$ rpki-client -vvf rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/0A7CA184B8C611F0B55B8B4EC4F9AE02.roa File: 0A7CA184B8C611F0B55B8B4EC4F9AE02.roa (raw, json) Hash identifier: LvQrYr/7IXXFeyO0C263bGkuxb9ShOgruDtXGRpyuAo= Subject key identifier: E3:F4:CE:29:98:DD:6B:67:21:A6:B5:01:9E:10:E9:C9:C8:10:DA:6D Certificate issuer: /CN=A916708F/serialNumber=2D329912D69903B850097F8C6ED8571DAC7105AD Certificate serial: 0D62 Authority key identifier: 2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/0A7CA184B8C611F0B55B8B4EC4F9AE02.roa Signing time: Mon 30 Mar 2026 18:23:03 +0000 ROA not before: Mon 30 Mar 2026 18:23:03 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 138640 IP address blocks: 123.136.28.0/24 maxlen: 24 2404:7e00:501::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.crl rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3426 (0xd62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916708F, serialNumber=2D329912D69903B850097F8C6ED8571DAC7105AD Validity Not Before: Mar 30 18:23:03 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cabf87-1dcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b9:40:50:e9:79:fc:c2:bb:45:77:69:96:af: 28:a6:eb:86:0b:d1:a2:09:f5:4f:74:f6:d6:b6:df: ce:30:9f:ab:51:47:90:18:82:f5:22:56:01:e6:32: 1c:41:f8:06:40:34:8d:5b:b8:5d:1a:34:99:40:fd: 87:60:26:8a:32:9e:a8:73:6d:aa:ff:f6:91:a6:e2: 25:fd:92:d7:77:d9:66:b0:21:35:d8:92:b5:18:97: 28:9b:3b:d3:a0:66:00:22:c1:d2:d0:7b:bc:bb:56: 1a:8f:cb:6f:0f:ce:5e:e3:4e:ac:49:99:c4:ac:df: ad:d4:ee:04:e4:0c:72:de:a4:12:5d:d8:f8:93:91: 6d:e1:d1:e7:6d:09:49:81:8c:7c:67:99:d7:ff:8c: 59:d4:dc:09:88:66:fd:4f:c5:28:56:8f:84:1e:84: 53:39:3d:c1:d8:7b:25:d9:e4:b4:ce:6d:d6:3d:78: 8f:0b:af:b6:98:4c:0f:93:f7:ff:b7:3b:4f:69:a5: e6:29:6f:b1:d3:97:af:09:d5:f7:a5:8d:30:31:04: cc:b9:a8:c7:95:a6:66:93:93:7e:62:20:67:18:f9: 43:ce:62:ae:5a:56:6e:76:6f:e5:74:7c:34:88:01: 3e:f0:3d:05:c2:fb:dd:69:cb:88:1f:2d:5f:f8:db: e0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:F4:CE:29:98:DD:6B:67:21:A6:B5:01:9E:10:E9:C9:C8:10:DA:6D X509v3 Authority Key Identifier: keyid:2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/0A7CA184B8C611F0B55B8B4EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.136.28.0/24 IPv6: 2404:7e00:501::/48 Signature Algorithm: sha256WithRSAEncryption 39:57:88:93:2d:22:04:5d:55:f4:e3:d2:29:94:9e:f6:f7:82: 