$ rpki-client -vvf rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/76DDA85AFE5211EC8F4A4F16C4F9AE02.roa File: 76DDA85AFE5211EC8F4A4F16C4F9AE02.roa (raw, json) Hash identifier: 1LYSJbL5brDy2VQLSkF8A4eEC/J9C8LJr8XVMvjnSvY= Subject key identifier: 21:BA:20:E5:36:4A:21:BF:67:23:EE:57:18:D5:DF:0D:26:F0:F6:C4 Certificate issuer: /CN=A9151F3B/serialNumber=BE92ABA4A0144319EE6D45AB9090D88D5DAF37FE Certificate serial: 0688 Authority key identifier: BE:92:AB:A4:A0:14:43:19:EE:6D:45:AB:90:90:D8:8D:5D:AF:37:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/76DDA85AFE5211EC8F4A4F16C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:49:30 +0000 ROA not before: Sat 01 Mar 2025 00:52:17 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 8075 IP address blocks: 113.197.64.0/24 maxlen: 24 113.197.65.0/24 maxlen: 24 113.197.66.0/24 maxlen: 24 113.197.67.0/24 maxlen: 24 203.84.134.0/24 maxlen: 24 203.84.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.crl rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 22:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1672 (0x688) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151F3B, serialNumber=BE92ABA4A0144319EE6D45AB9090D88D5DAF37FE Validity Not Before: Mar 1 00:52:17 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a40ba9-99f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:36:67:2b:ea:33:98:35:3c:58:36:8b:52:9e: 6f:0a:4f:df:08:38:b7:25:ea:94:ad:ea:d4:fc:97: ee:ad:1f:30:33:9a:d0:e9:f7:f4:9d:e7:b3:95:0a: 7d:90:51:8c:ee:29:f5:10:31:41:ff:3e:bc:cd:f6: fd:8c:4f:bd:57:40:a3:d4:8c:2b:66:d2:52:63:d2: 78:b2:38:57:98:85:39:8b:7f:79:df:83:c3:eb:52: 73:33:0d:60:31:9a:f8:12:05:8c:0b:70:ea:cf:45: 10:ec:95:5d:7c:a7:eb:e2:ea:86:a7:d6:f3:22:3a: 62:50:d6:a1:97:9b:98:4b:c7:0f:44:c4:7d:c8:34: aa:88:2e:c7:cc:14:a0:77:0e:77:68:a8:2f:b7:10: 8a:c5:52:54:07:9a:a2:ed:91:e4:35:7f:fc:b4:7f: 58:ba:b8:72:6f:b6:32:7f:9b:e3:ce:38:53:04:7a: 3c:86:3f:33:1e:dc:6b:5b:f8:6a:d3:40:ab:54:bd: 24:26:6d:89:7f:93:1b:bb:93:76:6d:e8:1d:36:69: 51:85:dc:88:84:c9:18:12:ac:0a:f7:4e:2e:ae:a8: 47:a7:cb:92:6c:31:15:22:87:8a:95:10:f1:04:7a: be:fc:ac:72:89:05:ad:05:f0:ea:dd:31:28:93:d4: 5c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:BA:20:E5:36:4A:21:BF:67:23:EE:57:18:D5:DF:0D:26:F0:F6:C4 X509v3 Authority Key Identifier: keyid:BE:92:AB:A4:A0:14:43:19:EE:6D:45:AB:90:90:D8:8D:5D:AF:37:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/76DDA85AFE5211EC8F4A4F16C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 