$ rpki-client -vvf rpki.apnic.net/member_repository/A914354F/6D193A9ACC6311F09025DF37C4F9AE02/8EF088C4D77311F0882D4FBB79D3641D.roa File: 8EF088C4D77311F0882D4FBB79D3641D.roa (raw, json) Hash identifier: o1fiXCjFDXjKshZmXjJ558GbsN9d78xYw5aDtUQ+m18= Subject key identifier: D2:54:D3:CC:02:CE:86:E2:21:47:56:D7:AA:A1:B8:BA:B8:B6:9D:95 Certificate issuer: /CN=A914354F/serialNumber=7448C551F57F18638CF1AC1FC4CBFED43DEF4FAE Certificate serial: 41 Authority key identifier: 74:48:C5:51:F5:7F:18:63:8C:F1:AC:1F:C4:CB:FE:D4:3D:EF:4F:AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEjFUfV_GGOM8awfxMv-1D3vT64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914354F/6D193A9ACC6311F09025DF37C4F9AE02/8EF088C4D77311F0882D4FBB79D3641D.roa Signing time: Sun 01 Mar 2026 06:08:27 +0000 ROA not before: Fri 12 Dec 2025 15:59:37 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 154394 IP address blocks: 144.79.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914354F/6D193A9ACC6311F09025DF37C4F9AE02/dEjFUfV_GGOM8awfxMv-1D3vT64.crl rsync://rpki.apnic.net/member_repository/A914354F/6D193A9ACC6311F09025DF37C4F9AE02/dEjFUfV_GGOM8awfxMv-1D3vT64.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEjFUfV_GGOM8awfxMv-1D3vT64.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914354F, serialNumber=7448C551F57F18638CF1AC1FC4CBFED43DEF4FAE Validity Not Before: Dec 12 15:59:37 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a3d7da-69e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:13:f0:7d:db:2f:ea:2b:f6:88:df:5d:b8:c6: a5:c0:da:04:eb:8b:02:33:92:27:0f:04:36:ff:b6: 69:19:7e:39:03:42:6d:0f:55:aa:fd:a3:04:b2:a3: 9b:81:58:47:1e:f3:d8:80:78:0e:b7:98:79:ba:cf: 99:70:4b:14:5c:10:3f:72:92:65:76:ab:a9:9a:13: 59:fd:6d:b5:0d:91:cf:ac:7e:7a:e2:04:b6:4e:64: f7:11:48:69:68:9e:53:7e:ab:c8:63:1f:5f:c9:36: 8a:70:79:38:64:ac:dd:fd:e7:1a:5b:46:d2:c4:98: c3:54:19:7d:d5:b0:b3:d6:13:3b:f8:0a:7a:31:52: 07:bc:09:d6:bb:77:f9:84:67:22:e0:1e:d6:36:fc: 27:86:23:b5:2f:27:d5:36:a4:20:d6:1f:19:e4:cb: 22:96:32:c0:92:10:ef:81:d2:ab:1a:88:b5:09:66: 5a:3e:1e:a6:12:05:1d:79:aa:66:18:27:74:fd:fd: 3b:a1:f1:a3:7e:30:bf:26:66:4b:09:7a:ce:04:55: 0d:4b:0b:de:a5:0a:64:9d:f7:e8:1d:bb:c3:8a:b9: 50:d0:1a:a5:c5:cd:e1:c0:85:75:f8:57:dd:bf:df: 29:1e:a3:8c:6a:c6:a8:68:57:40:50:8a:fc:b7:59: c3:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:54:D3:CC:02:CE:86:E2:21:47:56:D7:AA:A1:B8:BA:B8:B6:9D:95 X509v3 Authority Key Identifier: keyid:74:48:C5:51:F5:7F:18:63:8C:F1:AC:1F:C4:CB:FE:D4:3D:EF:4F:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914354F/6D193A9ACC6311F09025DF37C4F9AE02/dEjFUfV_GGOM8awfxMv-1D3vT64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEjFUfV_GGOM8awfxMv-1D3vT64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914354F/6D193A9ACC6311F09025DF37C4F9AE02/8EF088C4D77311F0882D4FBB79D3641D.roa