$ rpki-client -vvf rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/7D7B467CE06011EDBB10FD53C4F9AE02.roa File: 7D7B467CE06011EDBB10FD53C4F9AE02.roa (raw, json) Hash identifier: I0zmL5B73oQFIRIRYeKUXBMAOnBgVjWPSDX99GBH4kI= Subject key identifier: E8:22:4E:00:99:A4:CF:73:82:0E:D3:F7:C2:BA:80:5B:73:30:05:59 Certificate issuer: /CN=A912096C/serialNumber=8197663A7F6347D591B6B2B9ADD5A2D574E91124 Certificate serial: 07E7 Authority key identifier: 81:97:66:3A:7F:63:47:D5:91:B6:B2:B9:AD:D5:A2:D5:74:E9:11:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/7D7B467CE06011EDBB10FD53C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:40:36 +0000 ROA not before: Fri 04 Jul 2025 22:02:50 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45250 IP address blocks: 114.199.64.0/24 maxlen: 24 114.199.66.0/24 maxlen: 24 114.199.72.0/24 maxlen: 24 114.199.76.0/24 maxlen: 24 114.199.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 20:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2023 (0x7e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912096C, serialNumber=8197663A7F6347D591B6B2B9ADD5A2D574E91124 Validity Not Before: Jul 4 22:02:50 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a40994-f15d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b8:ed:a1:56:37:70:95:06:1f:c7:68:93:a3: 2d:7b:e9:0b:eb:c4:35:e5:98:06:66:21:3a:ad:ce: ee:58:d4:77:7e:41:d5:90:f2:34:b0:2a:00:c7:98: 6d:c1:c3:d9:c3:f5:b4:ae:17:f4:b0:4c:3f:15:ab: 87:a3:e7:5a:98:8c:69:c3:4b:37:32:f7:f4:2d:78: 6f:4a:ea:e4:55:04:a1:2d:be:86:f8:61:04:8d:24: ed:ae:1a:61:03:7b:c2:45:de:21:58:cf:68:29:6d: 08:2f:ed:bd:b2:e6:57:25:6f:df:4a:2e:60:0f:68: 7f:dc:48:90:df:f3:3e:76:45:81:58:b3:f2:9a:35: 31:64:81:85:99:e0:0b:92:d9:a7:2e:7d:5e:f2:e7: 0f:57:5d:0d:59:3e:47:a0:75:bc:0a:fe:a0:0b:d6: 2f:b1:01:b7:1b:e6:05:c9:e2:a0:23:17:a7:63:b6: 39:6e:f1:88:d5:9b:e3:bc:39:a8:d4:fb:9d:c2:5c: 32:32:3e:56:88:d1:bc:b5:70:31:35:14:ae:6e:eb: 5a:54:2a:fe:ea:51:a0:64:02:3e:63:c7:db:af:93: 00:f6:a0:57:e7:20:f7:a0:2c:37:3a:fa:e8:d9:4f: f7:fc:65:3b:42:ff:2f:d8:c7:61:c5:d2:1b:d0:b7: 73:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:22:4E:00:99:A4:CF:73:82:0E:D3:F7:C2:BA:80:5B:73:30:05:59 X509v3 Authority Key Identifier: keyid:81:97:66:3A:7F:63:47:D5:91:B6:B2:B9:AD:D5:A2:D5:74:E9:11:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/7D7B467CE06011EDBB10FD53C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 114.199.64.0/24 114.199.66.0/24 114.199.72.0/24 114.199.76.0/24 114.199.79.0/24 Signature Algorithm: sha256WithRSAEncryption 88:2c:bb:da:2b:fc:33:a2:c0:f2:8b:fa:0e:b2:09:57:c4:a4: db:18:73:42:f9:7c:81:0e:11:46:77:0b:25:72:5d:02:1c:81: 6c:3e:2d:97:82:30:af:b4:c8:ce:53:8e:ed:06:3d:14:8e:95: 0b:71:5e:c7:f2:17:dc:ce:2b:42:bd:bc:5c:eb:48:20:6c:2d: 4b:a6:79:2e:c7:d5:a7:0f:68:6d:36:ce:7c:4a:cb:22:97:3b: 52:b7:a0:95:96:92:65:25:8c:f1:22:45:0d:7d:21:a2:83:d5: 2a:a3:fd:19:29:b0:67:18:bf:15:4d:52:47:72:5e:2e:cc:fd: 86:31:1f:a0:0c:c0:d7:bb:97:20:98:3d:98:11:92:b8:b5:ad: 5f:68:0b:5c:24:58:12:85:ad:2c:52:8e:83:d6:fb:e7:51:1a: 90:78:22:ae:fa:a2:c1:a3:28:ea:05:d0:bd:c3:08:97:10:de: a6:52:22:26:c3:5d:5a:5e:65:e3:02:7c:5e:bb:4f:21:08:20: 18:91:06:3b:03:02:82:74:ba:89:7f:a6:bc:aa:cd:9b:a8:78: 42:e5:44:7b:92:0e:80:d8:4b:be:2a:5c:0d:e5:bc:e4:dd:ea: 7b:b7:ec:af:70:04:f5:7c:81:82:f4:03:b6:8b:a2:0f:8f:ab: e5:de:a1:ba -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICB+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NkMxMTAvBgNVBAUTKDgxOTc2NjNBN0Y2MzQ3RDU5MUI2QjJCOUFERDVBMkQ1 NzRFOTExMjQwHhcNMjUwNzA0MjIwMjUwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDk5NC1mMTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LjtoVY3cJUGH8dok6Mte+kL68Q15ZgGZiE6rc7uWNR3fkHVkPI0sCoAx5ht wcPZw/W0rhf0sEw/FauHo+damIxpw0s3Mvf0LXhvSurkVQShLb6G+GEEjSTtrhph A3vCRd4hWM9oKW0IL+29suZXJW/fSi5gD2h/3EiQ3/M+dkWBWLPymjUxZIGFmeAL ktmnLn1e8ucPV10NWT5HoHW8Cv6gC9YvsQG3G+YFyeKgIxenY7Y5bvGI1ZvjvDmo 1PudwlwyMj5WiNG8tXAxNRSubutaVCr+6lGgZAI+Y8fbr5MA9qBX5yD3oCw3Ovro 2U/3/GU7Qv8v2MdhxdIb0LdzQwIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFOgiTgCZ pM9zgg7T98K6gFtzMAVZMB8GA1UdIwQYMBaAFIGXZjp/Y0fVkbayua3VotV06REk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk2Qy8xRDMxQzE4NDI4 OTIxMUVCQUM4Q0NFMTNDNEY5QUUwMi9nWmRtT245alI5V1J0cks1cmRXaTFYVHBF U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2daZG1PbjlqUjlXUnRySzVyZFdpMVhUcEVTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjA5NkMvMUQzMUMxODQyODkyMTFFQkFDOENDRTEzQzRGOUFFMDIvN0Q3QjQ2N0NF MDYwMTFFREJCMTBGRDUzQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQAcsdAAwQAcsdCAwQAcsdIAwQAcsdMAwQAcsdPMA0GCSqGSIb3DQEB CwUAA4IBAQCILLvaK/wzosDyi/oOsglXxKTbGHNC+XyBDhFGdwslcl0CHIFsPi2X gjCvtMjOU47tBj0UjpULcV7H8hfczitCvbxc60ggbC1Lpnkux9WnD2htNs58Sssi lztSt6CVlpJlJYzxIkUNfSGig9Uqo/0ZKbBnGL8VTVJHcl4uzP2GMR+gDMDXu5cg mD2YEZK4ta1faAtcJFgSha0sUo6D1vvnURqQeCKu+qLBoyjqBdC9wwiXEN6mUiIm w11aXmXjAnxeu08hCCAYkQY7AwKCdLqJf6a8qs2bqHhC5UR7kg6A2Eu+KlwN5bzk 3ep7t+yvcAT1fIGC9AO2i6IPj6vl3qG6 -----END CERTIFICATE-----Generated at Sun Mar 22 04:30:25 2026 by rpki-client