$ rpki-client -vvf rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/8C7BC30E5B7E11F0AA42172EC4F9AE02.roa File: 8C7BC30E5B7E11F0AA42172EC4F9AE02.roa (raw, json) Hash identifier: tQ6h5U80hViApEcolMy8eZlxAFiz9SJZ7qPINPyuZ+w= Subject key identifier: AF:B1:0F:3E:AC:ED:58:0A:C5:9F:F2:8B:D4:CD:1F:A6:C7:FB:C4:6C Certificate issuer: /CN=A9111318/serialNumber=806ABFF463594CAA30DE70A311AE2F849189BC64 Certificate serial: 3631 Authority key identifier: 80:6A:BF:F4:63:59:4C:AA:30:DE:70:A3:11:AE:2F:84:91:89:BC:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/8C7BC30E5B7E11F0AA42172EC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:59:49 +0000 ROA not before: Mon 07 Jul 2025 22:05:53 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45131 IP address blocks: 163.7.130.0/23 maxlen: 23 163.7.130.0/24 maxlen: 24 163.7.131.0/24 maxlen: 24 163.7.132.0/24 maxlen: 24 2404:138:130::/47 maxlen: 47 2404:138:130::/48 maxlen: 48 2404:138:131::/48 maxlen: 48 2404:138:132::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.crl rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:19:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13873 (0x3631) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111318, serialNumber=806ABFF463594CAA30DE70A311AE2F849189BC64 Validity Not Before: Jul 7 22:05:53 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47e95-d1be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:20:77:31:80:8a:66:a0:02:48:aa:08:6c:aa: f2:8f:97:3f:a5:fe:59:c4:58:72:37:92:0d:d2:c7: 1a:55:ed:c1:47:78:8e:be:b8:45:2e:10:ac:5b:52: 1d:97:eb:34:46:35:e6:fa:c9:9d:88:56:b3:76:7a: 1a:50:8c:f1:6a:b8:1e:d3:f0:88:a1:fd:fb:3a:9f: 51:67:5b:c5:9f:34:e4:3b:ee:c1:d9:c4:db:8a:25: 26:3b:55:c1:c8:e6:ec:a8:f0:df:f8:ea:be:08:53: c5:c3:1f:10:57:ee:5a:99:93:18:33:35:03:d6:7b: f7:ae:1f:17:c1:60:af:8a:b1:54:15:dd:3a:70:b6: a0:a3:0d:a7:84:c7:26:b6:11:e9:34:07:35:7c:3a: d8:d7:14:05:99:71:55:ac:aa:17:47:e8:d1:1a:ec: cb:58:68:c7:5e:c6:89:a4:63:96:ff:7f:16:fb:36: da:72:61:50:31:e1:cb:dc:1a:11:48:d4:37:5e:10: db:34:11:3a:0b:b6:f7:11:47:8d:77:d7:a6:f7:23: 9b:9e:f1:f2:78:a5:66:b7:b8:b6:ef:da:e4:42:84: af:c9:33:fa:3c:12:5e:4e:5e:7d:c4:c4:dd:34:00: a4:1d:1a:7d:f7:4f:e4:bd:e4:4f:dd:14:34:ca:50: 7d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:B1:0F:3E:AC:ED:58:0A:C5:9F:F2:8B:D4:CD:1F:A6:C7:FB:C4:6C X509v3 Authority Key Identifier: keyid:80:6A:BF:F4:63:59:4C:AA:30:DE:70:A3:11:AE:2F:84:91:89:BC:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/8C7BC30E5B7E11F0AA42172EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.7.130.0-163.7.132.255 IPv6: 