$ rpki-client -vvf rpki.apnic.net/member_repository/A919D222/8764489CCD7F11EFA5848838C4F9AE02/1852A5B0CD8011EF8728D139C4F9AE02.roa File: 1852A5B0CD8011EF8728D139C4F9AE02.roa (raw, json) Hash identifier: GcZaKKkUm4eJadng809d875dfAtSrkk2RvfSOSlgS2k= Subject key identifier: 0D:20:FC:DD:CD:34:46:A3:63:A5:22:EC:82:23:FA:90:3D:DB:B4:BB Certificate issuer: /CN=A919D222/serialNumber=8205E9796EC69A0C73DC3B5B3CE12C48192B4577 Certificate serial: E7 Authority key identifier: 82:05:E9:79:6E:C6:9A:0C:73:DC:3B:5B:3C:E1:2C:48:19:2B:45:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D222/8764489CCD7F11EFA5848838C4F9AE02/1852A5B0CD8011EF8728D139C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:23:03 +0000 ROA not before: Tue 25 Nov 2025 04:22:27 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 38001 IP address blocks: 113.29.226.0/24 maxlen: 24 113.29.228.0/24 maxlen: 24 113.29.229.0/24 maxlen: 24 113.29.230.0/24 maxlen: 24 113.29.231.0/24 maxlen: 24 113.29.232.0/24 maxlen: 24 113.29.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D222/8764489CCD7F11EFA5848838C4F9AE02/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.crl rsync://rpki.apnic.net/member_repository/A919D222/8764489CCD7F11EFA5848838C4F9AE02/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D222, serialNumber=8205E9796EC69A0C73DC3B5B3CE12C48192B4577 Validity Not Before: Nov 25 04:22:27 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a59d47-800d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:eb:e7:c4:29:f8:de:33:cf:45:0e:55:c5:14: 20:09:f0:46:65:fb:95:77:56:53:48:ac:14:a5:99: b5:d2:1d:b7:cf:fa:b0:1c:74:df:fc:24:7c:2b:2d: 86:8a:ea:6e:86:7a:67:46:53:a9:85:f4:84:bc:79: 6a:04:7d:1e:66:24:26:9a:c3:33:e4:8c:b7:64:8d: dd:87:44:58:76:c0:18:2d:65:3d:ce:dd:b8:9b:f7: 0b:46:b4:e5:40:ed:a5:e8:c7:58:65:29:12:63:e1: 7c:fd:40:e0:d2:e0:5d:30:a6:0e:a0:46:fc:ae:97: 4e:f0:7f:4e:f7:3c:11:9f:9f:15:ff:7f:76:2b:a4: 7a:a9:3d:e6:fa:7e:21:88:12:42:0a:de:81:f5:34: 82:d5:a5:45:58:b0:bc:e8:5a:a3:9b:7c:98:90:89: fc:4c:54:f4:67:17:77:d6:d7:33:8d:36:a5:3b:d6: a5:44:55:4d:88:59:11:e8:53:c4:77:ad:9b:cf:ed: 63:83:4c:75:b6:33:67:14:64:5f:f8:04:a8:c9:42: b0:bc:79:be:e5:ef:88:09:89:84:bc:21:4f:78:1e: a3:c2:53:50:08:1d:32:b7:b7:81:e2:e5:74:ef:a3: 8c:d4:b0:37:53:9f:4a:05:f3:55:aa:22:2d:ac:e9: 79:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:20:FC:DD:CD:34:46:A3:63:A5:22:EC:82:23:FA:90:3D:DB:B4:BB X509v3 Authority Key Identifier: keyid:82:05:E9:79:6E:C6:9A:0C:73:DC:3B:5B:3C:E1:2C:48:19:2B:45:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D222/8764489CCD7F11EFA5848838C4F9AE02/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D222/8764489CCD7F11EFA5848838C4F9AE02/1852A5B0CD8011EF8728D139C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 