$ rpki-client -vvf rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/7CEC0182B10C11E5BB6B2A16C4F9AE02.roa File: 7CEC0182B10C11E5BB6B2A16C4F9AE02.roa (raw, json) Hash identifier: vJ92RvTBuV/LG9/GWSM84+Qb5SNUcMMRHiCnMH947qk= Subject key identifier: 59:74:6C:AD:0F:AF:31:A9:8E:95:44:1F:6B:1E:EF:1A:9B:7E:86:EF Certificate issuer: /CN=A914EE0C/serialNumber=3E2B58437E86244139AE4CD03D97F40342850736 Certificate serial: 2775 Authority key identifier: 3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/7CEC0182B10C11E5BB6B2A16C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:26:47 +0000 ROA not before: Sat 26 Jul 2025 15:52:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132917 IP address blocks: 43.226.8.0/24 maxlen: 24 43.226.9.0/24 maxlen: 24 43.226.10.0/24 maxlen: 24 43.226.11.0/24 maxlen: 24 103.250.48.0/24 maxlen: 24 103.250.49.0/24 maxlen: 24 103.250.50.0/24 maxlen: 24 103.250.51.0/24 maxlen: 24 2407:8300::/36 maxlen: 36 2407:8300:1000::/36 maxlen: 36 2407:8300:2000::/36 maxlen: 36 2407:8300:3000::/36 maxlen: 36 2407:8300:4000::/36 maxlen: 36 2407:8300:5000::/36 maxlen: 36 2407:8300:6000::/36 maxlen: 36 2407:8300:7000::/36 maxlen: 36 2407:8300:8000::/36 maxlen: 36 2407:8300:9000::/36 maxlen: 36 2407:8300:a000::/36 maxlen: 36 2407:8300:b000::/36 maxlen: 36 2407:8300:c000::/36 maxlen: 36 2407:8300:d000::/36 maxlen: 36 2407:8300:e000::/36 maxlen: 36 2407:8300:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:37:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10101 (0x2775) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EE0C, serialNumber=3E2B58437E86244139AE4CD03D97F40342850736 Validity Not Before: Jul 26 15:52:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42277-c0ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:64:a0:7b:d8:02:e6:13:95:19:a6:68:db:05: 5d:6c:9d:a0:f0:86:0e:6f:34:06:09:e6:6d:5e:64: 19:d8:a2:14:2a:0c:6b:ae:d1:0f:7f:b7:27:8d:85: 37:62:5b:45:86:6e:be:c6:3a:44:a6:15:43:fc:b7: 3f:e6:a3:8b:03:a6:79:c7:bf:ef:50:a5:11:9e:39: 89:c6:cf:39:6d:a4:31:b4:5a:cc:ad:0d:7f:f4:dc: e3:48:bc:fb:0d:d3:df:a9:32:4c:98:e4:82:85:2c: 93:20:85:c5:7e:51:14:7c:ba:9f:0a:9a:ce:ec:53: ff:5c:6e:85:37:e8:fc:fd:c2:0b:ac:ff:42:ed:03: b4:9f:a1:43:d5:94:fb:e3:78:1c:f3:3e:7a:68:38: 48:b2:79:68:7c:b7:fd:90:3c:6c:43:b6:a9:5a:e5: 08:85:20:b8:fd:21:0d:93:ee:ac:0a:fb:f4:37:f2: 5c:63:33:f9:1b:15:7b:3e:94:5d:9c:da:32:94:8a: bb:9e:6a:c9:7c:c7:04:57:b6:4d:d4:5d:7c:68:65: 13:2f:04:dc:bc:a1:88:ca:2c:38:85:2d:c3:2d:e2: 80:f3:69:fa:84:17:a7:26:3c:c5:0c:02:81:41:c9: 4b:72:13:85:fc:55:90:cc:9a:76:04:22:94:68:e9: 48:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:74:6C:AD:0F:AF:31:A9:8E:95:44:1F:6B:1E:EF:1A:9B:7E:86:EF X509v3 Authority Key Identifier: keyid:3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/7CEC0182B10C11E5BB6B2A16C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.226.8.0/22 103.250.48.0/22 IPv6: 2407:8300::/32 Signature Algorithm: sha256WithRSAEncryption 94:07:14:f0:94:8a:c5:f9:14:bd:48:51:73:e5:96:8b:eb:34: ba:5e:9a:26:ef:b7:d0:bb:de:1e:82:ef:9a:d5:bb:03:96:f9: 1c:f0:d7:98:ce:97:52:68:74:f2:b2:64:0e:c1:0a:fa:36:30: fa:93:06:3d:d5:c1:32:42:5e:f3:7e:f8:66:5b:0c:c1:c1:89: ca:2c:a6:f0:38:7c:23:83:58:d0:2d:74:49:c0:a3:ef:69:c8: a7:b6:4c:31:84:3e:74:93:f2:37:25:2c:e0:db:16:40:44:8a: 7d:cb:35:3b:a1:e2:46:e5:49:d4:b9:f4:e9:6f:98:a6:92:cd: 0e:3a:7c:a4:58:8f:6d:a3:31:4d:d8:33:e5:d3:fd:14:03:af: 53:10:fe:21:7e:0d:fe:c0:c6:83:b8:dd:fd:ab:dc:31:59:72: cb:ba:f0:ea:00:a0:69:b8:89:cf:21:e5:87:2a:b1:09:88:90: e5:bc:92:cb:20:6b:7b:72:3c:b2:62:b5:9d:72:06:a0:8d:89: ee:c3:5f:2e:fe:bf:07:7e:83:96:f8:db:46:7e:ff:f8:9e:ea: cf:bf:be:03:df:ef:10:42:74:c1:59:09:bd:d0:11:49:d3:6f: a5:71:03:d5:44:e0:8e:5e:94:f6:0b:c3:02:da:21:2a:66:69: 0e:b7:b8:a8 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICJ3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVFMEMxMTAvBgNVBAUTKDNFMkI1ODQzN0U4NjI0NDEzOUFFNENEMDNEOTdGNDAz NDI4NTA3MzYwHhcNMjUwNzI2MTU1MjUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjI3Ny1jMGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWSge9gC5hOVGaZo2wVdbJ2g8IYObzQGCeZtXmQZ2KIUKgxrrtEPf7cnjYU3 YltFhm6+xjpEphVD/Lc/5qOLA6Z5x7/vUKURnjmJxs85baQxtFrMrQ1/9NzjSLz7 DdPfqTJMmOSChSyTIIXFflEUfLqfCprO7FP/XG6FN+j8/cILrP9C7QO0n6FD1ZT7 43gc8z56aDhIsnlofLf9kDxsQ7apWuUIhSC4/SENk+6sCvv0N/JcYzP5GxV7PpRd nNoylIq7nmrJfMcEV7ZN1F18aGUTLwTcvKGIyiw4hS3DLeKA82n6hBenJjzFDAKB QclLchOF/FWQzJp2BCKUaOlIvQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFFl0bK0P rzGpjpVEH2se7xqbfobvMB8GA1UdIwQYMBaAFD4rWEN+hiRBOa5M0D2X9ANChQc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUUwQy8yMkQ1MzY1MkQ2 NzIxMUU0QTIxMjIzNTFDNEY5QUUwMi9QaXRZUTM2R0pFRTVya3pRUFpmMEEwS0ZC elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BpdFlRMzZHSkVFNXJrelFQWmYwQTBLRkJ6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVFMEMvMjJENTM2NTJENjcyMTFFNEEyMTIyMzUxQzRGOUFFMDIvN0NFQzAxODJC MTBDMTFFNUJCNkIyQTE2QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCK+IIAwQCZ/owMA0EAgACMAcDBQAkB4MAMA0GCSqGSIb3DQEBCwUA A4IBAQCUBxTwlIrF+RS9SFFz5ZaL6zS6Xpom77fQu94egu+a1bsDlvkc8NeYzpdS aHTysmQOwQr6NjD6kwY91cEyQl7zfvhmWwzBwYnKLKbwOHwjg1jQLXRJwKPvacin tkwxhD50k/I3JSzg2xZARIp9yzU7oeJG5UnUufTpb5imks0OOnykWI9tozFN2DPl 0/0UA69TEP4hfg3+wMaDuN39q9wxWXLLuvDqAKBpuInPIeWHKrEJiJDlvJLLIGt7 cjyyYrWdcgagjYnuw18u/r8HfoOW+NtGfv/4nurPv74D3+8QQnTBWQm90BFJ02+l cQPVROCOXpT2C8MC2iEqZmkOt7io -----END CERTIFICATE-----Generated at Mon Mar 2 09:29:49 2026 by rpki-client