$ rpki-client -vvf rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/7AA2F5228F4411F0830D0B1EC4F9AE02.roa File: 7AA2F5228F4411F0830D0B1EC4F9AE02.roa (raw, json) Hash identifier: y8QNuwkCsWJ/L5tVc94Iq9/DycvmCAsPaVTmrrHE5H0= Subject key identifier: FC:45:08:6C:ED:8C:11:75:AA:07:BB:C4:D3:0F:5C:32:C2:75:24:5F Certificate issuer: /CN=A916CDAC/serialNumber=DDFCA9D034945A5924116137D62877F0CE52BF1B Certificate serial: 69 Authority key identifier: DD:FC:A9:D0:34:94:5A:59:24:11:61:37:D6:28:77:F0:CE:52:BF:1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3fyp0DSUWlkkEWE31ih38M5Svxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/7AA2F5228F4411F0830D0B1EC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:28:49 +0000 ROA not before: Fri 26 Sep 2025 06:22:41 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 31898 IP address blocks: 140.83.32.0/21 maxlen: 21 140.83.40.0/22 maxlen: 22 140.83.44.0/22 maxlen: 22 140.83.48.0/20 maxlen: 20 140.83.80.0/21 maxlen: 21 140.83.94.0/24 maxlen: 24 140.83.95.0/24 maxlen: 24 146.56.32.0/20 maxlen: 20 146.56.48.0/21 maxlen: 21 146.56.61.0/24 maxlen: 24 146.56.96.0/20 maxlen: 20 146.56.112.0/21 maxlen: 21 146.56.120.0/22 maxlen: 22 146.56.124.0/22 maxlen: 22 146.56.128.0/18 maxlen: 18 146.56.178.0/24 maxlen: 24 161.118.128.0/19 maxlen: 19 161.118.160.0/19 maxlen: 19 161.118.192.0/18 maxlen: 18 192.188.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.crl rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3fyp0DSUWlkkEWE31ih38M5Svxs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:46:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CDAC, serialNumber=DDFCA9D034945A5924116137D62877F0CE52BF1B Validity Not Before: Sep 26 06:22:41 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a58281-5261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:61:68:28:ca:f9:77:05:18:28:b1:0f:08:c6: 15:45:95:96:53:44:b9:10:88:18:f2:d3:dd:e7:23: 9f:3d:1b:2e:77:74:a2:4f:f7:b2:e2:75:29:68:27: 34:08:e2:da:37:d8:da:b8:d1:ff:f0:6f:6b:06:40: 33:cd:47:3c:d2:f0:40:24:96:04:6e:2c:8e:58:32: f8:d9:0a:44:da:a1:f8:69:ec:dd:dc:6f:92:b9:9e: 2f:89:e6:b0:d2:5f:56:0e:aa:08:a7:8b:4b:6c:dd: 32:f4:6f:d0:38:6b:1c:14:52:ac:7c:dc:bc:8b:88: be:dd:05:37:28:91:e9:1a:9e:a7:77:a0:22:b1:c2: 19:e1:26:3d:be:cb:13:d5:3c:e5:79:8b:3b:1b:9a: e4:5b:c0:83:00:8e:83:9a:ec:dc:10:fc:90:fa:12: d3:a7:3d:11:92:53:db:16:6a:17:cf:a6:3c:e4:f8: 6c:0b:fb:18:2d:4f:83:73:2f:90:0c:a8:e3:90:db: 53:d8:1e:98:e8:0d:ac:43:ed:cc:84:a5:5c:8f:96: 8d:f2:be:0c:cf:cf:55:c3:d8:1f:ab:9e:c6:e0:84: c0:4a:97:ee:a9:dc:3b:1f:c3:33:c1:d8:5c:fa:eb: b6:29:74:ae:13:30:f7:85:e5:a8:52:7b:2f:23:3f: 8f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:45:08:6C:ED:8C:11:75:AA:07:BB:C4:D3:0F:5C:32:C2:75:24:5F X509v3 Authority Key Identifier: keyid:DD:FC:A9:D0:34:94:5A:59:24:11:61:37:D6:28:77:F0:CE:52:BF:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3fyp0DSUWlkkEWE31ih38M5Svxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/7AA2F5228F4411F0830D0B1EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 140.83.32.0/19 140.83.80.0/21 140.83.94.0/23 146.56.32.0-146.56.55.255 146.56.61.0/24 146.56.96.0-146.56.191.255 161.118.128.0/17 192.188.171.