$ rpki-client -vvf rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/E072F73492DF11EE9803F859C4F9AE02.roa File: E072F73492DF11EE9803F859C4F9AE02.roa (raw, json) Hash identifier: Ex32OuK8cYYdQNaH5Et0DlGn+H8d2IBO5mMVFj93THg= Subject key identifier: A2:CB:73:33:51:D0:9D:44:CF:2E:3E:43:3C:3C:01:07:2C:AD:E6:F4 Certificate issuer: /CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Certificate serial: 076C Authority key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/E072F73492DF11EE9803F859C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:29:40 +0000 ROA not before: Tue 04 Nov 2025 22:12:04 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 40138 IP address blocks: 45.127.112.0/23 maxlen: 24 45.127.114.0/24 maxlen: 24 45.127.115.0/24 maxlen: 24 103.196.36.0/22 maxlen: 24 2402:e580::/32 maxlen: 48 2402:e580:40::/42 maxlen: 42 2402:e580:100::/40 maxlen: 40 2402:e580:200::/39 maxlen: 39 2402:e580:400::/38 maxlen: 38 2402:e580:800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:24:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1900 (0x76c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913025C, serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Validity Not Before: Nov 4 22:12:04 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a43134-e796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:21:d3:7b:37:80:c4:de:35:c9:db:97:49:36: 9e:37:85:d1:4d:a4:29:c1:b3:d5:1a:89:b5:22:65: 65:30:2e:60:2d:5a:1b:a2:90:61:75:93:f1:d8:d6: a9:78:5b:4a:4c:9a:a6:2f:d6:96:62:c3:af:f7:c2: 38:4a:5f:06:77:82:66:c4:7e:5e:05:ed:53:2a:92: 7b:5d:30:8d:3d:6d:4c:ca:c5:7e:5d:b0:8f:1e:32: f4:6c:2b:e6:6f:f3:8d:2b:d4:1e:2e:61:61:f1:e5: 5e:33:eb:e1:24:a2:b4:ba:db:c0:9c:3a:5b:ef:53: 0e:8b:91:e6:7e:60:20:4a:e4:c1:5b:6d:92:3e:3c: 52:6e:a1:e6:3f:0a:8b:18:02:78:9f:5b:2e:98:91: 7f:a9:f9:fa:4a:8d:fd:f8:b2:04:d3:7e:8e:5b:34: de:39:ac:fc:c7:24:59:19:34:9e:b9:9b:e5:f9:d0: 6b:c1:16:7b:e8:dd:f3:87:3c:1e:08:0f:ae:63:90: d1:03:7d:c7:90:ac:8e:08:43:30:50:8f:ce:17:dc: dc:d9:a4:5c:65:ef:de:a9:0e:9e:2d:a3:24:06:d5: 37:e9:02:00:35:2a:11:e1:b1:87:df:12:7d:28:57: c4:c0:24:f5:ca:4b:67:50:65:73:8a:9f:dc:90:f2: 23:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:CB:73:33:51:D0:9D:44:CF:2E:3E:43:3C:3C:01:07:2C:AD:E6:F4 X509v3 Authority Key Identifier: keyid:0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/E072F73492DF11EE9803F859C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.127.112.0/22 103.196.36.0/22 IPv6: 2402:e580::/32 Signature Algorithm: sha256WithRSAEncryption 