$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/7C796C5E743311F0BAAA8B29C4F9AE02.roa File: 7C796C5E743311F0BAAA8B29C4F9AE02.roa (raw, json) Hash identifier: /BSR0rTy9YxRu75VPc6TgIj01cxMh76wRoCuCj5Hck4= Subject key identifier: 31:04:2A:31:69:3E:BD:D0:6A:0F:BA:EC:26:1A:73:4C:4E:96:EB:D7 Certificate issuer: /CN=A91F3C87/serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Certificate serial: 0279 Authority key identifier: EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/7C796C5E743311F0BAAA8B29C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:36:45 +0000 ROA not before: Fri 05 Dec 2025 01:11:01 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 153952 IP address blocks: 43.224.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 02:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 633 (0x279) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3C87, serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Validity Not Before: Dec 5 01:11:01 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a5926c-7598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:82:ce:11:68:c1:1e:7a:a7:81:ac:2b:2b:77: b6:0c:16:63:7f:b1:60:cf:5f:10:c1:8b:3e:11:24: c1:4b:87:73:7c:cb:07:b3:c5:e7:58:20:1a:10:b6: f9:2e:2f:01:7d:66:dc:70:39:f6:58:f3:f3:84:94: c4:c3:e4:0b:93:2a:0f:fb:70:f5:34:9c:db:0c:27: 98:55:58:57:e9:22:eb:e6:f9:db:44:a1:c7:f2:7a: 04:c5:ce:c9:79:a5:ba:bd:6e:ee:b3:b8:b2:d2:73: 10:dc:8b:19:75:57:a7:56:bb:19:5c:18:b0:1d:18: 37:54:96:46:63:9d:dd:4e:f5:c5:c4:8e:a7:a2:b1: 5c:d2:57:04:1b:b1:82:7a:08:4d:a9:75:c4:52:52: 10:31:80:96:f7:39:4d:0f:70:b7:44:ff:ae:6e:9a: cd:65:35:f9:3a:6c:55:70:1d:7b:0d:06:25:c4:ff: fb:9b:8a:da:c0:62:6e:5a:2d:90:cb:c8:a8:eb:71: bc:3c:5f:04:61:2e:41:98:ac:a2:eb:f4:85:a9:0b: 20:9f:e7:35:9c:6e:e8:96:7e:9f:12:d8:21:fe:98: 01:21:b6:68:10:95:af:96:5d:4c:fb:95:31:9c:58: 0c:7a:33:49:6c:ae:7e:52:27:64:d8:bd:50:6e:c7: f9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:04:2A:31:69:3E:BD:D0:6A:0F:BA:EC:26:1A:73:4C:4E:96:EB:D7 X509v3 Authority Key Identifier: keyid:EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/7C796C5E743311F0BAAA8B29C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.224.148.0/24 Signature Algorithm: sha256WithRSAEncryption 78:63:ba:b8:d0:7a:68:c1:1d:b9:4d:62:70:26:3c:a1:1c:1e: eb:55:b3:03:79:e3:ed:44:d0:0c:c4:2c:e5:07:82:10:82:d5: cb:12:fa:7b:f3:d3:40:04:0a:cf:47:7b:ec:50:61:46:be:45: d8:d7:dd:d1:c1:d9:ec:ae:aa:89:47:31:b0:7b:b5:0a:1a:c9: 5d:98:66:52:48:d7:21:85:e6:85:79:4c:4a:7b:6d:60:a0:36: 37:4c:f4:d9:7f:b5:c6:52:50:33:dc:d9:f5:01:02:49:85:3b: 8b:95:bd:61:0b:4f:98:95:25:5c:c1:67:8f:80:63:67:09:14: e6:9a:46:75:e9:52:a7:96:d5:bc:2b:65:b8:2d:51:c0:d8:46: 2b:6d:81:ad:71:97:b7:6e:e9:eb:5f:f1:7a:88:dc:bf:10:17: 6c:e7:47:58:67:f6:65:34:f2:37:f0:20:1f:7c:9c:a4:59:28: 8c:57:58:cf:4b:3b:01:12:92:8a:4e:94:b3:53:12:49:93:fd: 05:ad:75:a1:76:9b:39:ca:25:eb:3e:2b:af:b7:32:7e:d0:43: a4:43:1f:82:37:8c:b1:48:c4:dd:15:40:d2:f2:2a:87:32:c8: 9c:0f:83:06:28:1b:35:6e:ac:75:44:ec:d0:b1:65:ba:ec:31: bf:9e:3b:58 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDODcxMTAvBgNVBAUTKEVGOUZFMzgxREEzRDQyRUI3QzRFMEQwNDlDQ0FFNzIy OEUyOEZCNEIwHhcNMjUxMjA1MDExMTAxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTI2Yy03NTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2oLOEWjBHnqngawrK3e2DBZjf7Fgz18QwYs+ESTBS4dzfMsHs8XnWCAaELb5 Li8BfWbccDn2WPPzhJTEw+QLkyoP+3D1NJzbDCeYVVhX6SLr5vnbRKHH8noExc7J eaW6vW7us7iy0nMQ3IsZdVenVrsZXBiwHRg3VJZGY53dTvXFxI6norFc0lcEG7GC eghNqXXEUlIQMYCW9zlND3C3RP+ubprNZTX5OmxVcB17DQYlxP/7m4rawGJuWi2Q y8io63G8PF8EYS5BmKyi6/SFqQsgn+c1nG7oln6fEtgh/pgBIbZoEJWvll1M+5Ux nFgMejNJbK5+Uidk2L1Qbsf59wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDEEKjFp Pr3Qag+67CYac0xOluvXMB8GA1UdIwQYMBaAFO+f44HaPULrfE4NBJzK5yKOKPtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0M4Ny9FNzgyODU0RUVG MEIxMUVEODFERDJENzJDNEY5QUUwMi83NV9qZ2RvOVF1dDhUZzBFbk1ybklvNG8t MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc1X2pnZG85UXV0OFRnMEVuTXJuSW80by0wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNDODcvRTc4Mjg1NEVFRjBCMTFFRDgxREQyRDcyQzRGOUFFMDIvN0M3OTZDNUU3 NDMzMTFGMEJBQUE4QjI5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK+CUMA0GCSqGSIb3DQEBCwUAA4IBAQB4Y7q40HpowR25TWJwJjyh HB7rVbMDeePtRNAMxCzlB4IQgtXLEvp789NABArPR3vsUGFGvkXY193RwdnsrqqJ RzGwe7UKGsldmGZSSNchheaFeUxKe21goDY3TPTZf7XGUlAz3Nn1AQJJhTuLlb1h C0+YlSVcwWePgGNnCRTmmkZ16VKnltW8K2W4LVHA2EYrbYGtcZe3bunrX/F6iNy/ EBds50dYZ/ZlNPI38CAffJykWSiMV1jPSzsBEpKKTpSzUxJJk/0FrXWhdps5yiXr PiuvtzJ+0EOkQx+CN4yxSMTdFUDS8iqHMsicD4MGKBs1bqx1ROzQsWW67DG/njtY -----END CERTIFICATE-----Generated at Wed Mar 4 17:27:44 2026 by rpki-client