$ rpki-client -vvf rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/CA9C08E07C7E11EFBDC93555C4F9AE02.roa File: CA9C08E07C7E11EFBDC93555C4F9AE02.roa (raw, json) Hash identifier: miNX+ihIAMVGdmuQAkCqPB0jM4UCC/1lv8ogOOKBb5g= Subject key identifier: 45:2A:FB:8C:F7:D2:2A:FA:CC:03:14:EF:F9:86:1B:68:CF:29:90:43 Certificate issuer: /CN=A919ECE7/serialNumber=77370BC07305D19DBDACCE4BF7209E1EB6D40E33 Certificate serial: 07B1 Authority key identifier: 77:37:0B:C0:73:05:D1:9D:BD:AC:CE:4B:F7:20:9E:1E:B6:D4:0E:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzcLwHMF0Z29rM5L9yCeHrbUDjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/CA9C08E07C7E11EFBDC93555C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:47:25 +0000 ROA not before: Tue 02 Dec 2025 21:24:36 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 62468 IP address blocks: 43.250.172.0/22 maxlen: 24 103.42.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/dzcLwHMF0Z29rM5L9yCeHrbUDjM.crl rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/dzcLwHMF0Z29rM5L9yCeHrbUDjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzcLwHMF0Z29rM5L9yCeHrbUDjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 21:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1969 (0x7b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919ECE7, serialNumber=77370BC07305D19DBDACCE4BF7209E1EB6D40E33 Validity Not Before: Dec 2 21:24:36 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46d9d-5075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:89:a2:81:aa:85:37:86:5e:3e:f4:45:5e:46: b9:0b:01:02:95:02:3e:86:ff:be:a2:93:7f:77:31: 9b:f6:2a:1b:82:82:65:9b:a1:8c:d8:42:48:a4:77: 6c:62:89:cc:0b:1b:27:a2:49:30:8f:29:0c:b2:e6: d5:e8:5c:1d:a9:4b:a9:bb:84:61:58:a3:31:d5:e5: d1:d7:9a:90:d0:84:fa:b2:57:2f:8e:a9:ae:5e:2f: 3d:dd:f9:fe:9b:b2:66:86:b2:c8:6f:5e:ec:7a:14: 17:f5:0c:0b:48:70:1e:e9:fc:4e:2d:59:17:fc:d9: 0d:5e:ad:25:e3:26:16:11:12:55:08:89:e6:39:6a: f5:b3:b8:11:02:dc:28:34:c8:22:0e:17:35:58:c6: 91:3a:36:7d:5e:88:d4:d2:2b:79:cb:1e:cb:a7:b3: 3b:ea:e5:b8:f4:0e:19:27:e2:0a:fa:f8:a4:ff:c7: ab:44:16:82:36:8d:bd:f4:3e:c6:1e:0d:d8:24:3b: 57:ad:89:ca:10:35:dc:1b:ac:48:5b:1e:53:ac:0a: 4c:6f:14:c9:ff:2b:a9:ec:35:f3:f7:b4:ed:56:f1: c6:dc:ad:35:6a:07:7d:59:2a:07:93:1d:69:5d:8b: e8:68:85:56:a4:de:98:bc:c4:84:c4:cd:d9:48:10: fb:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:2A:FB:8C:F7:D2:2A:FA:CC:03:14:EF:F9:86:1B:68:CF:29:90:43 X509v3 Authority Key Identifier: keyid:77:37:0B:C0:73:05:D1:9D:BD:AC:CE:4B:F7:20:9E:1E:B6:D4:0E:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/dzcLwHMF0Z29rM5L9yCeHrbUDjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzcLwHMF0Z29rM5L9yCeHrbUDjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/CA9C08E07C7E11EFBDC93555C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.250.172.0/22 