89:e7:13:30:d5:64:f0:95:42:2e:11:25:2e:78:0e:9b:74:d6: 2c:f3:7d:9c:32:fb:1a:79:e2:0c:59:81:b5:af:2b:49:be:79: 76:a3:8a:3b:b1:d5:a1:76:db:b2:e5:06:27:f7:b2:cf:11:2d: e7:5f:c1:6e:57:7e:e7:c0:14:46:21:28:4a:85:7a:cf:32:00: 43:41:43:08:a0:e9:da:5a:a1:46:6e:d7:71:e7:23:01:0c:67: 36:62:34:56:d3:0f:50:5b:ef:df:3b:da:7e:97:89:99:16:eb: ae:56:57:69:d1:e0:7a:c7:87:ee:4c:42:be:15:14:2b:d4:4f: 79:b9:ed:a8:63:ce:ab:73:d3:c3:ac:56:01:43:8f:97:e5:3f: 47:81:ae:20:53:8b:f2:47:95:7c:4d:41:35:a3:e1:60:b2:34: 77:7a:da:44:4b:19:0f:e1:49:76:32:e1:55:37:57:13:34:39: 21:8d:ce:09:79:d9:a4:ca:5f:ac:18:00:7b:0e:c9:d3:c2:21: 10:82:02:58:39:9a:d0:0e:ad:cc:29:e2:4d:48:29:c9:87:5f: f8:04:dd:d5:d6:d6:b2:6e:a4:1e:4a:89:d7:73:41:f5:7e:f9: 5d:2c:e9:36:75:57:c6:d3:6a:c0:3c:c7:ca:be:09:4b:99:97: 4b:dc:f3:75 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICB2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyNUMxMTAvBgNVBAUTKDBDRUE2OEEwMkM1MjlGODg3NTJDNjQyREUwRDJGRUY5 RjVEN0ExNEEwHhcNMjUxMTA0MjIxMjA0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzEzNC1lNzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yHTezeAxN41yduXSTaeN4XRTaQpwbPVGom1ImVlMC5gLVobopBhdZPx2Nap eFtKTJqmL9aWYsOv98I4Sl8Gd4JmxH5eBe1TKpJ7XTCNPW1MysV+XbCPHjL0bCvm b/ONK9QeLmFh8eVeM+vhJKK0utvAnDpb71MOi5HmfmAgSuTBW22SPjxSbqHmPwqL GAJ4n1sumJF/qfn6So39+LIE036OWzTeOaz8xyRZGTSeuZvl+dBrwRZ76N3zhzwe CA+uY5DRA33HkKyOCEMwUI/OF9zc2aRcZe/eqQ6eLaMkBtU36QIANSoR4bGH3xJ9 KFfEwCT1yktnUGVzip/ckPIj7QIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFKLLczNR 0J1Ezy4+Qzw8AQcsreb0MB8GA1UdIwQYMBaAFAzqaKAsUp+IdSxkLeDS/vn116FK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDI1Qy9BQzA1NTgyNjVF MjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240aDFMR1F0NE5MLS1mWFhv VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcG9vQ3hTbjRoMUxHUXQ0TkwtLWZYWG9Vby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzAyNUMvQUMwNTU4MjY1RTI1MTFFQkFCMjk4OTJBQzRGOUFFMDIvRTA3MkY3MzQ5 MkRGMTFFRTk4MDNGODU5QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCLX9wAwQCZ8QkMA0EAgACMAcDBQAkAuWAMA0GCSqGSIb3DQEBCwUA A4IBAQCJ5xMw1WTwlUIuESUueA6bdNYs832cMvsaeeIMWYG1rytJvnl2o4o7sdWh dtuy5QYn97LPES3nX8FuV37nwBRGIShKhXrPMgBDQUMIoOnaWqFGbtdx5yMBDGc2 YjRW0w9QW+/fO9p+l4mZFuuuVldp0eB6x4fuTEK+FRQr1E95ue2oY86rc9PDrFYB Q4+X5T9Hga4gU4vyR5V8TUE1o+FgsjR3etpESxkP4Ul2MuFVN1cTNDkhjc4Jedmk yl+sGAB7DsnTwiEQggJYOZrQDq3MKeJNSCnJh1/4BN3V1taybqQeSonXc0H1fvld LOk2dVfG02rAPMfKvglLmZdL3PN1 -----END CERTIFICATE-----Generated at Thu Mar 26 07:21:20 2026 by rpki-client