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:6e:0b:50:94:d0:91:20:a6:83:a6:06:8e:61:b5:bf:48:61: 8b:1e:61:3c:86:4a:f6:26:f3:11:d4:df:b3:6c:1b:86:3d:9b: e4:e7:d3:ff:21:ca:e3:96:27:a7:07:df:33:22:30:41:0b:3c: 36:fa:cd:23:e4:ac:06:0d:b1:12:53:e9:fd:38:56:ea:f2:8d: 05:79:3b:7e:c1:f2:a2:8c:4b:7b:81:4e:6e:be:dc:41:2e:5d: e0:61:7d:a9:0a:1a:be:60:96:24:9b:47:2c:f8:9c:04:47:7a: 4b:8b:5d:63:52:cf:cc:00:e6:95:08:46:67:e2:d2:cc:d0:35: 3a:2c:5a:4b:99:69:c3:2c:ae:e9:b8:46:cd:4b:75:a1:5f:48: 2e:6e:a2:42:77:53:d2:79:f3:66:db:a0:fe:39:b3:6f:8e:96: 4c:4a:7f:06:d8:ef:a9:37:10:2f:50:66:f2:10:68:29:68:38: fd:a0:80:6b:89:2f:13:dd:0f:fd:8e:f6:43:a6:e4:49:c0:57: aa:2a:d0:4c:5b:70:32:c9:3e:04:21:31:9a:71:d2:9b:38:6b: 5e:16:1d:bf:5b:c4:62:5f:46:8b:0d:88:e4:e0:86:8b:5d:f3: f5:da:66:13:40:c6:57:8a:e6:64:38:bf:73:20:08:fd:2a:ef: de:86:93:92 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 Q0RBQzExMC8GA1UEBRMoRERGQ0E5RDAzNDk0NUE1OTI0MTE2MTM3RDYyODc3RjBD RTUyQkYxQjAeFw0yNTA5MjYwNjIyNDFaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4MjgxLTUyNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCNYWgoyvl3BRgosQ8IxhVFlZZTRLkQiBjy093nI589Gy53dKJP97LidSloJzQI 4to32Nq40f/wb2sGQDPNRzzS8EAklgRuLI5YMvjZCkTaofhp7N3cb5K5ni+J5rDS X1YOqgini0ts3TL0b9A4axwUUqx83LyLiL7dBTcokekanqd3oCKxwhnhJj2+yxPV POV5izsbmuRbwIMAjoOa7NwQ/JD6EtOnPRGSU9sWahfPpjzk+GwL+xgtT4NzL5AM qOOQ21PYHpjoDaxD7cyEpVyPlo3yvgzPz1XD2B+rnsbghMBKl+6p3DsfwzPB2Fz6 67YpdK4TMPeF5ahSey8jP497AgMBAAGjggKaMIICljAdBgNVHQ4EFgQU/EUIbO2M EXWqB7vE0w9cMsJ1JF8wHwYDVR0jBBgwFoAU3fyp0DSUWlkkEWE31ih38M5Svxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDREFDLzc4RDU5MzE4OEYz OTExRjA4NjMyQTAzOUM0RjlBRTAyLzNmeXAwRFNVV2xra0VXRTMxaWgzOE01U3Z4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM2Z5cDBEU1VXbGtrRVdFMzFpaDM4TTVTdnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0RBQy83OEQ1OTMxODhGMzkxMUYwODYzMkEwMzlDNEY5QUUwMi83QUEyRjUyMjhG NDQxMUYwODMwRDBCMUVDNEY5QUUwMi5yb2EwWQYIKwYBBQUHAQcBAf8ESjBIMEYE AgABMEADBAWMUyADBAOMU1ADBAGMU14wDAMEBZI4IAMEA5I4MAMEAJI4PTAMAwQF kjhgAwQGkjiAAwQHoXaAAwQAwLyrMA0GCSqGSIb3DQEBCwUAA4IBAQCPbgtQlNCR IKaDpgaOYbW/SGGLHmE8hkr2JvMR1N+zbBuGPZvk59P/IcrjlienB98zIjBBCzw2 +s0j5KwGDbESU+n9OFbq8o0FeTt+wfKijEt7gU5uvtxBLl3gYX2pChq+YJYkm0cs +JwER3pLi11jUs/MAOaVCEZn4tLM0DU6LFpLmWnDLK7puEbNS3WhX0gubqJCd1PS efNm26D+ObNvjpZMSn8G2O+pNxAvUGbyEGgpaDj9oIBriS8T3Q/9jvZDpuRJwFeq KtBMW3AyyT4EITGacdKbOGteFh2/W8RiX0aLDYjk4IaLXfP12mYTQMZXiuZkOL9z IAj9Ku/ehpOS -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:17 2026 by rpki-client