$ rpki-client -vvf rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/7D2EA194B20711EA8B74F445C4F9AE02.roa File: 7D2EA194B20711EA8B74F445C4F9AE02.roa (raw, json) Hash identifier: sk2XL2BNft3Qb5DlW0IYmAxdXBhZMlrkB9WLp+WKc50= Subject key identifier: E2:9C:4A:01:58:D7:52:3F:92:6C:AB:BD:EB:61:C0:20:A2:EF:2E:D2 Certificate issuer: /CN=A9187465/serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Certificate serial: 1709 Authority key identifier: 88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/7D2EA194B20711EA8B74F445C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:25:29 +0000 ROA not before: Tue 30 Sep 2025 17:15:13 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 45102 IP address blocks: 43.242.168.0/22 maxlen: 24 103.38.56.0/22 maxlen: 24 2401:8680::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:31:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5897 (0x1709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187465, serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Validity Not Before: Sep 30 17:15:13 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a46878-ab0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:74:91:78:70:6f:ad:82:96:49:26:ef:26:e5: 36:d9:38:5b:78:44:78:0b:fd:52:c4:42:97:a0:ed: f6:c0:a4:72:ba:46:29:8e:80:f4:1d:b1:be:2e:b8: e6:6c:f7:24:c7:46:8b:f2:61:2e:f6:df:25:dd:cc: b4:63:1f:8b:b0:7d:cd:6e:57:ad:84:77:a9:ba:b2: 8f:66:82:3e:eb:ad:9b:ad:00:d0:75:9e:ad:1a:37: fe:27:31:da:d6:89:aa:e0:fe:99:19:10:c9:56:81: 64:5b:dc:ea:08:f2:41:75:ad:d4:59:27:d8:f1:3f: a3:d8:df:8e:75:af:df:53:de:9b:ac:3d:e6:8e:8f: f1:a0:45:ae:60:30:ef:2f:f8:00:65:e7:d9:ae:4a: 5d:e4:24:e7:97:59:ac:74:d3:20:4d:e5:b7:3c:56: 2e:ca:85:e2:d2:0d:49:55:97:0a:98:61:15:b2:a0: 04:1a:1e:b2:4a:08:52:43:f9:b2:31:84:33:04:57: 10:3d:58:42:e0:47:89:1a:89:52:da:b4:42:32:38: 5e:e1:4b:b7:75:d4:cf:15:b4:ec:37:00:6a:32:73: 62:be:80:1e:45:06:68:07:d0:ba:20:5a:d0:7d:0c: 33:6f:24:f1:02:d0:82:df:a1:21:b1:fb:2e:a6:71: 91:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:9C:4A:01:58:D7:52:3F:92:6C:AB:BD:EB:61:C0:20:A2:EF:2E:D2 X509v3 Authority Key Identifier: keyid:88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/7D2EA194B20711EA8B74F445C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.242.168.0/22 103.38.56.0/22 IPv6: 2401:8680::/32 Signature Algorithm: sha256WithRSAEncryption af:75:93:44:9a:94:25:04:c1:86:6a:cd:28:8a:08:dd:c1:eb: f9:31:4d:64:14:2f:09:36:ee:21:e9:c5:d6:80:12:03:d0:1e: 72:6a:8c:6d:c8:6b:95:63:52:64:71:ba:30:75:0a:f7:bd:e6: 5b:ba:71:56:28:a1:46:12:3f:0b:02:20:70:0b:44:59:05:d5: 40:56:21:0c:ef:3f:10:00:d8:97:01:9c:74:45:af:62:70:89: 96:a1:d8:70:0a:b2:1c:b4:be:d6:60:5b:8c:bf:6d:da:33:b0: de:2d:e7:a2:6a:af:dc:a3:a7:db:31:d2:d7:35:1d:6a:33:fd: b1:a3:e7:99:5b:34:e7:11:05:b8:2f:6b:df:44:05:bc:c9:e5: e0:c4:b1:86:89:6e:c8:41:0e:0f:1f:a5:fb:35:1a:66:33:26: 86:69:f4:b1:d5:33:7a:e0:39:26:18:79:61:9a:50:a3:fe:ef: 15:d0:c4:65:1f:f0:2e:07:fb:6e:78:f3:5f:6a:5f:d5:b5:9e: 31:73:e0:7f:73:62:24:1a:a3:7e:ba:cd:e0:cc:ff:ff:b1:14: de:74:ea:f7:cb:84:3d:40:9e:49:a6:a4:a5:57:51:74:88:f6: 41:47:25:aa:1a:10:68:6e:d9:84:24:e9:04:03:da:80:2b:f1: 8a:7f:e7:dd -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICFwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0NjUxMTAvBgNVBAUTKDg4MEU2QjREQ0Q2Q0VDNTNDOEQwM0Q3NDBDODhFOTc3 M0IwNDdCMTkwHhcNMjUwOTMwMTcxNTEzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Njg3OC1hYjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3SReHBvrYKWSSbvJuU22ThbeER4C/1SxEKXoO32wKRyukYpjoD0HbG+Lrjm bPckx0aL8mEu9t8l3cy0Yx+LsH3NblethHepurKPZoI+662brQDQdZ6tGjf+JzHa 1omq4P6ZGRDJVoFkW9zqCPJBda3UWSfY8T+j2N+Oda/fU96brD3mjo/xoEWuYDDv L/gAZefZrkpd5CTnl1msdNMgTeW3PFYuyoXi0g1JVZcKmGEVsqAEGh6ySghSQ/my MYQzBFcQPVhC4EeJGolS2rRCMjhe4Uu3ddTPFbTsNwBqMnNivoAeRQZoB9C6IFrQ fQwzbyTxAtCC36EhsfsupnGR0wIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFOKcSgFY 11I/kmyrvethwCCi7y7SMB8GA1UdIwQYMBaAFIgOa03NbOxTyNA9dAyI6Xc7BHsZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ2NS9CMUFGQjZGQTBB NTMxMUU4QUM3QkVFMkVDNEY5QUUwMi9pQTVyVGMxczdGUEkwRDEwRElqcGR6c0Vl eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBNXJUYzFzN0ZQSTBEMTBESWpwZHpzRWV4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc0NjUvQjFBRkI2RkEwQTUzMTFFOEFDN0JFRTJFQzRGOUFFMDIvN0QyRUExOTRC MjA3MTFFQThCNzRGNDQ1QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCK/KoAwQCZyY4MA0EAgACMAcDBQAkAYaAMA0GCSqGSIb3DQEBCwUA A4IBAQCvdZNEmpQlBMGGas0oigjdwev5MU1kFC8JNu4h6cXWgBID0B5yaoxtyGuV Y1JkcbowdQr3veZbunFWKKFGEj8LAiBwC0RZBdVAViEM7z8QANiXAZx0Ra9icImW odhwCrIctL7WYFuMv23aM7DeLeeiaq/co6fbMdLXNR1qM/2xo+eZWzTnEQW4L2vf RAW8yeXgxLGGiW7IQQ4PH6X7NRpmMyaGafSx1TN64DkmGHlhmlCj/u8V0MRlH/Au B/tuePNfal/VtZ4xc+B/c2IkGqN+us3gzP//sRTedOr3y4Q9QJ5JpqSlV1F0iPZB RyWqGhBobtmEJOkEA9qAK/GKf+fd -----END CERTIFICATE-----Generated at Fri Mar 13 02:20:58 2026 by rpki-client