$ rpki-client -vvf rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/4CF8B176528E11F1AB5B86DACA833773.roa File: 4CF8B176528E11F1AB5B86DACA833773.roa (raw, json) Hash identifier: 0h5ie0wC/CKq4QIqr24iarbu+tQ7UIp7l2HNC//MJ8g= Subject key identifier: 98:9B:6A:61:83:14:E7:27:C5:B1:9D:52:D2:FD:89:92:0C:1F:BB:4E Certificate issuer: /CN=A911678C/serialNumber=EC368D582E1177E09915E33F44EDB9DE4EF32C52 Certificate serial: 0D Authority key identifier: EC:36:8D:58:2E:11:77:E0:99:15:E3:3F:44:ED:B9:DE:4E:F3:2C:52 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/7DaNWC4Rd-CZFeM_RO253k7zLFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/4CF8B176528E11F1AB5B86DACA833773.roa Signing time: Mon 18 May 2026 07:50:56 +0000 ROA not before: Mon 18 May 2026 07:50:56 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 140096 IP address blocks: 177.7.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/7DaNWC4Rd-CZFeM_RO253k7zLFI.crl rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/7DaNWC4Rd-CZFeM_RO253k7zLFI.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/7DaNWC4Rd-CZFeM_RO253k7zLFI.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 02:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911678C, serialNumber=EC368D582E1177E09915E33F44EDB9DE4EF32C52 Validity Not Before: May 18 07:50:56 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6a0ac4df-a865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:3b:b0:64:9a:c5:cc:60:5f:fa:e6:45:1e:37: b9:64:f5:b8:ed:b3:34:9f:c8:bc:ac:fa:7b:c0:b4: 84:e4:4a:13:17:b7:3e:05:ee:8a:c0:43:7c:12:4a: 97:e8:ef:a8:83:95:e5:d2:a5:b7:c2:b2:a3:f9:70: 99:ce:c6:54:5e:b9:6b:72:8b:16:72:d7:e6:45:90: 8d:79:70:51:74:12:bd:b9:7d:15:85:c4:f2:48:02: 2f:9d:e1:d7:5b:a1:6b:18:f7:b9:99:0a:b4:63:82: 19:ed:71:aa:83:59:f3:b3:b0:2c:d8:23:0b:ac:52: 37:c4:1a:2e:e2:dc:27:10:9f:30:e3:70:1a:3d:a0: 0b:93:bc:35:2a:62:9c:0f:26:d1:ef:7b:cd:e1:54: 37:53:36:44:db:1f:eb:22:1f:ab:06:a0:68:e5:f2: 89:80:6b:86:27:d4:7b:b5:f1:3e:a9:8d:d6:33:ac: 79:34:61:c9:2c:76:9b:46:c5:1c:1a:54:bd:e7:c1: fb:14:de:a7:9f:58:d2:38:fd:86:a3:e1:e1:61:a7: ce:dc:79:27:e0:d4:98:12:dc:58:73:6d:9d:b3:d8: 2f:93:eb:92:b7:25:bb:9f:66:04:01:87:83:09:fe: 35:66:f4:62:83:f4:5f:b3:f8:70:a1:25:46:10:93: 0a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:9B:6A:61:83:14:E7:27:C5:B1:9D:52:D2:FD:89:92:0C:1F:BB:4E X509v3 Authority Key Identifier: keyid:EC:36:8D:58:2E:11:77:E0:99:15:E3:3F:44:ED:B9:DE:4E:F3:2C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/7DaNWC4Rd-CZFeM_RO253k7zLFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/7DaNWC4Rd-CZFeM_RO253k7zLFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/4CF8B176528E11F1AB5B86DACA833773.roa