$ rpki-client -vvf rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/36DD8A88B68A11F09D04E950C4F9AE02.roa File: 36DD8A88B68A11F09D04E950C4F9AE02.roa (raw, json) Hash identifier: GWrEAedNxq26S9u3npD3fV7eXN2tOVtJvTAoCK+jrPA= Subject key identifier: 8A:F0:B9:67:2C:13:4B:0A:C5:09:2A:F7:3E:2F:A0:BA:E3:B8:5D:79 Certificate issuer: /CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Certificate serial: 055C Authority key identifier: CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/36DD8A88B68A11F09D04E950C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:49:05 +0000 ROA not before: Mon 03 Nov 2025 00:44:54 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 399989 IP address blocks: 113.20.48.0/22 maxlen: 22 113.20.52.0/22 maxlen: 22 223.29.128.0/22 maxlen: 22 223.29.136.0/22 maxlen: 22 223.29.140.0/22 maxlen: 22 223.29.144.0/22 maxlen: 22 223.29.148.0/22 maxlen: 22 223.29.152.0/22 maxlen: 22 223.29.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1372 (0x55c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FC73, serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Validity Not Before: Nov 3 00:44:54 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48a21-b7ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d7:52:6e:ba:fa:27:8b:cf:37:02:21:76:aa: ba:23:9d:d6:c6:f1:22:5c:de:3a:9a:92:ad:ca:02: 6f:b0:fb:cf:d3:ac:ea:55:1a:87:34:cb:d3:67:73: 0f:54:3d:d5:f8:0e:38:ca:bb:a5:1b:51:4d:38:ea: 95:cb:a9:36:ae:79:9a:67:d0:e4:62:6a:23:f8:9e: 42:b1:b3:7c:e9:09:06:23:9e:0a:24:8e:43:9c:b3: d4:a4:51:02:63:24:15:76:3e:e7:ec:7d:73:ae:ef: f7:10:76:a1:29:ee:8f:24:af:8f:0f:39:30:66:66: de:4b:c5:2d:27:34:57:a8:8b:90:b4:bb:da:dc:e0: 7f:89:97:30:47:91:e9:50:8a:44:f5:27:a7:29:ad: d7:4b:3e:fe:f9:a2:cc:d0:30:33:bc:81:5f:9f:61: f1:7e:4a:04:54:90:1c:db:13:64:e0:0a:2c:43:a7: 2b:8c:91:73:8a:ed:8e:ca:8b:a3:90:a2:34:e7:8e: 56:b3:33:6f:6d:00:c4:94:8b:90:8c:9e:09:c2:87: ed:48:ac:c2:53:d4:6f:98:e2:fa:27:fa:22:c8:16: 72:24:cf:1e:e4:6c:9a:a1:db:79:9e:18:39:8b:e7: 63:5a:59:fb:bf:b8:75:b4:15:6b:9e:da:2e:f3:c7: 70:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:F0:B9:67:2C:13:4B:0A:C5:09:2A:F7:3E:2F:A0:BA:E3:B8:5D:79 X509v3 Authority Key Identifier: keyid:CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/36DD8A88B68A11F09D04E950C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 113.20.48.0/21 223.29.128.0/22 223.29.136.0-223.29.159.255 Signature Algorithm: sha256WithRSAEncryption