$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/3A77AE12CB9C11EC9230F70BC4F9AE02.roa File: 3A77AE12CB9C11EC9230F70BC4F9AE02.roa (raw, json) Hash identifier: 1YpjWdluX8j+BfkEAZKeZUZ6Anx0YAJLrL0f3J9cUeE= Subject key identifier: 93:41:D9:C9:2D:A1:6B:A4:46:9A:F4:75:23:21:2B:4A:17:77:1E:26 Certificate issuer: /CN=A9116B43/serialNumber=B3E0301974D6A4083DB9F49D5AD6E5A157792A06 Certificate serial: 06EA Authority key identifier: B3:E0:30:19:74:D6:A4:08:3D:B9:F4:9D:5A:D6:E5:A1:57:79:2A:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/3A77AE12CB9C11EC9230F70BC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:26:31 +0000 ROA not before: Wed 04 Feb 2026 15:11:15 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 4594 IP address blocks: 202.74.0.0/22 maxlen: 22 202.74.0.0/24 maxlen: 24 202.74.1.0/24 maxlen: 24 202.74.2.0/24 maxlen: 24 202.74.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.crl rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1770 (0x6ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B43, serialNumber=B3E0301974D6A4083DB9F49D5AD6E5A157792A06 Validity Not Before: Feb 4 15:11:15 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a45aa7-25ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:99:9f:ae:0f:70:06:ae:33:6c:5b:81:04:a9: e3:e6:5a:43:b8:40:1b:45:22:bf:0b:82:bb:28:8d: 1e:65:d7:aa:5d:79:42:8e:19:f8:09:19:ae:0c:bc: ec:00:f2:4b:cc:63:8d:e2:86:14:7c:3f:98:2d:0d: 35:e5:38:35:2e:4b:ee:d9:27:a1:5b:f5:f9:08:96: 09:fb:f6:e1:c2:1b:c1:ab:fc:3a:44:c1:e2:53:1a: 79:29:39:d8:5c:a0:f8:36:ae:24:24:2d:d8:9a:7b: a1:2d:cc:8b:01:80:b2:fd:e3:7c:21:20:3f:a9:8c: 13:3c:ce:fa:ac:78:7f:4c:94:2a:7b:4f:c8:fc:1f: 94:2b:44:91:22:55:24:f2:9a:f2:4d:ed:98:a8:7d: 29:6c:5a:b3:84:42:02:05:21:36:73:56:a4:6f:05: 4e:4c:67:98:42:af:18:34:5a:66:37:44:7c:e0:db: ec:44:fe:7b:08:2c:5f:84:d2:e4:c7:d5:25:56:6c: 38:a9:62:c6:77:05:05:aa:e2:59:1e:13:31:b5:32: 49:78:b9:a0:71:63:fb:95:eb:9c:de:38:57:15:ab: b5:b5:4d:e4:42:cb:bb:f1:08:01:5f:e3:5c:33:9b: 15:e0:8d:44:06:d0:98:5d:bd:51:25:55:90:8c:c1: 4d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:41:D9:C9:2D:A1:6B:A4:46:9A:F4:75:23:21:2B:4A:17:77:1E:26 X509v3 Authority Key Identifier: keyid:B3:E0:30:19:74:D6:A4:08:3D:B9:F4:9D:5A:D6:E5:A1:57:79:2A:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/3A77AE12CB9C11EC9230F70BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.74.0.