$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/7B3737EE546E11EAAA4CF919C4F9AE02.roa File: 7B3737EE546E11EAAA4CF919C4F9AE02.roa (raw, json) Hash identifier: bmXoLBfX6xgDiWLYVB99IscKM8HoFwAC8VY8TFy+E/g= Subject key identifier: 52:0F:E4:3B:E6:D2:31:6F:0D:B1:28:D4:86:E3:2E:C1:17:B7:72:94 Certificate issuer: /CN=A9142127/serialNumber=415027D8C9298E97DA05C0C43DCD8BAF52174175 Certificate serial: 0B6D Authority key identifier: 41:50:27:D8:C9:29:8E:97:DA:05:C0:C4:3D:CD:8B:AF:52:17:41:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/7B3737EE546E11EAAA4CF919C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:35:30 +0000 ROA not before: Tue 27 May 2025 04:28:21 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4049 IP address blocks: 59.153.20.0/22 maxlen: 24 103.47.3.0/24 maxlen: 24 103.65.244.0/22 maxlen: 24 103.95.60.0/22 maxlen: 24 103.130.76.0/22 maxlen: 24 103.148.132.0/23 maxlen: 24 103.250.198.0/24 maxlen: 24 123.253.176.0/22 maxlen: 24 202.27.113.0/24 maxlen: 24 202.36.150.0/23 maxlen: 24 202.36.152.0/23 maxlen: 24 202.49.20.0/22 maxlen: 24 202.49.24.0/21 maxlen: 24 202.134.32.0/20 maxlen: 24 2406:2b00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.crl rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2925 (0xb6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127, serialNumber=415027D8C9298E97DA05C0C43DCD8BAF52174175 Validity Not Before: May 27 04:28:21 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a58411-ea09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:90:b7:59:1a:f5:d5:da:23:a7:94:ab:7e:42: c2:8e:05:4a:4b:99:a3:40:8d:47:24:00:df:7e:e9: 9d:01:46:19:2f:05:6d:10:89:38:65:65:92:b6:5a: 1d:60:d9:4f:10:35:4c:f8:9d:f0:70:3b:e5:11:05: 1a:ef:b7:81:21:bf:ee:48:f8:97:a1:da:2f:a8:e2: fb:9e:f6:5a:66:ee:b1:98:c2:3f:bd:94:61:d4:37: 7e:0e:89:b1:ca:b4:f7:f4:00:b6:49:df:30:6c:b0: ea:6e:d9:f5:34:98:ab:cd:42:8c:8e:fe:40:39:35: c2:4b:a8:cf:59:62:d5:be:53:a4:9a:bd:42:53:9c: 8e:cc:02:dd:36:c8:7f:24:83:87:15:87:a8:60:12: 15:70:72:83:66:f0:9e:be:23:39:2a:6b:1c:22:a0: 91:60:07:5c:f6:f9:d0:f6:72:e4:80:ce:3d:69:93: a0:78:11:1c:5c:c2:c8:23:a9:ec:3d:2b:38:48:ee: d1:bc:ba:06:a1:7d:65:14:a3:38:61:70:87:ee:d0: df:57:71:08:d7:50:d2:09:9a:43:1b:3d:a4:ee:fe: 91:d9:a4:e4:28:9e:79:85:2b:c4:70:e1:93:25:e6: ad:4b:9d:db:94:11:d4:58:ab:e5:d2:5e:37:f5:01: 7c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:0F:E4:3B:E6:D2:31:6F:0D:B1:28:D4:86:E3:2E:C1:17:B7:72:94 X509v3 Authority Key Identifier: keyid:41:50:27:D8:C9:29:8E:97:DA:05:C0:C4:3D:CD:8B:AF:52:17:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/7B3737EE546E11EAAA4CF919C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 59.153.20.0/22 103.47.3.0/24 103.65.244.0/22 103.95.60.0/22 103.130.76.0/22 103.148.132.0/23 103.250.198.0/24 