52:c2:7b:e4:e8:9a:30:06:f5:43:ea:f1:d1:64:6b:93:81:d7: fe:fa:c4:75:38:a7:c5:c2:9d:b2:fa:25:79:8a:a1:82:6b:66: e0:fc:76:68:f5:bc:a3:23:01:96:43:ab:3e:6e:b0:cc:27:02: f1:52:9f:35:59:eb:b1:ff:d4:a3:f1:fa:f2:49:96:28:f9:84: cd:9c:7d:05:14:dc:ed:75:ce:34:5a:7f:bf:c4:c0:4a:92:a2: c2:c6:ec:c2:4b:93:2d:93:e0:1e:20:c1:91:3f:2c:c5:d9:af: ac:1d:99:44:6a:78:d3:52:86:1f:78:95:25:a0:33:56:6d:01: 9c:b6:2c:83:04:c6:91:bb:ab:ac:89:6e:4b:8d:30:0f:6e:80: fc:18:cb:27:a8:80:eb:51:8d:44:99:89:88:4c:a6:e1:77:c0: 6c:6b:1d:36:f0:c7:a4:01:9e:ca:7c:75:d0:8e:4b:5c:10:db: b4:4d:17:7b:97:56:3a:c6:3c:77:b3:3e:f1:be:27:de:7c:57: 06:9d:be:7e:9f:7c:fb:ec:2d:30:02:ef:fc:59:4b:6e:e6:e1: 9a:d1:69:ea:e2:91:ae:6a:be:b5:41:a5:99:ec:2b:1b:e6:cb: b3:59:8c:7f -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwOEYxMTAvBgNVBAUTKDJEMzI5OTEyRDY5OTAzQjg1MDA5N0Y4QzZFRDg1NzFE QUM3MTA1QUQwHhcNMjYwMzMwMTgyMzAzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNhYmY4Ny0xZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7lAUOl5/MK7RXdplq8opuuGC9GiCfVPdPbWtt/OMJ+rUUeQGIL1IlYB5jIc QfgGQDSNW7hdGjSZQP2HYCaKMp6oc22q//aRpuIl/ZLXd9lmsCE12JK1GJcomzvT oGYAIsHS0Hu8u1Yaj8tvD85e406sSZnErN+t1O4E5Axy3qQSXdj4k5Ft4dHnbQlJ gYx8Z5nX/4xZ1NwJiGb9T8UoVo+EHoRTOT3B2Hsl2eS0zm3WPXiPC6+2mEwPk/f/ tztPaaXmKW+x05evCdX3pY0wMQTMuajHlaZmk5N+YiBnGPlDzmKuWlZudm/ldHw0 iAE+8D0FwvvdacuIHy1f+NvgiwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFOP0zimY 3WtnIaa1AZ4Q6cnIENptMB8GA1UdIwQYMBaAFC0ymRLWmQO4UAl/jG7YVx2scQWt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzA4Ri81NkRCMEYyNEYx NjMxMUU5OURCRURGNjVDNEY5QUUwMi9MVEtaRXRhWkE3aFFDWC1NYnRoWEhheHhC YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUS1pFdGFaQTdoUUNYLU1idGhYSGF4eEJhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjcwOEYvNTZEQjBGMjRGMTYzMTFFOTlEQkVERjY1QzRGOUFFMDIvMEE3Q0ExODRC OEM2MTFGMEI1NUI4QjRFQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAe4gcMA8EAgACMAkDBwAkBH4ABQEwDQYJKoZIhvcNAQELBQADggEB ADlXiJMtIgRdVfTj0imUnvb3glLCe+TomjAG9UPq8dFka5OB1/76xHU4p8XCnbL6 JXmKoYJrZuD8dmj1vKMjAZZDqz5usMwnAvFSnzVZ67H/1KPx+vJJlij5hM2cfQUU 3O11zjRaf7/EwEqSosLG7MJLky2T4B4gwZE/LMXZr6wdmURqeNNShh94lSWgM1Zt AZy2LIMExpG7q6yJbkuNMA9ugPwYyyeogOtRjUSZiYhMpuF3wGxrHTbwx6QBnsp8 ddCOS1wQ27RNF3uXVjrGPHezPvG+J958Vwadvn6ffPvsLTAC7/xZS27m4ZrRaeri ka5qvrVBpZnsKxvmy7NZjH8= -----END CERTIFICATE-----Generated at Mon Apr 6 14:52:14 2026 by rpki-client