$ rpki-client -vvf rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/7E099DB21C5611EBB91D2683C4F9AE02.roa File: 7E099DB21C5611EBB91D2683C4F9AE02.roa (raw, json) Hash identifier: 6xwmJlbl5R7pahb4ie5zQu29OXgagY1TGzpA5chMv/s= Subject key identifier: C7:FA:CA:25:25:E2:5A:A8:BB:52:E7:B8:FF:84:B1:7D:74:5E:B9:41 Certificate issuer: /CN=A915465A/serialNumber=785E0BFF07B9037C60334B2DF3369281A4DC3F5A Certificate serial: 0837 Authority key identifier: 78:5E:0B:FF:07:B9:03:7C:60:33:4B:2D:F3:36:92:81:A4:DC:3F:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/7E099DB21C5611EBB91D2683C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:29:01 +0000 ROA not before: Wed 17 Dec 2025 19:53:10 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45785 IP address blocks: 116.193.157.0/24 maxlen: 24 183.78.168.0/24 maxlen: 24 183.78.169.0/24 maxlen: 24 183.78.170.0/24 maxlen: 24 183.78.171.0/24 maxlen: 24 202.43.100.0/24 maxlen: 24 202.43.101.0/24 maxlen: 24 202.43.102.0/24 maxlen: 24 202.43.103.0/24 maxlen: 24 210.1.224.0/21 maxlen: 21 210.1.224.0/22 maxlen: 22 210.1.224.0/24 maxlen: 24 210.1.225.0/24 maxlen: 24 210.1.226.0/24 maxlen: 24 210.1.227.0/24 maxlen: 24 210.1.228.0/22 maxlen: 22 210.1.228.0/24 maxlen: 24 210.1.229.0/24 maxlen: 24 210.1.230.0/24 maxlen: 24 210.1.231.0/24 maxlen: 24 2401:c400::/32 maxlen: 32 2401:c400:1000::/48 maxlen: 48 2401:c400:2000::/48 maxlen: 48 2401:c400:3000::/48 maxlen: 48 2401:c400:4000::/48 maxlen: 48 2401:c400:5000::/48 maxlen: 48 2401:c400:6000::/48 maxlen: 48 2401:c400:7000::/48 maxlen: 48 2401:c400:8000::/48 maxlen: 48 2401:c400:9000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.crl rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:21:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2103 (0x837) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915465A, serialNumber=785E0BFF07B9037C60334B2DF3369281A4DC3F5A Validity Not Before: Dec 17 19:53:10 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4775d-05e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:29:b8:94:02:93:46:86:64:af:76:b5:d4:df: 1c:f9:8d:89:4b:e0:10:a5:c5:93:2b:54:35:8a:ac: e7:37:92:1c:67:1d:4d:a7:d2:77:a8:71:ca:70:07: 95:5c:ad:8d:3e:dc:4e:13:c6:47:56:01:15:ab:11: 9c:95:7d:a2:00:b0:ea:30:5a:bd:19:c7:2a:9e:4b: ce:7a:f7:32:6a:db:98:da:fc:52:2a:e3:3a:f5:29: 0b:12:4f:0e:fd:70:ab:fe:ef:89:71:fe:7a:90:94: 19:90:9e:7e:d6:73:d3:b6:22:58:79:06:94:a6:54: 48:d1:c9:64:e6:55:e5:11:fc:c4:4f:6f:87:15:4d: 0b:3e:15:d6:cb:1e:1c:e5:34:fa:45:71:94:d8:90: 2b:5f:53:43:60:52:c2:cd:a0:ca:5c:eb:d2:8f:ef: 7f:e6:40:ea:a7:7d:8b:e7:a7:91:1b:2e:f6:6f:26: 61:57:bf:6a:c5:e1:fa:49:5d:ef:3b:31:cf:cd:f5: 4e:48:0f:5e:21:a5:fa:5f:05:81:58:12:d4:ee:1e: 79:86:6a:6b:a0:17:a3:a8:1e:fd:39:bd:85:cb:e5: 47:ca:09:7c:14:da:0c:81:94:bc:c9:84:5d:c5:55: 5f:9a:ef:47:77:9e:7c:7c:2f:d1:7f:3a:71:85:4a: 30:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:FA:CA:25:25:E2:5A:A8:BB:52:E7:B8:FF:84:B1:7D:74:5E:B9:41 