:ad:ca: b2:5d:ab:f7:7b:ca:0f:f1:8c:d8:14:68:24:d5:da: cd:eb:c0:8a:d8:06:fd:3b:82:11:26:74:fd:dc:3e: 59:cd:81:2a:36:3e:38:cf:cf:55:88:33:a7:fa:ec: 3a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:BE:46:91:CF:11:71:F7:33:97:E8:01:87:A7:F8:33:6D:BE:0F:D9 X509v3 Authority Key Identifier: keyid:66:88:72:E8:79:97:B7:3B:97:5F:E3:DA:D4:DA:CA:8E:BE:C8:EB:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/Zohy6HmXtzuXX-Pa1NrKjr7I66M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zohy6HmXtzuXX-Pa1NrKjr7I66M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.247.168.0/22 103.14.220.0/22 Signature Algorithm: sha256WithRSAEncryption 94:c5:5b:37:16:d1:2f:06:5e:dd:fd:3b:f8:e2:7e:82:5b:d0: ee:25:12:91:20:df:6f:0f:8f:5c:cc:60:73:d4:6e:f2:d1:f9: e2:89:f8:22:8a:78:0f:f6:a5:d8:74:10:c2:cd:df:18:7c:26: 17:50:bb:8d:dc:d5:5f:60:60:83:54:5f:fe:b4:f8:81:97:6b: 07:a6:77:48:14:e1:8f:4b:4f:53:dd:e2:fe:1e:90:58:dd:f6: cb:7b:77:fe:cd:b2:ec:7c:2c:d9:e1:61:6d:43:d5:15:1a:a3: 62:50:6c:29:b1:db:c1:0f:29:fa:ab:fc:23:e3:cf:df:bb:ff: 4a:a4:63:c9:53:6a:86:10:b4:20:69:75:e2:37:10:92:3b:79: a5:b1:28:7c:be:41:d3:9c:c3:c9:5d:94:9a:50:13:14:f5:bc: ce:ff:38:a0:e6:90:96:bb:02:ea:67:ca:d2:3a:3d:86:2f:99: 0b:1e:3b:04:5e:d6:b0:19:45:65:be:29:09:51:16:e3:68:8a: c9:ab:77:75:50:89:1a:9c:2d:9f:44:71:91:ef:67:8c:6b:ae: 5b:7c:90:db:c1:30:64:69:40:30:5b:12:3e:90:ee:f4:ab:21: be:be:15:39:55:30:8d:78:fb:8e:82:2d:63:8a:aa:af:b1:53: d2:52:9a:00 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVENTcxMTAvBgNVBAUTKDY2ODg3MkU4Nzk5N0I3M0I5NzVGRTNEQUQ0REFDQThF QkVDOEVCQTMwHhcNMjUwOTA0MjIwMjM4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzAzOC0wZmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaVhNEB7E1mthOJzLubwwBVYbwb4phvQrP934wh/1nZmjaV68bzNDWOIIRkw LRCm7n00mMjxRWxWlzL2Jtws47Dseh5FWwQ+RvMXUkf6iA3p7HOa7RhNgCmYF1Uq QRIv/0lxCQlz7eU0lWq2OxbkGcEUnK9Ag2vFVMFJGECgM8SyZqkzFI8A8ZgIUY1w F3UJVLveEDbrKRKjm8bOavoPFq7+4RNKJm+3UX+Ck2Q2ISw2tN3OMsWy/s1Tyezf JWM1vXcdZ1e86K84+WG+bPPKrcqyXav3e8oP8YzYFGgk1drN68CK2Ab9O4IRJnT9 3D5ZzYEqNj44z89ViDOn+uw6vQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIe+RpHP EXH3M5foAYen+DNtvg/ZMB8GA1UdIwQYMBaAFGaIcuh5l7c7l1/j2tTayo6+yOuj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUQ1Ny81Q0Q4MjQ0MjE3 QjAxMUVCQjk0REE3MTRDNEY5QUUwMi9ab2h5NkhtWHR6dVhYLVBhMU5yS2pyN0k2 Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pvaHk2SG1YdHp1WFgtUGExTnJLanI3STY2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVENTcvNUNEODI0NDIxN0IwMTFFQkI5NERBNzE0QzRGOUFFMDIvQjRCMzREQTRE MkM2MTFFQ0JGM0IzRTUzQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/eoAwQCZw7cMA0GCSqGSIb3DQEBCwUAA4IBAQCUxVs3FtEvBl7d /Tv44n6CW9DuJRKRIN9vD49czGBz1G7y0fniifgiingP9qXYdBDCzd8YfCYXULuN 3NVfYGCDVF/+tPiBl2sHpndIFOGPS09T3eL+HpBY3fbLe3f+zbLsfCzZ4WFtQ9UV GqNiUGwpsdvBDyn6q/wj48/fu/9KpGPJU2qGELQgaXXiNxCSO3mlsSh8vkHTnMPJ XZSaUBMU9bzO/zig5pCWuwLqZ8rSOj2GL5kLHjsEXtawGUVlvikJURbjaIrJq3d1 UIkanC2fRHGR72eMa65bfJDbwTBkaUAwWxI+kO70qyG+vhU5VTCNePuOgi1jiqqv sVPSUpoA -----END CERTIFICATE-----Generated at Fri Mar 13 09:57:24 2026 by rpki-client