$ rpki-client -vvf rpki.apnic.net/member_repository/A916699C/AE99BC708E7E11EA963B0E66C4F9AE02/DA8EF7A48E7F11EAA2B2D767C4F9AE02.roa File: DA8EF7A48E7F11EAA2B2D767C4F9AE02.roa (raw, json) Hash identifier: doxkO4sksDjwokeIGgJqyU8qFI1WVtbLLGDEkNbQQGU= Subject key identifier: 87:26:16:81:47:4E:DA:59:BD:EF:B0:02:04:85:0F:5A:47:A2:3C:3C Certificate issuer: /CN=A916699C/serialNumber=770F28991DE648F8961C57C0DCDAD7D58B4A69F4 Certificate serial: 0A24 Authority key identifier: 77:0F:28:99:1D:E6:48:F8:96:1C:57:C0:DC:DA:D7:D5:8B:4A:69:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dw8omR3mSPiWHFfA3NrX1YtKafQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916699C/AE99BC708E7E11EA963B0E66C4F9AE02/DA8EF7A48E7F11EAA2B2D767C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:48:20 +0000 ROA not before: Wed 28 Jan 2026 20:16:39 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 38198 IP address blocks: 202.43.8.0/22 maxlen: 22 202.43.12.0/23 maxlen: 23 202.43.14.0/24 maxlen: 24 202.43.15.0/24 maxlen: 24 2402:1940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916699C/AE99BC708E7E11EA963B0E66C4F9AE02/dw8omR3mSPiWHFfA3NrX1YtKafQ.crl rsync://rpki.apnic.net/member_repository/A916699C/AE99BC708E7E11EA963B0E66C4F9AE02/dw8omR3mSPiWHFfA3NrX1YtKafQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dw8omR3mSPiWHFfA3NrX1YtKafQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2596 (0xa24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916699C, serialNumber=770F28991DE648F8961C57C0DCDAD7D58B4A69F4 Validity Not Before: Jan 28 20:16:39 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a451b4-d4a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bc:44:7b:ce:72:c0:91:25:42:c6:dc:2b:41: ab:18:1c:99:ae:0e:34:f7:f8:1b:dd:97:d7:7b:19: dc:6f:96:4f:24:97:ac:63:42:f8:c6:c4:92:6f:11: 4e:a9:b2:68:46:d2:fb:d0:90:da:f2:8c:80:c7:79: e3:8c:ae:4f:03:86:57:1e:7c:ef:bd:81:f0:2d:d7: c5:93:0b:c3:6d:e7:ce:e2:0e:04:bf:60:c2:32:fa: 2f:bc:f2:4f:bc:fa:25:23:22:77:94:8d:f7:93:08: b7:14:38:be:f9:56:53:dd:70:78:75:5a:2f:33:50: 6e:3e:ab:16:bb:9b:72:49:3c:c3:d8:fe:d2:3b:35: b9:01:a9:11:01:56:d1:5e:67:f4:01:00:05:99:37: d1:d0:fe:db:c4:61:88:27:2a:0e:8d:87:e7:11:0d: f5:cc:01:c7:a8:d1:ce:f3:64:f0:de:be:33:46:e8: 6b:9b:38:ef:b2:52:e3:e3:88:55:dd:f2:9b:4f:75: 34:eb:56:35:5a:9b:7d:4f:c5:30:ab:fd:ff:a8:a8: 32:fc:aa:f3:26:ec:8a:6f:b8:ae:ba:36:9d:60:fa: df:1b:07:e4:76:45:15:c2:c2:b7:6b:fd:27:e5:a1: f0:cd:a8:b3:fd:18:e4:99:d8:8a:6b:32:23:82:81: d9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:26:16:81:47:4E:DA:59:BD:EF:B0:02:04:85:0F:5A:47:A2:3C:3C X509v3 Authority Key Identifier: keyid:77:0F:28:99:1D:E6:48:F8:96:1C:57:C0:DC:DA:D7:D5:8B:4A:69:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916699C/AE99BC708E7E11EA963B0E66C4F9AE02/dw8omR3mSPiWHFfA3NrX1YtKafQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dw8omR3mSPiWHFfA3NrX1YtKafQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916699C/AE99BC708E7E11EA963B0E66C4F9AE02/DA8EF7A48E7F11EAA2B2D767C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.43.8.0/21 IPv6: 2402:1940::/32 Signature Algorithm: sha256WithRSAEncryption 36:c7:2f:57:85:fe:c1:ef:82:ee:17:cc:a6:d2:39:9d:32:ad: 55:a7:ad:6c:7c:e5:40:67:fd:74:13:69:06:a1:62:0b:38:31: 60:6d:28:7b:69:e9:e0:97:a1:82:c7:f1:75:1b:68:72:de:ef: 63:c7:78:62:ac:e6:4d:d1:be:b4:4c:2b:94:c8:41:ab:7b:56: 63:71:03:4a:8b:39:05:35:87:01:60:4e:91:90:23:91:d3:8e: fb:7e:1b:2d:5c:29:98:9d:2c:79:e1:25:c3:f7:b8:73:2d:9f: fa:f0:c0:b0:5d:87:2c:dc:7d:19:72:f8:5d:f5:d9:40:fa:63: 02:90:f5:00:19:e9:d1:50:43:b6:b2:69:c8:0c:14:07:99:e5: 35:d0:b0:52:c0:47:c7:54:ba:6b:76:4f:00:27:83:c9:e5:94: 7c:7d:53:4f:f4:5f:98:5f:e8:f7:67:fa:68:44:28:b6:9e:dc: fe:1d:cc:f7:5c:f9:45:fe:d2:ef:c2:ad:b8:b8:09:da:9c:1d: 96:a0:4d:a1:71:42:6b:41:d6:4c:05:28:80:fd:d9:f1:7f:00: e0:a4:66:df:5e:0f:4a:95:9d:91:75:72:bf:12:fc:cd:b5:26: 28:9a:4e:c6:66:0e:e7:29:d8:bc:f0:26:8f:fc:f1:09:74:a2: 3d:1c:d6:d2 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjY5OUMxMTAvBgNVBAUTKDc3MEYyODk5MURFNjQ4Rjg5NjFDNTdDMERDREFEN0Q1 OEI0QTY5RjQwHhcNMjYwMTI4MjAxNjM5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTFiNC1kNGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurxEe85ywJElQsbcK0GrGByZrg409/gb3ZfXexncb5ZPJJesY0L4xsSSbxFO qbJoRtL70JDa8oyAx3njjK5PA4ZXHnzvvYHwLdfFkwvDbefO4g4Ev2DCMvovvPJP vPolIyJ3lI33kwi3FDi++VZT3XB4dVovM1BuPqsWu5tySTzD2P7SOzW5AakRAVbR Xmf0AQAFmTfR0P7bxGGIJyoOjYfnEQ31zAHHqNHO82Tw3r4zRuhrmzjvslLj44hV 3fKbT3U061Y1Wpt9T8Uwq/3/qKgy/KrzJuyKb7iuujadYPrfGwfkdkUVwsK3a/0n 5aHwzaiz/RjkmdiKazIjgoHZbwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFIcmFoFH TtpZve+wAgSFD1pHojw8MB8GA1UdIwQYMBaAFHcPKJkd5kj4lhxXwNza19WLSmn0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Njk5Qy9BRTk5QkM3MDhF N0UxMUVBOTYzQjBFNjZDNEY5QUUwMi9kdzhvbVIzbVNQaVdIRmZBM05yWDFZdEth ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R3OG9tUjNtU1BpV0hGZkEzTnJYMVl0S2FmUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjY5OUMvQUU5OUJDNzA4RTdFMTFFQTk2M0IwRTY2QzRGOUFFMDIvREE4RUY3QTQ4 RTdGMTFFQUEyQjJENzY3QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQDyisIMA0EAgACMAcDBQAkAhlAMA0GCSqGSIb3DQEBCwUAA4IBAQA2 xy9Xhf7B74LuF8ym0jmdMq1Vp61sfOVAZ/10E2kGoWILODFgbSh7aengl6GCx/F1 G2hy3u9jx3hirOZN0b60TCuUyEGre1ZjcQNKizkFNYcBYE6RkCOR0477fhstXCmY nSx54SXD97hzLZ/68MCwXYcs3H0Zcvhd9dlA+mMCkPUAGenRUEO2smnIDBQHmeU1 0LBSwEfHVLprdk8AJ4PJ5ZR8fVNP9F+YX+j3Z/poRCi2ntz+Hcz3XPlF/tLvwq24 uAnanB2WoE2hcUJrQdZMBSiA/dnxfwDgpGbfXg9KlZ2RdXK/EvzNtSYomk7GZg7n Kdi88CaP/PEJdKI9HNbS -----END CERTIFICATE-----Generated at Mon Mar 2 11:18:19 2026 by rpki-client