113.29.226.0/24 113.29.228.0-113.29.233.255 Signature Algorithm: sha256WithRSAEncryption a2:1a:09:d4:be:99:1a:ab:f3:c6:44:91:61:52:58:2e:1e:71: 3c:81:d6:35:6f:6f:23:ae:3f:90:55:54:1c:69:1d:70:0c:53: 96:59:08:fe:84:c2:dd:04:5d:85:8a:5e:9f:d2:dd:fa:c1:d8: ab:c7:bd:88:2b:bf:0d:13:f9:f9:68:b6:b2:95:f9:65:98:fe: 46:9e:3c:9a:4c:2e:1a:9a:72:d4:2a:db:6e:bf:f5:13:58:ec: 8e:ff:9c:00:06:ca:85:3b:d3:fc:cd:da:9a:9c:d9:04:d0:14: 30:66:36:dc:28:e1:15:67:44:a3:48:02:10:ff:fb:db:ea:e6: 47:93:d1:96:43:f6:fc:6c:35:6a:74:c8:f1:71:3d:d1:9b:de: 61:78:a7:2c:29:a8:9b:57:5c:1c:23:87:55:42:c7:cb:60:9b: 4f:53:93:5e:43:9e:03:b2:55:d1:46:23:a7:b7:f1:84:6d:2f: 13:ba:7d:a9:83:a9:0e:af:35:8c:d2:3a:99:d8:d4:e6:d0:a7: 2b:8b:b9:55:bf:76:9c:8b:a6:74:ae:34:f9:80:8a:37:96:98: c9:12:f0:e3:6a:85:08:e1:d2:91:b4:7e:ed:5a:db:ce:8a:22: d1:09:9a:b4:66:ab:80:67:00:d4:ed:9f:be:b9:c8:9d:31:c7: 47:fe:7a:78 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQyMjIxMTAvBgNVBAUTKDgyMDVFOTc5NkVDNjlBMEM3M0RDM0I1QjNDRTEyQzQ4 MTkyQjQ1NzcwHhcNMjUxMTI1MDQyMjI3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWQ0Ny04MDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOvnxCn43jPPRQ5VxRQgCfBGZfuVd1ZTSKwUpZm10h23z/qwHHTf/CR8Ky2G iupuhnpnRlOphfSEvHlqBH0eZiQmmsMz5Iy3ZI3dh0RYdsAYLWU9zt24m/cLRrTl QO2l6MdYZSkSY+F8/UDg0uBdMKYOoEb8rpdO8H9O9zwRn58V/392K6R6qT3m+n4h iBJCCt6B9TSC1aVFWLC86Fqjm3yYkIn8TFT0Zxd31tczjTalO9alRFVNiFkR6FPE d62bz+1jg0x1tjNnFGRf+ASoyUKwvHm+5e+ICYmEvCFPeB6jwlNQCB0yt7eB4uV0 76OM1LA3U59KBfNVqiItrOl5fQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFA0g/N3N NEajY6Ui7IIj+pA927S7MB8GA1UdIwQYMBaAFIIF6XluxpoMc9w7WzzhLEgZK0V3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDIyMi84NzY0NDg5Q0NE N0YxMUVGQTU4NDg4MzhDNEY5QUUwMi9nZ1hwZVc3R21neHozRHRiUE9Fc1NCa3JS WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnWHBlVzdHbWd4ejNEdGJQT0VzU0JrclJYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQyMjIvODc2NDQ4OUNDRDdGMTFFRkE1ODQ4ODM4QzRGOUFFMDIvMTg1MkE1QjBD RDgwMTFFRjg3MjhEMTM5QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUAwQAcR3iMAwDBAJxHeQDBAFxHegwDQYJKoZIhvcNAQELBQADggEBAKIa CdS+mRqr88ZEkWFSWC4ecTyB1jVvbyOuP5BVVBxpHXAMU5ZZCP6Ewt0EXYWKXp/S 3frB2KvHvYgrvw0T+flotrKV+WWY/kaePJpMLhqactQq226/9RNY7I7/nAAGyoU7 0/zN2pqc2QTQFDBmNtwo4RVnRKNIAhD/+9vq5keT0ZZD9vxsNWp0yPFxPdGb3mF4 pywpqJtXXBwjh1VCx8tgm09Tk15DngOyVdFGI6e38YRtLxO6famDqQ6vNYzSOpnY 1ObQpyuLuVW/dpyLpnSuNPmAijeWmMkS8ONqhQjh0pG0fu1a286KItEJmrRmq4Bn ANTtn765yJ0xx0f+eng= -----END CERTIFICATE-----Generated at Thu Mar 26 05:47:34 2026 by rpki-client