$ rpki-client -vvf rpki.apnic.net/member_repository/A915AC36/ED0C81A0CC1B11F09ADA8F2CC4F9AE02/7D88011ACF4011F08FF1FE52C4F9AE02.roa File: 7D88011ACF4011F08FF1FE52C4F9AE02.roa (raw, json) Hash identifier: YGc7kv7ZZdCc5DPV66N241SwkEHthgl6Nrvhn4oZsMs= Subject key identifier: 0F:8F:30:1E:26:1E:46:28:B6:79:9F:42:08:02:F1:AD:92:6C:71:69 Certificate issuer: /CN=A915AC36/serialNumber=50AF1AA293022F76CD1F51BA0DD58A5B8966915A Certificate serial: 3C Authority key identifier: 50:AF:1A:A2:93:02:2F:76:CD:1F:51:BA:0D:D5:8A:5B:89:66:91:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UK8aopMCL3bNH1G6DdWKW4lmkVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AC36/ED0C81A0CC1B11F09ADA8F2CC4F9AE02/7D88011ACF4011F08FF1FE52C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:39:51 +0000 ROA not before: Tue 02 Dec 2025 05:33:54 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 29802 IP address blocks: 114.129.10.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AC36/ED0C81A0CC1B11F09ADA8F2CC4F9AE02/UK8aopMCL3bNH1G6DdWKW4lmkVo.crl rsync://rpki.apnic.net/member_repository/A915AC36/ED0C81A0CC1B11F09ADA8F2CC4F9AE02/UK8aopMCL3bNH1G6DdWKW4lmkVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UK8aopMCL3bNH1G6DdWKW4lmkVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 07:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AC36, serialNumber=50AF1AA293022F76CD1F51BA0DD58A5B8966915A Validity Not Before: Dec 2 05:33:54 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a5a137-7277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:14:f8:8c:6d:e0:98:6a:1b:af:09:cb:20:69: c5:43:0a:db:00:29:5d:7d:df:6e:c3:6c:f8:c1:0a: 92:ae:0e:e7:4f:69:bf:bb:fe:4a:25:53:4c:d3:98: e8:b2:ff:3d:df:be:96:33:b2:66:56:85:55:e9:83: c8:97:86:16:5e:a2:27:e8:f2:b8:2d:cf:9b:98:5c: 63:87:67:0f:02:3c:9a:a0:9d:f4:e1:e9:0c:c1:5a: fc:9a:08:a6:e1:5a:8e:80:20:e4:96:10:2d:76:93: cd:82:72:82:89:97:81:d4:00:16:82:f8:3e:a3:8d: c3:aa:97:fc:8d:d5:34:e5:e2:61:5d:28:a0:e1:b2: f9:03:d6:31:0f:b3:1a:83:8b:9f:81:cd:de:b2:48: b7:d0:4e:71:67:80:05:7d:ba:b0:30:23:97:4c:ad: 50:98:b9:a4:b5:f6:f9:61:a3:a2:35:b7:81:d3:a8: f7:c7:01:bf:92:3c:5c:87:ad:9c:a0:b7:3c:9c:60: 22:6b:d8:ab:5c:71:2c:03:e7:89:cc:bc:31:e9:d1: 87:3c:e1:15:88:44:f1:11:47:0c:c9:2b:47:e4:25: 65:97:d0:d8:0d:47:23:82:04:b8:41:23:1d:ff:62: a8:f4:bd:ec:42:d6:4b:1a:19:71:58:11:2a:91:d9: 25:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:8F:30:1E:26:1E:46:28:B6:79:9F:42:08:02:F1:AD:92:6C:71:69 X509v3 Authority Key Identifier: keyid:50:AF:1A:A2:93:02:2F:76:CD:1F:51:BA:0D:D5:8A:5B:89:66:91:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AC36/ED0C81A0CC1B11F09ADA8F2CC4F9AE02/UK8aopMCL3bNH1G6DdWKW4lmkVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UK8aopMCL3bNH1G6DdWKW4lmkVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AC36/ED0C81A0CC1B11F09ADA8F2CC4F9AE02/7D88011ACF4011F08FF1FE52C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 114.129.10.