$ rpki-client -vvf rpki.apnic.net/member_repository/A913F4B0/2D270692A43311E988158F09C4F9AE02/7FC2BA3ACEE211EDAF41BC25C4F9AE02.roa File: 7FC2BA3ACEE211EDAF41BC25C4F9AE02.roa (raw, json) Hash identifier: BHOVUhWB8Oqrgvkce7N8eoaaW6EsAxKMD/bGEq8z6S8= Subject key identifier: CD:5F:5C:58:A8:2D:6D:C4:79:46:06:5B:A1:33:8C:C6:EA:33:31:A7 Certificate issuer: /CN=A913F4B0/serialNumber=194CFAEC075611FF83C421CDA8797ED30EA2D039 Certificate serial: 0EDF Authority key identifier: 19:4C:FA:EC:07:56:11:FF:83:C4:21:CD:A8:79:7E:D3:0E:A2:D0:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUz67AdWEf-DxCHNqHl-0w6i0Dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F4B0/2D270692A43311E988158F09C4F9AE02/7FC2BA3ACEE211EDAF41BC25C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:49:23 +0000 ROA not before: Fri 08 Aug 2025 18:27:30 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 134809 IP address blocks: 43.228.200.0/22 maxlen: 22 43.252.216.0/22 maxlen: 22 103.12.140.0/22 maxlen: 22 103.22.160.0/22 maxlen: 22 103.26.248.0/22 maxlen: 22 103.194.80.0/22 maxlen: 22 163.53.224.0/22 maxlen: 22 2400:6e80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F4B0/2D270692A43311E988158F09C4F9AE02/GUz67AdWEf-DxCHNqHl-0w6i0Dk.crl rsync://rpki.apnic.net/member_repository/A913F4B0/2D270692A43311E988158F09C4F9AE02/GUz67AdWEf-DxCHNqHl-0w6i0Dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUz67AdWEf-DxCHNqHl-0w6i0Dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3807 (0xedf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F4B0, serialNumber=194CFAEC075611FF83C421CDA8797ED30EA2D039 Validity Not Before: Aug 8 18:27:30 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a443e3-29d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5d:c0:4c:67:02:62:f9:5f:a7:c8:94:32:47: 5e:1d:a7:95:0d:bd:9d:b7:89:21:ae:cf:54:bc:7d: 9c:00:fe:49:5d:ed:b8:15:12:b4:9f:8c:4f:b3:41: 2c:7a:35:1f:c6:cc:93:f7:48:0b:dd:70:b2:0a:0d: fe:1a:bd:46:22:7c:b3:d7:a5:85:fd:00:08:ef:32: dc:47:8e:c5:0f:51:14:48:92:9d:b0:c4:43:6e:5e: 1e:fd:46:d3:6d:3d:a7:02:c6:3f:65:6a:03:89:38: cd:cc:1b:7b:ed:7a:c0:ee:23:2d:22:9d:4a:c5:63: d1:40:47:81:7f:50:6b:21:ba:4e:b7:8f:79:af:c2: b1:6d:2a:7f:0c:85:1c:39:4d:79:38:a5:34:51:09: ba:a2:7c:bf:af:56:51:5c:cb:d8:89:d4:37:fe:38: 1e:7c:81:7e:23:ec:c0:17:a0:0f:bc:06:19:6e:ae: 35:65:88:7d:69:2f:38:1c:97:8f:2d:6f:90:be:5c: 69:9f:9a:5d:cd:9b:b9:df:f5:1a:54:62:d0:ba:09: ef:b2:87:53:c3:0c:58:a1:92:28:fd:d4:20:ff:e0: ea:e6:f7:79:23:3b:b6:42:3e:7b:29:05:ae:85:d7: 8e:6d:c2:ee:99:57:62:9d:92:0a:09:72:df:4f:6b: bb:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:5F:5C:58:A8:2D:6D:C4:79:46:06:5B:A1:33:8C:C6:EA:33:31:A7 X509v3 Authority Key Identifier: keyid:19:4C:FA:EC:07:56:11:FF:83:C4:21:CD:A8:79:7E:D3:0E:A2:D0:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F4B0/2D270692A43311E988158F09C4F9AE02/GUz67AdWEf-DxCHNqHl-0w6i0Dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUz67AdWEf-DxCHNqHl-0w6i0Dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F4B0/2D270692A43311E988158F09C4F9AE02/7FC2BA3ACEE211EDAF41BC25C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.228.200.0/22 