$ rpki-client -vvf rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/7AA2F5228F4411F0830D0B1EC4F9AE02.roa File: 7AA2F5228F4411F0830D0B1EC4F9AE02.roa (raw, json) Hash identifier: M/En5GKZgRPs8xA5rjGsaCEY3++9OzoqoEMQTbP1dII= Subject key identifier: 3B:96:F9:01:E0:C3:93:A9:55:EF:7F:62:CB:E5:3E:CD:FD:40:D8:1F Certificate issuer: /CN=A916CDAC/serialNumber=DDFCA9D034945A5924116137D62877F0CE52BF1B Certificate serial: 84 Authority key identifier: DD:FC:A9:D0:34:94:5A:59:24:11:61:37:D6:28:77:F0:CE:52:BF:1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3fyp0DSUWlkkEWE31ih38M5Svxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/7AA2F5228F4411F0830D0B1EC4F9AE02.roa Signing time: Sun 05 Apr 2026 07:41:57 +0000 ROA not before: Sun 05 Apr 2026 07:41:57 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 31898 IP address blocks: 140.83.32.0/21 maxlen: 21 140.83.40.0/22 maxlen: 22 140.83.44.0/22 maxlen: 22 140.83.48.0/20 maxlen: 20 140.83.80.0/21 maxlen: 21 140.83.94.0/24 maxlen: 24 140.83.95.0/24 maxlen: 24 146.56.32.0/20 maxlen: 20 146.56.48.0/21 maxlen: 21 146.56.61.0/24 maxlen: 24 146.56.96.0/20 maxlen: 20 146.56.112.0/21 maxlen: 21 146.56.120.0/22 maxlen: 22 146.56.124.0/22 maxlen: 22 146.56.128.0/18 maxlen: 18 146.56.178.0/24 maxlen: 24 161.118.0.0/24 maxlen: 24 161.118.2.0/24 maxlen: 24 161.118.6.0/24 maxlen: 24 161.118.128.0/19 maxlen: 19 161.118.160.0/19 maxlen: 19 161.118.192.0/18 maxlen: 18 192.188.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.crl rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3fyp0DSUWlkkEWE31ih38M5Svxs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:32:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CDAC, serialNumber=DDFCA9D034945A5924116137D62877F0CE52BF1B Validity Not Before: Apr 5 07:41:57 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d21244-ce72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:54:e1:8c:8a:60:1a:81:da:fe:50:40:78:43: a9:c2:94:38:06:7b:e5:89:55:f0:13:e0:d8:24:a5: 8a:9e:44:8a:4a:fa:4d:c0:6b:90:2b:ff:a5:70:41: fa:37:a9:31:ff:ff:10:a3:f3:ba:b6:6a:38:d0:e5: be:61:aa:56:8c:f1:d5:f8:76:3f:ea:ca:9c:f8:16: b1:e8:8f:96:b0:07:8f:20:b6:16:66:8e:11:0f:01: ab:44:a1:dc:96:bc:3e:b9:e3:02:b0:b1:28:7b:da: 31:69:f9:30:ec:09:2d:0d:0d:3b:1f:6f:c9:3d:1d: 0b:4a:18:44:00:86:f3:a2:b4:fa:c7:ea:79:29:82: 3c:b8:d2:94:15:8d:21:ee:ed:a7:59:bd:44:55:19: 9b:d8:bc:a7:3d:01:7f:77:6e:1e:1e:58:d7:8e:0a: 0e:ad:89:49:f7:78:ba:e5:52:0a:af:60:13:59:7f: 7d:f6:72:8d:6d:61:6c:bc:20:fd:9b:df:bf:bc:b9: fb:07:1c:16:16:c0:03:74:4c:fe:ea:8d:25:94:49: 00:c2:82:c7:3d:26:44:7a:4b:02:ad:cd:93:2b:c7: 87:be:fe:4f:21:8d:27:ba:45:4f:c1:a6:74:06:6c: f6:a7:2f:53:95:57:34:6d:10:ba:df:f7:ae:b0:01: 73:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:96:F9:01:E0:C3:93:A9:55:EF:7F:62:CB:E5:3E:CD:FD:40:D8:1F X509v3 Authority Key Identifier: keyid:DD:FC:A9:D0:34:94:5A:59:24:11:61:37:D6:28:77:F0:CE:52:BF:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3fyp0DSUWlkkEWE31ih38M5Svxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/7AA2F5228F4411F0830D0B1EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 140.83.32.0/19 140.83.80.0/21 140.83.94.0/23 146.56.32.0-146.56.55.255 146.56.61.0/24 146.56.96.0-146.56.191.255 161.118.0.0/24 161.118.2.0/24 161.118.6.0/24 161.118.128.0/17 192.188.171.0/24 Signature Algorithm: sha256WithRSAEncryption 61:c1:a6:0d:5d:08:f3:6d:61:ff:25:f7:b2:3b:1a:c9:4c:16: c6:8c:05:e2:4e:db:c9:a2:50:23:25:9a:5f:c9:68:27:d7:e4: 76:0b:ce:3b:49:ce:6f:80:d9:0e:dc:e2:06:8f:97:bf:a4:4a: 74:eb:06:44:71:12:e2:cd:cb:ff:fd:45:bc:63:03:99:86:65: c6:f3:43:8f:55:c3:9a:f0:b1:e2:77:96:ef:6c:d2:e9:be:42: 4c:54:c6:0a:c0:18:12:d5:3d:9a:86:cb:0a:4a:49:fe:06:cf: 08:8b:30:65:3b:e1:d9:45:56:a7:5f:25:77:72:7b:0d:2d:0b: c9:7c:10:90:d1:d9:b6:a5:d3:68:90:7c:96:dc:6c:6a:90:8c: 76:2f:90:ba:a5:03:38:a9:e9:de:b9:e3:37:03:2b:f8:e7:75: c2:f4:f6:7f:b0:29:1f:c8:ed:e9:43:5d:6d:68:33:9b:b9:39: 3f:12:e4:c8:71:fd:bf:32:b9:8a:88:04:a6:27:9b:4c:8c:95: bc:94:dd:06:c8:b8:cc:89:8c:20:5a:ec:a4:5d:24:13:de:bd: b4:f0:84:40:e1:d7:06:4e:c7:0d:cb:31:cf:13:39:fc:65:6b: 19:ef:67:50:ec:5d:44:5d:52:1c:0b:3e:99:09:f5:c4:62:12: 7e:9d:01:ae -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNEQUMxMTAvBgNVBAUTKERERkNBOUQwMzQ5NDVBNTkyNDExNjEzN0Q2Mjg3N0Yw Q0U1MkJGMUIwHhcNMjYwNDA1MDc0MTU3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQyMTI0NC1jZTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FThjIpgGoHa/lBAeEOpwpQ4BnvliVXwE+DYJKWKnkSKSvpNwGuQK/+lcEH6 N6kx//8Qo/O6tmo40OW+YapWjPHV+HY/6sqc+Bax6I+WsAePILYWZo4RDwGrRKHc lrw+ueMCsLEoe9oxafkw7AktDQ07H2/JPR0LShhEAIbzorT6x+p5KYI8uNKUFY0h 7u2nWb1EVRmb2LynPQF/d24eHljXjgoOrYlJ93i65VIKr2ATWX999nKNbWFsvCD9 m9+/vLn7BxwWFsADdEz+6o0llEkAwoLHPSZEeksCrc2TK8eHvv5PIY0nukVPwaZ0 Bmz2py9TlVc0bRC63/eusAFzLQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFDuW+QHg w5OpVe9/YsvlPs39QNgfMB8GA1UdIwQYMBaAFN38qdA0lFpZJBFhN9Yod/DOUr8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0RBQy83OEQ1OTMxODhG MzkxMUYwODYzMkEwMzlDNEY5QUUwMi8zZnlwMERTVVdsa2tFV0UzMWloMzhNNVN2 eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNmeXAwRFNVV2xra0VXRTMxaWgzOE01U3Z4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNEQUMvNzhENTkzMTg4RjM5MTFGMDg2MzJBMDM5QzRGOUFFMDIvN0FBMkY1MjI4 RjQ0MTFGMDgzMEQwQjFFQzRGOUFFMDIucm9hMGsGCCsGAQUFBwEHAQH/BFwwWjBY BAIAATBSAwQFjFMgAwQDjFNQAwQBjFNeMAwDBAWSOCADBAOSODADBACSOD0wDAME BZI4YAMEBpI4gAMEAKF2AAMEAKF2AgMEAKF2BgMEB6F2gAMEAMC8qzANBgkqhkiG 9w0BAQsFAAOCAQEAYcGmDV0I821h/yX3sjsayUwWxowF4k7byaJQIyWaX8loJ9fk dgvOO0nOb4DZDtziBo+Xv6RKdOsGRHES4s3L//1FvGMDmYZlxvNDj1XDmvCx4neW 72zS6b5CTFTGCsAYEtU9mobLCkpJ/gbPCIswZTvh2UVWp18ld3J7DS0LyXwQkNHZ tqXTaJB8ltxsapCMdi+QuqUDOKnp3rnjNwMr+Od1wvT2f7ApH8jt6UNdbWgzm7k5 PxLkyHH9vzK5iogEpiebTIyVvJTdBsi4zImMIFrspF0kE969tPCEQOHXBk7HDcsx zxM5/GVrGe9nUOxdRF1SHAs+mQn1xGISfp0Brg== -----END CERTIFICATE-----Generated at Fri Apr 17 21:23:13 2026 by rpki-client