$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/1BE0AAE6AE9A11F0B8FE6621C4F9AE02.roa File: 1BE0AAE6AE9A11F0B8FE6621C4F9AE02.roa (raw, json) Hash identifier: kXAepDosnfMA1DrO07uYXTdUTk5OxqtBiA3vNI2kZ1k= Subject key identifier: 94:94:D6:78:4D:51:2C:88:F8:2A:BF:FD:39:B3:32:4C:EC:88:2F:3E Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 21F0 Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/1BE0AAE6AE9A11F0B8FE6621C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:39:56 +0000 ROA not before: Tue 21 Oct 2025 16:22:17 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 31898 IP address blocks: 43.243.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8688 (0x21f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F, serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Validity Not Before: Oct 21 16:22:17 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a441ac-ec62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:56:8f:7c:a1:2f:a5:81:6a:50:ce:07:3d:68: cb:6d:72:06:b8:33:0e:58:27:0b:f1:28:3f:87:8a: a5:50:0e:dd:2a:5c:35:5b:25:23:8f:b0:91:30:9c: 53:06:58:d7:f1:3b:4b:ce:26:25:96:fa:96:52:74: 41:f1:26:4a:0b:28:d4:b2:b9:be:70:84:66:b3:d8: 0b:99:75:30:e6:bf:d1:7a:36:14:69:d6:93:42:53: f7:0b:48:09:b3:40:85:1e:57:9b:4b:d1:af:cb:2d: 91:1d:96:f8:77:6a:e3:05:2c:23:3e:21:34:e4:94: 5c:c4:3a:bd:20:5d:6a:64:42:33:f6:21:c0:0f:de: 1a:3d:31:3e:3d:aa:80:1c:6f:f1:7e:4a:3a:7b:97: e1:cf:d0:62:0e:6b:12:d7:26:dc:e7:28:53:21:50: af:3a:2c:03:61:4f:29:14:f6:18:8d:dd:4c:d1:18: 6c:89:60:d2:33:1a:87:44:47:db:93:ed:8f:9a:85: 66:0b:ff:48:23:4b:ab:65:ba:d0:21:12:43:d5:30: eb:8f:62:63:e6:0b:bf:ab:05:ae:94:4d:97:e5:22: d4:26:ce:b3:51:d3:f8:bb:3f:01:ae:f6:4b:5a:b9: b4:9e:7e:20:15:9e:70:68:e0:f3:53:64:c3:98:51: 27:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:94:D6:78:4D:51:2C:88:F8:2A:BF:FD:39:B3:32:4C:EC:88:2F:3E X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/1BE0AAE6AE9A11F0B8FE6621C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.116.0/22 Signature Algorithm: sha256WithRSAEncryption c4:a4:b5:5a:4a:8f:3b:96:72:75:63:5b:89:d8:f8:62:91:91: 32:59:b8:83:4d:7a:95:31:2b:e9:0b:ad:9c:94:ff:bc:ef:1e: c5:e2:86:8f:0a:c9:bd:71:d3:2e:eb:88:13:97:b9:c5:32:04: 16:b0:70:0d:bf:d5:79:61:c1:8e:ba:88:b6:6b:a1:1f:02:df: ed:9a:28:cd:f2:85:ab:bb:53:9a:0b:f0:f7:2e:2a:aa:71:cc: 4d:28:8b:c0:98:01:51:a1:cf:fb:69:a2:39:28:3f:ed:16:f1: e4:27:fa:cb:50:88:b8:c5:8c:94:ce:08:5b:c8:b5:8e:41:4d: ac:b5:61:78:71:1e:2a:30:c5:c7:1a:dc:0f:7d:5d:17:54:c2: 1d:78:8c:e5:9d:c1:6d:64:91:8c:6d:5f:75:11:52:f7:f2:81: 8b:33:b7:9a:e5:6c:4e:3a:9f:2e:b2:cf:3a:0f:d6:b1:00:3f: a6:fc:4d:e7:03:9f:80:9d:80:9f:f5:10:7f:af:f8:a2:ed:74: 47:17:98:a0:4f:6f:eb:8d:0f:23:fc:a3:d0:c6:a8:93:d9:1b: 08:4e:d3:2d:3d:ed:d9:11:22:b1:16:e3:79:9f:09:9f:53:99: 81:79:fb:c2:82:e0:09:7c:4c:4a:a2:f8:96:99:bf:65:76:0e: 42:78:3d:67 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICIfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjUxMDIxMTYyMjE3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDFhYy1lYzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVaPfKEvpYFqUM4HPWjLbXIGuDMOWCcL8Sg/h4qlUA7dKlw1WyUjj7CRMJxT BljX8TtLziYllvqWUnRB8SZKCyjUsrm+cIRms9gLmXUw5r/RejYUadaTQlP3C0gJ s0CFHlebS9Gvyy2RHZb4d2rjBSwjPiE05JRcxDq9IF1qZEIz9iHAD94aPTE+PaqA HG/xfko6e5fhz9BiDmsS1ybc5yhTIVCvOiwDYU8pFPYYjd1M0RhsiWDSMxqHREfb k+2PmoVmC/9II0urZbrQIRJD1TDrj2Jj5gu/qwWulE2X5SLUJs6zUdP4uz8BrvZL Wrm0nn4gFZ5waODzU2TDmFEnewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJSU1nhN USyI+Cq//TmzMkzsiC8+MB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYyN0YvOUMzMjU2QTJFOThGMTFFNUIyQURDNTY3QzRGOUFFMDIvMUJFMEFBRTZB RTlBMTFGMEI4RkU2NjIxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/N0MA0GCSqGSIb3DQEBCwUAA4IBAQDEpLVaSo87lnJ1Y1uJ2Phi kZEyWbiDTXqVMSvpC62clP+87x7F4oaPCsm9cdMu64gTl7nFMgQWsHANv9V5YcGO uoi2a6EfAt/tmijN8oWru1OaC/D3LiqqccxNKIvAmAFRoc/7aaI5KD/tFvHkJ/rL UIi4xYyUzghbyLWOQU2stWF4cR4qMMXHGtwPfV0XVMIdeIzlncFtZJGMbV91EVL3 8oGLM7ea5WxOOp8uss86D9axAD+m/E3nA5+AnYCf9RB/r/ii7XRHF5igT2/rjQ8j /KPQxqiT2RsITtMtPe3ZESKxFuN5nwmfU5mBefvCguAJfExKoviWmb9ldg5CeD1n -----END CERTIFICATE-----Generated at Sun Mar 22 20:17:34 2026 by rpki-client