43.252.216.0/22 103.12.140.0/22 103.22.160.0/22 103.26.248.0/22 103.194.80.0/22 163.53.224.0/22 IPv6: 2400:6e80::/32 Signature Algorithm: sha256WithRSAEncryption 59:fe:3e:d2:f6:8d:4d:fb:60:81:ec:97:47:f8:e5:bb:0f:e3: fa:7a:65:30:e1:df:57:3f:f4:ed:c8:4d:ff:75:2f:9d:73:c0: 9e:01:3d:a3:8a:be:ff:4f:fa:db:64:42:08:c6:1e:46:e5:8d: 57:23:63:8d:9c:68:56:c6:3a:af:d4:73:d6:04:75:89:1b:f8: ec:d2:b3:26:f8:74:8f:a3:32:85:f6:d3:e2:e3:1e:96:61:96: 78:b2:ad:1b:6e:8a:0c:29:96:1e:55:0f:8a:db:58:54:19:4f: ca:1d:bc:7a:a2:8e:8d:e9:71:ce:96:3c:0e:95:99:4c:d9:53: 21:54:94:ab:3a:19:ea:bd:c5:0c:dd:1d:be:01:9e:87:d0:79: 8e:30:b9:b7:5a:a9:c5:10:4a:19:4b:7d:d7:a4:7c:ac:7a:8d: 93:72:31:a5:55:9a:4c:46:c1:5b:59:56:d0:49:27:82:46:7c: 05:07:94:f2:47:d7:b3:ca:a0:e5:bb:7e:30:b0:fa:43:97:fd: ae:a1:18:4a:a5:ec:e5:57:28:4c:7b:49:5c:d0:9b:03:d9:34: cd:48:8c:15:e7:97:19:a2:0e:42:d9:07:aa:35:be:4d:c9:ae: f3:f2:6a:75:5c:9b:71:d5:f5:c8:97:93:63:82:ad:9a:08:70: a8:ed:8b:d2 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICDt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y0QjAxMTAvBgNVBAUTKDE5NENGQUVDMDc1NjExRkY4M0M0MjFDREE4Nzk3RUQz MEVBMkQwMzkwHhcNMjUwODA4MTgyNzMwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDNlMy0yOWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApV3ATGcCYvlfp8iUMkdeHaeVDb2dt4khrs9UvH2cAP5JXe24FRK0n4xPs0Es ejUfxsyT90gL3XCyCg3+Gr1GInyz16WF/QAI7zLcR47FD1EUSJKdsMRDbl4e/UbT bT2nAsY/ZWoDiTjNzBt77XrA7iMtIp1KxWPRQEeBf1BrIbpOt495r8KxbSp/DIUc OU15OKU0UQm6ony/r1ZRXMvYidQ3/jgefIF+I+zAF6APvAYZbq41ZYh9aS84HJeP LW+Qvlxpn5pdzZu53/UaVGLQugnvsodTwwxYoZIo/dQg/+Dq5vd5Izu2Qj57KQWu hdeObcLumVdinZIKCXLfT2u7ZQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFM1fXFio LW3EeUYGW6EzjMbqMzGnMB8GA1UdIwQYMBaAFBlM+uwHVhH/g8Qhzah5ftMOotA5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjRCMC8yRDI3MDY5MkE0 MzMxMUU5ODgxNThGMDlDNEY5QUUwMi9HVXo2N0FkV0VmLUR4Q0hOcUhsLTB3Nmkw RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dVejY3QWRXRWYtRHhDSE5xSGwtMHc2aTBEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Y0QjAvMkQyNzA2OTJBNDMzMTFFOTg4MTU4RjA5QzRGOUFFMDIvN0ZDMkJBM0FD RUUyMTFFREFGNDFCQzI1QzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAw BAIAATAqAwQCK+TIAwQCK/zYAwQCZwyMAwQCZxagAwQCZxr4AwQCZ8JQAwQCozXg MA0EAgACMAcDBQAkAG6AMA0GCSqGSIb3DQEBCwUAA4IBAQBZ/j7S9o1N+2CB7JdH +OW7D+P6emUw4d9XP/TtyE3/dS+dc8CeAT2jir7/T/rbZEIIxh5G5Y1XI2ONnGhW xjqv1HPWBHWJG/js0rMm+HSPozKF9tPi4x6WYZZ4sq0bbooMKZYeVQ+K21hUGU/K Hbx6oo6N6XHOljwOlZlM2VMhVJSrOhnqvcUM3R2+AZ6H0HmOMLm3WqnFEEoZS33X pHyseo2TcjGlVZpMRsFbWVbQSSeCRnwFB5TyR9ezyqDlu34wsPpDl/2uoRhKpezl VyhMe0lc0JsD2TTNSIwV55cZog5C2QeqNb5Nya7z8mp1XJtx1fXIl5Njgq2aCHCo 7YvS -----END CERTIFICATE-----Generated at Thu Mar 26 19:23:05 2026 by rpki-client