$ rpki-client -vvf rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/375F7DAA0C3911EB828BDC25C4F9AE02.roa File: 375F7DAA0C3911EB828BDC25C4F9AE02.roa (raw, json) Hash identifier: sOGIE1Y4pAVns9lfWvpaPD3KRpb6ovE8rozjjlTX5nw= Subject key identifier: E4:99:94:7A:D9:1C:F4:84:33:EC:F4:B8:C4:19:95:F5:C3:FB:82:A0 Certificate issuer: /CN=A914E556/serialNumber=879EC9AFCDFA27A3CE7B5D43787A2F890385586E Certificate serial: 083F Authority key identifier: 87:9E:C9:AF:CD:FA:27:A3:CE:7B:5D:43:78:7A:2F:89:03:85:58:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h57Jr836J6POe11DeHoviQOFWG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/375F7DAA0C3911EB828BDC25C4F9AE02.roa Signing time: Wed 08 Apr 2026 21:26:56 +0000 ROA not before: Wed 08 Apr 2026 21:26:56 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 24572 IP address blocks: 103.2.72.0/22 maxlen: 22 114.110.48.0/20 maxlen: 20 114.111.64.0/18 maxlen: 18 124.83.128.0/17 maxlen: 17 183.79.0.0/16 maxlen: 16 2400:7e00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/h57Jr836J6POe11DeHoviQOFWG4.crl rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/h57Jr836J6POe11DeHoviQOFWG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h57Jr836J6POe11DeHoviQOFWG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2111 (0x83f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E556, serialNumber=879EC9AFCDFA27A3CE7B5D43787A2F890385586E Validity Not Before: Apr 8 21:26:56 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d6c820-ca14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b4:da:8e:c3:bd:71:45:35:42:ce:5f:0f:2a: c4:cb:cd:ca:83:b7:e0:d9:e6:63:c6:c8:e1:1e:24: 7e:ca:92:e8:e7:30:6a:8f:e5:e9:96:44:71:22:16: 42:03:97:a3:3c:59:b9:ad:00:f0:61:06:b3:94:57: e1:c4:30:2c:12:dc:e7:4f:07:96:19:05:4d:df:67: 27:8e:b1:fb:2d:8d:08:3c:b1:8e:5f:67:39:f4:6c: 4e:74:42:ae:ee:81:5a:06:3d:eb:a9:c3:8d:90:7d: e0:b7:71:b9:c9:c3:d9:6d:a4:37:d3:4e:e8:d1:08: ea:90:75:e3:b8:65:c0:a4:8b:bf:ab:6e:e1:69:45: 53:94:72:02:f0:0a:b0:93:74:f5:95:ed:95:51:37: b6:78:86:f7:1d:75:d0:58:fe:7e:15:4a:d9:4e:f6: bb:b2:7a:ca:91:fc:ac:da:d4:94:53:d8:90:27:91: de:e2:96:a7:9b:97:12:1e:8d:0d:55:e7:03:9e:30: ea:33:6d:fa:39:87:d3:e1:a5:89:15:7f:2f:84:6d: 09:b4:f6:9f:9d:07:00:3c:5a:c8:3c:08:ff:a5:37: 78:9d:9d:26:7a:74:47:81:f4:5b:c2:43:05:c7:d8: 34:ea:0a:5a:a8:b0:ab:66:e1:82:7a:70:9b:0f:42: 78:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:99:94:7A:D9:1C:F4:84:33:EC:F4:B8:C4:19:95:F5:C3:FB:82:A0 X509v3 Authority Key Identifier: keyid:87:9E:C9:AF:CD:FA:27:A3:CE:7B:5D:43:78:7A:2F:89:03:85:58:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/h57Jr836J6POe11DeHoviQOFWG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h57Jr836J6POe11DeHoviQOFWG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/375F7DAA0C3911EB828BDC25C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.2.72.0/22 