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:ca:e0:f4:f1:f1:b9:31:45:ec:ee:96:59:0d:94:35:02:b7: f5:e0:8a:ad:aa:d5:e4:b8:78:ff:9f:fb:19:5b:78:1f:f5:d1: 25:dd:22:e8:a7:53:0f:a9:0c:69:31:a4:4c:e8:b9:49:6b:2d: 03:2c:c4:ab:a7:45:31:f9:21:bf:73:98:ab:f1:ed:96:1b:e7: 15:bb:91:92:f0:56:8e:1a:63:ca:a0:ed:ea:dc:a6:b0:72:78: 3d:58:fd:53:d1:79:e5:b9:e8:c5:d9:73:05:9a:69:d1:2a:7c: 7f:98:20:b9:24:31:5a:ce:6a:dc:69:5d:3d:28:75:48:9b:94: 58:c3:98:b3:21:bc:b3:9a:7e:24:f9:36:52:fc:4c:08:3d:02: a1:b4:ed:29:c8:55:4f:34:f2:08:fb:7d:8b:b0:e9:de:20:66: 22:12:d2:5c:95:12:80:7e:02:8a:b2:35:9c:ef:66:27:59:01: 28:3e:bd:bf:b5:99:37:57:57:fc:12:a1:1e:4e:0c:b1:f6:c3: 8f:c7:ff:05:19:ea:7f:08:bf:3f:e8:2a:e1:1f:90:9f:84:4d: f3:e5:7b:17:78:23:cd:6a:8f:ea:ac:0d:1c:ad:b5:2a:c8:b4: cf:8d:0e:30:34:c8:1b:71:2c:2c:30:5f:92:d5:d3:71:89:d8: 13:d0:5d:48 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QUMzNjExMC8GA1UEBRMoNTBBRjFBQTI5MzAyMkY3NkNEMUY1MUJBMERENThBNUI4 OTY2OTE1QTAeFw0yNTEyMDIwNTMzNTRaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTVhMTM3LTcyNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCUFPiMbeCYahuvCcsgacVDCtsAKV19327DbPjBCpKuDudPab+7/kolU0zTmOiy /z3fvpYzsmZWhVXpg8iXhhZeoifo8rgtz5uYXGOHZw8CPJqgnfTh6QzBWvyaCKbh Wo6AIOSWEC12k82CcoKJl4HUABaC+D6jjcOql/yN1TTl4mFdKKDhsvkD1jEPsxqD i5+Bzd6ySLfQTnFngAV9urAwI5dMrVCYuaS19vlho6I1t4HTqPfHAb+SPFyHrZyg tzycYCJr2KtccSwD54nMvDHp0Yc84RWIRPERRwzJK0fkJWWX0NgNRyOCBLhBIx3/ Yqj0vexC1ksaGXFYESqR2SWJAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUD48wHiYe Rii2eZ9CCALxrZJscWkwHwYDVR0jBBgwFoAUUK8aopMCL3bNH1G6DdWKW4lmkVow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBQzM2L0VEMEM4MUEwQ0Mx QjExRjA5QURBOEYyQ0M0RjlBRTAyL1VLOGFvcE1DTDNiTkgxRzZEZFdLVzRsbWtW by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVUs4YW9wTUNMM2JOSDFHNkRkV0tXNGxta1ZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QUMzNi9FRDBDODFBMENDMUIxMUYwOUFEQThGMkNDNEY5QUUwMi83RDg4MDExQUNG NDAxMUYwOEZGMUZFNTJDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFygQowDQYJKoZIhvcNAQELBQADggEBAG/K4PTx8bkxRezullkNlDUC t/Xgiq2q1eS4eP+f+xlbeB/10SXdIuinUw+pDGkxpEzouUlrLQMsxKunRTH5Ib9z mKvx7ZYb5xW7kZLwVo4aY8qg7ercprByeD1Y/VPReeW56MXZcwWaadEqfH+YILkk MVrOatxpXT0odUiblFjDmLMhvLOafiT5NlL8TAg9AqG07SnIVU808gj7fYuw6d4g ZiIS0lyVEoB+AoqyNZzvZidZASg+vb+1mTdXV/wSoR5ODLH2w4/H/wUZ6n8Ivz/o KuEfkJ+ETfPlexd4I81qj+qsDRyttSrItM+NDjA0yBtxLCwwX5LV03GJ2BPQXUg= -----END CERTIFICATE-----Generated at Tue Mar 17 02:22:50 2026 by rpki-client