$ rpki-client -vvf rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/0A7CA184B8C611F0B55B8B4EC4F9AE02.roa File: 0A7CA184B8C611F0B55B8B4EC4F9AE02.roa (raw, json) Hash identifier: q+o3xWf01bq60qENvu4foMZlzvVJas29+tpdqOwIOSU= Subject key identifier: 5B:77:EE:68:69:40:F2:3C:32:6C:32:61:77:6C:AE:75:04:51:1E:16 Certificate issuer: /CN=A916708F/serialNumber=2D329912D69903B850097F8C6ED8571DAC7105AD Certificate serial: 0D4E Authority key identifier: 2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/0A7CA184B8C611F0B55B8B4EC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:27:51 +0000 ROA not before: Mon 10 Nov 2025 04:24:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138640 IP address blocks: 123.136.28.0/24 maxlen: 24 2404:7e00:501::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.crl rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:51:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3406 (0xd4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916708F, serialNumber=2D329912D69903B850097F8C6ED8571DAC7105AD Validity Not Before: Nov 10 04:24:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a47717-e91d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:59:0a:01:bc:07:a1:92:62:cd:0a:53:50:a7: e1:c6:d6:b3:80:c7:ee:b2:07:80:a2:ff:fb:73:44: 5d:c4:e3:0b:e7:8f:6e:a8:b7:3e:79:2d:ba:82:58: 2d:c9:df:99:3e:e7:8f:1e:52:96:d6:f6:a4:2d:43: 74:ac:d4:07:b4:d6:b4:92:16:23:1b:fb:04:77:72: a0:87:b4:7c:a3:a2:17:62:5a:69:6e:a4:a8:41:9f: 28:b4:08:b5:b1:5e:de:00:a0:9d:0b:a8:cd:70:ba: 0e:39:52:17:1f:62:a1:d7:b9:05:16:03:5a:36:a2: fc:cb:f7:38:e9:4c:b4:f2:1b:f1:fb:fd:b5:65:b5: 1a:e1:28:1f:e2:68:83:49:df:61:0c:e8:99:93:d0: 80:a3:65:a9:0c:f1:6a:c1:4e:e3:bc:ba:9e:7e:81: 28:ef:bf:1f:ce:b3:ff:ac:cb:5f:01:11:28:cc:f2: 2e:fa:1d:31:0f:c2:76:c2:c2:0f:9f:9f:8e:9e:a9: a2:ef:71:21:c9:40:68:83:2f:aa:46:21:cf:f5:a2: c4:a4:80:3a:38:55:cb:50:5b:18:99:23:6c:82:36: 3f:bf:53:f0:53:23:27:03:7c:94:90:d0:7d:19:6c: 52:8c:fd:f9:81:92:21:cc:c5:7c:92:eb:8c:7b:37: 12:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:77:EE:68:69:40:F2:3C:32:6C:32:61:77:6C:AE:75:04:51:1E:16 X509v3 Authority Key Identifier: keyid:2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/0A7CA184B8C611F0B55B8B4EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.136.28.0/24 IPv6: 2404:7e00:501::/48 Signature Algorithm: sha256WithRSAEncryption 5d:35:9f:be:5c:20:a2:23:99:01:52:e2:6d:21:fb:d1:b1:72: 25:cc:c6:a4:4d:e5:de:8c:d4:55:e2:96:18:7a:88:ef:b3:ae: a8:b8:26:a2:b3:83:5c:7e:33:7d:83:96:d6:57:26:28:55:8a: c7:7e:1e:ee:f8:e6:89:cf:2d:22:61:53:35:b9:17:2b:a1:fe: 7d:5f:1c:78:e0:94:e9:7e:9e:78:0e:78:df:2c:5a:71:22:8b: 28:10:a0:ec:37:8c:0f:67:16:1f:b6:7e:92:02:c8:eb:59:88: 61:b5:22:58:e3:be:b3:9d:0f:ab:1a:1f:36:84:9e:23:24:c1: e8:f1:d3:ec:cc:a8:f9:e7:dd:91:a6:69:36:bb:be:d9:a3:6c: 30:79:3b:b4:84:f4:8f:50:0a:5e:69:7a:33:72:5c:1d:f6:16: 61:4a:26:65:15:2a:ca:47:26:89:f7:2f:f1:31:68:19:2c:a5: 28:9a:22:56:38:f0:01:94:02:d7:4c:93:f2:78:c0:9c:44:77: 4b:b3:c6:59:13:d1:37:d8:f9:5e:91:44:5d:21:d6:5f:95:21: 61:35:b1:b9:15:cb:f1:b8:df:81:29:65:a3:65:e8:8b:8b:57: 70:1e:ab:75:49:27:80:1c:50:e9:0b:71:cb:fa:08:4f:e7:58: 02:c7:6c:e8 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwOEYxMTAvBgNVBAUTKDJEMzI5OTEyRDY5OTAzQjg1MDA5N0Y4QzZFRDg1NzFE QUM3MTA1QUQwHhcNMjUxMTEwMDQyNDQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzcxNy1lOTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVkKAbwHoZJizQpTUKfhxtazgMfusgeAov/7c0RdxOML549uqLc+eS26glgt yd+ZPuePHlKW1vakLUN0rNQHtNa0khYjG/sEd3Kgh7R8o6IXYlppbqSoQZ8otAi1 sV7eAKCdC6jNcLoOOVIXH2Kh17kFFgNaNqL8y/c46Uy08hvx+/21ZbUa4Sgf4miD Sd9hDOiZk9CAo2WpDPFqwU7jvLqefoEo778fzrP/rMtfAREozPIu+h0xD8J2wsIP n5+Onqmi73EhyUBogy+qRiHP9aLEpIA6OFXLUFsYmSNsgjY/v1PwUyMnA3yUkNB9 GWxSjP35gZIhzMV8kuuMezcS8QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFFt37mhp QPI8MmwyYXdsrnUEUR4WMB8GA1UdIwQYMBaAFC0ymRLWmQO4UAl/jG7YVx2scQWt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzA4Ri81NkRCMEYyNEYx NjMxMUU5OURCRURGNjVDNEY5QUUwMi9MVEtaRXRhWkE3aFFDWC1NYnRoWEhheHhC YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUS1pFdGFaQTdoUUNYLU1idGhYSGF4eEJhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjcwOEYvNTZEQjBGMjRGMTYzMTFFOTlEQkVERjY1QzRGOUFFMDIvMEE3Q0ExODRC OEM2MTFGMEI1NUI4QjRFQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAe4gcMA8EAgACMAkDBwAkBH4ABQEwDQYJKoZIhvcNAQELBQADggEB AF01n75cIKIjmQFS4m0h+9GxciXMxqRN5d6M1FXilhh6iO+zrqi4JqKzg1x+M32D ltZXJihVisd+Hu745onPLSJhUzW5Fyuh/n1fHHjglOl+nngOeN8sWnEiiygQoOw3 jA9nFh+2fpICyOtZiGG1IljjvrOdD6saHzaEniMkwejx0+zMqPnn3ZGmaTa7vtmj bDB5O7SE9I9QCl5pejNyXB32FmFKJmUVKspHJon3L/ExaBkspSiaIlY48AGUAtdM k/J4wJxEd0uzxlkT0TfY+V6RRF0h1l+VIWE1sbkVy/G434EpZaNl6IuLV3Aeq3VJ J4AcUOkLccv6CE/nWALHbOg= -----END CERTIFICATE-----Generated at Thu Mar 26 07:13:52 2026 by rpki-client