103.42.28.0/22 Signature Algorithm: sha256WithRSAEncryption 50:4f:2b:ed:dc:79:77:7f:7c:9e:6a:a0:1d:51:7a:15:43:48: bf:af:06:f6:88:e2:4f:e0:b2:b5:a9:80:50:61:7e:c2:5d:fa: 41:23:8a:b1:59:f8:ec:8f:2b:b1:01:93:a2:32:21:d9:71:bc: b4:79:04:13:bf:f1:72:24:66:5e:cb:6f:d9:2c:c8:64:fe:30: ba:4d:1d:26:90:e0:00:61:ac:79:a6:77:23:64:af:05:17:03: e6:46:76:b6:61:df:1a:f3:c9:d5:23:7b:06:7d:c3:52:91:67: 34:30:4a:8d:7f:f5:23:c3:b9:e2:2a:b6:99:ea:d5:ce:dd:51: 87:dc:a9:70:e4:85:ed:0e:2b:ff:8e:06:fb:2f:2e:21:61:89: 5b:ac:2c:dc:c5:e7:69:f6:52:b2:7b:d2:07:49:12:cf:04:ec: c6:5f:7c:3a:32:2f:44:93:b1:88:bb:b5:5d:8c:9d:c3:95:1a: 9c:e1:a7:83:aa:e7:57:35:17:28:6d:78:60:4e:7f:c0:24:fe: ce:2f:95:de:84:b8:42:83:d6:54:80:d4:5e:68:f4:11:6d:68: f1:16:9f:1d:50:f7:74:a0:64:fd:90:6c:29:6e:44:f9:29:e5: 51:c6:74:c2:cf:e7:53:82:6e:db:fe:1c:3a:2f:b8:d5:89:0f: 61:3e:02:3b -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICB7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVDRTcxMTAvBgNVBAUTKDc3MzcwQkMwNzMwNUQxOURCREFDQ0U0QkY3MjA5RTFF QjZENDBFMzMwHhcNMjUxMjAyMjEyNDM2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmQ5ZC01MDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsImigaqFN4ZePvRFXka5CwEClQI+hv++opN/dzGb9iobgoJlm6GM2EJIpHds YonMCxsnokkwjykMsubV6FwdqUupu4RhWKMx1eXR15qQ0IT6slcvjqmuXi893fn+ m7JmhrLIb17sehQX9QwLSHAe6fxOLVkX/NkNXq0l4yYWERJVCInmOWr1s7gRAtwo NMgiDhc1WMaROjZ9XojU0it5yx7Lp7M76uW49A4ZJ+IK+vik/8erRBaCNo299D7G Hg3YJDtXrYnKEDXcG6xIWx5TrApMbxTJ/yup7DXz97TtVvHG3K01agd9WSoHkx1p XYvoaIVWpN6YvMSExM3ZSBD7mwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFEUq+4z3 0ir6zAMU7/mGG2jPKZBDMB8GA1UdIwQYMBaAFHc3C8BzBdGdvazOS/cgnh621A4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUNFNy81RTA1REJBNDVG QUMxMUVCODQ5NDQ1MkZDNEY5QUUwMi9kemNMd0hNRjBaMjlyTTVMOXlDZUhyYlVE ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R6Y0x3SE1GMFoyOXJNNUw5eUNlSHJiVURqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVDRTcvNUUwNURCQTQ1RkFDMTFFQjg0OTQ0NTJGQzRGOUFFMDIvQ0E5QzA4RTA3 QzdFMTFFRkJEQzkzNTU1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/qsAwQCZyocMA0GCSqGSIb3DQEBCwUAA4IBAQBQTyvt3Hl3f3ye aqAdUXoVQ0i/rwb2iOJP4LK1qYBQYX7CXfpBI4qxWfjsjyuxAZOiMiHZcby0eQQT v/FyJGZey2/ZLMhk/jC6TR0mkOAAYax5pncjZK8FFwPmRna2Yd8a88nVI3sGfcNS kWc0MEqNf/Ujw7niKraZ6tXO3VGH3Klw5IXtDiv/jgb7Ly4hYYlbrCzcxedp9lKy e9IHSRLPBOzGX3w6Mi9Ek7GIu7VdjJ3DlRqc4aeDqudXNRcobXhgTn/AJP7OL5Xe hLhCg9ZUgNReaPQRbWjxFp8dUPd0oGT9kGwpbkT5KeVRxnTCz+dTgm7b/hw6L7jV iQ9hPgI7 -----END CERTIFICATE-----Generated at Sat Mar 21 14:36:50 2026 by rpki-client