$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/050079585AC911EF9DF4275AC4F9AE02.roa File: 050079585AC911EF9DF4275AC4F9AE02.roa (raw, json) Hash identifier: cOFr30T5Sd5bA+9nAjs/xIKvrhVxSk/iBKwzS2ubtBQ= Subject key identifier: 16:9F:39:72:48:6B:DC:BF:5F:4F:66:A0:88:AB:71:BE:9E:7D:FE:0F Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: 0137 Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/050079585AC911EF9DF4275AC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:07:44 +0000 ROA not before: Fri 03 Oct 2025 06:02:49 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 202.160.113.0/24 maxlen: 24 202.160.115.0/24 maxlen: 24 202.160.117.0/24 maxlen: 24 202.160.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:42:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25, serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Oct 3 06:02:49 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58ba0-2cec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:83:99:7b:1e:09:57:2f:d2:09:dd:38:98:e9: 86:56:78:d7:5c:01:be:06:7b:f3:cd:4c:55:b7:10: 5f:ef:d0:58:d7:dd:90:63:61:96:5f:d4:b2:57:22: e2:62:7c:e9:fe:2e:ec:50:e0:2d:a6:39:50:4f:6d: 0d:75:52:8d:6e:28:fb:30:1e:d5:33:7e:96:3d:15: 9a:3a:4c:c2:24:80:57:0f:a8:1a:c5:b4:a9:82:85: 1b:41:1a:42:70:44:39:55:48:bd:23:be:89:90:1f: 20:55:32:55:21:6c:73:91:96:bd:af:2a:bf:d3:ad: 60:63:86:79:51:e8:17:3f:50:ac:06:21:85:15:28: 3d:ea:32:36:80:e2:a9:65:96:94:1a:ae:04:be:72: ec:11:df:b5:84:bf:38:88:28:73:21:3f:57:33:c2: 14:4b:f5:7e:8e:e2:99:c9:ef:08:e0:61:3c:d5:fb: 84:f7:17:a6:29:6a:9f:c4:6e:d3:ac:1e:45:c0:64: f7:7d:e1:09:d3:b9:10:c0:16:f7:b3:0e:90:c1:fc: db:7c:d8:9f:ef:d8:2f:9d:65:bc:bc:02:9b:06:db: 79:5c:1b:40:11:13:c8:3e:64:a9:52:1d:25:27:b2: 8f:41:2c:bb:25:89:7e:d3:ad:47:80:1f:d1:4e:b9: 72:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:9F:39:72:48:6B:DC:BF:5F:4F:66:A0:88:AB:71:BE:9E:7D:FE:0F X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/050079585AC911EF9DF4275AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.160.113.0/24 202.160.115.0/24 202.160.117.0/24 202.160.119.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:22:f6:d1:53:dc:09:a8:29:d1:35:43:8d:11:d1:23:bc:43: 2d:a6:74:93:15:0a:57:d3:5b:c2:64:77:cb:e6:5e:e5:27:e9: 66:fb:57:56:3f:26:f5:df:ff:de:40:88:31:18:33:5c:9d:46: 2a:6e:15:48:e3:07:52:5b:a5:dc:10:f8:a0:d4:12:c4:1d:c8: 19:2c:ec:0e:a1:b0:07:60:af:b3:64:6c:57:23:95:2f:c7:8a: 06:11:7a:5e:5c:18:ee:e0:87:af:15:d1:24:6d:3d:ba:e2:7b: b8:80:2c:3b:fc:69:fb:1d:90:a4:4b:ab:06:ce:6a:f6:54:e8: b9:c1:db:8d:8a:9a:ec:8e:9e:64:1a:1e:bb:9c:88:21:1f:47: 35:a1:6c:71:66:62:e4:d7:cd:17:89:76:e3:f8:8c:53:55:04: 09:7b:70:fb:27:75:66:06:b4:45:a0:8a:d2:69:ee:8f:91:b6: a7:e7:f8:e4:4d:5d:1d:47:66:39:f4:2f:b1:8f:db:9b:49:35: d4:95:9e:df:1e:ca:da:41:4b:a6:b6:31:9b:ab:65:8f:7c:6f: 26:a8:9e:bc:ff:44:78:f6:66:5a:a4:21:0a:90:4f:34:0c:73: 91:da:70:6d:cb:c5:c7:fc:2d:07:1c:97:98:57:21:75:26:aa: 14:eb:ff:24 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGMjUxMTAvBgNVBAUTKDk2ODM1NDUwRDMyMUMxRTdDNDhDQTBDNURDRDJCQTZD MUQyRDQ4RjEwHhcNMjUxMDAzMDYwMjQ5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGJhMC0yY2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5IOZex4JVy/SCd04mOmGVnjXXAG+BnvzzUxVtxBf79BY192QY2GWX9SyVyLi Ynzp/i7sUOAtpjlQT20NdVKNbij7MB7VM36WPRWaOkzCJIBXD6gaxbSpgoUbQRpC cEQ5VUi9I76JkB8gVTJVIWxzkZa9ryq/061gY4Z5UegXP1CsBiGFFSg96jI2gOKp ZZaUGq4EvnLsEd+1hL84iChzIT9XM8IUS/V+juKZye8I4GE81fuE9xemKWqfxG7T rB5FwGT3feEJ07kQwBb3sw6QwfzbfNif79gvnWW8vAKbBtt5XBtAERPIPmSpUh0l J7KPQSy7JYl+061HgB/RTrly3QIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFBafOXJI a9y/X09moIircb6eff4PMB8GA1UdIwQYMBaAFJaDVFDTIcHnxIygxdzSumwdLUjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREYyNS83RjdCMURBQzVB QzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdlZkVqS0RGM05LNmJCMHRT UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRGMjUvN0Y3QjFEQUM1QUM3MTFFRjk5RUFGQzQzQzRGOUFFMDIvMDUwMDc5NTg1 QUM5MTFFRjlERjQyNzVBQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAyqBxAwQAyqBzAwQAyqB1AwQAyqB3MA0GCSqGSIb3DQEBCwUAA4IB AQBMIvbRU9wJqCnRNUONEdEjvEMtpnSTFQpX01vCZHfL5l7lJ+lm+1dWPyb13//e QIgxGDNcnUYqbhVI4wdSW6XcEPig1BLEHcgZLOwOobAHYK+zZGxXI5Uvx4oGEXpe XBju4IevFdEkbT264nu4gCw7/Gn7HZCkS6sGzmr2VOi5wduNiprsjp5kGh67nIgh H0c1oWxxZmLk180XiXbj+IxTVQQJe3D7J3VmBrRFoIrSae6Pkban5/jkTV0dR2Y5 9C+xj9ubSTXUlZ7fHsraQUumtjGbq2WPfG8mqJ68/0R49mZapCEKkE80DHOR2nBt y8XH/C0HHJeYVyF1JqoU6/8k -----END CERTIFICATE-----Generated at Thu Mar 26 05:01:11 2026 by rpki-client