114.110.48.0/20 114.111.64.0/18 124.83.128.0/17 183.79.0.0/16 IPv6: 2400:7e00::/32 Signature Algorithm: sha256WithRSAEncryption 73:9f:50:f2:8f:68:54:30:c3:c3:8b:20:2a:23:ad:4a:e1:ed: 32:9f:d8:c3:14:89:86:20:b1:c5:12:c3:ba:a6:1c:5b:7c:db: 10:1a:1f:28:c6:8f:44:ef:58:00:c2:a4:4c:a5:f3:79:2b:24: c8:c5:9f:fc:32:af:34:51:6f:5c:af:70:29:ac:8a:78:74:08: f4:df:02:86:b9:5d:ae:fa:b1:08:54:65:79:19:c2:05:c1:ac: b7:82:e2:35:35:03:8f:82:7e:4c:15:e1:5d:90:c3:e2:fc:cc: 33:c6:23:e5:c3:03:fa:9d:28:b3:51:19:7f:ad:16:81:7f:5c: 16:8e:12:c7:d6:20:b2:f9:7e:1f:5c:53:6b:b0:06:50:55:43: 61:1e:a4:8d:2c:69:5b:e0:59:6e:de:d6:ec:b1:9f:01:62:b3: 5a:fc:e4:24:37:72:60:9f:ee:dd:c8:5d:59:21:8d:9d:70:fd: d1:92:c6:f7:e0:40:0d:16:32:28:15:3c:76:68:0e:3e:34:c4: 32:c4:88:95:e8:52:21:0a:a7:42:3d:65:62:5e:79:d9:b3:93: 47:ac:81:e2:5d:91:a6:f5:be:c7:2e:10:8a:83:74:1a:8d:78: 57:d4:62:46:7d:9e:7d:50:7c:52:9c:ba:01:09:60:95:2f:01: 19:19:cd:04 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICCD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1NTYxMTAvBgNVBAUTKDg3OUVDOUFGQ0RGQTI3QTNDRTdCNUQ0Mzc4N0EyRjg5 MDM4NTU4NkUwHhcNMjYwNDA4MjEyNjU2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ2YzgyMC1jYTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrTajsO9cUU1Qs5fDyrEy83Kg7fg2eZjxsjhHiR+ypLo5zBqj+XplkRxIhZC A5ejPFm5rQDwYQazlFfhxDAsEtznTweWGQVN32cnjrH7LY0IPLGOX2c59GxOdEKu 7oFaBj3rqcONkH3gt3G5ycPZbaQ3007o0QjqkHXjuGXApIu/q27haUVTlHIC8Aqw k3T1le2VUTe2eIb3HXXQWP5+FUrZTva7snrKkfys2tSUU9iQJ5He4panm5cSHo0N VecDnjDqM236OYfT4aWJFX8vhG0JtPafnQcAPFrIPAj/pTd4nZ0menRHgfRbwkMF x9g06gpaqLCrZuGCenCbD0J4mQIDAQABo4IChjCCAoIwHQYDVR0OBBYEFOSZlHrZ HPSEM+z0uMQZlfXD+4KgMB8GA1UdIwQYMBaAFIeeya/N+iejzntdQ3h6L4kDhVhu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTU1Ni8yRUFBRkVDQTBD MzcxMUVCQThBQTgyMjJDNEY5QUUwMi9oNTdKcjgzNko2UE9lMTFEZUhvdmlRT0ZX RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g1N0pyODM2SjZQT2UxMURlSG92aVFPRldHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU1NTYvMkVBQUZFQ0EwQzM3MTFFQkE4QUE4MjIyQzRGOUFFMDIvMzc1RjdEQUEw QzM5MTFFQjgyOEJEQzI1QzRGOUFFMDIucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAj BAIAATAdAwQCZwJIAwQEcm4wAwQGcm9AAwQHfFOAAwMAt08wDQQCAAIwBwMFACQA fgAwDQYJKoZIhvcNAQELBQADggEBAHOfUPKPaFQww8OLICojrUrh7TKf2MMUiYYg scUSw7qmHFt82xAaHyjGj0TvWADCpEyl83krJMjFn/wyrzRRb1yvcCmsinh0CPTf Aoa5Xa76sQhUZXkZwgXBrLeC4jU1A4+CfkwV4V2Qw+L8zDPGI+XDA/qdKLNRGX+t FoF/XBaOEsfWILL5fh9cU2uwBlBVQ2EepI0saVvgWW7e1uyxnwFis1r85CQ3cmCf 7t3IXVkhjZ1w/dGSxvfgQA0WMigVPHZoDj40xDLEiJXoUiEKp0I9ZWJeedmzk0es geJdkab1vscuEIqDdBqNeFfUYkZ9nn1QfFKcugEJYJUvARkZzQQ= -----END CERTIFICATE-----Generated at Fri Apr 17 16:38:50 2026 by rpki-client