$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/7E08719E390311EF9DD1A882C4F9AE02.roa File: 7E08719E390311EF9DD1A882C4F9AE02.roa (raw, json) Hash identifier: QhZqt/cqxOV2BObKWqDt9Jj+f6MiEWHCSIA5vvvZHUw= Subject key identifier: 6D:D9:B0:E1:7A:6C:AD:60:2F:EA:CB:3B:C5:E1:63:B4:3D:C8:F2:EB Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 0914 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/7E08719E390311EF9DD1A882C4F9AE02.roa Signing time: Tue 05 May 2026 01:36:03 +0000 ROA not before: Tue 05 May 2026 01:36:03 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 131646 IP address blocks: 36.255.192.0/24 maxlen: 24 43.229.155.0/24 maxlen: 24 43.252.209.0/24 maxlen: 24 103.225.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:46:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2324 (0x914) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: May 5 01:36:03 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69f94983-d1c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:32:7d:60:43:ca:9d:10:b1:9c:7a:9b:52:82: 57:de:8e:c4:e5:c9:b3:88:23:4e:05:05:0a:8f:58: 24:34:2f:c1:64:d5:da:5d:a2:01:fc:99:71:a7:ff: 49:f5:00:fd:2d:1e:c6:81:7c:84:39:9a:7d:4f:04: df:55:00:e8:e1:35:f9:7c:fb:31:00:73:bd:89:9a: 48:9e:04:76:4e:ae:59:03:67:5d:8e:be:c1:b5:11: b3:cf:c4:7b:92:17:12:30:b7:67:2f:dc:1c:86:cb: d5:cb:1c:4e:65:38:a3:b5:2d:da:3e:50:73:8c:ea: 3c:b3:32:e9:64:ef:af:7b:41:eb:fe:72:9a:2d:96: 65:08:a6:18:0e:7b:29:0d:4d:3e:e3:94:96:e8:d1: f6:aa:05:2d:f0:c2:30:81:ad:75:1c:7b:08:84:a5: e1:22:18:d7:82:2f:00:61:6c:36:02:4d:ca:7f:4c: fd:b9:e8:38:d4:e2:e4:2f:98:9b:df:73:96:13:66: be:a6:f7:da:b1:72:5c:bc:62:5d:83:ac:d5:9b:2e: 6c:1a:40:6a:62:69:f9:10:95:bb:1b:c6:60:3f:1d: 84:38:a7:52:2a:8c:4f:fa:7f:5d:d6:06:30:a9:52: d8:49:f0:62:ff:f8:35:b5:20:5a:a1:d2:cf:ca:20: ed:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:D9:B0:E1:7A:6C:AD:60:2F:EA:CB:3B:C5:E1:63:B4:3D:C8:F2:EB X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/7E08719E390311EF9DD1A882C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.255.192.0/24 43.229.155.0/24 43.252.209.0/24 103.225.196.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:ef:80:16:34:9e:e8:d8:f7:c5:e6:46:df:cf:9d:3e:59:f9: 42:32:2a:dc:1d:f3:4f:3e:85:1a:b8:05:8c:85:3d:8f:54:28: 93:5f:82:d6:5c:58:ca:49:44:1f:79:0f:40:04:7c:18:b8:4a: f1:5c:e0:ea:70:6d:3c:ae:10:bd:03:e1:15:45:47:85:2f:33: 80:9e:e6:8f:4d:7c:56:49:3a:24:f1:ea:ba:2c:47:a6:c1:6f: 08:08:fb:90:9e:04:2c:9e:64:b1:0d:bc:ab:22:e0:56:fa:03: 1e:a1:96:f0:62:2f:7d:25:ed:b8:05:a0:4e:c2:b2:8a:10:9d: 04:65:1f:c4:40:09:6e:66:20:62:7b:a5:dd:96:ea:db:ea:2c: 8c:2b:dc:09:ba:ab:9e:be:a8:f9:4e:2b:de:fa:99:45:14:37: 1f:3e:60:94:52:50:c7:1f:e5:82:e4:5d:e3:2e:08:8b:ef:44: 55:1f:fe:75:7a:8d:fe:d8:e6:cb:57:d8:46:99:51:84:9e:e7: 20:72:20:bb:b9:6c:fa:34:57:17:31:f4:db:85:1a:d7:ac:82: d3:50:2e:db:16:54:e5:32:99:70:33:3c:eb:d5:f7:f7:e1:10: 62:f8:98:db:3f:78:3f:b6:71:fa:b5:be:b8:ae:67:71:2c:2a: 2e:a7:0d:0a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICCRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjYwNTA1MDEzNjAzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY5NDk4My1kMWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5zJ9YEPKnRCxnHqbUoJX3o7E5cmziCNOBQUKj1gkNC/BZNXaXaIB/Jlxp/9J 9QD9LR7GgXyEOZp9TwTfVQDo4TX5fPsxAHO9iZpIngR2Tq5ZA2ddjr7BtRGzz8R7 khcSMLdnL9wchsvVyxxOZTijtS3aPlBzjOo8szLpZO+ve0Hr/nKaLZZlCKYYDnsp DU0+45SW6NH2qgUt8MIwga11HHsIhKXhIhjXgi8AYWw2Ak3Kf0z9ueg41OLkL5ib 33OWE2a+pvfasXJcvGJdg6zVmy5sGkBqYmn5EJW7G8ZgPx2EOKdSKoxP+n9d1gYw qVLYSfBi//g1tSBaodLPyiDthwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFG3ZsOF6 bK1gL+rLO8XhY7Q9yPLrMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvN0UwODcxOUUz OTAzMTFFRjlERDFBODgyQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAJP/AAwQAK+WbAwQAK/zRAwQAZ+HEMA0GCSqGSIb3DQEBCwUAA4IB AQAN74AWNJ7o2PfF5kbfz50+WflCMircHfNPPoUauAWMhT2PVCiTX4LWXFjKSUQf eQ9ABHwYuErxXODqcG08rhC9A+EVRUeFLzOAnuaPTXxWSTok8eq6LEemwW8ICPuQ ngQsnmSxDbyrIuBW+gMeoZbwYi99Je24BaBOwrKKEJ0EZR/EQAluZiBie6Xdlurb 6iyMK9wJuquevqj5Tive+plFFDcfPmCUUlDHH+WC5F3jLgiL70RVH/51eo3+2ObL V9hGmVGEnucgciC7uWz6NFcXMfTbhRrXrILTUC7bFlTlMplwMzzr1ff34RBi+Jjb P3g/tnH6tb64rmdxLCoupw0K -----END CERTIFICATE-----Generated at Wed May 13 06:28:14 2026 by rpki-client