2404:138:130::-2404:138:132:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 66:9b:5a:16:74:11:a3:2f:18:f2:08:a2:cf:5e:e6:0a:01:ef: 44:a6:71:b1:c9:37:c0:17:62:8f:22:18:8c:d1:e5:45:01:1b: 1e:13:e0:64:a8:c5:cc:ff:9c:ef:c4:a2:e9:45:e8:9c:44:f1: 71:5a:1d:bf:2a:b2:20:09:6e:db:e4:c8:78:02:10:d7:e7:6e: 66:8c:3b:44:2e:d5:e1:de:d0:a6:a8:e1:66:d5:bf:6e:87:02: db:44:89:d3:b5:4a:2c:91:b7:26:cd:b7:47:9b:79:de:ff:1e: 06:26:73:80:9c:6c:a4:a5:d2:31:80:14:ae:6f:1d:7b:6d:3c: 7b:9b:bb:81:5c:97:82:36:97:70:55:ba:f2:39:24:68:7d:b9: ac:db:ce:e8:8a:d8:64:92:89:23:8d:6f:3e:36:84:2d:36:95: bb:34:4d:05:62:0e:4d:8b:5f:cf:dc:12:5f:b8:68:2f:03:23: fb:3a:26:ef:d3:35:b1:f8:c7:9a:06:f3:43:9f:14:57:bb:1b: 65:7a:a4:35:c7:b7:10:f5:2b:a7:2b:fc:90:11:c3:bb:b0:47: 07:a3:9a:cc:a5:75:19:50:28:94:b8:5a:c8:ec:40:7c:5e:14: 18:e0:1e:58:e8:77:40:ec:54:69:d8:04:70:7c:a6:c8:92:f9: 27:84:dc:83 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICNjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEzMTgxMTAvBgNVBAUTKDgwNkFCRkY0NjM1OTRDQUEzMERFNzBBMzExQUUyRjg0 OTE4OUJDNjQwHhcNMjUwNzA3MjIwNTUzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2U5NS1kMWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuiB3MYCKZqACSKoIbKryj5c/pf5ZxFhyN5IN0scaVe3BR3iOvrhFLhCsW1Id l+s0RjXm+smdiFazdnoaUIzxarge0/CIof37Op9RZ1vFnzTkO+7B2cTbiiUmO1XB yObsqPDf+Oq+CFPFwx8QV+5amZMYMzUD1nv3rh8XwWCvirFUFd06cLagow2nhMcm thHpNAc1fDrY1xQFmXFVrKoXR+jRGuzLWGjHXsaJpGOW/38W+zbacmFQMeHL3BoR SNQ3XhDbNBE6C7b3EUeNd9em9yObnvHyeKVmt7i279rkQoSvyTP6PBJeTl59xMTd NACkHRp990/kveRP3RQ0ylB9HQIDAQABo4IChDCCAoAwHQYDVR0OBBYEFK+xDz6s 7VgKxZ/yi9TNH6bH+8RsMB8GA1UdIwQYMBaAFIBqv/RjWUyqMN5woxGuL4SRibxk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTMxOC9EQzc0NTFGMjFE OTExMUUyOThFNzQ2RjQwOEIwMkNEMi9nR3FfOUdOWlRLb3czbkNqRWE0dmhKR0p2 R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dHcV85R05aVEtvdzNuQ2pFYTR2aEpHSnZHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTEzMTgvREM3NDUxRjIxRDkxMTFFMjk4RTc0NkY0MDhCMDJDRDIvOEM3QkMzMEU1 QjdFMTFGMEFBNDIxNzJFQzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAU BAIAATAOMAwDBAGjB4IDBACjB4QwGgQCAAIwFDASAwcEJAQBOAEwAwcAJAQBOAEy MA0GCSqGSIb3DQEBCwUAA4IBAQBmm1oWdBGjLxjyCKLPXuYKAe9EpnGxyTfAF2KP IhiM0eVFARseE+BkqMXM/5zvxKLpReicRPFxWh2/KrIgCW7b5Mh4AhDX525mjDtE LtXh3tCmqOFm1b9uhwLbRInTtUoskbcmzbdHm3ne/x4GJnOAnGykpdIxgBSubx17 bTx7m7uBXJeCNpdwVbryOSRofbms287oithkkokjjW8+NoQtNpW7NE0FYg5Ni1/P 3BJfuGgvAyP7Oibv0zWx+MeaBvNDnxRXuxtleqQ1x7cQ9SunK/yQEcO7sEcHo5rM pXUZUCiUuFrI7EB8XhQY4B5Y6HdA7FRp2ARwfKbIkvknhNyD -----END CERTIFICATE-----Generated at Mon Mar 2 14:58:56 2026 by rpki-client