sbgp-ipAddrBlock: critical IPv4: 177.7.128.0/22 Signature Algorithm: sha256WithRSAEncryption 47:1f:c8:72:d2:01:e6:17:ce:4a:d4:81:f8:3a:00:6a:d9:42: 29:6a:91:da:56:77:a8:43:99:44:83:be:51:55:ac:33:8d:8b: 1b:2e:e3:60:30:60:fa:4b:31:8a:88:5c:e5:2c:d2:54:f5:c3: 8c:5f:45:85:a6:4f:59:2a:70:b6:14:fd:f1:76:c7:67:70:ef: 43:22:c9:8b:16:73:94:a2:a1:a3:de:1f:cd:bb:ae:93:2d:22: a0:b0:e5:4c:64:4d:4d:8b:02:1b:a3:3b:8a:73:ad:f6:db:ae: 70:4c:e4:53:fd:66:ca:21:6e:c1:78:90:77:fa:da:cc:50:2e: 75:1f:77:75:37:c4:40:e2:e1:4c:07:6f:af:85:6b:ac:26:a5: 80:30:92:cf:36:74:3e:37:11:8c:0b:42:8d:f8:6d:d6:af:12: 1f:a7:48:8a:40:e2:44:c9:ff:54:47:60:3e:c3:61:54:1b:52: 86:25:ad:88:8c:98:f0:9d:4b:1c:94:8f:25:df:18:f1:cc:bd: cd:ea:7c:7b:90:37:3a:2f:8d:be:ab:88:87:8c:db:a9:39:aa: 80:b9:36:b9:b8:8f:2d:c7:a6:ee:e5:bd:d0:04:e1:c0:2b:63: b8:0e:9c:72:01:57:a0:07:82:b7:5e:45:00:d2:f7:1c:c8:a5: 60:b3:dd:86 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Njc4QzExMC8GA1UEBRMoRUMzNjhENTgyRTExNzdFMDk5MTVFMzNGNDRFREI5REU0 RUYzMkM1MjAeFw0yNjA1MTgwNzUwNTZaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMGFjNGRmLWE4NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCTO7BkmsXMYF/65kUeN7lk9bjtszSfyLys+nvAtITkShMXtz4F7orAQ3wSSpfo 76iDleXSpbfCsqP5cJnOxlReuWtyixZy1+ZFkI15cFF0Er25fRWFxPJIAi+d4ddb oWsY97mZCrRjghntcaqDWfOzsCzYIwusUjfEGi7i3CcQnzDjcBo9oAuTvDUqYpwP JtHve83hVDdTNkTbH+siH6sGoGjl8omAa4Yn1Hu18T6pjdYzrHk0YcksdptGxRwa VL3nwfsU3qefWNI4/Yaj4eFhp87ceSfg1JgS3FhzbZ2z2C+T65K3JbufZgQBh4MJ /jVm9GKD9F+z+HChJUYQkwrpAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUmJtqYYMU 5yfFsZ1S0v2Jkgwfu04wHwYDVR0jBBgwFoAU7DaNWC4Rd+CZFeM/RO253k7zLFIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2NzhDLzNCREUxRDZFNEYy QzExRjFCQkUyRjZFQTlCRUU1MjhFLzdEYU5XQzRSZC1DWkZlTV9STzI1M2s3ekxG SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjRBMUJFQTYxRDY2MTFFMkIyQ0Q4QjdDNzJG RDFGRjIvN0RhTldDNFJkLUNaRmVNX1JPMjUzazd6TEZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Njc4Qy8zQkRFMUQ2RTRGMkMxMUYxQkJFMkY2RUE5QkVFNTI4RS80Q0Y4QjE3NjUy OEUxMUYxQUI1Qjg2REFDQTgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAKxB4AwDQYJKoZIhvcNAQELBQADggEBAEcfyHLSAeYXzkrUgfg6AGrZ QilqkdpWd6hDmUSDvlFVrDONixsu42AwYPpLMYqIXOUs0lT1w4xfRYWmT1kqcLYU /fF2x2dw70MiyYsWc5SioaPeH827rpMtIqCw5UxkTU2LAhujO4pzrfbbrnBM5FP9 ZsohbsF4kHf62sxQLnUfd3U3xEDi4UwHb6+Fa6wmpYAwks82dD43EYwLQo34bdav Eh+nSIpA4kTJ/1RHYD7DYVQbUoYlrYiMmPCdSxyUjyXfGPHMvc3qfHuQNzovjb6r iIeM26k5qoC5Nrm4jy3Hpu7lvdAE4cArY7gOnHIBV6AHgrdeRQDS9xzIpWCz3YY= -----END CERTIFICATE-----Generated at Thu May 21 12:52:57 2026 by rpki-client