b6:4f:b5:1b:3b:82:83:02:99:0a:b1:a0:2c:87:0a:08:82:24: f0:ef:f2:e5:f3:50:44:d4:d1:b5:a4:40:b4:58:ed:f1:41:5a: 97:64:a5:f6:49:f2:49:0c:7e:61:fc:8e:ff:71:8d:39:27:ef: 26:3d:e2:bf:37:e0:0b:ab:21:fe:d9:4f:38:33:df:fe:a5:a5: 44:f6:24:78:2e:18:55:f4:40:25:5b:82:7b:e2:76:bc:c8:e8: ff:32:f9:0e:4a:4e:f3:80:7f:31:aa:07:32:1a:cf:18:f9:8f: b9:94:a2:7b:15:19:ef:73:af:d9:5c:48:93:b5:06:e8:f2:61: 73:07:7a:88:b0:8b:6b:8e:7c:42:a4:38:79:08:0d:e3:90:5e: 3a:b9:8f:3f:4b:4b:af:5c:3a:d3:07:7c:97:35:3e:a0:58:bb: 05:01:49:83:20:db:24:7f:25:8e:2d:19:62:88:3a:52:0a:14: dc:dc:d0:cd:fd:89:2e:c4:1c:cb:1d:41:f4:1b:a5:58:51:d3: 35:f6:38:25:31:08:06:ac:09:ca:39:40:b6:88:ca:96:89:8f: 5c:cf:48:23:3a:89:63:22:b2:5c:3f:1c:e0:e0:1c:8c:bd:63: d6:9b:e0:95:31:20:17:f5:3e:62:73:73:67:38:9f:cf:2b:3c: f4:39:d1:c8 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICBVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDNzMxMTAvBgNVBAUTKENFRTQxNjAxRUVBOUY1MUIzNTI1REE1NURENEFDOTVD RUZBRjVBQkMwHhcNMjUxMTAzMDA0NDU0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGEyMS1iN2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4tdSbrr6J4vPNwIhdqq6I53WxvEiXN46mpKtygJvsPvP06zqVRqHNMvTZ3MP VD3V+A44yrulG1FNOOqVy6k2rnmaZ9DkYmoj+J5CsbN86QkGI54KJI5DnLPUpFEC YyQVdj7n7H1zru/3EHahKe6PJK+PDzkwZmbeS8UtJzRXqIuQtLva3OB/iZcwR5Hp UIpE9SenKa3XSz7++aLM0DAzvIFfn2HxfkoEVJAc2xNk4AosQ6crjJFziu2Oyouj kKI0545WszNvbQDElIuQjJ4JwoftSKzCU9RvmOL6J/oiyBZyJM8e5Gyaodt5nhg5 i+djWln7v7h1tBVrntou88dwOQIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFIrwuWcs E0sKxQkq9z4voLrjuF15MB8GA1UdIwQYMBaAFM7kFgHuqfUbNSXaVd1KyVzvr1q8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkM3My8wMTQ0Q0RGODlG MzQxMUVDOUNFQkM2NzBDNEY5QUUwMi96dVFXQWU2cDlSczFKZHBWM1VySlhPLXZX cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1UVdBZTZwOVJzMUpkcFYzVXJKWE8tdldydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDNzMvMDE0NENERjg5RjM0MTFFQzlDRUJDNjcwQzRGOUFFMDIvMzZERDhBODhC NjhBMTFGMDlEMDRFOTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQDcRQwAwQC3x2AMAwDBAPfHYgDBAXfHYAwDQYJKoZIhvcNAQELBQAD ggEBALZPtRs7goMCmQqxoCyHCgiCJPDv8uXzUETU0bWkQLRY7fFBWpdkpfZJ8kkM fmH8jv9xjTkn7yY94r834AurIf7ZTzgz3/6lpUT2JHguGFX0QCVbgnvidrzI6P8y +Q5KTvOAfzGqBzIazxj5j7mUonsVGe9zr9lcSJO1BujyYXMHeoiwi2uOfEKkOHkI DeOQXjq5jz9LS69cOtMHfJc1PqBYuwUBSYMg2yR/JY4tGWKIOlIKFNzc0M39iS7E HMsdQfQbpVhR0zX2OCUxCAasCco5QLaIypaJj1zPSCM6iWMislw/HODgHIy9Y9ab 4JUxIBf1PmJzc2c4n88rPPQ50cg= -----END CERTIFICATE-----Generated at Sat Mar 7 03:30:56 2026 by rpki-client