sbgp-ipAddrBlock: critical IPv4: 144.79.41.0/24 Signature Algorithm: sha256WithRSAEncryption 82:aa:a7:6e:6d:06:22:20:b9:b1:2f:8d:16:5c:ec:df:ee:6b: a9:49:15:6d:11:f4:87:b7:05:31:fc:05:c6:1c:85:53:9c:cf: 33:34:89:f8:aa:8c:f9:ca:4c:ac:97:68:2a:8a:a6:26:69:f8: 22:07:06:91:d1:8e:e7:cc:09:2e:36:ec:d9:5b:5f:8c:d3:24: 6c:b8:b7:5a:86:ed:7b:1f:f7:92:3f:53:58:33:bb:69:14:06: e0:3d:42:1f:05:98:41:32:f8:a8:d7:c1:b2:cd:08:ea:62:8a: 04:a6:7a:52:2c:c3:c8:f9:66:33:ad:c0:ef:ba:d1:a0:85:b1: d6:88:38:99:60:a3:38:2b:f2:92:f8:34:43:14:d5:f1:61:87: 60:bc:8e:57:45:ee:c2:b7:d4:7a:62:22:80:07:c0:dc:7a:08: 94:a9:2c:f6:b4:e9:09:5e:6e:14:c1:56:00:5d:13:6d:30:5b: f5:70:fa:1c:b2:98:85:cb:f1:b2:46:c3:ee:f4:d6:20:85:b1: 45:c3:d5:54:62:7d:2c:0c:33:1d:0e:ec:5b:83:ab:f4:ac:67: 00:01:01:b6:72:b2:c0:fd:b4:c7:d9:3b:a6:41:16:63:bc:9c: 01:75:0a:42:e7:a9:8e:8d:ac:0d:3c:b7:44:dd:c5:ba:bd:c0: 65:ad:cc:04 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MzU0RjExMC8GA1UEBRMoNzQ0OEM1NTFGNTdGMTg2MzhDRjFBQzFGQzRDQkZFRDQz REVGNEZBRTAeFw0yNTEyMTIxNTU5MzdaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkN2RhLTY5ZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsE/B92y/qK/aI3124xqXA2gTriwIzkicPBDb/tmkZfjkDQm0PVar9owSyo5uB WEce89iAeA63mHm6z5lwSxRcED9ykmV2q6maE1n9bbUNkc+sfnriBLZOZPcRSGlo nlN+q8hjH1/JNopweThkrN395xpbRtLEmMNUGX3VsLPWEzv4CnoxUge8Cda7d/mE ZyLgHtY2/CeGI7UvJ9U2pCDWHxnkyyKWMsCSEO+B0qsaiLUJZlo+HqYSBR15qmYY J3T9/Tuh8aN+ML8mZksJes4EVQ1LC96lCmSd9+gdu8OKuVDQGqXFzeHAhXX4V92/ 3ykeo4xqxqhoV0BQivy3WcMDAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU0lTTzALO huIhR1bXqqG4uri2nZUwHwYDVR0jBBgwFoAUdEjFUfV/GGOM8awfxMv+1D3vT64w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQzNTRGLzZEMTkzQTlBQ0M2 MzExRjA5MDI1REYzN0M0RjlBRTAyL2RFakZVZlZfR0dPTThhd2Z4TXYtMUQzdlQ2 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZEVqRlVmVl9HR09NOGF3ZnhNdi0xRDN2VDY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzU0Ri82RDE5M0E5QUNDNjMxMUYwOTAyNURGMzdDNEY5QUUwMi84RUYwODhDNEQ3 NzMxMUYwODgyRDRGQkI3OUQzNjQxRC5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACQTykwDQYJKoZIhvcNAQELBQADggEBAIKqp25tBiIgubEvjRZc7N/u a6lJFW0R9Ie3BTH8BcYchVOczzM0ifiqjPnKTKyXaCqKpiZp+CIHBpHRjufMCS42 7NlbX4zTJGy4t1qG7Xsf95I/U1gzu2kUBuA9Qh8FmEEy+KjXwbLNCOpiigSmelIs w8j5ZjOtwO+60aCFsdaIOJlgozgr8pL4NEMU1fFhh2C8jldF7sK31HpiIoAHwNx6 CJSpLPa06QlebhTBVgBdE20wW/Vw+hyymIXL8bJGw+701iCFsUXD1VRifSwMMx0O 7FuDq/SsZwABAbZyssD9tMfZO6ZBFmO8nAF1CkLnqY6NrA08t0Tdxbq9wGWtzAQ= -----END CERTIFICATE-----Generated at Mon Mar 2 14:27:55 2026 by rpki-client