$ rpki-client -vvf rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/EFE8CDF6C8D111EE95249F25C4F9AE02.roa File: EFE8CDF6C8D111EE95249F25C4F9AE02.roa (raw, json) Hash identifier: 1joefEUaonKYBipvcGc9ThYvChcQDM/wI02rq3wje30= Subject key identifier: D6:CD:BA:70:01:65:1E:CF:02:68:A7:83:E3:6B:E3:05:03:CC:76:68 Certificate issuer: /CN=A9167D07/serialNumber=037B8F05F4902D9DA8B424C39340865F3DAC9B26 Certificate serial: 16BC Authority key identifier: 03:7B:8F:05:F4:90:2D:9D:A8:B4:24:C3:93:40:86:5F:3D:AC:9B:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3uPBfSQLZ2otCTDk0CGXz2smyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/EFE8CDF6C8D111EE95249F25C4F9AE02.roa Signing time: Sat 28 Feb 2026 17:14:36 +0000 ROA not before: Sat 28 Feb 2026 17:14:36 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 55427 IP address blocks: 43.245.92.0/22 maxlen: 22 43.245.92.0/23 maxlen: 23 43.245.92.0/24 maxlen: 24 43.245.93.0/24 maxlen: 24 43.245.94.0/23 maxlen: 23 43.245.94.0/24 maxlen: 24 43.245.95.0/24 maxlen: 24 103.232.228.0/22 maxlen: 22 103.232.228.0/23 maxlen: 23 103.232.228.0/24 maxlen: 24 103.232.229.0/24 maxlen: 24 103.232.230.0/23 maxlen: 23 103.232.230.0/24 maxlen: 24 103.232.231.0/24 maxlen: 24 182.50.64.0/22 maxlen: 24 2402:a300::/32 maxlen: 32 2402:a300:3e6::/48 maxlen: 48 2402:a300:3e7::/48 maxlen: 48 2402:a300:3e8::/48 maxlen: 48 2402:a300:13e6::/48 maxlen: 48 2402:a300:13e7::/48 maxlen: 48 2402:a300:13e8::/48 maxlen: 48 2402:a300:23e8::/48 maxlen: 48 2402:a300:4000::/36 maxlen: 36 2402:a300:4005::/48 maxlen: 48 2402:a300:8000::/36 maxlen: 36 2402:a300:8005::/48 maxlen: 48 2402:a300:800a::/48 maxlen: 48 2402:a300:c000::/36 maxlen: 36 2402:a300:c005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.crl rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3uPBfSQLZ2otCTDk0CGXz2smyY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5820 (0x16bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167D07, serialNumber=037B8F05F4902D9DA8B424C39340865F3DAC9B26 Validity Not Before: Feb 28 17:14:36 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a3227c-c5a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:63:eb:9c:fb:a0:e4:41:3a:c4:e5:8c:81:dd: 8f:d6:89:97:75:ac:6e:7c:36:eb:00:d9:a0:ff:5f: 8b:e2:13:e1:9c:3e:f6:5d:7d:d6:43:85:60:58:07: f2:60:05:82:bb:f6:33:13:91:40:d2:f2:85:ce:f3: b0:ba:9a:4b:f3:8c:f5:19:57:3b:cd:c1:1b:d5:b9: f2:08:ee:31:e6:63:5d:e3:94:ca:d2:e7:19:cd:50: 9e:92:98:cc:35:29:be:59:ef:5c:26:74:e2:ce:fb: 15:0d:dd:54:dd:85:75:67:3e:6c:de:21:27:52:1e: 7d:ce:60:6e:c6:2e:92:b5:2f:0b:e5:9e:dd:70:37: e5:00:62:54:a8:51:1a:bf:a3:5b:d3:9b:14:ff:a3: 14:11:92:4a:10:8b:3a:81:3e:53:73:9d:4e:d3:c0: 73:1b:e3:dd:3e:aa:05:0b:55:39:57:6c:2c:fa:6b: ba:a9:a1:5e:57:cd:84:6d:dc:12:aa:21:cb:07:89: 34:f3:59:f4:48:98:b6:25:7c:7f:a9:1f:6b:e4:e2: 6f:4f:ec:7d:fd:4e:28:ba:ba:3a:95:96:58:36:8e: b7:c7:e3:e6:97:af:47:f2:0c:da:8e:b9:94:8f:0d: bf:73:d5:c4:94:1d:00:c6:95:07:6f:1a:87:cb:89: ec:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:CD:BA:70:01:65:1E:CF:02:68:A7:83:E3:6B:E3:05:03:CC:76:68 X509v3 Authority Key Identifier: keyid:03:7B:8F:05:F4:90:2D:9D:A8:B4:24:C3:93:40:86:5F:3D:AC:9B:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3uPBfSQLZ2otCTDk0CGXz2smyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/EFE8CDF6C8D111EE95249F25C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.245.92.0/22 103.232.228.0/22 182.50.64.0/22 IPv6: 2402:a300::/32 Signature Algorithm: sha256WithRSAEncryption 54:76:18:13:92:3e:7f:19:85:39:dc:b2:c5:b8:bd:4b:a4:01: b7:ad:8b:11:69:bd:85:72:79:41:c0:36:10:9c:74:af:7c:21: 8b:b2:ef:02:c6:0d:b0:fc:62:aa:b8:ca:30:9c:9f:76:1c:c8: a7:87:56:45:a1:ae:57:e7:ee:0a:fb:e6:bc:44:c4:b4:7f:ba: d0:41:4f:d5:2e:3a:c8:24:a8:32:58:30:42:7b:19:ad:a8:49: 97:5a:ea:7e:28:ed:7a:a8:98:bd:84:27:a7:5c:76:27:65:7b: 5f:ba:53:05:a5:be:b9:73:07:d8:7f:5b:9d:28:76:e3:86:8f: 79:e1:df:d0:bc:c7:22:10:56:1e:9b:3e:84:99:9a:21:d7:de: 66:a9:72:d0:a7:25:81:9f:f0:08:c5:03:22:9b:9b:fa:0b:1c: 96:af:76:31:62:f2:97:85:c7:dd:fb:05:de:c4:c6:14:e4:b6: 7b:5b:27:85:0e:e2:7e:3c:3a:21:c6:d6:f4:b9:3b:9b:29:b2: 70:07:cf:c1:32:6b:35:99:b8:08:b4:fc:f5:b5:c6:ed:6f:26: a1:2b:c2:dc:51:08:ac:a5:e2:26:f2:bf:7d:c7:e2:2f:2a:b2: 8a:88:a7:2a:9d:bc:72:cb:3f:cc:29:6c:25:07:f9:04:96:45: 2b:a5:34:76 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICFrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdEMDcxMTAvBgNVBAUTKDAzN0I4RjA1RjQ5MDJEOURBOEI0MjRDMzkzNDA4NjVG M0RBQzlCMjYwHhcNMjYwMjI4MTcxNDM2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OWEzMjI3Yy1jNWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmPrnPug5EE6xOWMgd2P1omXdaxufDbrANmg/1+L4hPhnD72XX3WQ4VgWAfy YAWCu/YzE5FA0vKFzvOwuppL84z1GVc7zcEb1bnyCO4x5mNd45TK0ucZzVCekpjM NSm+We9cJnTizvsVDd1U3YV1Zz5s3iEnUh59zmBuxi6StS8L5Z7dcDflAGJUqFEa v6Nb05sU/6MUEZJKEIs6gT5Tc51O08BzG+PdPqoFC1U5V2ws+mu6qaFeV82EbdwS qiHLB4k081n0SJi2JXx/qR9r5OJvT+x9/U4ouro6lZZYNo63x+Pml69H8gzajrmU jw2/c9XElB0AxpUHbxqHy4nskQIDAQABo4ICezCCAncwHQYDVR0OBBYEFNbNunAB ZR7PAming+Nr4wUDzHZoMB8GA1UdIwQYMBaAFAN7jwX0kC2dqLQkw5NAhl89rJsm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0QwNy9ENzRBRTI3NDFC QTkxMUU4QThGNTc4NjVDNEY5QUUwMi9BM3VQQmZTUUxaMm90Q1REazBDR1h6MnNt eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzdVBCZlNRTFoyb3RDVERrMENHWHoyc215WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdEMDcvRDc0QUUyNzQxQkE5MTFFOEE4RjU3ODY1QzRGOUFFMDIvRUZFOENERjZD OEQxMTFFRTk1MjQ5RjI1QzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCK/VcAwQCZ+jkAwQCtjJAMA0EAgACMAcDBQAkAqMAMA0GCSqGSIb3 DQEBCwUAA4IBAQBUdhgTkj5/GYU53LLFuL1LpAG3rYsRab2FcnlBwDYQnHSvfCGL su8Cxg2w/GKquMownJ92HMinh1ZFoa5X5+4K++a8RMS0f7rQQU/VLjrIJKgyWDBC exmtqEmXWup+KO16qJi9hCenXHYnZXtfulMFpb65cwfYf1udKHbjho954d/QvMci EFYemz6EmZoh195mqXLQpyWBn/AIxQMim5v6CxyWr3YxYvKXhcfd+wXexMYU5LZ7 WyeFDuJ+PDohxtb0uTubKbJwB8/BMms1mbgItPz1tcbtbyahK8LcUQispeIm8r99 x+IvKrKKiKcqnbxyyz/MKWwlB/kElkUrpTR2 -----END CERTIFICATE-----Generated at Sun Mar 1 22:26:53 2026 by rpki-client