123.253.176.0/22 202.27.113.0/24 202.36.150.0-202.36.153.255 202.49.20.0-202.49.31.255 202.134.32.0/20 IPv6: 2406:2b00::/32 Signature Algorithm: sha256WithRSAEncryption 9b:21:e5:ae:04:cb:b0:6b:15:96:0c:93:16:8b:85:eb:e5:ae: 6e:65:c5:45:1d:de:59:f6:cc:1b:7f:5f:f4:35:b8:c6:4d:4a: e5:1f:ed:f0:33:2e:fa:b4:c7:77:5b:94:82:8c:97:1e:f8:8e: fe:e7:db:d0:a9:fd:ee:c7:10:e1:62:fe:6c:79:30:0f:f1:ff: 3f:16:1e:90:e5:43:61:fc:3d:03:6d:51:b9:be:09:c3:7c:4b: 40:e3:37:c7:59:7a:55:d3:a6:7d:c2:2f:6f:91:f4:73:51:1e: 14:f7:d0:07:75:e4:3e:06:50:58:d7:f4:bd:a9:e8:07:6d:95: 18:0c:19:9e:ad:8d:46:89:2b:cb:46:e9:7d:0e:33:af:c3:db: fa:bc:b7:18:ee:6d:e1:71:f6:e6:72:7f:cc:fd:51:a9:df:84: 8c:45:44:03:ed:71:92:b3:f4:20:a9:b3:af:c8:8c:87:4c:c8: cd:75:4a:bc:8c:f8:00:3e:36:79:e8:5f:6a:11:78:dc:0b:a4: ad:04:82:ac:1b:78:85:e7:54:2e:5a:c1:74:96:e7:27:b1:fd: 93:fa:b6:ea:37:48:00:70:e0:a0:2f:22:b8:a6:49:6a:1c:f6: 0f:9a:2d:81:19:69:11:ec:1d:33:85:ce:31:02:88:eb:ee:11: 7c:03:93:3a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICC20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKDQxNTAyN0Q4QzkyOThFOTdEQTA1QzBDNDNEQ0Q4QkFG NTIxNzQxNzUwHhcNMjUwNTI3MDQyODIxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODQxMS1lYTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpC3WRr11dojp5SrfkLCjgVKS5mjQI1HJADffumdAUYZLwVtEIk4ZWWStlod YNlPEDVM+J3wcDvlEQUa77eBIb/uSPiXodovqOL7nvZaZu6xmMI/vZRh1Dd+Domx yrT39AC2Sd8wbLDqbtn1NJirzUKMjv5AOTXCS6jPWWLVvlOkmr1CU5yOzALdNsh/ JIOHFYeoYBIVcHKDZvCeviM5KmscIqCRYAdc9vnQ9nLkgM49aZOgeBEcXMLII6ns PSs4SO7RvLoGoX1lFKM4YXCH7tDfV3EI11DSCZpDGz2k7v6R2aTkKJ55hSvEcOGT JeatS53blBHUWKvl0l439QF8mQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFFIP5Dvm 0jFvDbEo1IbjLsEXt3KUMB8GA1UdIwQYMBaAFEFQJ9jJKY6X2gXAxD3Ni69SF0F1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8yMEY0NDQzQTU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi9RVkFuMk1rcGpwZmFCY0RFUGMyTHIxSVhR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWQW4yTWtwanBmYUJjREVQYzJMcjFJWFFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIxMjcvMjBGNDQ0M0E1NDZEMTFFQUJERDNDMTE3QzRGOUFFMDIvN0IzNzM3RUU1 NDZFMTFFQUFBNENGOTE5QzRGOUFFMDIucm9hMIGABggrBgEFBQcBBwEB/wRxMG8w XgQCAAEwWAMEAjuZFAMEAGcvAwMEAmdB9AMEAmdfPAMEAmeCTAMEAWeUhAMEAGf6 xgMEAnv9sAMEAMobcTAMAwQByiSWAwQByiSYMAwDBALKMRQDBAXKMQADBATKhiAw DQQCAAIwBwMFACQGKwAwDQYJKoZIhvcNAQELBQADggEBAJsh5a4Ey7BrFZYMkxaL hevlrm5lxUUd3ln2zBt/X/Q1uMZNSuUf7fAzLvq0x3dblIKMlx74jv7n29Cp/e7H EOFi/mx5MA/x/z8WHpDlQ2H8PQNtUbm+CcN8S0DjN8dZelXTpn3CL2+R9HNRHhT3 0Ad15D4GUFjX9L2p6AdtlRgMGZ6tjUaJK8tG6X0OM6/D2/q8txjubeFx9uZyf8z9 UanfhIxFRAPtcZKz9CCps6/IjIdMyM11SryM+AA+NnnoX2oReNwLpK0EgqwbeIXn VC5awXSW5yex/ZP6tuo3SABw4KAvIrimSWoc9g+aLYEZaRHsHTOFzjECiOvuEXwD kzo= -----END CERTIFICATE-----Generated at Fri Mar 13 04:18:16 2026 by rpki-client