113.197.64.0/22 203.84.134.0/23 Signature Algorithm: sha256WithRSAEncryption a9:13:09:a8:b3:16:6a:af:09:28:43:f6:95:66:61:ea:03:77: 5b:ea:0e:e6:32:23:e5:a9:ae:99:c8:4d:ed:8d:85:8a:ae:a6: 02:64:02:59:e0:3d:61:b1:ef:ab:5a:af:0e:27:6e:8d:9c:53: 38:69:60:c4:7e:07:c8:48:90:fb:e7:43:6c:cc:25:38:3c:6b: 8e:8d:ec:f7:79:cd:c2:7f:fd:af:69:04:81:d0:f3:90:ab:56: a9:48:dc:db:70:1a:cc:91:11:a9:3f:7c:ce:e5:7c:1b:ec:a5: c2:8b:ce:a7:72:c5:8c:64:a3:46:e3:06:8f:17:c8:85:3c:43: 1a:2c:d1:5b:7b:4f:de:a5:25:49:d4:fb:a9:7a:a2:31:16:e0: 5f:4f:08:1d:73:8d:4e:3d:75:bd:a7:fd:ff:9b:aa:6f:36:c4: 68:a0:5e:55:4b:b9:87:22:49:1a:e9:48:9d:d1:79:47:4e:fb: 3c:cc:58:d2:56:a9:2f:be:8d:7b:d7:2f:ac:e1:1e:9b:d0:64: 3d:a4:e2:1a:29:eb:ac:e7:25:02:33:41:d6:0e:80:54:2b:7e: 06:05:da:88:41:37:5e:ba:dd:a7:ae:d5:28:25:0f:06:06:ae: f7:65:f0:cd:65:af:c4:52:f4:18:d3:3f:e1:8c:61:af:75:67: 4a:65:88:2d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFGM0IxMTAvBgNVBAUTKEJFOTJBQkE0QTAxNDQzMTlFRTZENDVBQjkwOTBEODhE NURBRjM3RkUwHhcNMjUwMzAxMDA1MjE3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGJhOS05OWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TZnK+ozmDU8WDaLUp5vCk/fCDi3JeqUrerU/JfurR8wM5rQ6ff0neezlQp9 kFGM7in1EDFB/z68zfb9jE+9V0Cj1IwrZtJSY9J4sjhXmIU5i39534PD61JzMw1g MZr4EgWMC3Dqz0UQ7JVdfKfr4uqGp9bzIjpiUNahl5uYS8cPRMR9yDSqiC7HzBSg dw53aKgvtxCKxVJUB5qi7ZHkNX/8tH9Yurhyb7Yyf5vjzjhTBHo8hj8zHtxrW/hq 00CrVL0kJm2Jf5Mbu5N2begdNmlRhdyIhMkYEqwK904urqhHp8uSbDEVIoeKlRDx BHq+/KxyiQWtBfDq3TEok9RcEQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCG6IOU2 SiG/ZyPuVxjV3w0m8PbEMB8GA1UdIwQYMBaAFL6Sq6SgFEMZ7m1Fq5CQ2I1drzf+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUYzQi80RjhCOTFCOEI5 QjYxMUVCQjQxMUU5MkVDNEY5QUUwMi92cEtycEtBVVF4bnViVVdya0pEWWpWMnZO XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZwS3JwS0FVUXhudWJVV3JrSkRZalYydk5fNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTFGM0IvNEY4QjkxQjhCOUI2MTFFQkI0MTFFOTJFQzRGOUFFMDIvNzZEREE4NUFG RTUyMTFFQzhGNEE0RjE2QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCccVAAwQBy1SGMA0GCSqGSIb3DQEBCwUAA4IBAQCpEwmosxZqrwko Q/aVZmHqA3db6g7mMiPlqa6ZyE3tjYWKrqYCZAJZ4D1hse+rWq8OJ26NnFM4aWDE fgfISJD750NszCU4PGuOjez3ec3Cf/2vaQSB0POQq1apSNzbcBrMkRGpP3zO5Xwb 7KXCi86ncsWMZKNG4waPF8iFPEMaLNFbe0/epSVJ1PupeqIxFuBfTwgdc41OPXW9 p/3/m6pvNsRooF5VS7mHIkka6Uid0XlHTvs8zFjSVqkvvo171y+s4R6b0GQ9pOIa Keus5yUCM0HWDoBUK34GBdqIQTdeut2nrtUoJQ8GBq73ZfDNZa/EUvQY0z/hjGGv dWdKZYgt -----END CERTIFICATE-----Generated at Wed Mar 4 19:16:13 2026 by rpki-client