$ rpki-client -vvf rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/7369CB76E42F11E9B6290B4EC4F9AE02.roa File: 7369CB76E42F11E9B6290B4EC4F9AE02.roa (raw, json) Hash identifier: hFcT6GGoZtfB5obxWLs1zq4yzpXCoVBcNvn/SUcTV4s= Subject key identifier: 29:0A:45:AA:DD:2F:71:CB:65:C2:A0:AA:D4:43:5F:03:F6:E1:14:15 Certificate issuer: /CN=A913621A/serialNumber=F83730FD391B6F8F76FEF3176EDB9FC6F5541E40 Certificate serial: 358C Authority key identifier: F8:37:30:FD:39:1B:6F:8F:76:FE:F3:17:6E:DB:9F:C6:F5:54:1E:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Dcw_Tkbb492_vMXbtufxvVUHkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/7369CB76E42F11E9B6290B4EC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:30:18 +0000 ROA not before: Mon 02 Feb 2026 15:10:05 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 38901 IP address blocks: 27.96.84.0/22 maxlen: 24 43.245.32.0/22 maxlen: 24 45.115.80.0/22 maxlen: 24 45.115.208.0/22 maxlen: 24 45.118.76.0/22 maxlen: 24 49.156.0.0/22 maxlen: 24 103.9.188.0/22 maxlen: 24 103.30.196.0/22 maxlen: 24 110.74.192.0/19 maxlen: 24 113.130.124.0/22 maxlen: 24 119.82.248.0/21 maxlen: 24 163.47.12.0/22 maxlen: 24 163.47.172.0/22 maxlen: 24 221.120.160.0/22 maxlen: 24 2404:300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/-Dcw_Tkbb492_vMXbtufxvVUHkA.crl rsync://rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/-Dcw_Tkbb492_vMXbtufxvVUHkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Dcw_Tkbb492_vMXbtufxvVUHkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:46:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13708 (0x358c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913621A, serialNumber=F83730FD391B6F8F76FEF3176EDB9FC6F5541E40 Validity Not Before: Feb 2 15:10:05 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a44d7a-b2ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:fd:61:d1:02:0e:94:0f:9c:12:98:1a:07:87: 0a:dc:c3:f7:59:66:7b:37:d9:11:42:e8:c9:45:d0: 8c:90:56:a4:58:fd:44:06:5f:57:cd:56:58:03:0d: 2a:7a:a5:bc:32:ec:1b:f1:0e:39:d7:e5:b5:4d:17: 21:c1:e7:76:d7:79:3f:3a:62:46:15:ee:fb:7a:6e: 26:11:55:ab:01:14:a5:af:f5:eb:87:d3:72:ae:a4: 75:fa:d7:b6:b4:ee:bb:ac:66:84:df:aa:e6:21:e2: 1a:94:f5:68:dc:b7:42:f5:ae:f6:05:c6:b4:94:15: 1f:d3:e7:e6:29:7b:1e:ad:70:4a:ad:77:01:85:50: 6a:76:81:4b:ee:1a:3b:88:5f:bc:b0:8e:93:95:18: eb:e0:3e:4d:20:d5:38:39:68:84:17:ff:4b:b0:c7: 71:35:fd:22:67:28:40:63:60:b2:e0:70:92:b0:13: 17:3c:60:8d:e6:8a:2a:6d:99:2b:61:6c:f1:ec:1b: 5a:59:b1:a4:39:f5:5a:81:8a:f0:90:52:8f:ac:84: 9d:42:12:ef:7b:34:9d:7a:60:df:07:cb:5e:44:67: df:8c:52:ac:be:c0:0f:e3:a4:0c:a8:f0:32:03:d3: 62:69:3f:d8:72:ec:0d:bf:df:af:71:e3:1a:b9:73: cf:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:0A:45:AA:DD:2F:71:CB:65:C2:A0:AA:D4:43:5F:03:F6:E1:14:15 X509v3 Authority Key Identifier: keyid:F8:37:30:FD:39:1B:6F:8F:76:FE:F3:17:6E:DB:9F:C6:F5:54:1E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/-Dcw_Tkbb492_vMXbtufxvVUHkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Dcw_Tkbb492_vMXbtufxvVUHkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/7369CB76E42F11E9B6290B4EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.96.84.0/22 