$ rpki-client -vvf rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/7EC9705C84CA11EFA41F8D4DC4F9AE02.roa File: 7EC9705C84CA11EFA41F8D4DC4F9AE02.roa (raw, json) Hash identifier: VkfTGGoNVUsbEcJxM7s1vcrxda5Fy3LpRVjxl0XTbMI= Subject key identifier: 44:53:90:1D:79:10:35:8E:51:4B:A0:0B:9A:B5:0B:F9:CD:2A:D7:28 Certificate issuer: /CN=A91276FA/serialNumber=5533A7C57BF4DB1E538F9E77E0B4868B8F90C582 Certificate serial: 0121 Authority key identifier: 55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/7EC9705C84CA11EFA41F8D4DC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:41:04 +0000 ROA not before: Thu 23 Oct 2025 08:20:12 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 6134 IP address blocks: 45.125.16.0/22 maxlen: 24 103.242.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.crl rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 04:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276FA, serialNumber=5533A7C57BF4DB1E538F9E77E0B4868B8F90C582 Validity Not Before: Oct 23 08:20:12 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a58560-534b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:06:9b:cd:c7:5d:3c:63:25:12:36:89:71:92: 7d:75:15:60:0e:8f:7a:d0:7c:7c:3b:aa:4b:d6:69: 9a:6d:a9:a6:85:a3:9a:a7:40:6f:ed:99:c6:8d:64: 7b:9a:c4:0f:e2:d0:c3:c1:76:89:b6:b6:ce:a6:75: 19:bf:a0:27:31:df:8e:c0:24:9d:1d:82:52:9e:90: a9:21:69:6e:a5:a0:ce:fd:fe:da:ac:8b:0e:4d:e2: 50:5d:b3:97:13:77:d1:ee:29:ae:ea:69:63:f7:b9: 49:52:ee:ff:40:b4:d3:a2:15:03:69:d1:a6:8e:e6: 66:5e:22:9d:65:da:25:d3:32:40:05:b2:26:2a:db: 3e:2d:2a:09:44:60:1b:09:43:05:1a:66:b4:5c:52: fa:8a:12:21:9f:85:5f:79:02:45:49:b8:f4:35:d4: 5e:6a:3c:d9:2b:35:f4:06:ff:ea:7c:52:99:8f:67: 2c:73:c4:54:2d:e8:d3:c4:83:43:9f:58:98:d2:66: 85:be:af:25:b1:35:a5:60:11:24:13:57:fa:e8:d9: 87:f9:55:03:04:45:e5:48:50:4d:85:8f:7f:2f:d1: 28:e6:e3:07:e1:37:38:fb:84:42:61:e5:df:96:95: cf:0d:ac:65:e2:6d:1e:67:53:f0:bb:8e:48:38:f2: b2:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:53:90:1D:79:10:35:8E:51:4B:A0:0B:9A:B5:0B:F9:CD:2A:D7:28 X509v3 Authority Key Identifier: keyid:55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/7EC9705C84CA11EFA41F8D4DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.125.16.0/22 103.242.132.0/22 Signature Algorithm: sha256WithRSAEncryption 48:f2:75:77:0f:ce:f4:54:69:3a:4f:15:f7:e4:21:c0:21:05: 39:1c:cd:df:ab:62:73:82:66:bd:9c:d5:74:71:cc:9f:b9:f4: a1:73:b2:4d:b1:d5:3b:de:ff:dd:2f:27:d7:02:70:a4:70:52: f9:c5:65:db:58:97:17:25:b8:29:7d:7f:b8:a9:6a:3a:ab:4b: 82:e5:3b:d1:1d:2a:af:ed:af:89:0a:9d:73:8c:8b:5b:08:ca: 7f:b4:3a:b0:62:68:6d:f2:ff:1e:92:76:5b:21:47:df:0f:d3: e8:b6:3b:bb:df:b6:eb:85:9a:71:34:90:90:23:36:5d:41:98: 80:1c:79:3a:78:0f:1c:d3:46:91:07:91:13:3f:b2:61:4e:ad: f8:f0:c2:0e:ac:87:b4:8d:cf:77:26:79:9d:0e:da:47:26:de: 3f:d5:e3:df:1f:e3:5a:ce:ad:44:9c:7d:81:fb:5b:eb:a3:c1: 59:a8:fe:a7:9e:08:2d:76:e3:55:84:5a:e8:6e:3c:f8:e9:b0: dd:91:e2:10:f5:e8:87:29:5b:d7:f3:50:4d:6a:21:0e:c2:0e: 28:3d:ec:2e:36:23:0f:a7:39:15:84:53:a8:9e:aa:e3:f0:4b: 88:39:db:79:a4:a9:d9:ab:13:86:c7:56:61:81:92:fa:6b:23: fc:79:d0:b9 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2RkExMTAvBgNVBAUTKDU1MzNBN0M1N0JGNERCMUU1MzhGOUU3N0UwQjQ4NjhC OEY5MEM1ODIwHhcNMjUxMDIzMDgyMDEyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODU2MC01MzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3gabzcddPGMlEjaJcZJ9dRVgDo960Hx8O6pL1mmabammhaOap0Bv7ZnGjWR7 msQP4tDDwXaJtrbOpnUZv6AnMd+OwCSdHYJSnpCpIWlupaDO/f7arIsOTeJQXbOX E3fR7imu6mlj97lJUu7/QLTTohUDadGmjuZmXiKdZdol0zJABbImKts+LSoJRGAb CUMFGma0XFL6ihIhn4VfeQJFSbj0NdReajzZKzX0Bv/qfFKZj2csc8RULejTxIND n1iY0maFvq8lsTWlYBEkE1f66NmH+VUDBEXlSFBNhY9/L9Eo5uMH4Tc4+4RCYeXf lpXPDaxl4m0eZ1Pwu45IOPKyrQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFERTkB15 EDWOUUugC5q1C/nNKtcoMB8GA1UdIwQYMBaAFFUzp8V79NseU4+ed+C0houPkMWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZGQS85QzUyQTdFODg0 QzkxMUVGQjU0RDBDNDlDNEY5QUUwMi9WVE9ueFh2MDJ4NVRqNTUzNExTR2k0LVF4 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZUT254WHYwMng1VGo1NTM0TFNHaTQtUXhZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc2RkEvOUM1MkE3RTg4NEM5MTFFRkI1NEQwQzQ5QzRGOUFFMDIvN0VDOTcwNUM4 NENBMTFFRkE0MUY4RDREQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLX0QAwQCZ/KEMA0GCSqGSIb3DQEBCwUAA4IBAQBI8nV3D870VGk6 TxX35CHAIQU5HM3fq2Jzgma9nNV0ccyfufShc7JNsdU73v/dLyfXAnCkcFL5xWXb WJcXJbgpfX+4qWo6q0uC5TvRHSqv7a+JCp1zjItbCMp/tDqwYmht8v8eknZbIUff D9Potju737brhZpxNJCQIzZdQZiAHHk6eA8c00aRB5ETP7JhTq348MIOrIe0jc93 JnmdDtpHJt4/1ePfH+Nazq1EnH2B+1vro8FZqP6nnggtduNVhFrobjz46bDdkeIQ 9eiHKVvX81BNaiEOwg4oPewuNiMPpzkVhFOonqrj8EuIOdt5pKnZqxOGx1ZhgZL6 ayP8edC5 -----END CERTIFICATE-----Generated at Thu Mar 12 22:56:23 2026 by rpki-client