$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3F0/F3C2A9222B8A11EEADD2210CC4F9AE02/37D03D8CC48111F0BA91643FC4F9AE02.roa File: 37D03D8CC48111F0BA91643FC4F9AE02.roa (raw, json) Hash identifier: cpXny2w7RispSe37kaJTfb77RVD1gIo1S5cj5Rxm/G0= Subject key identifier: 6D:E7:CD:84:1E:C7:62:5A:2D:C2:3D:B3:2A:00:38:CE:47:3B:3A:59 Certificate issuer: /CN=A919A3F0/serialNumber=FE05EFB70125D520476F63BC609F554DC49AC59C Certificate serial: 0201 Authority key identifier: FE:05:EF:B7:01:25:D5:20:47:6F:63:BC:60:9F:55:4D:C4:9A:C5:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_gXvtwEl1SBHb2O8YJ9VTcSaxZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3F0/F3C2A9222B8A11EEADD2210CC4F9AE02/37D03D8CC48111F0BA91643FC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:31:35 +0000 ROA not before: Wed 03 Dec 2025 02:02:14 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 0 IP address blocks: 114.142.136.0/21 maxlen: 24 121.91.104.0/22 maxlen: 22 121.91.104.0/24 maxlen: 24 121.91.105.0/24 maxlen: 24 121.91.106.0/24 maxlen: 24 121.91.107.0/24 maxlen: 24 121.91.108.0/22 maxlen: 22 121.91.108.0/24 maxlen: 24 121.91.109.0/24 maxlen: 24 121.91.110.0/24 maxlen: 24 121.91.111.0/24 maxlen: 24 124.197.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3F0/F3C2A9222B8A11EEADD2210CC4F9AE02/_gXvtwEl1SBHb2O8YJ9VTcSaxZw.crl rsync://rpki.apnic.net/member_repository/A919A3F0/F3C2A9222B8A11EEADD2210CC4F9AE02/_gXvtwEl1SBHb2O8YJ9VTcSaxZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_gXvtwEl1SBHb2O8YJ9VTcSaxZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:33:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3F0, serialNumber=FE05EFB70125D520476F63BC609F554DC49AC59C Validity Not Before: Dec 3 02:02:14 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a477f7-d2c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:77:a2:40:b9:4e:02:10:b2:90:0a:94:d5:82: de:38:1b:fe:90:ab:30:f5:e7:ef:b4:95:69:41:55: 16:5c:d3:81:da:61:ae:ef:81:d4:d2:b1:ae:f6:79: 0c:ff:d8:d3:f2:f6:f0:73:91:cd:3a:5c:bb:9b:62: 8f:cd:8e:f4:eb:9d:1e:72:ab:6b:b8:9f:06:d1:54: 9e:4e:df:ba:6b:5d:b7:16:68:c2:98:02:b3:43:7f: 1a:db:f8:b8:55:85:72:27:8b:ad:ca:02:bf:bc:9f: 89:5f:a8:aa:88:93:7c:24:d0:b6:85:c7:35:4c:f1: c0:5d:b4:db:4b:31:09:1e:7d:47:4e:5c:33:a1:2b: 4c:f9:88:ae:34:c1:16:aa:c1:91:77:77:2a:15:8e: d9:fa:5c:46:39:68:53:ca:18:d5:3c:d7:ed:0a:f4: 5c:6f:32:07:99:3b:c1:2b:26:c3:41:d8:55:a3:a1: a8:fd:84:a4:2f:87:51:9f:89:46:95:44:de:4d:69: 46:43:fb:9a:f6:50:68:30:64:d5:c0:d5:0e:2b:05: d6:96:7d:96:bf:2e:cb:b1:23:08:59:a2:d9:bf:f0: 65:cc:a2:a4:3a:15:e0:8d:21:4d:ed:ab:33:e5:37: e2:7e:69:eb:45:d0:fc:e2:b0:99:ce:c1:0f:8d:04: 45:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:E7:CD:84:1E:C7:62:5A:2D:C2:3D:B3:2A:00:38:CE:47:3B:3A:59 X509v3 Authority Key Identifier: keyid:FE:05:EF:B7:01:25:D5:20:47:6F:63:BC:60:9F:55:4D:C4:9A:C5:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3F0/F3C2A9222B8A11EEADD2210CC4F9AE02/_gXvtwEl1SBHb2O8YJ9VTcSaxZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_gXvtwEl1SBHb2O8YJ9VTcSaxZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3F0/F3C2A9222B8A11EEADD2210CC4F9AE02/37D03D8CC48111F0BA91643FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 114.142.136.0/21 121.91.104.0/21 124.197.56.0/21 Signature Algorithm: sha256WithRSAEncryption 1d:fa:30:fd:7e:90:f6:da:53:a1:4c:03:a9:8b:ea:7a:b5:cd: 39:4b:7f:2e:0b:6e:75:32:92:0e:62:21:40:55:ab:82:af:8b: 02:6c:b0:bb:ca:66:f3:75:47:99:bf:ec:3d:d6:76:c6:18:be: d0:ec:29:ae:b3:fe:dc:29:d2:59:8f:3a:42:08:73:a2:2d:98: 4b:90:4a:a1:8c:c8:1a:33:a0:2c:b5:41:a4:73:6c:f3:85:94: 06:bc:d2:59:1b:8d:e5:c4:b4:0d:0a:ab:98:55:07:cd:32:32: df:14:81:66:52:0d:80:f3:cd:f4:75:51:29:9b:a8:e2:ff:a0: 3d:32:f8:f2:47:e1:a2:12:50:a3:00:81:64:68:93:77:d3:f1: 86:ff:6f:1b:a6:a0:4a:93:9e:a3:9e:d6:79:84:e0:87:66:a4: 78:8d:6b:59:3d:df:4a:92:a4:38:03:6f:ed:3e:a1:00:63:a5: 74:47:4b:b6:18:08:ae:bd:0d:22:e3:b6:e5:2c:9b:15:05:25: 2a:34:ae:18:ee:28:b4:a0:3e:c6:b1:49:27:6e:8c:71:96:d8: 23:85:31:02:8b:c9:7d:03:d2:5f:71:3c:de:dc:56:a5:d5:42: fd:bd:b3:96:32:5d:1f:4f:e3:69:0c:e0:c2:c7:8c:70:c3:55: 6e:ec:91:a8 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzRjAxMTAvBgNVBAUTKEZFMDVFRkI3MDEyNUQ1MjA0NzZGNjNCQzYwOUY1NTRE QzQ5QUM1OUMwHhcNMjUxMjAzMDIwMjE0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzdmNy1kMmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzneiQLlOAhCykAqU1YLeOBv+kKsw9efvtJVpQVUWXNOB2mGu74HU0rGu9nkM /9jT8vbwc5HNOly7m2KPzY70650ecqtruJ8G0VSeTt+6a123FmjCmAKzQ38a2/i4 VYVyJ4utygK/vJ+JX6iqiJN8JNC2hcc1TPHAXbTbSzEJHn1HTlwzoStM+YiuNMEW qsGRd3cqFY7Z+lxGOWhTyhjVPNftCvRcbzIHmTvBKybDQdhVo6Go/YSkL4dRn4lG lUTeTWlGQ/ua9lBoMGTVwNUOKwXWln2Wvy7LsSMIWaLZv/BlzKKkOhXgjSFN7asz 5TfifmnrRdD84rCZzsEPjQRFKQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFG3nzYQe x2JaLcI9syoAOM5HOzpZMB8GA1UdIwQYMBaAFP4F77cBJdUgR29jvGCfVU3EmsWc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNGMC9GM0MyQTkyMjJC OEExMUVFQUREMjIxMENDNEY5QUUwMi9fZ1h2dHdFbDFTQkhiMk84WUo5VlRjU2F4 WncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19nWHZ0d0VsMVNCSGIyTzhZSjlWVGNTYXhady5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUEzRjAvRjNDMkE5MjIyQjhBMTFFRUFERDIyMTBDQzRGOUFFMDIvMzdEMDNEOEND NDgxMTFGMEJBOTE2NDNGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQDco6IAwQDeVtoAwQDfMU4MA0GCSqGSIb3DQEBCwUAA4IBAQAd+jD9 fpD22lOhTAOpi+p6tc05S38uC251MpIOYiFAVauCr4sCbLC7ymbzdUeZv+w91nbG GL7Q7Cmus/7cKdJZjzpCCHOiLZhLkEqhjMgaM6AstUGkc2zzhZQGvNJZG43lxLQN CquYVQfNMjLfFIFmUg2A8830dVEpm6ji/6A9MvjyR+GiElCjAIFkaJN30/GG/28b pqBKk56jntZ5hOCHZqR4jWtZPd9KkqQ4A2/tPqEAY6V0R0u2GAiuvQ0i47blLJsV BSUqNK4Y7ii0oD7GsUknboxxltgjhTECi8l9A9JfcTze3Fal1UL9vbOWMl0fT+Np DODCx4xww1Vu7JGo -----END CERTIFICATE-----Generated at Thu Mar 26 03:30:39 2026 by rpki-client