43.245.32.0/22 45.115.80.0/22 45.115.208.0/22 45.118.76.0/22 49.156.0.0/22 103.9.188.0/22 103.30.196.0/22 110.74.192.0/19 113.130.124.0/22 119.82.248.0/21 163.47.12.0/22 163.47.172.0/22 221.120.160.0/22 IPv6: 2404:300::/32 Signature Algorithm: sha256WithRSAEncryption 0f:46:13:88:74:18:08:7a:37:66:bd:58:a3:0f:cc:5f:fd:15: ab:57:92:e4:8b:5f:fa:89:46:f6:d0:17:e2:21:68:2b:0b:39: 87:8d:8b:79:20:ad:b3:0a:69:60:44:e5:52:65:6f:0e:91:7d: 90:eb:e1:14:64:28:a3:88:35:e1:82:d2:fb:a6:82:72:7d:ba: 59:c5:97:c9:16:90:ba:04:9c:4f:99:00:79:65:37:94:23:f4: 5b:84:0d:c9:66:51:c0:4b:64:fc:16:6a:da:94:7b:c9:76:ab: ad:da:5f:d8:71:01:a1:6d:fb:0a:eb:ad:e8:86:c1:dc:fe:b1: 87:d4:ad:a8:a7:99:bc:bf:19:97:d6:f5:b7:5e:80:c5:44:b8: 15:7a:bf:ff:7c:22:ae:cf:89:fc:54:1c:a9:da:e4:54:13:b3: de:3f:b3:54:75:d8:e5:79:03:a0:b8:e9:49:7d:cd:a2:eb:39: 2e:98:1c:b6:8f:1d:6a:7e:3d:e6:30:18:cd:56:3d:80:02:50: b1:7e:9d:fd:2f:0d:3d:e0:5f:fb:ca:4a:ea:57:c2:31:5f:07: d7:b8:bf:62:2c:f6:99:57:66:eb:60:2d:74:e1:0e:03:38:79: b1:b0:6d:1c:98:99:23:e0:33:31:81:0a:0d:ab:59:d3:b9:70: 98:a8:55:d7 -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgICNYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYyMUExMTAvBgNVBAUTKEY4MzczMEZEMzkxQjZGOEY3NkZFRjMxNzZFREI5RkM2 RjU1NDFFNDAwHhcNMjYwMjAyMTUxMDA1WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGQ3YS1iMmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjf1h0QIOlA+cEpgaB4cK3MP3WWZ7N9kRQujJRdCMkFakWP1EBl9XzVZYAw0q eqW8Muwb8Q451+W1TRchwed213k/OmJGFe77em4mEVWrARSlr/Xrh9NyrqR1+te2 tO67rGaE36rmIeIalPVo3LdC9a72Bca0lBUf0+fmKXserXBKrXcBhVBqdoFL7ho7 iF+8sI6TlRjr4D5NINU4OWiEF/9LsMdxNf0iZyhAY2Cy4HCSsBMXPGCN5ooqbZkr YWzx7BtaWbGkOfVagYrwkFKPrISdQhLvezSdemDfB8teRGffjFKsvsAP46QMqPAy A9NiaT/YcuwNv9+vceMauXPPvwIDAQABo4ICvTCCArkwHQYDVR0OBBYEFCkKRard L3HLZcKgqtRDXwP24RQVMB8GA1UdIwQYMBaAFPg3MP05G2+Pdv7zF27bn8b1VB5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjIxQS8yODIyNDJGMDFE NkQxMUUyQjRDMEU2QUQwOEIwMkNEMi8tRGN3X1RrYmI0OTJfdk1YYnR1Znh2VlVI a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1EY3dfVGtiYjQ5Ml92TVhidHVmeHZWVUhrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzYyMUEvMjgyMjQyRjAxRDZEMTFFMkI0QzBFNkFEMDhCMDJDRDIvNzM2OUNCNzZF NDJGMTFFOUI2MjkwQjRFQzRGOUFFMDIucm9hMHwGCCsGAQUFBwEHAQH/BG0wazBa BAIAATBUAwQCG2BUAwQCK/UgAwQCLXNQAwQCLXPQAwQCLXZMAwQCMZwAAwQCZwm8 AwQCZx7EAwQFbkrAAwQCcYJ8AwQDd1L4AwQCoy8MAwQCoy+sAwQC3XigMA0EAgAC MAcDBQAkBAMAMA0GCSqGSIb3DQEBCwUAA4IBAQAPRhOIdBgIejdmvVijD8xf/RWr V5Lki1/6iUb20BfiIWgrCzmHjYt5IK2zCmlgROVSZW8OkX2Q6+EUZCijiDXhgtL7 poJyfbpZxZfJFpC6BJxPmQB5ZTeUI/RbhA3JZlHAS2T8FmralHvJdqut2l/YcQGh bfsK663ohsHc/rGH1K2op5m8vxmX1vW3XoDFRLgVer//fCKuz4n8VByp2uRUE7Pe P7NUddjleQOguOlJfc2i6zkumBy2jx1qfj3mMBjNVj2AAlCxfp39Lw094F/7ykrq V8IxXwfXuL9iLPaZV2brYC104Q4DOHmxsG0cmJkj4DMxgQoNq1nTuXCYqFXX -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:33 2026 by rpki-client