$ rpki-client -vvf rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/7E8114F414E611EB82C98471C4F9AE02.roa File: 7E8114F414E611EB82C98471C4F9AE02.roa (raw, json) Hash identifier: 4jo636T6jYuAB4lWYCYJ4Jdk6gTR1xHLVvPQO5ElmxA= Subject key identifier: 37:6B:A4:2C:CD:29:A1:F5:CB:B8:5C:90:21:67:2A:76:1D:F2:60:CA Certificate issuer: /CN=A9122D89/serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Certificate serial: 0830 Authority key identifier: 3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/7E8114F414E611EB82C98471C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:07:41 +0000 ROA not before: Mon 22 Dec 2025 21:17:02 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 55720 IP address blocks: 45.116.172.0/24 maxlen: 24 45.116.173.0/24 maxlen: 24 45.116.174.0/24 maxlen: 24 45.116.175.0/24 maxlen: 24 103.244.0.0/24 maxlen: 24 103.244.1.0/24 maxlen: 24 103.244.2.0/24 maxlen: 24 103.244.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2096 (0x830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122D89, serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Validity Not Before: Dec 22 21:17:02 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4482d-8016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d3:9f:f3:cd:ab:64:6c:1e:a4:2b:dc:94:64: 38:2a:33:ea:a2:c8:03:7b:4b:7d:30:f1:0b:48:16: f2:c0:60:9e:65:d7:94:75:b2:c0:3a:03:2e:89:04: bf:0a:e8:db:1d:0a:c3:1a:c8:b8:a8:3e:88:ec:e3: 6a:71:7f:d7:74:e9:cd:00:d5:4d:02:c9:eb:cf:c7: 2d:32:d5:7f:79:f1:c7:b5:4e:3e:38:d9:f8:96:b4: 87:c5:a5:c8:7d:6b:1b:9a:8b:30:df:0c:da:d3:8d: ac:56:93:dc:44:1f:55:2f:d0:21:62:88:f8:90:c6: ac:9b:6f:3c:66:2d:58:14:f1:8b:28:f9:d5:20:b5: a3:56:ca:d0:e6:ee:2a:94:4c:48:5f:7e:08:c2:9f: 28:fb:ff:6c:b4:b5:02:03:7b:f6:a6:44:fe:1e:fc: f6:61:4d:ae:ee:1e:fd:81:e8:41:03:cd:b9:55:5e: ce:fc:cc:ac:e4:5c:9f:7d:82:a4:1e:e0:d9:43:82: 5f:b0:8b:ff:53:e3:76:3e:fe:2d:7e:66:00:a3:20: ae:43:ac:f3:85:b9:39:d1:f4:bd:14:e0:e5:ab:8a: 27:1c:5e:ce:78:1d:96:67:4a:e2:d9:d9:b3:62:17: f7:6d:ec:29:16:fd:d6:95:8c:14:81:58:af:a1:03: 19:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:6B:A4:2C:CD:29:A1:F5:CB:B8:5C:90:21:67:2A:76:1D:F2:60:CA X509v3 Authority Key Identifier: keyid:3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/7E8114F414E611EB82C98471C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.116.172.0/22 103.244.0.0/22 Signature Algorithm: sha256WithRSAEncryption 20:a7:26:6b:7c:23:9d:9f:30:3b:5e:fe:f2:a0:8b:43:0f:73: e9:5f:9a:2d:b9:55:c9:8e:2c:aa:f9:c0:d4:8d:49:c1:ef:b3: 91:0c:1b:ef:a4:2e:7e:cb:7d:78:0c:87:11:38:1e:6c:27:f0: 4a:c4:35:5b:3f:a0:5d:31:e6:ed:e3:38:c1:aa:f1:4a:1b:e6: b2:e0:c2:ea:15:ca:12:e9:58:4e:1b:c2:be:56:50:3f:0f:4f: d9:5e:f1:77:c3:a5:7f:d5:d7:a9:3b:ea:3a:14:61:b6:9a:1e: 72:45:34:12:85:3f:3b:d6:3c:ac:83:42:57:e6:d8:56:72:c3: 84:82:91:a6:c8:53:de:f4:a9:29:e9:c1:42:c3:f6:e3:dd:c7: b8:70:87:08:a4:fd:bb:e7:6f:42:4c:b8:5b:77:be:f0:52:c0: 38:02:e3:98:1b:05:c6:4d:0a:f8:4a:0e:ea:d2:de:42:62:36: 19:58:e3:3a:ce:d6:7a:04:46:94:58:8f:9c:1e:28:5d:06:b6: 5b:e9:62:82:9f:b5:46:a9:08:cb:c0:2f:bb:11:1c:f4:9c:9a: 2a:bb:15:f7:0d:4b:ce:65:5b:7c:10:93:0c:8b:a2:01:b7:85: ce:bc:b3:ad:ce:09:d9:71:26:82:d2:52:e3:d9:7c:2c:84:ca: 86:4f:0f:5e -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJEODkxMTAvBgNVBAUTKDNDRkU2RjNFQjFEODkyNzE1RTQxMzZFOUJBODU2Qjk4 RjY3MTQ3QjAwHhcNMjUxMjIyMjExNzAyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDgyZC04MDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtOf882rZGwepCvclGQ4KjPqosgDe0t9MPELSBbywGCeZdeUdbLAOgMuiQS/ CujbHQrDGsi4qD6I7ONqcX/XdOnNANVNAsnrz8ctMtV/efHHtU4+ONn4lrSHxaXI fWsbmosw3wza042sVpPcRB9VL9AhYoj4kMasm288Zi1YFPGLKPnVILWjVsrQ5u4q lExIX34Iwp8o+/9stLUCA3v2pkT+Hvz2YU2u7h79gehBA825VV7O/Mys5FyffYKk HuDZQ4JfsIv/U+N2Pv4tfmYAoyCuQ6zzhbk50fS9FODlq4onHF7OeB2WZ0ri2dmz Yhf3bewpFv3WlYwUgVivoQMZ+wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFDdrpCzN KaH1y7hckCFnKnYd8mDKMB8GA1UdIwQYMBaAFDz+bz6x2JJxXkE26bqFa5j2cUew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkQ4OS9DNkE0QTVFMjA4 NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtuRmVRVGJwdW9Wcm1QWnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQNXZQckhZa25GZVFUYnB1b1ZybVBaeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJEODkvQzZBNEE1RTIwODQ0MTFFQjlDNzM2NTE0QzRGOUFFMDIvN0U4MTE0RjQx NEU2MTFFQjgyQzk4NDcxQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLXSsAwQCZ/QAMA0GCSqGSIb3DQEBCwUAA4IBAQAgpyZrfCOdnzA7 Xv7yoItDD3PpX5otuVXJjiyq+cDUjUnB77ORDBvvpC5+y314DIcROB5sJ/BKxDVb P6BdMebt4zjBqvFKG+ay4MLqFcoS6VhOG8K+VlA/D0/ZXvF3w6V/1depO+o6FGG2 mh5yRTQShT871jysg0JX5thWcsOEgpGmyFPe9Kkp6cFCw/bj3ce4cIcIpP27529C TLhbd77wUsA4AuOYGwXGTQr4Sg7q0t5CYjYZWOM6ztZ6BEaUWI+cHihdBrZb6WKC n7VGqQjLwC+7ERz0nJoquxX3DUvOZVt8EJMMi6IBt4XOvLOtzgnZcSaC0lLj2Xws hMqGTw9e -----END CERTIFICATE-----Generated at Mon Mar 2 06:03:01 2026 by rpki-client