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:c5:f6:a4:3e:6c:fa:4b:e2:46:a9:11:b1:ae:3f:82:46:8a: db:90:ec:4e:88:73:10:f2:70:30:cd:38:80:54:59:85:81:2a: 75:0d:fc:71:74:8f:5a:93:1d:59:1a:93:70:be:e7:ef:16:ee: ec:c4:b2:72:dd:ed:37:fa:49:bf:5f:07:3c:3e:18:93:ce:e2: 8c:5d:f2:bd:87:29:9a:0a:bb:90:ef:37:53:7c:bd:1f:6c:71: c6:ce:62:4a:82:de:fe:8c:7c:43:dc:25:7f:b1:43:e5:63:07: 02:40:ac:ed:1a:94:eb:95:7e:1c:cd:15:a5:cb:4a:61:ee:9c: 16:3f:43:70:15:a4:1d:66:6a:d8:65:88:d9:47:24:4d:ec:b6: c1:3c:e1:e1:59:07:01:85:1d:99:6a:62:06:8c:5b:e9:4b:14: 4c:f8:9e:dc:bb:4a:77:37:b6:5b:0a:55:7a:2d:7b:5b:b4:f5: 9f:b8:7a:fb:f7:fc:6d:75:b6:97:d7:7e:2b:f4:ac:c3:b4:cf: ff:0a:66:53:d9:66:ce:03:10:1d:7e:9e:0d:67:d4:e8:dc:97: 77:a8:cb:5d:43:77:3b:12:18:85:d3:14:f6:75:92:d9:85:a5: c7:45:66:24:df:fa:4b:77:6d:43:63:6d:24:91:a3:3e:b2:8e: 31:a1:7d:e5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZCNDMxMTAvBgNVBAUTKEIzRTAzMDE5NzRENkE0MDgzREI5RjQ5RDVBRDZFNUEx NTc3OTJBMDYwHhcNMjYwMjA0MTUxMTE1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWFhNy0yNWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpmfrg9wBq4zbFuBBKnj5lpDuEAbRSK/C4K7KI0eZdeqXXlCjhn4CRmuDLzs APJLzGON4oYUfD+YLQ015Tg1Lkvu2SehW/X5CJYJ+/bhwhvBq/w6RMHiUxp5KTnY XKD4Nq4kJC3YmnuhLcyLAYCy/eN8ISA/qYwTPM76rHh/TJQqe0/I/B+UK0SRIlUk 8pryTe2YqH0pbFqzhEICBSE2c1akbwVOTGeYQq8YNFpmN0R84NvsRP57CCxfhNLk x9UlVmw4qWLGdwUFquJZHhMxtTJJeLmgcWP7leuc3jhXFau1tU3kQsu78QgBX+Nc M5sV4I1EBtCYXb1RJVWQjMFNtwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJNB2ckt oWukRpr0dSMhK0oXdx4mMB8GA1UdIwQYMBaAFLPgMBl01qQIPbn0nVrW5aFXeSoG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkI0My81OTQyMUE0RThE N0MxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9zLUF3R1hUV3BBZzl1ZlNkV3RibG9WZDVL Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MtQXdHWFRXcEFnOXVmU2RXdGJsb1ZkNUtnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTZCNDMvNTk0MjFBNEU4RDdDMTFFQjhEOEJENjBCQzRGOUFFMDIvM0E3N0FFMTJD QjlDMTFFQzkyMzBGNzBCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCykoAMA0GCSqGSIb3DQEBCwUAA4IBAQA7xfakPmz6S+JGqRGxrj+C RorbkOxOiHMQ8nAwzTiAVFmFgSp1DfxxdI9akx1ZGpNwvufvFu7sxLJy3e03+km/ Xwc8PhiTzuKMXfK9hymaCruQ7zdTfL0fbHHGzmJKgt7+jHxD3CV/sUPlYwcCQKzt GpTrlX4czRWly0ph7pwWP0NwFaQdZmrYZYjZRyRN7LbBPOHhWQcBhR2ZamIGjFvp SxRM+J7cu0p3N7ZbClV6LXtbtPWfuHr79/xtdbaX134r9KzDtM//CmZT2WbOAxAd fp4NZ9To3Jd3qMtdQ3c7EhiF0xT2dZLZhaXHRWYk3/pLd21DY20kkaM+so4xoX3l -----END CERTIFICATE-----Generated at Mon Mar 2 04:37:21 2026 by rpki-client