$ rpki-client -vvf rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/7A88B1FCB44311F09019B577C4F9AE02.roa File: 7A88B1FCB44311F09019B577C4F9AE02.roa (raw, json) Hash identifier: GVEQA+3eqIkzA9/ZGe521NeAxe7jSsSWSid0hUiNJOE= Subject key identifier: 98:A4:29:DD:FF:A5:BC:58:6D:F5:85:DF:FD:23:37:19:38:7C:5B:72 Certificate issuer: /CN=A912FAA0/serialNumber=C535B6343EA9BF59EA82EEEE3AFB8A4000DE8BB2 Certificate serial: 0565 Authority key identifier: C5:35:B6:34:3E:A9:BF:59:EA:82:EE:EE:3A:FB:8A:40:00:DE:8B:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xTW2ND6pv1nqgu7uOvuKQADei7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/7A88B1FCB44311F09019B577C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:49:44 +0000 ROA not before: Tue 28 Oct 2025 21:17:16 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 216047 IP address blocks: 103.255.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/xTW2ND6pv1nqgu7uOvuKQADei7I.crl rsync://rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/xTW2ND6pv1nqgu7uOvuKQADei7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xTW2ND6pv1nqgu7uOvuKQADei7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:45:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1381 (0x565) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FAA0, serialNumber=C535B6343EA9BF59EA82EEEE3AFB8A4000DE8BB2 Validity Not Before: Oct 28 21:17:16 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a46e28-5bb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:89:32:d0:60:ed:79:87:ac:bf:0d:fc:83:a6: 32:fe:58:d0:83:a3:3d:cc:0a:2f:a3:c6:57:59:62: 7e:91:c4:81:c3:8e:9c:de:12:66:e9:a9:c4:7f:ab: 1e:1b:b1:ad:a0:06:fc:96:54:d0:7e:a5:52:b8:b9: 29:0a:51:6f:87:2a:60:1d:90:52:29:df:9d:aa:43: 7e:ea:bc:d0:c8:fb:09:50:57:42:68:d7:f0:4b:01: 40:09:93:a3:64:fb:37:5d:b0:7c:af:21:51:48:6d: 3f:13:e3:8f:79:60:a8:0f:91:eb:52:2a:9e:34:66: 25:c5:26:8a:c7:e0:ff:08:da:b9:be:fc:38:10:b4: d7:32:ed:e4:a6:20:89:70:2b:6b:12:24:fb:d8:2e: 93:ee:4e:12:f9:7c:07:c5:c6:bd:6b:0c:15:92:82: 16:ec:cb:95:a3:df:9e:04:f0:c1:b1:11:a7:6e:16: ca:86:6e:db:41:76:19:2b:f8:a7:b3:bf:39:fa:c9: 11:57:be:a1:e7:c3:ec:86:a1:21:a6:f5:b3:88:62: e8:1f:29:cf:6f:a6:56:a6:71:72:b1:df:74:23:bf: 32:f6:c5:b5:65:d3:3f:81:73:91:0d:fe:bd:e5:06: b3:10:f2:43:6b:ee:02:94:69:fa:a9:0e:9c:9f:88: 4e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:A4:29:DD:FF:A5:BC:58:6D:F5:85:DF:FD:23:37:19:38:7C:5B:72 X509v3 Authority Key Identifier: keyid:C5:35:B6:34:3E:A9:BF:59:EA:82:EE:EE:3A:FB:8A:40:00:DE:8B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/xTW2ND6pv1nqgu7uOvuKQADei7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xTW2ND6pv1nqgu7uOvuKQADei7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/7A88B1FCB44311F09019B577C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.255.58.0/23 