X509v3 Authority Key Identifier: keyid:78:5E:0B:FF:07:B9:03:7C:60:33:4B:2D:F3:36:92:81:A4:DC:3F:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/7E099DB21C5611EBB91D2683C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.193.157.0/24 183.78.168.0/22 202.43.100.0/22 210.1.224.0/21 IPv6: 2401:c400::/32 Signature Algorithm: sha256WithRSAEncryption 2d:8b:71:7a:2c:5a:8a:de:d6:b3:6d:11:14:17:b0:0c:ed:a6: eb:85:a3:45:6e:be:b3:d2:82:1a:2f:89:b9:78:4a:a2:e5:ff: c9:86:10:09:13:0e:ba:b0:a3:ba:01:9e:38:5e:ce:3a:33:ad: 75:a7:78:d7:2d:82:92:e2:60:03:a9:a6:c1:d4:95:b5:73:a4: 6d:a5:34:47:91:76:67:2d:a8:50:74:69:03:a6:12:ef:7b:9b: c5:f8:00:87:3d:42:a4:62:49:58:da:17:85:bc:d3:bb:2c:6a: d8:1e:64:ac:e4:e0:bf:6d:eb:2f:dc:47:c1:9d:1f:20:dc:77: e3:b0:9c:ef:47:d4:e4:c6:38:62:a8:10:38:95:7e:87:ef:da: 8c:16:34:42:98:89:9e:f7:42:b3:8e:c8:88:9e:3d:73:20:5c: 18:b4:c9:7b:4b:b5:48:9e:c4:bb:34:5a:09:fc:27:e8:db:c0: 3e:93:d5:41:38:0e:33:20:42:53:38:00:d1:8b:d4:5c:db:57: 7e:91:74:9b:e7:a5:1e:d6:23:b3:36:d7:48:45:76:50:16:1b: 2d:97:5c:d0:ad:b0:d4:f0:9d:f8:3a:16:b7:5b:15:c6:d4:a0: 8c:4c:c9:f0:0d:32:1f:2e:94:f5:2d:00:f9:51:f0:0c:00:b0: 51:bd:55:62 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICCDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NUExMTAvBgNVBAUTKDc4NUUwQkZGMDdCOTAzN0M2MDMzNEIyREYzMzY5Mjgx QTREQzNGNUEwHhcNMjUxMjE3MTk1MzEwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Nzc1ZC0wNWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCm4lAKTRoZkr3a11N8c+Y2JS+AQpcWTK1Q1iqznN5IcZx1Np9J3qHHKcAeV XK2NPtxOE8ZHVgEVqxGclX2iALDqMFq9GccqnkvOevcyatuY2vxSKuM69SkLEk8O /XCr/u+Jcf56kJQZkJ5+1nPTtiJYeQaUplRI0clk5lXlEfzET2+HFU0LPhXWyx4c 5TT6RXGU2JArX1NDYFLCzaDKXOvSj+9/5kDqp32L56eRGy72byZhV79qxeH6SV3v OzHPzfVOSA9eIaX6XwWBWBLU7h55hmproBejqB79Ob2Fy+VHygl8FNoMgZS8yYRd xVVfmu9Hd558fC/RfzpxhUow7wIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFMf6yiUl 4lqou1LnuP+EsX10XrlBMB8GA1UdIwQYMBaAFHheC/8HuQN8YDNLLfM2koGk3D9a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1QS84ODk0QTcwQTFD NTUxMUVCQUI4OEMxODJDNEY5QUUwMi9lRjRMX3dlNUEzeGdNMHN0OHphU2dhVGNQ MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGNExfd2U1QTN4Z00wc3Q4emFTZ2FUY1Axby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ2NUEvODg5NEE3MEExQzU1MTFFQkFCODhDMTgyQzRGOUFFMDIvN0UwOTlEQjIx QzU2MTFFQkI5MUQyNjgzQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQAdMGdAwQCt06oAwQCyitkAwQD0gHgMA0EAgACMAcDBQAkAcQAMA0G CSqGSIb3DQEBCwUAA4IBAQAti3F6LFqK3tazbREUF7AM7abrhaNFbr6z0oIaL4m5 eEqi5f/JhhAJEw66sKO6AZ44Xs46M611p3jXLYKS4mADqabB1JW1c6RtpTRHkXZn LahQdGkDphLve5vF+ACHPUKkYklY2heFvNO7LGrYHmSs5OC/besv3EfBnR8g3Hfj sJzvR9TkxjhiqBA4lX6H79qMFjRCmIme90KzjsiInj1zIFwYtMl7S7VInsS7NFoJ /Cfo28A+k9VBOA4zIEJTOADRi9Rc21d+kXSb56Ue1iOzNtdIRXZQFhstl1zQrbDU 8J34Oha3WxXG1KCMTMnwDTIfLpT1LQD5UfAMALBRvVVi -----END CERTIFICATE-----Generated at Mon Mar 2 12:01:54 2026 by rpki-client