$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/77C9E89A3CDC11EEBFA0475EC4F9AE02.roa File: 77C9E89A3CDC11EEBFA0475EC4F9AE02.roa (raw, json) Hash identifier: 5ajoABIPQKy84nhI8bYLiigoWeWTj4zuppcdTO5917w= Subject key identifier: 85:E3:BF:75:7A:BB:1B:99:2F:AA:A7:0B:42:6E:56:C1:4F:83:0D:42 Certificate issuer: /CN=A91E0267/serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Certificate serial: 3522 Authority key identifier: A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/77C9E89A3CDC11EEBFA0475EC4F9AE02.roa Signing time: Mon 02 Mar 2026 04:59:47 +0000 ROA not before: Thu 24 Apr 2025 15:11:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45246 IP address blocks: 114.198.232.0/24 maxlen: 24 114.198.233.0/24 maxlen: 24 114.198.234.0/24 maxlen: 24 114.198.235.0/24 maxlen: 24 114.198.236.0/24 maxlen: 24 114.198.237.0/24 maxlen: 24 114.198.238.0/24 maxlen: 24 114.198.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13602 (0x3522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0267, serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Validity Not Before: Apr 24 15:11:03 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a51943-c3e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8d:27:e2:ef:ce:43:db:6a:82:af:24:e4:f1: 0c:8a:66:80:6f:9a:cb:a5:f6:71:cd:aa:35:f3:e9: 05:c9:e4:d2:13:e5:c2:84:76:b3:6d:5f:6a:f4:27: 30:ca:31:05:b0:65:6b:a1:bc:8e:5d:0e:51:fd:23: 27:7c:10:a3:11:ee:d6:40:e4:fd:61:f6:f2:f9:1e: 1b:ca:6b:55:dc:69:20:d8:5a:5a:35:66:d7:9d:5d: 7a:0e:60:9f:69:63:75:98:dd:6b:a1:71:b5:73:54: b6:30:2a:41:63:ac:72:40:e8:4c:02:6e:91:0c:6d: c8:20:27:d3:96:3d:7b:2e:0d:d2:d9:96:6e:7c:6d: 8c:3d:1a:f0:74:97:2b:72:02:d5:70:5d:f5:0d:29: c3:65:9d:77:1e:95:06:d0:56:05:7e:86:04:a5:bf: 16:9f:b3:d8:68:b2:02:db:2d:56:f5:9f:b2:0b:3c: 92:6f:ec:e9:67:fb:2c:87:92:cb:14:85:06:13:5c: 31:fc:8f:21:0b:c4:e3:82:ed:1d:1a:ad:e8:97:e7: 10:65:c0:8f:fb:75:87:a6:02:5d:bd:e5:2c:54:df: 78:b5:29:53:64:1d:99:c8:ec:9f:d6:f6:fe:83:d6: 3f:38:07:b4:68:9b:83:3a:53:db:15:db:e1:cc:62: 06:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E3:BF:75:7A:BB:1B:99:2F:AA:A7:0B:42:6E:56:C1:4F:83:0D:42 X509v3 Authority Key Identifier: keyid:A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/77C9E89A3CDC11EEBFA0475EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 114.198.232.0/21 Signature Algorithm: sha256WithRSAEncryption 59:85:ae:1b:f9:d0:26:49:b9:4a:cb:b1:9e:a5:15:81:32:5a: fb:ca:19:a8:e4:ee:84:a9:f6:e8:ac:be:6f:3b:ac:7c:c0:8e: 19:4d:4b:dd:5e:0c:87:2d:d2:49:43:be:3e:41:75:99:be:4d: 85:ad:9a:a9:9b:f7:3d:f2:b3:5e:3f:d5:72:c9:c7:9d:be:ad: 21:21:f3:89:3c:06:f1:4f:c6:d0:fa:95:f0:01:ce:cf:f0:8e: d3:13:5f:4a:f5:30:c8:61:27:32:46:b5:32:ce:43:ef:df:58: 28:9c:8d:04:b4:6f:72:59:61:e3:45:27:f1:22:38:3d:f0:a4: 08:bf:1f:8b:ea:88:ad:88:d3:c1:fb:91:0f:be:75:75:ea:7d: b2:2d:05:03:50:8e:ab:42:24:04:ae:7f:88:2e:84:fe:0f:9b: 7a:a6:7c:69:c3:9d:32:17:f2:d8:76:70:d3:f9:7d:3a:75:83: b7:54:c7:67:cd:a2:1c:8d:15:c9:d6:ea:30:3f:ea:3e:dd:eb: 1e:77:fe:45:c8:9e:ac:0a:da:d5:42:2a:f9:e5:dc:3e:b0:76: f5:4e:2d:0a:d6:3b:f9:5f:f2:56:25:da:60:35:a8:3d:62:88: b0:23:38:34:27:da:fa:a6:84:ea:c1:08:65:39:cb:9c:f2:5e: d3:15:1d:32 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAyNjcxMTAvBgNVBAUTKEEwMUQyM0Y3ODFFOEZGMzUzQjE4QkQxODgyODRDOUFE RkNEOUUzOTYwHhcNMjUwNDI0MTUxMTAzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MTk0My1jM2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzY0n4u/OQ9tqgq8k5PEMimaAb5rLpfZxzao18+kFyeTSE+XChHazbV9q9Ccw yjEFsGVrobyOXQ5R/SMnfBCjEe7WQOT9Yfby+R4bymtV3Gkg2FpaNWbXnV16DmCf aWN1mN1roXG1c1S2MCpBY6xyQOhMAm6RDG3IICfTlj17Lg3S2ZZufG2MPRrwdJcr cgLVcF31DSnDZZ13HpUG0FYFfoYEpb8Wn7PYaLIC2y1W9Z+yCzySb+zpZ/ssh5LL FIUGE1wx/I8hC8Tjgu0dGq3ol+cQZcCP+3WHpgJdveUsVN94tSlTZB2ZyOyf1vb+ g9Y/OAe0aJuDOlPbFdvhzGIG3wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIXjv3V6 uxuZL6qnC0JuVsFPgw1CMB8GA1UdIwQYMBaAFKAdI/eB6P81Oxi9GIKEya382eOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDI2Ny8xOTBFQUI1QzFE OTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196VTdHTDBZZ29USnJmelo0 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CMGo5NEhvX3pVN0dMMFlnb1RKcmZ6WjQ1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTAyNjcvMTkwRUFCNUMxRDk4MTFFMjlFNjVGRjgxMDhCMDJDRDIvNzdDOUU4OUEz Q0RDMTFFRUJGQTA0NzVFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDcsboMA0GCSqGSIb3DQEBCwUAA4IBAQBZha4b+dAmSblKy7GepRWB Mlr7yhmo5O6EqfborL5vO6x8wI4ZTUvdXgyHLdJJQ74+QXWZvk2FrZqpm/c98rNe P9Vyycedvq0hIfOJPAbxT8bQ+pXwAc7P8I7TE19K9TDIYScyRrUyzkPv31gonI0E tG9yWWHjRSfxIjg98KQIvx+L6oitiNPB+5EPvnV16n2yLQUDUI6rQiQErn+ILoT+ D5t6pnxpw50yF/LYdnDT+X06dYO3VMdnzaIcjRXJ1uowP+o+3esed/5FyJ6sCtrV Qir55dw+sHb1Ti0K1jv5X/JWJdpgNag9YoiwIzg0J9r6poTqwQhlOcuc8l7TFR0y -----END CERTIFICATE-----Generated at Thu Mar 26 07:58:28 2026 by rpki-client