Signature Algorithm: sha256WithRSAEncryption 88:ae:19:25:70:05:1b:a1:ae:36:76:03:a3:98:42:c2:0b:72: 5a:f5:e7:a1:36:c3:cc:88:db:05:eb:53:f9:af:c4:75:95:f8: 1d:cb:6d:47:ff:a1:70:d9:e5:08:8b:fb:ae:e0:d6:32:3d:17: 14:70:18:1b:72:02:56:4c:b3:6e:ef:48:50:65:04:ff:2e:c3: 0c:ef:64:f7:f0:1d:f9:05:8f:d2:9a:1a:90:27:b4:71:10:1e: f0:ff:56:33:46:9f:7f:bb:0f:5b:15:b2:cc:3d:36:4e:52:02: 0c:b6:bb:87:48:8f:63:19:24:c5:44:20:22:6a:bd:6d:a4:df: 36:56:08:a6:d0:77:a3:f2:26:35:fc:a2:df:97:b0:62:5c:56: 44:10:4b:6d:93:6e:5e:e6:06:a4:1c:f4:f0:e7:2b:03:01:2f: a2:28:50:c9:95:bd:08:92:90:5c:af:92:cd:c0:ce:0b:f4:e9: 7a:75:d3:84:d6:31:d8:ea:e2:67:ea:99:6e:48:1e:7e:50:74: f6:3b:6e:74:c5:96:f4:8e:b0:03:49:e7:db:71:ab:de:52:e9: e6:d2:03:69:9b:e7:8e:ef:83:05:4f:65:2a:70:c8:af:05:85: 7c:c3:00:28:d8:5c:60:33:28:e1:f8:8e:5b:75:26:d4:2c:66: 92:7b:86:d9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZBQTAxMTAvBgNVBAUTKEM1MzVCNjM0M0VBOUJGNTlFQTgyRUVFRTNBRkI4QTQw MDBERThCQjIwHhcNMjUxMDI4MjExNzE2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmUyOC01YmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjIky0GDteYesvw38g6Yy/ljQg6M9zAovo8ZXWWJ+kcSBw46c3hJm6anEf6se G7GtoAb8llTQfqVSuLkpClFvhypgHZBSKd+dqkN+6rzQyPsJUFdCaNfwSwFACZOj ZPs3XbB8ryFRSG0/E+OPeWCoD5HrUiqeNGYlxSaKx+D/CNq5vvw4ELTXMu3kpiCJ cCtrEiT72C6T7k4S+XwHxca9awwVkoIW7MuVo9+eBPDBsRGnbhbKhm7bQXYZK/in s785+skRV76h58PshqEhpvWziGLoHynPb6ZWpnFysd90I78y9sW1ZdM/gXORDf69 5QazEPJDa+4ClGn6qQ6cn4hOwQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJikKd3/ pbxYbfWF3/0jNxk4fFtyMB8GA1UdIwQYMBaAFMU1tjQ+qb9Z6oLu7jr7ikAA3ouy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkFBMC9BNjMzN0JFMjI1 REMxMUVDOTUxRUNFODJDNEY5QUUwMi94VFcyTkQ2cHYxbnFndTd1T3Z1S1FBRGVp N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hUVzJORDZwdjFucWd1N3VPdnVLUUFEZWk3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZBQTAvQTYzMzdCRTIyNURDMTFFQzk1MUVDRTgyQzRGOUFFMDIvN0E4OEIxRkNC NDQzMTFGMDkwMTlCNTc3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ/86MA0GCSqGSIb3DQEBCwUAA4IBAQCIrhklcAUboa42dgOjmELC C3Ja9eehNsPMiNsF61P5r8R1lfgdy21H/6Fw2eUIi/uu4NYyPRcUcBgbcgJWTLNu 70hQZQT/LsMM72T38B35BY/SmhqQJ7RxEB7w/1YzRp9/uw9bFbLMPTZOUgIMtruH SI9jGSTFRCAiar1tpN82Vgim0Hej8iY1/KLfl7BiXFZEEEttk25e5gakHPTw5ysD AS+iKFDJlb0IkpBcr5LNwM4L9Ol6ddOE1jHY6uJn6pluSB5+UHT2O250xZb0jrAD SefbcaveUunm0gNpm+eO74MFT2UqcMivBYV8wwAo2FxgMyjh+I5bdSbULGaSe4bZ -----END CERTIFICATE-----Generated at Mon Mar 2 06:35:33 2026 by rpki-client